-
The cybersecurity challenges and opportunities of digital twins
PRIVACY PRIVACY Digital twins are a digital representation of objects, structures or systems that give organizations greater insight into the life cycle of these objects, but this same level of insight and control can also open doors for malicious attackers. Digital twins can be created for any physical infrastructure that includes individual components of an…
-
The changing role of the MITRE ATT@CK framework
PRIVACY PRIVACY Since its creation in 2013, the MITRE ATT&CK framework has been of interest to security operations professionals. In the early years, the security operations center (SOC) team used MITRE as a reference architecture, comparing alerts and threat intelligence nuggets with the taxonomy’s breakdown of adversary tactics and techniques. Based on ESG research, MITRE…
-
What you should know when considering cyber insurance in 2023
PRIVACY PRIVACY As the frequency and severity of ransomware, phishing, and denial of service attacks has increased, so has demand for cyber insurance. About $6.5 billion in direct written premiums were recorded in 2021, a 61% increase over the prior year, according to an October 2022 memorandum from the National Association of Insurance Commissioners. “Some companies see…
-
Prolific Chinese Hackers Stole US COVID funds
PRIVACY PRIVACY Secret Service says discovery may be the tip of the iceberg Read More
-
Palo Alto Networks looks to shore up healthcare IoT security
PRIVACY PRIVACY Palo Alto Networks today rolled out a new Medical IoT Security offering, designed to provide improved visibility, automated monitoring and more for hitherto vulnerable healthcare IoT frameworks, thanks to machine learning and adherence to zero trust principles. Medical device security is a serious problem for most organizations in healthcare, with a long string…
-
Russian courts attacked by CryWiper malware that poses as ransomware
PRIVACY PRIVACY Russian courts and government agencies have been hit by a previously-undocumented strain of data-wiping malware known as CryWiper. It poses as ransomware, but isn’t interested in making money out of its victims… Read more in my article on the Hot for Security blog. Read More
-
Judge Orders U.S. Lawyer in Russian Botnet Case to Pay Google
PRIVACY PRIVACY In December 2021, Google filed a civil lawsuit against two Russian men thought to be responsible for operating Glupteba, one of the Internet’s largest and oldest botnets. The defendants, who initially pursued a strategy of counter suing Google for tortious interference in their sprawling cybercrime business, later brazenly offered to dismantle the botnet…
-
Hacking cars remotely with just their VIN
PRIVACY PRIVACY Your car’s mobile app might have allowed hackers to remotely unlock your vehicle, turn on or off its engine, and even honk its horn. Those are the findings of a researcher who explored vulnerabilities that could affect Hyundai, Genesis, Nissan, Infiniti, Honda, and Acura vehicles, amongst others. Read more in my article on…
-
Rackspace Restores Systems After Security Incident
PRIVACY PRIVACY The known impact was isolated to a portion of the firm’s Hosted Exchange platform Read More
-
Rackspace Admits Security Incident, Helps Customers Migrate to Microsoft 365 Accounts
PRIVACY PRIVACY The known impact was isolated to a portion of the firm’s Hosted Exchange platform Read More