Iran Threatens Israel's Critical Infrastructure With 'Polonium' Proxy

Cyber mimics life, as Iran uses Lebanese hackers to attack its bête noire. [TechWeb]( Follow Dark Reading: [RSS]( December 08, 2023 LATEST SECURITY NEWS & COMMENTARY [Iran Threatens Israel's Critical Infrastructure With 'Polonium' Proxy]( Cyber mimics life, as Iran uses Lebanese hackers to attack its bête noire. [Russia's 'Star Blizzard' APT Upgrades its Stealth, Only to Be Unmasked Again]( A state-sponsored Scooby Doo villain has once again been thwarted by those meddling researchers. [Researchers Show How to Use One LLM to Jailbreak Another]( "Tree of Attacks With Pruning" is the latest in a growing string of methods for eliciting unintended behavior from a large language model. [Medical Imaging Patients Exposed in Cyber Incident]( Unauthorized actors accessed patient information, including exam and procedure details, scans, and Social Security numbers. [Proxy Trojan Targets macOS Users for Traffic Redirection]( Apple users who end up with the Trojan on their machines face a number of bad outcomes, including potential criminal liability. [Ransomware, Data Breaches Inundate OT & Industrial Sector]( Because of the criticality of remaining operational, industrial companies and utilities are far more likely to pay, attracting even more threat groups and a focus on OT systems. ['HeadCrab' Malware Variants Commandeer Thousands of Servers]( New techniques in a second variant of the malware improved functionality and communication commands. [Krasue RAT Uses Cross-Kernel Linux Rootkit to Attack Telecoms]( A stealthy malware is infecting the systems of telecoms and other verticals in Thailand, remaining under the radar for two years after its code first appeared on VirusTotal. [As SAT Goes Digital, Schools Must Prepare for Disruption]( Local school districts nationwide need to ensure the basic security and readiness of their network infrastructure before spring 2024. [4 Metrics That Help CISOs Become Strategic Partners With the Board]( To demonstrate the CISO role's value, frame your work using metrics that align with the most critical parts of every business: risk, growth, expenses, and people. [(Sponsored Article) Ragnar Locker Takedown Alone Won't Stop Ransomware Growth, but Here's What Will]( Companies must ask how at risk they are and how limited their operations would be after a cyberattack, then address gaps to make paying ransomware less necessary. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Critical Bluetooth Flaw Exposes Android, Apple & Linux Devices to Takeover]( Various devices remain vulnerable to the bug, which has existed without notice for years and allows an attacker to control devices as if from a Bluetooth keyboard. [Strategy, Harmony & Research: Triaging Priorities for OT Cybersecurity]( Despite a focus on the future, there's no indication of how well the cybersecurity basics needed to stay safe are being applied. [Patch Now: Critical Atlassian Bugs Endanger Enterprise Apps]( Four RCE vulnerabilities in Confluence, Jira, and other platforms, allow instance takeover and environment infestation. [MORE]( PRODUCTS & RELEASES [Cybersixgill Announces Identity Intelligence Module for Threat Analysis]( [CISOs See Software Supply Chain Security As Bigger Blind Spot Than GenAI: Cycode]( [ProvenRun Secures €15M Series A to Accelerate its Growth]( [Cloudbrink Presents Firewall-as-Service for the Hybrid Workplace]( [MORE PRODUCTS & RELEASES]( EDITORS' CHOICE [Microsoft Is Getting a New 'Outsider' CISO]( Igor Tsyganskiy inherits the high-profile CISO spot in Redmond, while his predecessor, Bret Arsenault, is named chief security adviser. LATEST FROM THE EDGE [Human-Centric Security Model Meets People Where They Are]( Instead of fighting workarounds that compromise security, a human-centered system fixes the process issues that prompt people to work dangerously. LATEST FROM DR TECHNOLOGY [Dragos Expands Defense Program for Small Utilities]( The Dragos Community Defense Program provides small water, gas, and electric utilities with access to the Dragos Platform, training resources, and threat intelligence. LATEST FROM DR GLOBAL [Hackers Claim to Breach Israeli Defense Force Medical Data]( The Malek Team, which previously hit a private college in Israel, claims responsibility for a hack of Israel's Ziv Medical Center. WEBINARS - [What's In Your Cloud?]( - [Everything You Need to Know About DNS Attacks]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [9 Traits You Need to Succeed as a Cybersecurity Leader]( - [The Ultimate Guide to the CISSP]( [View More White Papers >>]( FEATURED REPORTS - [Passwords Are Passe: Next Gen Authentication Addresses Today's Threats]( - [Everything You Need to Know About DNS Attacks]( - [Securing the Remote Worker: How to Mitigate Off-Site Cyberattacks]( The most profound change to enterprise security with the rise of remote work is the way endpoint security has moved from last line of defense to being on the frontline. The user's endpoint is the first device attackers encounter, making ... [View More Dark Reading Reports >>]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=119815&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_12.08.23&sp_cid=50902&utm_content=DR_NL_Dark%20Reading%20Daily_12.08.23&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#73 If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)