Cl0p's MOVEit Campaign Represents a New Era in Cyberattacks

The ransomware group shows an evolution of its tactics with MOVEit zero day — potentially ushering in a new normal when it comes to extortion supply chain cyberattacks, experts say. [TechWeb]( Follow Dark Reading: [RSS]( July 06, 2023 LATEST SECURITY NEWS & COMMENTARY [Cl0p's MOVEit Campaign Represents a New Era in Cyberattacks]( The ransomware group shows an evolution of its tactics with MOVEit zero-day — potentially ushering in a new normal when it comes to extortion supply chain cyberattacks, experts say. [Microsoft Teams Exploit Tool Auto-Delivers Malware]( The "TeamsPhisher" cyberattack tool gives pen testers — and adversaries — a way to deliver malicious files directly to a Teams user from an external account, or tenant. [China's Mustang Panda Linked to SmugX Attacks on European Governments]( Attackers use HTML smuggling to spread the PlugX RAT in the campaign, which has been ongoing since at least December. [3 Critical RCE Bugs Threaten Industrial Solar Panels, Endangering Grid Systems]( Exposed and unpatched solar power monitoring systems have been exploited by both amateurs and professionals, including Mirai botnet hackers. [Microsoft Can Fix Ransomware Tomorrow]( You can't encrypt a file you can't open — Microsoft could dramatically impact ransomware by slowing it down. [A Golden Age of AI … or Security Threats?]( Now is the time to build safeguards into nascent AI technology. [Ransomware Halts Operations at Japan's Port of Nagoya]( LockBit 3.0 claims responsibility for the cyberattack that shuttered the largest port in Japan, according to authorities. [(Sponsored Article) Why Your SEG Could Be Your Email Security Achilles' Heel]( As business email compromise attacks continue to grow and become increasingly sophisticated, is your secure email gateway providing sufficient protection? [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Researchers Develop Exploit Code for Critical Fortinet VPN Bug]( Some 340,000 FortiGate SSL VPN appliances remain exposed to the threat more than three weeks after Fortinet released firmware updates to address the issue. [A CISO's Guide to Paying Down Software Supply Chain Security Debt]( When you just keep filing it away to handle "someday," security debt typically rears its head when you are most vulnerable and can least afford to pay it. [Chip Giant TSMC Blames $70M LockBit Breach on IT Hardware Supplier]( The group has given one of Apple's biggest semiconductor suppliers until Aug. 6 to pay $70 million or risk having its data and "points of entry" to its network publicly leaked. [MORE]( EDITORS' CHOICE [SSH Servers Hit in 'Proxyjacking' Cyberattacks]( Cybercriminals employ obfuscated script to stealthily hijack victim server bandwidth for use in legitimate proxy networks. LATEST FROM DR TECHNOLOGY [Startup Spotlight: Gomboc.ai Balances Cloud Infrastructure Security]( The startup, one of four finalists in Black Hat USA's 2023 startup competition, uses deterministic AI to optimize cloud security. LATEST FROM THE EDGE [Mitigating Risk With Threat Intelligence]( Dark Reading's latest publication looks at a missing, but necessary, ingredient to effective third-party risk management. LATEST FROM DR GLOBAL [OPERA1ER Cybercrime Group's Leader Arrested by Interpol]( The group's mastermind was nabbed in Côte d'Ivoire for stealing up to $30 million using malware, phishing campaigns, and BEC scams, as part of international law enforcement's Operation Nervone. WEBINARS - [Finding a Backup Strategy That Works For You]( You've been hit with a ransomware, DDoS, natural disaster, or destructive cyberattack. One of the first questions: can we get our data back? Good back-ups are key to business continuity and disaster recovery, but backing up your data in preparation ... - [Making Sense of Security Operations Data]( Most security operations centers aren't suffering from not having enough data- they have too much. In this webinar, experts recommend tools and best practices for correlating information from multiple security systems so that your SOC team is focusing on the ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [9 Traits You Need to Succeed as a Cybersecurity Leader]( - [The Ultimate Guide to the CISSP]( - [The Cloud Security Workflow Handbook]( - [Rediscovering Your Identity]( - [2023 Global Future of Cyber Report]( - [Cybersecurity in 2023 and beyond: 12 leaders share their forecasts]( - [Know your customer: Enable a 360-degree view with customer identity & access management]( [View More White Papers >>]( FEATURED REPORTS - [Securing the Remote Worker: How to Mitigate Off-Site Cyberattacks]( The most profound change to enterprise security with the rise of remote work is the way endpoint security has moved from last line of defense to being on the frontline. The user's endpoint is the first device attackers encounter, making ... - [How Enterprises Are Managing Application Security Risks in a Heightened Threat Environment]( Concerns over API security and low-code/no-code use added to an already-full plate of application security challenges for many organizations over the last year. IT and security decision-makers are deeply concerned about compromises resulting from vulnerabilities in the software supply ... - [Shoring Up the Software Supply Chain Across Enterprise Applications]( Supply chain security attacks are growing at an alarming pace, and things are going to keep getting worse until DevSecOps teams get on the same page. A little help from the feds could also be welcome Modern-day software development depends ... [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [83% of Brits Demand Messaging Apps Remain Private, Ahead of Threat From Online Safety Bill]( [Perception Point Unveils AI Model to Thwart Generative AI-Based BEC Attacks]( [IP Fabric Announces $25M Series B Funding to Accelerate Adoption of Network Assurance]( [Nokod Raises $8M Seed Round From Seasoned Cybersecurity Investors to Enhance Low-Code/No-Code App Security]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [How to Use Threat Intelligence to Mitigate Third-Party Risk]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)