CISO2CISO.COM & CYBER SECURITY GROUP

CISO2CISO Cyber Security Attacks & Incidents Record Notepad Series

Security Boulevard
Two Years After Colonial Pipeline, What Have We Learned? – Source: securityboulevard.com
Two Years After Colonial Pipeline, What Have We Learned? – Source: securityboulevard.com
Security Boulevard
A New Ransomware Scam: Fraud by the Incident Responders – Source: securityboulevard.com
A New Ransomware Scam: Fraud by the Incident Responders – Source: securityboulevard.com
govinfosecurity.com
Cyberattack Diverts Patients From Rural Idaho Hospital – Source: www.govinfosecurity.com
Cyberattack Diverts Patients From Rural Idaho Hospital – Source: www.govinfosecurity.com
Schneier on Security
Chinese Hacking of US Critical Infrastructure – Source: www.schneier.com
Chinese Hacking of US Critical Infrastructure – Source: www.schneier.com
socprime.com
Detect SmokeLoader Malware: UAC-0006 Strikes Again to Target Ukraine in a Series of Phishing Attacks – Source: socprime.com
Detect SmokeLoader Malware: UAC-0006 Strikes Again to Target Ukraine in a Series of Phishing Attacks...
Security Boulevard
Ransomware: A Predictable Response to Market Forces – Source: securityboulevard.com
Ransomware: A Predictable Response to Market Forces – Source: securityboulevard.com
Security Boulevard
Failure to Pay Ransom: Negligence? – Source: securityboulevard.com
Failure to Pay Ransom: Negligence? – Source: securityboulevard.com
Schneier on Security
Expeditionary Cyberspace Operations – Source: www.schneier.com
Security Boulevard
Expeditionary Cyberspace Operations – Source: securityboulevard.com
Security Boulevard
Understanding Cybercriminal Motivations Over Time – Source: securityboulevard.com
Understanding Cybercriminal Motivations Over Time – Source: securityboulevard.com
Security Boulevard
It’s Time to Reevaluate Your Enterprise Remediation Strategy – Source: securityboulevard.com
It’s Time to Reevaluate Your Enterprise Remediation Strategy – Source: securityboulevard.com
socprime.com
UAC-0063 Cyber-Espionage Activity Detection: Hackers Target Organizations in Ukraine, Kazakhstan, Kyrgyzstan, Mongolia, Izrael, and India to Gather Intelligence – Source: socprime.com
UAC-0063 Cyber-Espionage Activity Detection: Hackers Target Organizations in Ukraine, Kazakhstan, Kyrgyzstan, Mongolia, Izrael, and India...
Security Boulevard
Which Cyberattack Vectors Were Most Pervasive in 2022? (Part 2) – Source: securityboulevard.com
Which Cyberattack Vectors Were Most Pervasive in 2022? (Part 2) – Source: securityboulevard.com
Security Boulevard
War, Hunh. Yeah. What is it Good For? Reducing Insurer Liability for Cyberattacks – Source: securityboulevard.com
War, Hunh. Yeah. What is it Good For? Reducing Insurer Liability for Cyberattacks – Source:...
socprime.com
Detecting Abused Legitimate Tools Applied by Hackers in the Human-Operated Ransomware Attacks – Source: socprime.com
Detecting Abused Legitimate Tools Applied by Hackers in the Human-Operated Ransomware Attacks – Source: socprime.com
socprime.com
SmokeLoader Malware Detection: UAC-0006 Group Reemerges to Launch Phishing Attacks Against Ukraine Using Financial Subject Lures – Source: socprime.com
SmokeLoader Malware Detection: UAC-0006 Group Reemerges to Launch Phishing Attacks Against Ukraine Using Financial Subject...
