Defiant BlackCat Gang Stands Up New Site, Calls for Revenge Attacks

Ransomware group tries to claw back operations following FBI disruption, and lifts a previous ban on attacks against critical infrastructure in retaliation. [TechWeb]( Follow Dark Reading: [RSS]( December 21, 2023 LATEST SECURITY NEWS & COMMENTARY [Defiant BlackCat Gang Stands Up New Site, Calls for Revenge Attacks]( Ransomware group tries to claw back operations following FBI disruption, and lifts a previous ban on attacks against critical infrastructure in retaliation. [Physical Access Systems Open Cyber Door to IT Networks]( Besides unlocking supposedly secure doors, a man-in-the-middle cyberattack on physical access controllers can enable ransomware, data theft, and more. [Iranian 'Seedworm' Cyber Spies Target African Telcos & ISPs]( Seedworm, aka MuddyWater, drops PowerShell-based malware on victims using living-off-the-land techniques. [Attackers Exploit 6-Year-Old Microsoft Office Bug to Spread Spyware]( Malicious attachments that exploit an RCE flaw from 2017 are propagating Agent Tesla via socially engineered emails and an evasive infection method. [Targeted F5 Vulnerability 'Update' Delivers Wiper to Israeli Victims]( Files purporting to be an F5 vulnerability patch are deleting server contents. [3 Ways to Use Real-Time Intelligence to Defeat Bots]( Threat intelligence feedback loops are an increasingly vital tool in the escalating battle against bots. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Comcast Xfinity Breached via CitrixBleed; 35M Customers Affected]( A trove of personal data belonging to millions of Americans is just the latest bullet point in a bad year for Citrix customers. [Feds Snarl ALPHV/BlackCat Ransomware Operation]( Dark Web chatter indicates that Scattered Spider worked with the FBI to take down the BlackCat/ALPHV operation. [Why I Chose Google Bard to Help Write Security Policies]( Large language models (LLMs) like Bard and ChatGPT can help produce simpler, more readable security documentation in a fraction of the time it takes to do it manually. [Changing How We Think About Technology]( To make real change, organizations need to augment logical thinking with critical thinking. [MORE]( PRODUCTS & RELEASES [Console & Associates, P.C.: ESO Solutions Notifies 2.7M People of Data Breach That Leaked Their SSNs]( [Black Hat Europe 2023 Closes on Record-Breaking Event in London]( [SANS Institute Research Shows What Frameworks, Benchmarks, and Techniques Organizations Use on their Path to Security Maturity]( [MORE PRODUCTS & RELEASES]( EDITORS' CHOICE [Microsoft Outlook Zero-Click Security Flaws Triggered by Sound File]( Attackers can chain the vulnerabilities to gain full remote code execution. LATEST FROM THE EDGE [What's the Best Way to Communicate After a Data Breach?]( So you've had a data breach, and now you need to take the next step. Here's a guide for communicators dealing with security incidents from Ashley Sawatsky of Rootly. LATEST FROM DR TECHNOLOGY [ISAs and the Dawning Hardware Security Revolution]( Instruction set architecture extensions are moving the cybersecurity fight from the software to the hardware layer. LATEST FROM DR GLOBAL [Israel Blames Iran for Hospital Data Breach]( Israeli intelligence said a cyber unit of Hezbollah also was involved in the cyberattack. WEBINARS - [What's In Your Cloud?]( - [Everything You Need to Know About DNS Attacks]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [The OT Zero Trust Handbook: Implementing the 4 Cornerstones of OT Security]( - [Migrations Playbook for Saving Money with Snyk + AWS]( - [Buyer's Guide: Choosing a True DevSecOps Solution for Your Apps on AWS]( - [2023 Software Supply Chain Attack Report]( - [Understanding AI Models to Future-Proof Your AppSec Program]( - [The Need for a Software Bill of Materials]( - [The Developers Guide to API Security]( [View More White Papers >>]( FEATURED REPORTS - [Passwords Are Passe: Next Gen Authentication Addresses Today's Threats]( - [The State of Supply Chain Threats]( - [Concerns Mount Over Ransomware, Zero-Day Bugs, and AI-Enabled Malware]( [View More Dark Reading Reports >>]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=120050&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_12.21.23&sp_cid=51091&utm_content=DR_NL_Dark%20Reading%20Daily_12.21.23&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#9d If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)