You are here

Home » Cybersecurity

Cybersecurity

Threat Awareness – Microsoft Links Raspberry Robin Malware to Clop Ransomware Attacks

Microsoft Security has published a blog post describing the Raspberry Robin worm and how it connects to the larger ecosystem of professional malware in order for criminals to execute attacks. Microsoft’s researchers have observed multiple families of payloads being deployed on machines with Raspberry Robin infections, suggesting the group behind the worm is offering paid access to compromised networks. Notably, in October, Microsoft observed Raspberry Robin being used in post-compromise activity, which resulted in the deployment of Clop ransomware.

CISA Releases Guidance on Phishing-Resistant Multi-Factor Authentication

Yesterday, the Cybersecurity and Infrastructure Security Agency (CISA) published two fact sheets to highlight threats against accounts and systems using certain forms of multifactor authentication (MFA). The first fact sheet covers phishing-resistant MFA, which CISA calls the most secure form of MFA, and provides information on how organizations can implement it.

Joint Guide on Responding to DDoS Attacks

Last week, the Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and the Multi-State Information Sharing and Analysis Center (MS-ISAC) published an updated guide, Understanding and Responding to Distributed Denial-of-Service Attacks, which provides organizations proactive steps to reduce the likelihood and impact of distributed denial-of-service (DDoS) attacks. The guidance is aimed towards both network defenders and leaders to help them understand and respond to DDoS attacks, which can cost an organization time, money, and reputational damage.

Security Awareness – Microsoft Publishes Guidance on Securing IoT Devices against Attacks Targeting Critical Infrastructure

In August, a ransomware group claimed to have compromised a U.K. water utility’s industrial control systems (ICS). Although the attack did not impact the utility’s ability to provide safe drinking water, it nevertheless underscores the risk of threat actors attempting to gain access to ICS environments. Consequently, Microsoft recently published guidance on securing IoT devices used by critical infrastructure organizations.

Security Awareness – Dragos’s Latest Industrial Ransomware Analysis Underscores Increasing Threat to Industrial Systems

Ransomware groups are continuing to target the industrial sector at an increasing rate and new ransomware gangs are emerging, threatening to push the rate of attacks up even higher, according to Drago’s most recent third quarter Industrial Ransomware Analysis report.

Cyber Resilience – Key Findings from IBM’s 2022 Incident Responder Study

Cyber attacks continue to increase and impact all organizations. As such, a recent study by IBM Security highlighted that 67 percent of incident responders are experiencing greater stress or anxiety due to the pressures of responding to a cyber incident. Therefore, as cyber incident response continues to become more challenging and cumbersome, it’s important for organizations to provide sufficient operational and psychological support to help reduce stress for responders.

Pages

Subscribe to Cybersecurity