Latest News Articles
--- TLP:WHITE ---
News
− Dutch Police: ‘State actor’ likely behind recent data breach
The national Dutch police (Politie) says that a state actor was likely behind the data breach it detected last week.
https://www.bleepingcomputer.com/news/security/dutch-police-state-actor-likely-behind-recent-data-breach/− Mind the (air) gap: GoldenJackal gooses government guardrails
ESET Research analyzed two separate toolsets for breaching air-gapped systems, used by a cyberespionage threat actor known as GoldenJackal
https://www.welivesecurity.com/en/eset-research/mind-air-gap-goldenjackal-gooses-government-guardrails/− New Gorilla Botnet Launches Over 300,000 DDoS Attacks Across 100 Countries
Cybersecurity researchers have discovered a new botnet malware family called Gorilla (aka GorillaBot) that draws its inspiration from the leaked Mirai botnet source code. Cybersecurity firm NSFOCUS, which identified the activity last month
https://nsfocusglobal.com/over-300000-gorillabot-the-new-king-of-ddos-attacks/− Cyberattack Group 'Awaken Likho' Targets Russian Government with Advanced Tools
Russian government agencies and industrial entities are the target of an ongoing activity cluster dubbed Awaken Likho. "The attackers now prefer using the agent for the legitimate MeshCentral platform instead of the UltraVNC module, which they had previously used to gain remote access to systems," Kaspersky said
https://securelist.com/awaken-likho-apt-new-implant-campaign/114101/Vulnerabilities
− 'Critical' CUPS vulnerability chain easy to use for massive DDoS attacks
The critical vulnerability in the Common Unix Printing System (CUPS) reported last week might have required some very particular circumstances to exploit, but Akamai researchers are warning the same vulnerabilities can easily be exploited for mass DDoS attacks.
https://www.akamai.com/blog/security-research/october-cups-ddos-threatCommunity News
− The 2024 ERA-ENISA Conference on Railway Cybersecurity seeks to strengthen sector preparedness and resilience against current threats
Amidst emerging technology advancements and evolving security challenges in the sector, the fourth edition of the conference aims to explore the railway cybersecurity threats landscape.
https://www.enisa.europa.eu/news/the-2024-era-enisa-conference-on-railway-cybersecurity-seeks-to-strengthen-sector-preparedness-and-resilience-against-current-threats− Local Hubs for Events: Diversity, Sustainability and Decentralisation
Local hubs are becoming an increasingly popular way to take part in events, from research conferences and hacker congresses to Internet governance and RIPE events. In this article, we explore the benefits of decentralising event organisation, how it helps foster community building through diversity and inclusion, and how it promotes environmental sustainability.
https://labs.ripe.net/author/becha/local-hubs-for-events-diversity-sustainability-and-decentralisation/--- TLP:WHITE ---