Holm Security

From 22 to 24 October, we’ll be at the it-sa Expo&Congress in Nuremberg with our partner Dagma. The it-sa Expo&Congress is Europe's leading trade fair for cyber security. See you in hall 9, stand 141!

?? MEDIA MONDAY ?? ??? Russian Cybercrime Group Member Charged for Hacking Computers Around Globe ??? Deniss Zolotarjovs, 33, from Moscow, Russia, was charged with federal crimes in the U.S. District Court in Cincinnati. A member of a notorious Russian #cybercrime group, Zolotarjovs, was indicted by a federal grand jury on charges of conspiring to commit money laundering, wire fraud, and Hobbs Act extortion. He has been in custody since his arrest in Georgia in December 2023. https://hubs.li/Q02N7BCY0 ?? New Password Hacking Warning For Gmail, Facebook And Amazon Users ?? New #threat analysis from researchers at Kaspersky has revealed a dramatic rise in the number of #password stealing #attacks targeting #Amazon, #Facebook and, most of all, #Google users. Such accounts can be used to complete the #cybercrime triumvirate of #datatheft, #malware distribution and credit card #fraud, respectively. https://hubs.li/Q02N7BVC0 ? Russian Hackers Exploit Safari and Chrome Flaws in High-Profile Cyberattack ? #Cybersecurity researchers have flagged multiple in-the-wild #exploit campaigns that leveraged now-patched #flaws in Apple #Safari and Google #Chrome browsers to infect mobile users with information-stealing #malware. The intrusion set has been attributed with moderate confidence to a Russian state-backed #threatactor codenamed #APT29 (aka #MidnightBlizzard), with parallels observed between the #exploits used in the campaigns and those previously linked to commercial surveillance vendors (CSVs) Intellexa and NSO Group, indicating exploit reuse. https://hubs.li/Q02N7B3l0 ?? YouTube Account Hacked? Google’s New AI Bot Will Help Get It Back ?? Google has confirmed that #YouTube users who find themselves locked out of their accounts after #hackers strike will soon have a brand new AI-powered assistant to help them get quickly regain #access. In fact, for some users, the all-new #accountrecovery tool is already here. https://hubs.li/Q02N7BB00 ?? Identity of Notorious Hacker USDoD Revealed ?? The notorious #hacker #USDoD, who is best known for high-profile #dataleaks, appears to be a man from Brazil, according to investigations conducted by #CrowdStrike and others. Over the past few years, USDoD, aka #EquationCorp, has #leaked vast amounts of information stolen from major organizations. His targets include the FBI’s InfraGard portal, Airbus, credit reporting firm TransUnion, background-checking service National Public Data (NPD), and many others. https://hubs.li/Q02N7BFN0 #cyber #security #cybercriminal #cybercriminals #vulnerabilitymanagement #nextgenvulnerabilitymanagement #risk #riskmitigation #riskassessment

?? THURSDAY THOUGHTS ?? Multiple products, multiple #asset silos, and multiple dashboards for reporting on various #risks across your business - sound familiar? As the number of #attackvectors grows, so too does the administration required by #IT teams. #Security departments know they need to #scan as broadly as possible for #vulnerabilities across all asset types but doing so can feel impossible to manage. The average organization just doesn't have the resources to make this easy. By consolidating all your #assets within a single platform, you can eliminate the headaches associated with fragmented security tools and disjointed workflows. The benefits of unifying your #vulnerabilitymanagement methods include: ?? Simplified prioritization ?? Enhanced collaboration ?? Streamlined reporting ?? Cost optimization Gone are the days of jumping back and forth between products and platforms, grappling with increased training requirements, and dealing with unnecessary complexity. Learn how to maximize your efforts while minimizing #businesscritical risks in the webinar below! #cybersecurity #cyber #nextgenvulnerabilitymanagement #risk #riskmanagement #riskmitigation #attackvector #securityposture #efficiency

