Latest News Articles

--- TLP:WHITE ---

News

− IBM X-Force: Ransomware Was the Preferred Attack Method in 2020

In 2020, ransomware was the most widely-used method of delivering cyber attacks, accounting for 23% of security events handled by the IBM Security X-Force. One attack alone scored profits of more than $123 million for the perpetrators, according to an IBM report. A distant second to ransomware, the report says, was data theft (13%), followed by server access (10%). All three types of attack increased in comparison to 2019 numbers: +3% for ransomware, +8% for data theft, and +7% for server

https://blog.isc2.org/isc2_blog/2021/04/ransomware-preferred-attack-method-2020.html

− China Poses Biggest Threat to U.S., Intelligence Report Says

A new report predicts that China’s growing influence on a global scale represents one of the largest threats to the United States over the next several years.

https://www.dni.gov/files/ODNI/documents/assessments/ATA-2021-Unclassified-Report.pdf

− Nation-state cyber attacks targeting businesses are on the rise

Analysis of attacks over the last few years shows that the enterprise is increasingly becoming a target for significant hacking campaigns by government-backed operations. But it's possible to try to protect your network against attacks.

https://threatresearch.ext.hp.com/web-of-profit-nation-state-report/

Vulnerabilities

− Small Kansas Water Utility System Hacking Highlights Risks

A former Kansas utility worker has been charged with remotely tampering with a public water system’s cleaning procedures, highlighting the difficulty smaller utilities face in protecting against hackers.

https://www.securityweek.com/small-kansas-water-utility-system-hacking-highlights-risks

− Microsoft Exchange Server Vulnerabilities - April 2021 (CVE-2021-28480, CVE-2021-28481, CVE-2021-28482, CVE-2021-28483)

As part of its Patch Tuesday program, Microsoft has released information on new vulnerabilities in Exchange Server (2013, 2016, 2019).

https://www.ncsc.gov.ie/pdfs/Exchange_140421.pdf

− April 2021 Exchange Server Security Updates

Vulnerabilities addressed in the April 2021 security updates were responsibly reported to Microsoft by a security partner. Although we are not aware of any active exploits in the wild, our recommendation is to install these updates immediately to protect your environment.

https://techcommunity.microsoft.com/t5/exchange-team-blog/released-april-2021-exchange-server-security-updates/ba-p/2254617

Community News

− Dutch supermarkets run out of cheese after ransomware attack

A ransomware attack against conditioned warehousing and transportation provider Bakker Logistiek has caused a cheese shortage in Dutch supermarkets.

https://www.bleepingcomputer.com/news/security/dutch-supermarkets-run-out-of-cheese-after-ransomware-attack/

− Cyber Ireland: Threat Intelligence Series. 6th Session: How to build a threat intel program

"How to build a threat intel program". An insight in what address when building a threat intelligence program. Delivered by experienced threat intelligence specialist.

https://us02web.zoom.us/webinar/register/5416172917647/WN_rlVf5V0FTViMDKBQy-jJjw

--- TLP:WHITE ---