Purdue University, a leading seat of cybersecurity expertise, may have helped cybersecurity personnel guarding power plants, the electrical grid and other critical infrastructure in Ukraine …
The cyber warfare predicted in Ukraine may be yet to come
In the build-up to Russia’s invasion of Ukraine, the national security community braced for a campaign combining military combat, disinformation, electronic warfare and cyber attacks. Vladimir Putin …
Continue Reading about The cyber warfare predicted in Ukraine may be yet to come
At CES 2022, metaverses metaversed the metaverse
In the lead up to CES, I wrote a piece reflecting on top tech of CES 2012. It was an interesting exercise for a number of reasons — not the least of which was recalling the buzzwords from 10 years …
Continue Reading about At CES 2022, metaverses metaversed the metaverse
Managing the Cybersecurity Vulnerabilities of Artificial Intelligence
Last week, Andy Grotto and I published a new working paper on policy responses to the risk that artificial intelligence (AI) systems, especially those dependent on machine learning (ML), can be …
Continue Reading about Managing the Cybersecurity Vulnerabilities of Artificial Intelligence
UC San Diego Health Breach Tied to Phishing Attack
The University of California San Diego Health reported that they were the victim of a phishing attack that led to a major network breach. The breach exposed the personal and medical data of students, …
Continue Reading about UC San Diego Health Breach Tied to Phishing Attack
Sage X3 Vulnerabilities Can Pose Serious Risk to Organizations
Researchers at Rapid7, a cybersecurity firm, have reportedly uncovered several vulnerabilities that lie in the Sage X3 enterprise resource planning product. According to the firm, the flaws can be …
Continue Reading about Sage X3 Vulnerabilities Can Pose Serious Risk to Organizations
Prometei Botnet Could Fire Up APT-Style Attacks
The Prometei malware is allegedly using exploits for the Microsoft Exchange "ProxyLogon" security bugs, leveraging the exploits to install Monero-mining malware on targets. The operators behind …
Continue Reading about Prometei Botnet Could Fire Up APT-Style Attacks
Many SolarWinds Customers Failed to Secure Systems Following Hack
According to RiskRecon, a risk assessment firm, many companies that were exposed to the SolarWinds Orion espionage campaign have not followed protocol and taken necessary measures to disclose the …
Continue Reading about Many SolarWinds Customers Failed to Secure Systems Following Hack
US Indicts Members of Transnational Money-Laundering Organization
According to an indictment announced this week, the US Department of Justice has charged cybercriminals from the QQAAZZ threat actor group with an extensive money-laundering scheme. The indictment …
Continue Reading about US Indicts Members of Transnational Money-Laundering Organization
Maze Ransomware Adopts Ragnar Locker Virtual-Machine Approach
According to researchers with Sophos Managed Threat Response, the operators behind Maze ransomware have been adopting tactics from rival cybercrime organizations, adding a dangerous new feature. Maze …
Continue Reading about Maze Ransomware Adopts Ragnar Locker Virtual-Machine Approach