?? MEDIA MONDAY ?? ?? Chinese Hacking Firm iSoon Targeted European Networks ?? A massive #leak of internal documents from Chinese #hacking contractor #iSoon revealed apparent hacking against #European institutions and states. Details of the inside workings of the previously obscure Chinese hacking-for-hire firm emerged after an unknown person posted on GitHub documents including spreadsheets and chat histories. https://hubs.li/Q02Mkw-P0 ?? 230 million distinct cloud environments are the target of a massive cyberattack on AWS ?? 230 million distinct #cloudenvironments are the target of a massive #cyberattack on #AWS. Unit 42 researchers uncovered a scheme to blackmail numerous firms using #cloudtechnologies. The #attackers devised a plan to take advantage of #cloud infrastructures’ accessible environment variable (.env) files. These .env files, which were frequently disregarded by #securitymeasures, held #privateinformation like access codes to various services and programs. https://hubs.li/Q02MkxbN0 ??? Cyber attacks on public sector websites in Latvia Tuesday ??? Due to intensive #cyberattacks, the websites of the unified state platform periodically experience malfunctions - slow operation or inaccessibility of the sites. Intensive and tailored #denialofservice or #DDoS #attacks were observed nationwide on the internet resources of the #publicsector and the #transportsector, as well as on some resources in the #privatesector. https://hubs.li/Q02Mkyzx0 ?? British Library issues ￡400,000 tender as rebuild continues after 2023 cyber attack ?? The British Library is still in the process of recovering from the #cyber attack it suffered towards the end of last year, and has announced a new ￡400,000 tender looking for #security contractors to help it rebuild its #infrastructure. In the latest tender for contractors, the library said it is seeking a partner to deliver the first phase of its Web Foundations project. https://hubs.li/Q02Mkw_C0 ?? Hackers target bank clients in Czechia, Hungary and Georgia in novel phishing campaign ?? #Hackers set up #malicious #banking applications that were nearly identical to legitimate European ones in an effort to #steal #userdata in an elaborate #phishing scheme, according to new research. These #maliciousapps were installed on #Android and #iOS devices from third-party websites, bypassing traditional #securitymeasures that warn users about the installation of unknown programs. https://hubs.li/Q02Mkx5c0 #cybersecurity #vulnerabilitymanagement #nextgenvulnerabilitymanagement #risk #cybercriminal #cybercriminals #securityposture

?? THURSDAY THOUGHTS ?? Is implementing #vulnerabilitymanagement required for #NIS2 #compliance? Yes! Article 21 of the #NIS2Directive clearly states the requirements for #riskmanagement and #riskassessments. #Risk management is a crucial component of #NIS and NIS2 compliance, providing a systematic and structured approach to identifying, analyzing, and managing risks associated with #IT infrastructure. In other words, a proactive approach to #cybersecurity that keeps you one step ahead of #cybercriminals instead of only patching holes after an #attack has occurred. Read more below about why risk assessments are crucial for #NIS2compliance and reach out to one of our experts to get started on compliance if you haven't already. #cyber #security #nextgenvulnerabilitymanagement #riskmitigation #eulaw #eu #europe #europeanunion #supplychain #ITinfrastructure #secureyourorganization

?? MEDIA MONDAY ?? ??? Swedish Data Protection Authority Faces Court Challenge Over Complaint Handling ??? The #Swedish Data Protection Authority (#IMY) is being taken to court by the privacy advocacy group noyb for its alleged failure to properly investigate and address complaints from #data subjects, in violation of #EU law. According to the complaint filed by noyb, the IMY allegedly routinely refuses to fully process complaints, instead simply forwarding them to the companies accused of illegally processing #personaldata and then immediately closing the cases without further investigation. https://hubs.li/Q02Lxkfx0 ?? Turkish intelligence dismantles global cyber espionage network ?? The Turkish National Intelligence Organization (MIT) has successfully dismantled a global #cyberespionage #network that had stolen personal data from thousands of individuals worldwide, including in Türkiye. MIT reported that the #cyber #espionage network, which had international connections, was found to be sharing #stolenpersonaldata with various entities, including terrorist organizations. https://hubs.li/Q02Lxktw0 ???♀? S. Korea Says North Stole Technical Data About K2 Tank, Spy Planes ???♀? South Korea’s ruling party has revealed that North Korean #cybercriminals managed to obtain #classified #technicaldata about two of its key military reconnaissance planes. The People Power Party said that sensitive information about the country’s Baekdu and Geumgang spy planes has been compromised following an alleged “DPRK #cyberattack.” https://hubs.li/Q02LxkdB0 ? RansomHub Group Deploys New EDR-Killing Tool in Latest Cyber Attacks ? A #cybercrime group with links to the #RansomHub #ransomware has been observed using a new tool designed to terminate #endpointdetection and response (#EDR) software on #compromised hosts, joining the likes of other similar programs like #AuKill (aka #AvNeutralizer) and #Terminator. https://hubs.li/Q02Lxk3x0 ?? White hat hacker shines spotlight on vulnerability of solar panels installed in Europe ?? An #ethicalhack of solar panels in the #Netherlands has revealed their #vulnerability to #cyberattacks, prompting industry calls for more rigorous safety assessments. While wind turbines, which are highly networked and equipped with hundreds of sensors, are traditionally considered more vulnerable to outside interference than solar panels, a Dutch citizen may have proved otherwise. https://hubs.li/Q02Lxk7-0 #cybersecurity #security #nextgenvulnerabilitymanagement #vulnerabilitymanagement #energy #risk #riskmitigation #GDPR #europe #dataprotection #cybersafety #cyberprotection

