Latest News Articles
--- TLP:WHITE ---
News
− Belgian man charged with smuggling sanctioned military tech to Russia and China
A Belgian man has been arrested and charged for his role in a years-long smuggling scheme to export military-grade electronics from the US to Russia and China.
https://go.theregister.com/feed/www.theregister.com/2023/12/07/belgian_russia_china_hardware− Burn and Churn: CISOs and the Role of Cybersecurity Automation
Organizations need to listen to their CISOs and start turning to cybersecurity automation for the qualitative benefits of employee satisfaction and well-being.
https://www.securityweek.com/burn-and-churn-cisos-and-the-role-of-cybersecurity-automation/− UK and allies expose Russian FSB hacking group, sanction members
The UK National Cyber Security Centre (NCSC) and Microsoft warn that the Russian state-backed actor "Callisto Group" (aka "Seaborgium" or "Star Blizzard") is targeting organizations worldwide with spear-phishing campaigns used to steal account credentials and data
https://www.ncsc.gov.uk/news/star-blizzard-continues-spear-phishing-campaignsVulnerabilities
− Lazarus Group Using Log4j Exploits to Deploy Remote Access Trojans
The North Korea-linked threat actor known as the Lazarus Group has been attributed to a new global campaign that involves the opportunistic exploitation of security flaws in Log4j to deploy previously undocumented remote access trojans (RATs) on compromised hosts.
https://thehackernews.com/2023/12/lazarus-group-using-log4j-exploits-to.html− ICS Patch Tuesday: Electromagnetic Fault Injection, Critical Redis ICS Patch Tuesday: Siemens and Schneider Electric address dozens of vulnerabilities affecting their industrial products.
iemens and Schneider Electric have published their Patch Tuesday advisories for December 2023, addressing dozens of vulnerabilities affecting their products.
https://www.securityweek.com/ics-patch-tuesday-electromagnetic-fault-injection-critical-redis-vulnerability/− SnakeYAML Library RCE vulnerability impacts multiple Atlassian products - CVE-2022-1471
Multiple Atlassian Data Center and Server Products use the SnakeYAML library for Java, which is susceptible to a deserialization flaw that can lead to RCE (Remote Code Execution).
https://www.ncsc.gov.ie/pdfs/231207_SnakeYAML_Library_Vuln.pdfCommunity News
− CISA and ENISA enhance their Cooperation
The European Union Agency for Cybersecurity (ENISA) has signed a Working Arrangement with the US Cybersecurity and Infrastructure Security Agency, CISA in the areas of capacity-building, best practices exchange and boosting situational awareness.
https://www.enisa.europa.eu/news/cisa-and-enisa-enhance-their-cooperation--- TLP:WHITE ---