ISACA
ISACA Ransomware Incident Management Quick Reference Guide
ISACA Ransomware Incident Management Quick Reference Guide
ANALYST1
The Ransomware Diaries – Volume 1 by ANALYST1
The Ransomware Diaries – Volume 1 by ANALYST1
help net security
PaperCut vulnerabilities leveraged by Clop, LockBit ransomware affiliates – Source: www.helpnetsecurity.com
PaperCut vulnerabilities leveraged by Clop, LockBit ransomware affiliates – Source: www.helpnetsecurity.com
Security TechRepublic
New DDoS attacks on Israel’s enterprises, infrastructure should be a wake-up call
New DDoS attacks on Israel’s enterprises, infrastructure should be a wake-up call
Schneier on Security
Swatting as a Service
Swatting as a Service
socprime.com
Detect CVE-2023-28252 & CVE-2023-21554 Exploitation Attempts: Windows Zero-Day Actively Used in Ransomware Attacks and a Critical RCE Flaw
Detect CVE-2023-28252 & CVE-2023-21554 Exploitation Attempts: Windows Zero-Day Actively Used in Ransomware Attacks and a...
Security TechRepublic
DDoS attacks rise as pro-Russia groups attack Finland, Israel
DDoS attacks rise as pro-Russia groups attack Finland, Israel
socprime.com
DarkCrystal RAT Malware Detection: UAC-0145 Hackers Exploit Unlicensed Microsoft Office Software as the Initial Attack Vector
DarkCrystal RAT Malware Detection: UAC-0145 Hackers Exploit Unlicensed Microsoft Office Software as the Initial Attack Vector
Security TechRepublic
Ransomware attacks skyrocket as threat actors double down on U.S., global attacks
Ransomware attacks skyrocket as threat actors double down on U.S., global attacks
Security TechRepublic
With political ‘hacktivism’ rising, Google offers Project Shield to fight DDoS attacks
With political ‘hacktivism’ rising, Google offers Project Shield to fight DDoS attacks
Security TechRepublic
How to prevent fork bombs on your Linux development servers
How to prevent fork bombs on your Linux development servers
Schneier on Security
Mass Ransomware Attack
Mass Ransomware Attack
socprime.com
3CXDesktopApp Supply Chain Attack Detection: Active Intrusion Campaign Targeting Millions of 3CX Customers
3CXDesktopApp Supply Chain Attack Detection: Active Intrusion Campaign Targeting Millions of 3CX Customers
socprime.com
Ferrari Data Breach Disclosed: Attackers Gain Access to the Company’s Network While Demanding Ransom to Prevent Data Leakage
Ferrari Data Breach Disclosed: Attackers Gain Access to the Company’s Network While Demanding Ransom to...
socprime.com
Detect CVE-2023-23397 Exploits: Critical Elevation of Privilege Vulnerability in Microsoft Outlook Leveraged in the Wild to Target European Government and Military
Detect CVE-2023-23397 Exploits: Critical Elevation of Privilege Vulnerability in Microsoft Outlook Leveraged in the Wild...
socprime.com
ScrubCrypt Attack Detection: 8220 Gang Applies Novel Malware in Cryptojacking Operations Exploiting Oracle WebLogic Servers
ScrubCrypt Attack Detection: 8220 Gang Applies Novel Malware in Cryptojacking Operations Exploiting Oracle WebLogic Servers
socprime.com
On the Frontline of the Global Cyber War: Overview of Major russia-backed APT Groups Targeting Ukraine and Sigma Rules to Proactively Defend Against Their TTPs
On the Frontline of the Global Cyber War: Overview of Major russia-backed APT Groups Targeting...
CSH CYBER SECURITY HUB
IOTW: Latitude Financial data breach affects 14 million people
IOTW: Latitude Financial data breach affects 14 million people
CSH CYBER SECURITY HUB
Twitter source code leaked via GitHub
Twitter source code leaked via GitHub
CSH CYBER SECURITY HUB
SHEIN fined US$1.9mn over data breach affecting 39 million customers
SHEIN fined US$1.9mn over data breach affecting 39 million customers
CSH CYBER SECURITY HUB
How carding can affect your business
How carding can affect your business
CSH CYBER SECURITY HUB
Banking Trojan apocalypse: how hackers are stealing millions
Banking Trojan apocalypse: how hackers are stealing millions
CSH CYBER SECURITY HUB
How does CISO strategy prevent threats?
