U.S. CISA: hackers breached a state government organization
U.S. CISA revealed that threat actors breached an unnamed state government organization via an administrator account belonging to a former…
February 2024
Russia-linked Turla APT uses new TinyTurla-NG backdoor to spy on Polish NGOs
Russia-linked APT group Turla has been spotted targeting Polish non-governmental organizations (NGO) with a new backdoor dubbed TinyTurla-NG. Russia-linked cyberespionage…
33M French Citizens Impacted in Country’s Largest-Ever Breach
Viamedis and Almerys, two payment processors widely used by French health insurers, were victims of cyberattackers who struck five days…
How Changes in State CIO Priorities for 2024 Apply to API Security
The National Association of State Chief Information Officers' top 10 list sheds light on where state and local governments need…
It’s Time to Rethink Third-Party Risk Assessment
Continuously evaluating and updating your third-party risk assessment can improve your security posture and ensure your company doesn't have the…
Fortinet, Ivanti Keep Customers Busy With Yet More Critical Bugs
Brand-new vulnerabilities from both vendors this week — one exploited in the wild — add to a steady stream of…
China’s Dogged Campaign to Portray Itself as Victim of US Hacking
After the US and its allies formally accused China of irresponsible and malicious behavior in cyberspace back in 2021, the…
Ongoing Azure Compromises Target Senior Execs, Microsoft 365 Apps
Attackers are breaching cloud environments and playing games with corporate Microsoft 365 apps, and further victims are likely to come.
Ransomware Groups Claim Hits on Hyundai Motor Europe and a California Union
The unrelated cyberattacks both occurred in January.
CISO Corner: DoD Regs, Neurodiverse Talent & Tel Aviv’s Light Rail
Also in this issue: How the SEC's reporting rules are being weaponized, quishing attacks plaguing execs, and tabletop exercises making…