CISA Order Highlights Persistent Risk at Network Edge

Credit to Author: BrianKrebs| Date: Thu, 15 Jun 2023 15:40:09 +0000

The U.S. government agency in charge of improving the nation’s cybersecurity posture is ordering all federal civilian agencies to take new measures to restrict access to Internet-exposed networking equipment. The directive comes amid a surge in attacks targeting previously unknown vulnerabilities in widely used security and networking appliances.

Read more

North Korean APT targets US healthcare sector with Maui ransomware

Credit to Author: Jovi Umawing| Date: Sun, 10 Jul 2022 21:43:29 +0000

CISA warns of an unusual ransomware.

The post North Korean APT targets US healthcare sector with Maui ransomware appeared first on Malwarebytes Labs.

Read more

Dial 311 for… cybersecurity emergencies?

Credit to Author: Malwarebytes Labs| Date: Thu, 23 Jun 2022 15:51:59 +0000

Cybersecurity experts want a hotline for SMBs to further encourage cyber incident reporting, especially those involving ransomware attacks.

The post Dial 311 for… cybersecurity emergencies? appeared first on Malwarebytes Labs.

Read more

Karakurt extortion group: Threat profile

Credit to Author: Jovi Umawing| Date: Tue, 14 Jun 2022 16:00:29 +0000

An obscure group called Karakurt has extorted organizations in the US and elsewhere. Know how to keep it away from your network.

The post Karakurt extortion group: Threat profile appeared first on Malwarebytes Labs.

Read more

U.S. Govt. Makes it Harder to Get .Gov Domains

Credit to Author: BrianKrebs| Date: Sat, 07 Mar 2020 15:01:21 +0000

The federal agency in charge of issuing .gov domain names is enacting new requirements for validating the identity of people requesting them. The additional measures come less than four months after KrebsOnSecurity published research suggesting it was relatively easy for just about anyone to get their very own .gov domain. In November’s piece It’s Way Too Easy to Get a .gov Domain Name, an anonymous source detailed how he obtained one by impersonating an official at a small town in Rhode Island that didn’t already have its own .gov.

Read more

Ransomware attack forces 2-day shutdown of natural gas pipeline

Credit to Author: Lisa Vaas| Date: Thu, 20 Feb 2020 14:35:31 +0000

The attacker(s) infected both IT and operational networks with an unspecified ransomware strain, though the facility never lost control.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/YqiqInxA_Kc” height=”1″ width=”1″ alt=””/>

Read more

It’s Way Too Easy to Get a .gov Domain Name

Credit to Author: BrianKrebs| Date: Wed, 27 Nov 2019 02:08:55 +0000

Many readers probably believe they can trust links and emails coming from U.S. federal government domain names, or else assume there are at least more stringent verification requirements involved in obtaining a .gov domain versus a commercial one ending in .com or .org. But a recent experience suggests this trust may be severely misplaced, and that it is relatively straightforward for anyone to obtain their very own .gov domain.

Read more