How does CISO strategy prevent threats?
CSH CYBER SECURITY HUB
How to foster secure and efficient data practices
How to foster secure and efficient data practices
CSH CYBER SECURITY HUB
Cybercriminals are using ChatGPT to create malware
Cybercriminals are using ChatGPT to create malware
CSH CYBER SECURITY HUB
IOTW: Malicious actors gain access to GitHub source code
IOTW: Malicious actors gain access to GitHub source code
CSH CYBER SECURITY HUB
The dangerous vulnerabilities caused by weak email security
The dangerous vulnerabilities caused by weak email security
CSH CYBER SECURITY HUB
What is business email compromise?
What is business email compromise?
CSH CYBER SECURITY HUB
The ultimate guide to malware
The ultimate guide to malware
CSH CYBER SECURITY HUB
Google suspends Pinduoduo app over malware concerns
Google suspends Pinduoduo app over malware concerns
CSH CYBER SECURITY HUB
IOTW: Source code stolen in Reddit phishing attack
IOTW: Source code stolen in Reddit phishing attack
CSH CYBER SECURITY HUB
We are less than a year away from a cyber attack credited to ChatGPT
We are less than a year away from a cyber attack credited to ChatGPT
CSH CYBER SECURITY HUB
IOTW: Russian hackers target NATO sites with DDoS attack
IOTW: Russian hackers target NATO sites with DDoS attack
CSH CYBER SECURITY HUB
German airports hit with DDoS attack
German airports hit with DDoS attack
CSH CYBER SECURITY HUB
How Covid-19 impacted cyber security challenges, focus and spends
How Covid-19 impacted cyber security challenges, focus and spends
CSH CYBER SECURITY HUB
Top seven hacks and cyber security threats in APAC
Top seven hacks and cyber security threats in APAC
CSH CYBER SECURITY HUB
Why healthcare providers are focusing on cyber resilience
Why healthcare providers are focusing on cyber resilience
CSH CYBER SECURITY HUB
IOTW: US Marshals Service suffers ransomware attack
IOTW: US Marshals Service suffers ransomware attack
CSH CYBER SECURITY HUB
What are DDoS attacks?
What are DDoS attacks?
CSH CYBER SECURITY HUB
IOTW: Ransomware gang allegedly hacks Ring doorbells
IOTW: Ransomware gang allegedly hacks Ring doorbells
CSH CYBER SECURITY HUB
What is phishing?
What is phishing?
CSH CYBER SECURITY HUB
IOTW: BreachForums shuts down after FBI arrests its top admin
IOTW: BreachForums shuts down after FBI arrests its top admin
PICUS
The RED REPORT 2023 – The Top 10 Most Prevalent MITRE ATT&ACK Techniques Used by Adversaries by PICUS
The RED REPORT 2023 – The Top 10 Most Prevalent MITRE ATT&ACK Techniques Used by...
Tushar Subhra Dutta
Top 10 Cyber Attack Maps to See Digital Threats 2022 by Tushar Subhra Dutta – Cyber Security News.
Top 10 Cyber Attack Maps to See Digital Threats 2022 by Tushar Subhra Dutta –...
Wallarm
DevOps Tools and Insfrastructure Under Attack by Wallarm
DevOps Tools and Insfrastructure Under Attack by Wallarm
esset
ESSET THREAT REPORT T2 2022
ESSET THREAT REPORT T2 2022
HornetSecurity
THE 2022 HORNETSECURITY RANSOMWARE ATTACKS ANALYSIS
THE 2022 HORNETSECURITY RANSOMWARE ATTACKS ANALYSIS
CRC Press
DISTRIBUTED DENIAL OF SERVICE (DDOS) ATTACKS – Classification, Attacks, Challenges and Countermeasures – CRC Press Book
DISTRIBUTED DENIAL OF SERVICE (DDOS) ATTACKS – Classification, Attacks, Challenges and Countermeasures – CRC Press...
