CISA Issues Emergency Directive for Midnight Blizzard | Cisco Duo's Multifactor Authentication Service Breached

Though Federal Civilian Executive Branch (FCEB) agencies are the primary targets, CISA encourages all organizations to up their security, given the high risk. [TechWeb]( Follow Dark Reading: [RSS]( April 18, 2024 LATEST SECURITY NEWS & COMMENTARY [CISA Issues Emergency Directive After Midnight Blizzard Microsoft Hits]( Though Federal Civilian Executive Branch (FCEB) agencies are the primary targets, CISA encourages all organizations to up their security, given the high risk. [Cisco Duo's Multifactor Authentication Service Breached]( A third-party telephony service provider for Cisco Duo falls prey to social engineering, and the company advises customer vigilance against subsequent phishing attacks. ['Sandworm' Group Is Russia's Primary Cyberattack Unit in Ukraine]( But even with that focus, the sophisticated threat group has continued operations against targets globally, including the US, says Google's Mandiant. [Palo Alto Network Issues Hotfixes for Zero-Day Bug in Its Firewall OS]( A sophisticated threat actor is leveraging the bug to deploy a Python backdoor for stealing data and executing other malicious actions. [CISO Corner: Securing the AI Supply Chain; AI-Powered Security Platforms; Fighting for Cyber Awareness]( Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps. Also included: facing hard truths in software security, and the latest guidance from the NSA. [DPRK Exploits 2 MITRE Sub-Techniques: Phantom DLL Hijacking, TCC Abuse]( North Korean hackers break ground with new exploitation techniques for Windows and macOS. [CISA's Malware Analysis Platform Could Foster Better Threat Intel]( But just how the government differentiates its platform from similar private-sector options remains to be seen. [Zambia Busts 77 People in China-Backed Cybercrime Operation]( Phony call center company conducted online fraud and other Internet scams. [Nigeria & Romania Ranked Among Top Cybercrime Havens]( A survey of cybercrime experts assessing the top cybercrime-producing nations results in some expected leaders — Russia, Ukraine, and China — but also some surprises. [Name That Toon: Last Line of Defense]( Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. [Microsoft Wants You to Watch What It Says, Not What It Does]( The responsibility to hold Microsoft accountable for abiding by its self-proclaimed principles shouldn't fall to customers and competition authorities. [3 Steps Executives and Boards Should Take to Ensure Cyber Readiness]( Many teams think they're ready for a cyberattack, but events have shown that many don't have an adequate incident response plan. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Critical Infrastructure Security: Observations From the Front Lines]( Attacks on critical infrastructure are ramping up — but organizations now have the knowledge and tools needed to defend against them. [Preparing for Cyber Warfare: 6 Key Lessons From Ukraine]( Having a solid disaster recovery plan is the glue that keeps your essential functions together when all hell breaks loose. [Why MLBOMs Are Useful for Securing the AI/ML Supply Chain]( A machine learning bill of materials (MLBOM) framework can bring transparency, auditability, control, and forensic insight into AI and ML supply chains. [MORE]( PRODUCTS & RELEASES [Redgate Launches Enterprise Edition of Redgate Monitor]( [Kaspersky Unveils New Flagship Product Line for Business, Kaspersky Next]( [BeyondTrust Acquires Entitle, Strengthening Privileged Identity Security Platform]( [Kim Larsen New Chief Information Security Officer at SaaS Data Protection Vendor Keepit]( [Defense Award Launches Purdue Project to Strengthen Cyber-Physical Systems]( [MORE PRODUCTS & RELEASES]( EDITORS' CHOICE [Dangerous ICS Malware Targets Orgs in Russia and Ukraine]( "Kapeka" and "Fuxnext" are the latest examples of malware to emerge from the long-standing conflict between the two countries. LATEST FROM THE EDGE [Countering Voice Fraud in the Age of AI]( Caller ID spoofing and AI voice deepfakes are supercharging phone scams. Fortunately, we have tools that help organizations and people protect themselves against the devious combination. LATEST FROM DR TECHNOLOGY [For Service Accounts, Accountability Is Key to Security]( Modern networks teem with machine accounts tasked with simple automated tasks yet given too many privileges and left unmonitored. Resolve that situation and you close an attack vector. LATEST FROM DR GLOBAL [Cyber Operations Intensify in Middle East, With Israel the Main Target]( Cyberattacks tripled over the past year in Israel, making it the most targeted nation in 2023, as cyber operations become a standard part of military conflicts and global protests. WEBINARS - [Where and Why Threat Intelligence Makes Sense for Your Enterprise Security Strategy]( - [Securing Code in the Age of AI]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [How Enterprises Secure Their Applications]( - [Making Sense of Your Security Data: The 6 Hardest Problems]( - [The State of Incident Response]( - [Understanding Today's Threat Actors]( - [A Solution Guide to Operational Technology Cybersecurity]( - [Demystifying Zero Trust in OT]( - [Secure Access for Operational Technology at Scale]( [View More White Papers >>]( FEATURED REPORTS - [Industrial Networks in the Age of Digitalization]( - [Zero-Trust Adoption Driven by Data Protection]( - [How Enterprises Assess Their Cyber-Risk]( [View More Dark Reading Reports >>]( Dark Reading Weekly -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Weekly Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=122927&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Weekly_04.18.24&sp_cid=53082&utm_content=DR_NL_Dark%20Reading%20Weekly_04.18.24&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#46 If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2024]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)