Latest News Articles
--- TLP:WHITE ---
News
− Gamaredon's operations under the microscope
ESET research examines the group's malicious wares as used to spy on targets in Ukraine in the past two years
https://web-assets.esetstatic.com/wls/en/papers/white-papers/cyberespionage-gamaredon-way.pdf− Microsoft to start charging for Windows 10 updates next year. Here's how much
Businesses can expect to pay a high sum for a subscription to Windows 10 Extended Security Updates.
https://techcommunity.microsoft.com/t5/windows-it-pro-blog/when-to-use-windows-10-extended-security-updates/ba-p/4102628− Israeli Group Claims Lebanon Water Hack as CISA Reiterates Warning on Simple ICS Attacks
An Israeli group has claimed responsibility for an attack on Lebanese water infrastructure. The Israeli groups, Red Evil and We Red Evils, claimed responsibility for an attack on water infrastructure it claimed was used by Hezbollah. The groups claimed to have remotely changed the chlorine levels of the water
https://www.securityweek.com/israeli-group-claims-lebanon-water-hack-as-cisa-reiterates-warning-on-simple-ics-attacks/− Iranian Cyber Actors Targeting Personal Accounts to Support Operations
This IRGC cyber activity is targeted against individuals with a nexus to Iranian and Middle Eastern affairs; such as current or former senior government officials, senior think tank personnel, journalists, activists, and lobbyists. Additionally, FBI has observed these actors targeting persons associated with US political campaign activity, likely in support of information operations.
https://www.ic3.gov/Media/News/2024/240927.pdfVulnerabilities
− Critical Vulnerabilities in Red Hat Enterprise Linux OpenPrinting CUPS
Red Hat has disclosed details of a group of vulnerabilities (CVE-2024-47076, CVE-2024-47175, CVE-2024-47176 and CVE-2024-47177) within OpenPrinting CUPS,
https://www.ncsc.gov.ie/pdfs/2409260163_OpenPrinting_CUPS_vulns.pdfCommunity News
− European Cybersecurity Skills Conference: Intensifying our efforts to close the cybersecurity skills gap in the EU
The European Union Agency for Cybersecurity (ENISA) in collaboration with the Hungarian Presidency of the Council of the EU organised the 3rd edition of the European Cybersecurity Skills Conference.
https://www.enisa.europa.eu/news/european-cybersecurity-skills-conference-intensifying-our-efforts-to-close-the-cybersecurity-skills-gap-in-the-eu− Promoting security in the digital world during the European Cybersecurity Month
This year’s campaign theme is social engineering, a prevalent cybersecurity threat in the digital landscape.
https://www.enisa.europa.eu/news/promoting-security-in-the-digital-world-during-the-european-cybersecurity-month--- TLP:WHITE ---