CYFIRMA
ADVANCED SOCIAL ENGINEERING ATTACKS DECONSTRUCTED BY CFYRMA
ADVANCED SOCIAL ENGINEERING ATTACKS DECONSTRUCTED BY CFYRMA
HADESS
TALE OF PHIHING – Some Phishing Techniques & Awareness by HADESS.IO
TALE OF PHIHING – Some Phishing Techniques & Awareness by HADESS.IO
Cynalytica
5 Targets Hackers Look for When Attacking an OT Network by Cynalytica
5 Targets Hackers Look for When Attacking an OT Network by Cynalytica
Victoria Beckman - Microsoft
Ransomware as a service (RaaS) – An explainer guide to cybercrime´s newest business model
Ransomware as a service (RaaS) – An explainer guide to cybercrime´s newest business model
odaseva
The State of SaaS Ransomware Attack Preparedness – A survey of cloud data decision makers in large enterprises – Large enterprises are not fully prepared for cloud ransomware attacks – August 2022 by Odaseva
The State of SaaS Ransomware Attack Preparedness – A survey of cloud data decision makers...
BARRACUDA
The State of Industrial Security in 2022 by Barracuda – Insecure remote access, lack of network segmentation, and insufficient automation are leaving organizations open to attacks.
The State of Industrial Security in 2022 by Barracuda – Insecure remote access, lack of...
Europol
DeepFakes Attacks – Facing reality Law enforcement and the challenge of deepfakes by EUROPOL
DeepFakes Attacks – Facing reality Law enforcement and the challenge of deepfakes by EUROPOL
CSBS.ORG
Cybersecurity 101 – A Resource Guide for BANK EXECUTIVES – Executive Leadership of Cybersecurity
Cybersecurity 101 – A Resource Guide for BANK EXECUTIVES – Executive Leadership of Cybersecurity
Kaspersky
The Nature of cyber incidents – Based on cyberattack investigations conducted by Kaspersky Global Emergency Response Team
The Nature of cyber incidents – Based on cyberattack investigations conducted by Kaspersky Global Emergency...
Hidecybersecurity.com
Social Engineering and its menace by Hidecybersecurity.com
Social Engineering and its menace by Hidecybersecurity.com
ThreatLabz Team
2022 ThreatLabz Research Team – State of Ransomware Report by Zscaler
2022 ThreatLabz Research Team – State of Ransomware Report by Zscaler
CLOUDSEK
Increased Cyber Attacks on the Global Health Sector by CloudSEK
Increased Cyber Attacks on the Global Health Sector by CloudSEK
CYFIRMA
HTML smuggling: A Stealthier Approach to Deliver Malware by CYFIRMA
HTML smuggling: A Stealthier Approach to Deliver Malware by CYFIRMA
SecurityScorecard
A Deep Dive into Black Basta Ransomware by SecurityScorecard
A Deep Dive into Black Basta Ransomware by SecurityScorecard
Inperva
DDoS Threat Landscape Report Q2 2022 by Imperva
DDoS Threat Landscape Report Q2 2022 by Imperva
CISCO TALOS
Cisco Talos shares insights related to recent cyber attack on Cisco
Cisco Talos shares insights related to recent cyber attack on Cisco
VIRUSTOTAL
Ransomware in a Global Context Report 2021 by Virustotal
Ransomware in a Global Context Report 2021 by Virustotal
Kaspersky
Common TTPs of modern ransomware groups by Kaspersky Crimeware
Common TTPs of modern ransomware groups by Kaspersky Crimeware
WILEY
Threat Hunting for Dummies
Threat Hunting for Dummies
CyberRes
A Guide to Insider Threats Infographics and How to Prevent Then by CyberRes
A Guide to Insider Threats Infographics and How to Prevent Then by CyberRes
Benjamin Eidam
The 116 Best Cybersecurity Tools & Tactics 2021
The 116 Best Cybersecurity Tools & Tactics 2021
