White House National Security Strategy Heavy on Partnerships, Action
After releasing a National Cybersecurity Strategy that it promised would protect this country’s digital assets and infrastructure and also pave the way for a digital future for all, the White House unveiled a multi-pillar plan for implementing that strategy ... Read More
The Rise of QR Codes Spurs Rise in ‘Fresh Phish’
Miscreants have ramped up their use of QR codes to phish for credentials, according to INKY threat researchers ... Read More
Russia Expected to Increase Critical Infrastructure Attacks
Russia’s war strategy increasingly involves cybersecurity, with the country expected to ramp up attacks on critical infrastructure in Ukraine and countries that are members of NATO, according to Switzerland’s Federal Intelligence Service (FIS). “The war in Ukraine represents a threat with partially global implications for critical infrastructure. Critical infrastructure outside ... Read More
Cisco Nexus 9000 Users Must Disable Encryption to Dodge Vuln
There is no workaround or patch for a high-severity vulnerability—and none will be forthcoming—in Cisco’s Nexus 9000 series switches ... Read More
Lockbit 3.0 Claims Credit for Ransomware Attack on Japanese Port
After a ransomware attack shuttered operations at container terminals at the Port of Nagoya in Japan, the Lockbit 3.0 ransomware gang claimed responsibility and demanded the port pay up. The attack on the port, which is responsible for 10% of the country’s cargo trade and is used by companies like ... Read More
Third Party Lets Pepsi Data Out of the Bottle, PII Nicked
Current and former contractors and employees at Pepsi Bottling Ventures LLC (PBV) were victims of a security incident that exposed their personal information ... Read More
As Goes GDPR, So Goes AI: EU Leads With Proposed AI Law
The EU has proposed legislation that would govern the use of AI and could be used for a blueprint by other countries looking to put guardrails around the technology ... Read More
CISA Pressures Federal Civilian Agencies to Secure Network Devices
CISA put federal civilian agencies on notice that they were expected to secure network devices within 14 days of discovering they had been exposed on the internet ... Read More
Malware Devs Update Legion Hacktool, Boost Capabilities
A recently discovered cloud-focused malware tool has seemingly been updated with additional functionality ... Read More
PharMerica Breach: The Lure of Health Care Data
Two months after noticing suspicious activity in its systems, PharMerica disclosed that nearly six million patients had their health care data stolen by threat actors. The large pharmacy services company, which has more than 2,500 locations in the U.S., filed a data breach notification in May 2023. PharMerica noted that ... Read More