'Cactus' Ransomware Strikes Schneider Electric | Feds Reportedly Try to Disrupt 'Volt Typhoon' Attack Infrastructure

Schneider's Sustainability division, which provides software and consulting services to enterprises, was felled by cybercriminals in mid-January. [TechWeb]( Follow Dark Reading: [RSS]( February 01, 2024 LATEST SECURITY NEWS & COMMENTARY ['Cactus' Ransomware Strikes Schneider Electric]( Schneider's Sustainability division, which provides software and consulting services to enterprises, was felled by cybercriminals in mid-January. [Feds Reportedly Try to Disrupt 'Volt Typhoon' Attack Infrastructure]( The China-linked threat actor's attacks on US critical infrastructure organizations have alarmed American intelligence officials, Reuters says. [More Ivanti VPN Zero-Days Fuel Attack Frenzy as Patches Finally Roll]( Both China-backed APTs and ordinary cyberattackers have seized on a pair of Ivanti VPN bugs for global exploitation. [The CISO Role Undergoes a Major Evolution]( Post-SolarWinds, it's no longer enough for chief information security officers to remain compliant and call it a day. [New Jersey School District Shut Down by Cyberattack]( Sunday night, Freehold Township district officials notified its staff and parents that school would not be in session Monday due to technical difficulties caused by a cyber incident. [Ivanti Zero-Day Patches Delayed as 'KrustyLoader' Attacks Mount]( The RCE/auth bypass bugs in Connect Secure VPNs have gone unpatched for 20 days as state-sponsored groups continue to backdoor Ivanti gear. [SolarWinds Files Motion to Dismiss SEC Lawsuit]( Responding to SEC charges, SolarWinds fired back with a detailed defense of how a Russian-backed cyber espionage attack on its system was handled. ['Midnight Blizzard' Breached HPE Email Months Before Microsoft Hack]( The Russian APT behind the SolarWinds attacks exfiltrated data from HPE email accounts last May. [Critical Cisco Unified Communications RCE Bug Allows Root Access]( The vulnerability, tracked as CVE-2024-20253, makes enterprise communications infrastructure and customer service call centers sitting ducks for unauthenticated cyberattackers. [CISO Corner: Deep Dive Into SecOps, Insurance, & CISOs' Evolving Role]( Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps. [Fulton County Suffers Power Outages as Cyberattack Continues]( County services have come to a halt and are not expected to resume until next week; no threat actor has yet been identified. [Top 3 Data Breaches of 2023, and What Lies Ahead in 2024]( Take a look at last year's most impactful data breaches and what companies can do to protect themselves going forward. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Recognizing Security as a Strategic Component of Business]( In today's environments, security can be a revenue enabler, not just a cost center. Organizations should take advantage of the opportunities. [Solving the Cybersecurity Skills Gap With Racial Inclusivity]( Addressing the growing demand for cybersecurity professionals is also an opportunity to create a more racially inclusive workforce. [Redefining Cybersecurity for a Comprehensive Security Posture]( The integration of different disciplines of cybersecurity and fraud management is a necessary evolution in the face of increasingly sophisticated digital threats. [Protecting Children's Data Needs to Be a Priority for All]( With rampant K-12 breaches fueling a fraud epidemic, cooperation and resolve are needed for progress. [MORE]( PRODUCTS & RELEASES [Incognia Secures $31M to Meet Demand for Proactive Approach to Fraud Prevention]( [Aim Security Raises $10M to Secure Generative AI Enterprise Adoption]( [Forcepoint Federal Rebrands As Everfox to Reflect New Era of Defense-Grade Cybersecurity]( [Cohesity Research Reveals Most Companies Pay Millions in Ransoms]( [Keenan & Associates Reports Data Breach Exposing Social Security Numbers of More Than 1.5M]( [Wyden Releases Documents Confirming the NSA Buys Americans' Internet Browsing Records]( [Bastille Raises $44M Series C Investment Led by Goldman Sachs Asset Management]( [MORE PRODUCTS & RELEASES]( EDITORS' CHOICE [Microsoft Shares New Guidance in Wake of 'Midnight Blizzard' Cyberattack]( Threat actors created and abused OAuth apps to access Microsoft's corporate email environment and remain there for weeks. LATEST FROM THE EDGE [Hook Younger Users With Cybersecurity Education Designed for Them]( Security should not be treated as one-size-fits all, and that is doubly true when it comes to security awareness education. Training should be customized by age, learning styles, and preferred media if it is to be effective. LATEST FROM DR TECHNOLOGY [Managing Identity Across Clouds Critical to Enterprise Security]( Privileged access management (PAM) is notoriously difficult to deploy and companies' increasing use of cloud has made it even more complex. LATEST FROM DR GLOBAL [Iran's 'Cyber Centers' Dodge Sanctions to Sell Cyber Operations]( Networks of Iranian officials and cyber-offensive specialists have created a variety of cybersecurity contractors in an attempt to dodge sanctions, according to leaked documents. WEBINARS - [Your Everywhere Security Guide: 4 Steps to Stop Cyberattacks]( - [Top Cloud Security Threats Targeting Enterprises]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [SANS ICS/OT Cybersecurity Survey: 2023's Challenges and Tomorrow's Defenses]( - [Pixelle's OT Security Triumph with Security Inspection]( - [The OT Zero Trust Handbook: Implementing the 4 Cornerstones of OT Security]( - [2023 Snyk AI-Generated Code Security Report]( - [Migrations Playbook for Saving Money with Snyk + AWS]( - [Buyer's Guide: Choosing a True DevSecOps Solution for Your Apps on AWS]( - [2023 Software Supply Chain Attack Report]( [View More White Papers >>]( FEATURED REPORTS - [Passwords Are Passe: Next Gen Authentication Addresses Today's Threats]( - [How to Deploy Zero Trust for Remote Workforce Security]( - [What Ransomware Groups Look for in Enterprise Victims]( Ransomware attackers cast a wide net -- they just care about causing damage, making money, and gaining new victims. That means no organization is automatically immune to attack just because of its size or industry. Organizations need to take steps ... [View More Dark Reading Reports >>]( Dark Reading Weekly -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Weekly Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=120951&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Weekly_02.01.24&sp_cid=51752&utm_content=DR_NL_Dark%20Reading%20Weekly_02.01.24&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#88 If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2024]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)