Latest News Articles
--- TLP:WHITE ---
News
Cyber attacks on the SPD and on defense, IT and aviation companies are APT 28
The German government today strongly condemned cyber attacks by the APT 28 group, which is part of the Russian military intelligence service GRU. This campaign of cyber attacks was directed against the SPD party headquarters as well as against German companies in the fields of logistics, armaments, aerospace, IT services
https://www.bmi.bund.de/SharedDocs/pressemitteilungen/DE/2024/05/aktuelle-Cyberangriffe.html https://mzv.gov.cz/jnp/en/issues_and_press/press_releases/statement_of_the_mfa_on_the_cyberattacks.html− OpenAI’s flawed plan to flag deepfakes ahead of 2024 elections
OpenAI shared details today about a new AI image detection classifier that it claims can detect about 98 percent of AI outputs from its own sophisticated image generator, DALL-E 3. It also "currently flags approximately 5 to 10 percent of images generated by other AI models," OpenAI's blog said.
https://news.hitb.org/content/openais-flawed-plan-flag-deepfakes-ahead-2024-elections− Russian Hackers Target Industrial Systems in North America, Europe
Government agencies from the United States, Canada and the United Kingdom are providing recommendations to critical infrastructure organizations following a series of attacks launched by apparent pro-Russia hacktivists against industrial control systems (ICS) and other operational technology (OT) systems.
https://www.securityweek.com/russian-hackers-target-industrial-systems-in-north-america-europe/Vulnerabilities
− US Says North Korean Hackers Exploiting Weak DMARC Settings
The US government warns of a North Korean threat actor abusing weak email DMARC settings to hide spear-phishing attacks.
https://www.securityweek.com/us-says-north-korean-hackers-exploiting-weak-dmarc-settings/− Critical Vulnerability exists in CrushFTP (CVE-2024-4040)
A server side template injection vulnerability exists in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms which allows unauthenticated remote attackers to read files from the filesystem outside of the VFS Sandbox, bypass authentication to gain administrative access, and perform remote code execution on the server.
https://www.ncsc.gov.ie/pdfs/2404240189_CrushFTP_Vulnerability.pdf− Multiple Vulnerabilities in Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) (CVE-2024-2035, CVE-2024-20358, CVE-2024-20359)
Cisco has disclosed vulnerabilities impacting its ASA and FTD devices, with ongoing attacks reported by its Product Security Incident Response Team (PSIRT). These vulnerabilities enable malware implantation, command execution, and potential data exfiltration. Notably, CVE-2024-20353 and CVE-2024-20359 are being actively exploited.
https://www.ncsc.gov.ie/pdfs/2404260154_Multiple_Vulnerabilities_in_Cisco_ASA_and_FTD.pdf− Critical Vulnerability exists in NetBackup on Windows (CVE-2024-33672)
An issue was discovered in Veritas NetBackup before 10.4. The Multi-Threaded Agent used in NetBackup can be leveraged to perform arbitrary file deletion on protected files.
https://www.ncsc.gov.ie/pdfs/2405010173_Veritas_NetBackup.pdfCommunity News
− Ireland’s National Cyber Security Centre (NCSC) successfully takes part in Locked Shields 2024 exercise
Ireland is taking part in its first-ever 'Locked Shields' cyber defence exercise which allows experts here to enhance their skills in defending national IT systems and critical infrastructure.
https://www.gov.ie/en/press-release/f6e96-irelands-national-cyber-security-centre-ncsc-successfully-takes-part-in-locked-shields-2024-exercise/− Locked Shields 2024 demonstrated the real power of cooperative defence
Locked Shields 2024, the world’s most advanced live-fire cyber defence exercise, concluded with an unprecedented twist. Despite the exercise’s competitive nature, participating teams formed a grand coalition by sharing information. They demonstrated that the true power lies in fostering collaboration to enhance collective security rather than competing for the exercise’s victory.
https://ccdcoe.org/news/2024/locked-shields-2024-demonstrated-the-real-power-of-cooperative-defence/--- TLP:WHITE ---