?? THURSDAY THOUGHTS ?? All the #data #breaches we see in the news nowadays beg the question: Do you know how to best prevent #dataleaks in your organization? Proactively identifying and mitigating #vulnerabilities within your environment is essential for strong protection against unauthorized data transfers and #leaks. Data leaks are commonly caused by: ?? Social Engineering?? #Cybercriminals often trick people into giving away private information through #socialengineering. This includes #phishing, where fake messages make users reveal #personaldata. ???♀? Theft of Physical Devices ???♀? When a device containing #confidentialinformation is stolen, it can result in a significant #databreach. For instance, a #maliciousindividual could acquire a #stolendevice and pretend to be the authorized owner, obtaining #unauthorizedaccess to the device and the corporate network, thereby putting a vast amount of data in danger. ?? Unintended Disclosure ?? Sometimes data leaks happen by accident when employees save important information in unsafe places or #IT staff mistakenly expose #secureservers. This can cause major data breaches even without a deliberate #attack. Learn how to #secure your organization against data leaks with #nextgenvulnerabilitymanagement. #cybersecurity #cyber #security #vulnerabilitymanagement #dataleak #riskmitigation #riskmanagement #risk #riskassessment #cybercriminal #PII #compliance #threatactor

?? MEDIA MONDAY ?? ? UK nuclear waste site failed to heed warnings over cyber risks ? Sellafield Ltd, which runs the Sellafield nuclear waste site in Cumbria, England, allowed “significant #vulnerabilities” to persist in its #IT systems, prosecutors said in London. Sellafield holds the world’s largest stockpile of plutonium, a byproduct of nuclear power production, and is described by the ONR as “one of the most complex and hazardous nuclear sites in the world." https://hubs.li/Q02KLq3N0 ??? French police probe ransomware attack targeting Olympics venue and museums ??? French #cybercrime police are investigating a #ransomware attack on the Grand Palais exhibition hall in Paris where #Olympic events are being held. Paris prosecutors said on Tuesday that #cybercriminals had targeted the institution’s central computer system, but the incident had not caused any disruption to Olympic events. https://hubs.li/Q02KLF590 ?? Authorities Should Be Able to Hack, Neutralize Cyberattack Sources to Provide Active Cyber Defense ?? An expert panel proposed on Tuesday that the government should be able to break into and neutralize the sources of #cyberattacks without a warrant. The panel proposed that the government analyze communications information in peacetime and take measures to #hack into an attacker’s server and neutralize it based on the Police Duties Execution Law. https://hubs.li/Q02KLBfz0 ?? Microsoft accuses Delta of impeding its ability to recover from the worldwide cyberattack ?? #Microsoft placed the blame for #Delta Air Lines’ protracted recovery from a worldwide #cyberincident that resulted in the cancellation of nearly 6,000 flights on the airline. According to Microsoft, based on its initial assessment, Delta appears to have not updated its #ITinfrastructure in contrast to its rivals. However, Delta claimed that, in addition to the billions it spends annually on IT operational costs, it has committed billions of dollars in IT capital expenditures since 2016. https://hubs.li/Q02KLq9c0 ?? Synnovis rebuilds IT systems following London cyberattack ?? More than 60 core #ITsystems used within laboratories are being rebuilt following the #cyber #attack on pathology system provider Synnovis, which disrupted #healthcare services in London. Thousands of operations and appointments have been postponed since the #ransomwareattack by Russian cyber #crime group Qilin, which took place on 3 June 2024. https://hubs.li/Q02KLqd30 #cybersecurity #security #cybercriminal #cyberattack #vulnerabilitymanagement #nextgenvulnerabilitymanagement #risk #riskassessment #riskmigiation #hacker #hacked

