October 2024 – SOMCERT

23 Oct 24

Cisco Confirms Security Incident After Hacker Offers to Sell Data

Cisco on Friday confirmed that some of its files have been stolen after a hacker offered to sell information allegedly belonging to the company. The hacker known as IntelBroker on October 14 announced a “Cisco breach” on a popular cybercrime forum. The threat actor claimed to have obtained GitHub and SonarQube projects, source code, hardcoded […]

October 19, 2024
somcert2022
No Comments

A North Korean threat actor has exploited a recent Internet Explorer zero-day vulnerability in a supply chain attack, threat intelligence firm AhnLab and South Korea’s National Cyber Security Center (NCSC) say. Tracked as CVE-2024-38178, the security defect is described as a scripting engine memory corruption issue that allows remote attackers to execute arbitrary code on […]

12 Oct 24

Microsoft’s Take on Kernel Access and Safe Deployment Following CrowdStrike Incident

As the dust settles following the massive Windows BSOD tech outages caused by CrowdStrike in July 2024, the question is now, how do we prevent this happening again? Microsoft convened a summit with members of its Microsoft Virus Initiative (MVI – of which CrowdStrike is one) to discuss a problem that has no simple solution. The CrowdStrike […]

06 Oct 24

Ransomware Hits Critical Infrastructure Hard, Costs Adding Up

The financial impact of a cyberattack targeting a cyber-physical system (CPS) can reach up to $1 million, as affected organizations struggle with revenue loss, recovery costs, and employee overtime. According to a new Claroty survey of 1,100 security professionals involved in OT, IoT, BMS, and IoMT (connected medical devices), about 45% of organizations suffered losses […]

October 2, 2024
somcert2022
No Comments

The Community Clinic of Maui in Hawaii, a nonprofit healthcare organization doing business as Malama I Ke Ola Health Center, informed authorities in the US last week that a cyberattack suffered earlier this year has resulted in a data breach impacting over 120,000 individuals. Local media reported in May that it took the Maui healthcare organization more than […]

Month: October 2024

Cisco Confirms Security Incident After Hacker Offers to Sell Data

North Korean APT Exploited IE Zero-Day in Supply Chain Attack

Microsoft’s Take on Kernel Access and Safe Deployment Following CrowdStrike Incident

Ransomware Hits Critical Infrastructure Hard, Costs Adding Up

Hawaii Health Center Discloses Data Breach After Ransomware Attack

Critical Vulnerability Found in Zabbix Network Monitoring Tool

Cyber Threats That Could Impact the Retail Industry This Holiday Season (and What to Do About It)

Microsoft Warns of Chinese Botnet Exploiting Router Flaws for Credential Theft

Month: October 2024

Subscribe to our newsletter