Splunk
Top 50 Security Threats by Splunk
Top 50 Security Threats by Splunk
The Last Watchdog
Fireside chat: New ‘SASE’ weapon chokes off ransomware before attack spreads laterally
Fireside chat: New ‘SASE’ weapon chokes off ransomware before attack spreads laterally
The Hacker News
thehackernews – FBI, CISA Warn of Russian Hackers Exploiting MFA and PrintNightmare Bug
thehackernews – FBI, CISA Warn of Russian Hackers Exploiting MFA and PrintNightmare Bug
CISOMAG
cisomag – Global Affairs Canada Hit by Cyberattack
cisomag – Global Affairs Canada Hit by Cyberattack
CISO MAG
cisomag – 3 Common IoT Attacks that Compromise Security
cisomag – 3 Common IoT Attacks that Compromise Security
The Register
theregister – Viasat, Rosneft hit by cyberattacks as Ukraine war spills online
theregister – Viasat, Rosneft hit by cyberattacks as Ukraine war spills online
The Hacker News
thehackernews – Gaming Company Ubisoft Confirms It was Hacked, Resets Staff Passwords
thehackernews – Gaming Company Ubisoft Confirms It was Hacked, Resets Staff Passwords
help net security
helpnetsecurity – Cloud computing market to reach $1,554.94 billion by 2030
helpnetsecurity – Cloud computing market to reach $1,554.94 billion by 2030
help net security
helpnetsecurity – How to contain a privileged access breach and make sure it doesn’t happen again
helpnetsecurity – How to contain a privileged access breach and make sure it doesn’t happen...
help net security
helpnetsecurity – 150+ HP multifunction printers open to attack (CVE-2021-39237, CVE-2021-39238)
helpnetsecurity – 150+ HP multifunction printers open to attack (CVE-2021-39237, CVE-2021-39238)
help net security
helpnetsecurity – Alarming rise in cyberattacks against healthcare facilities, 68 attacks in Q3 2021 only
helpnetsecurity – Alarming rise in cyberattacks against healthcare facilities, 68 attacks in Q3 2021 only
help net security
helpnetsecurity – The ripple effect: Why protection against supply chain attacks is a must
helpnetsecurity – The ripple effect: Why protection against supply chain attacks is a must
CISO MAG
cisomag – Vestas Cyberattack Impacts Internal IT Systems
cisomag – Vestas Cyberattack Impacts Internal IT Systems
DARKReading
darkreading – Is It OK to Take Your CEO Offline to Protect the Network?
HAMILTONPOLICE
hamiltonpolice – Arrest Made in $46 Million Dollar Cryptocurrency Theft
hamiltonpolice – Arrest Made in $46 Million Dollar Cryptocurrency Theft
DARKReading
darkreading – How Attackers Weigh the Pros and Cons of BEC Techniques
techrepublic
techrepublic – 8 advanced threats Kaspersky predicts for 2022
techrepublic – 8 advanced threats Kaspersky predicts for 2022
Bleeping Computer
bleepingcomputer – Microsoft Exchange servers hacked in internal reply-chain attacks
help net security
helpnetsecurity – How to improve your SaaS security posture and reduce risk
helpnetsecurity – How to improve your SaaS security posture and reduce risk
BARRACUDA
barracuda – Threat Spotlight: Bait attacks
barracuda – Threat Spotlight: Bait attacks
NCSC
ncsc – NCSC Annual Review 2021
ncsc – NCSC Annual Review 2021
CISO MAG
cisomag – Cybersecurity is a Low Priority for India’s Private Sector
cisomag – Cybersecurity is a Low Priority for India’s Private Sector
help net security
helpnetsecurity – Businesses are forced to adopt new cybersecurity measures
helpnetsecurity – Businesses are forced to adopt new cybersecurity measures