Jun 23, 2023Ravie LakshmananSocial Engineering / Phishing A threat actor known as Muddled Libra is targeting the business process outsourcing (BPO) industry with persistent attacks that leverage advanced social engineering ploys to gain initial access. "The attack style defining Muddled Libra appeared on the cybersecurity radar in late 2022 with the release of the 0ktapus … [Read more...] about Cybercrime Group ‘Muddled Libra’ Targets BPO Sector with Advanced Social Engineering
Sector
Bl00dy Ransomware Gang Strikes Education Sector with Critical PaperCut Vulnerability
May 12, 2023Ravie LakshmananVulnerability / Ransomware U.S. cybersecurity and intelligence agencies have warned of attacks carried out by a threat actor known as the Bl00dy Ransomware Gang that attempt to exploit vulnerable PaperCut servers against the education facilities sector in the country. The attacks took place in early May 2023, the Federal Bureau of Investigation … [Read more...] about Bl00dy Ransomware Gang Strikes Education Sector with Critical PaperCut Vulnerability
What the public sector can learn from CDM’s data strategy
The US government handles massive quantities of data — via separate agencies and disconnected data systems. Having a central dashboard to track this data is absolutely essential for uncovering and sharing cybersecurity vulnerabilities before they can do harm to citizens or critical infrastructure.This dashboard — known as the Continuous Diagnostics and Mitigation (CDM) … [Read more...] about What the public sector can learn from CDM’s data strategy
5 questions public sector leaders should be asking about their data
Government agencies and educational institutions across the globe are accelerating their move toward cloud, SaaS, and customer-first digital experiences. The common denominator of all these initiatives? Data. Specifically, the quality and quantity of data you have, where you store it, how you access it, and how quickly you can find what you need. Data, in other words, is one of … [Read more...] about 5 questions public sector leaders should be asking about their data
A Stealthy Linux Malware Targeting Latin American Financial Sector
Cybersecurity researchers have taken the wraps off what they call a "nearly-impossible-to-detect" Linux malware that could be weaponized to backdoor infected systems. Dubbed Symbiote by threat intelligence firms BlackBerry and Intezer, the stealthy malware is so named for its ability to conceal itself within running processes and network traffic and drain a victim's resources … [Read more...] about A Stealthy Linux Malware Targeting Latin American Financial Sector
Lazarus Group Behind $540 Million Axie Infinity Crypto Hack and Attacks on Chemical Sector
The U.S. Treasury Department has implicated the North Korea-backed Lazarus Group (aka Hidden Cobra) in the theft of $540 million from video game Axie Infinity's Ronin Network last month. On Thursday, the Treasury tied the Ethereum wallet address that received the stolen funds to the threat actor and sanctioned the funds by adding the address to the Office of Foreign Assets … [Read more...] about Lazarus Group Behind $540 Million Axie Infinity Crypto Hack and Attacks on Chemical Sector
5 ways search can modernize digital experiences in public sector
Customer experience (CX) is a growing field in the public sector. Offices like Technology Transformation Services are charged with designing and delivering a digital government with and for the public. As such, customer experience strategists, user experience designers, technical innovation analysts, and others are integral to modernizing digital experiences and in many cases … [Read more...] about 5 ways search can modernize digital experiences in public sector
Tropic Trooper Cyber Espionage Hackers Targeting Transportation Sector
Transportation industry and government agencies related to the sector are the victims of an ongoing campaign since July 2020 by a sophisticated and well-equipped cyberespionage group in what appears to be yet another uptick in malicious activities that are "just the tip of the iceberg." "The group tried to access some internal documents (such as flight schedules and documents … [Read more...] about Tropic Trooper Cyber Espionage Hackers Targeting Transportation Sector
Cisco Talos Advisory on Adversaries Targeting the Healthcare and Public Health Sector
Background Cisco Talos has become aware that an adversary is leveraging Trickbot banking trojan and Ryuk ransomware to target U.S. hospitals and healthcare providers at an increasing rate. Security journalists reported on October 28, 2020 that the adversary was preparing to encrypt systems at “potentially hundreds” of medical centers and hospitals, based on a tip from a … [Read more...] about Cisco Talos Advisory on Adversaries Targeting the Healthcare and Public Health Sector
PoetRAT: Malware targeting public and private sector in Azerbaijan evolves
Cisco Blogs / Security / Threat Research / PoetRAT: Malware targeting public and private sector in Azerbaijan evolves Cisco Talos discovered PoetRAT earlier this year. We have continued to monitor this actor and their behavior over the preceding months. We have observed multiple new campaigns indicating a change in the actor’s capabilities and showing their … [Read more...] about PoetRAT: Malware targeting public and private sector in Azerbaijan evolves