?? THURSDAY THOUGHTS ?? Do you know how to best secure your #businesscritical systems? Let's dive into 3 steps you can take today to achieve your #strategic goals and objectives by ensuring that your business functions smoothly and efficiently. ? Prioritize Your Business Critical Applications ? Your organization's #assets should be assessed and categorized by rank of importance: mission #critical, business critical, or low #priority. Specific #security, #incidentresponse, and backup plans should be created for each category to ensure continuity during disruptions. ?? Set Up Secure Access Rules ?? Limit and frequently change #admin #credentials to reduce #unauthorizedaccess #risks. Implement session isolation to protect against #credentialtheft and create a detailed log of privileged activities related to crucial applications. ?? Build Multiple Defense Layers Against Risks ?? To ensure that your organization is well-protected, it is crucial to build multiple layers of #defense against risks. One key aspect is to minimize the #risk of #unauthorizedindividuals gaining #access to your organization's #data. Educating employees to identify and stop #phishing attempts can also help prevent minor #threats from becoming significant #breaches. Reach out to us if you'd like to explore options for how to best secure your business. #cybersecurity #cyber #security #vulnerabilitymanagement #nextgenvulnerabilitymanagement #databreach #personaldata #highrisk #smoothsailing #cybercriminal #cybercriminals

?? MEDIA MONDAY ?? ?? Online security lapses led to data of 40m UK voters being hacked, says ICO ?? The UK’s election watchdog has been reprimanded over online #security lapses that allowed the #personalinformation of 40 million voters to be #hacked. The Information Commissioner’s Office said the Electoral Commission had not kept its #servers up to date with the latest #securityupdates before the #databreach, which occurred in August 2021. https://hubs.li/Q02JS3_b0 ? SideWinder Cyber Attacks Target Maritime Facilities in Multiple Countries ? The nation-state #threatactor known as #SideWinder has been attributed to a new #cyberespionage campaign targeting ports and maritime facilities in the Indian Ocean and Mediterranean Sea. "SideWinder makes use of #email #spearphishing, document #exploitation and #DLL #sideloading techniques in an attempt to avoid detection and deliver targeted implants," the Canadian #cybersecurity company said. https://hubs.li/Q02JS8Zj0 ?? Cyber attacks on UK utilities increase 586% in a year ?? #Databreaches in UK utility companies rose by 586% in 2023, affecting 140,000 individuals, according to a new report. Ben Marsh, Class Underwriter at Chaucer, said, “Utility companies hold a wide array of personal information from #bank details to home addresses. Once this information is obtained by #hackers, they can #exploit it themselves or sell it on to third parties on the #darkweb.” https://hubs.li/Q02JS9X_0 ?? DDoS Attack, Security to Blame for Latest Microsoft Outage ?? Various #Microsoft365 and #Azure services went down for about eight hours Tuesday. This time, a distributed #denialofservice #attack (#DDoS), and a mishap with the company’s #cyberdefenses, were behind the outage. Banks, courts and utility services reported effects, according to Infosecurity Magazine, and BBC noted that England and Wales’ HM Courts and Tribunals Service, the Dutch football team FC Twente and NatWest bank saw some of their online services disrupted. https://hubs.li/Q02JS40-0 ??? ECB cyber security test reveals 'room for improvement' ??? The European Central Bank says there is "room for improvement" after conducting its first thematic stress tests on #cyberresilience to determine how well individual banks would respond to and recover from a #cyberattack. The stress test scenario saw all #preventive measures fail and a cyberattack severely affect the databases of each bank’s core systems. This meant that the focus was on how banks would respond to and recover from a cyberattack, rather than on how they would #prevent it. https://hubs.li/Q02JS9BB0