In the 2021 supply-chain attack propagated by SolarWinds, a major US-based IT management software company, hackers reportedly linked to the Russian state injected malicious code into software updates for SolarWinds’ Orion platform. This backdoor enabled an attack known as SUNBURST to bypass the traditional cloud-based defenses – in some cases even disabling them. The compromised…
The new generation of cybersecurity defenses must protect against never-seen-before attacks even before they are devised by the attackers. In early December 2023, a security researcher at SafeBreach presented a paper (Alon Leviev Security Researcher, SafeBreach – December 6, 2023 Blackhat UK) at BlackHat Europe describing new process injection techniques utilizing Windows thread pools to attack a system. The researcher wanted to see if: A legitimate…
The risk of a major cyberattack disrupting operations and wiping out shareholder value should already be front-of-mind for C-level executives and boards of directors. If not, they’re in for a shock due to regulations coming into force next week demanding public companies fully disclose “material” cybersecurity incidents to investors. New rules mean senior executives take…
CrowdStrike CEO George Kurtz was recently interviewed on CNBC. He declared that instances of cybercrime instigated by organized criminal gangs have been “rampant” this year, a result of hostile nation states launching an increasing number of attacks and the rise of “dark AI” being used to exploit new vulnerabilities at great speed. We agree that use…
Cyberattacks on critical production processes and applications are on the rise. Clorox recently filed an 8K that the ongoing attack on their production system’s critical applications has hindered production output significantly into the current quarter.Clorox warned that sales would be down as much as 28% for the quarter ending Sept. 30. Clorox also estimates its…
Last week, cybersecurity firm Mandiant published the details of a disruptive cyberattack in which the Russia-sponsored hacker group, Sandworm, targeted the critical infrastructure of a Ukrainian utilities organization. This incident was a multi-event cyberattack that leveraged a novel technique for taking down industrial control systems (ICS) and operational technology (OT) applications. The attack caused a major power outage….