According to security researchers at Cisco Talos, ransomware and business email compromise (BEC) attacks accounted for 60% of all incidents in the second quarter of 2024. Technology was the most targeted sector in this period, making up 24% of incidents, a 30% rise from the previous quarter. The researchers noted that adversaries may view technology firms as a gateway into other industries and organizations, given their role in servicing various industries, including critical infrastructure.
The Internet Systems Consortium (ISC) recently announced BIND security updates that contain patches for several remotely exploitable denial-of-service (DoS) vulnerabilities in the DNS software suite. The ISC said that the updates resolve a total of four high-severity bugs, tracked as CVE-2024-0760, CVE-2024-1737, CVE-2024-1975, and CVE-2024-4076, all of which have a CVSS score of 7.5. The first security defect would result in the server becoming unstable when receiving a flood of DNS messages over TCP.
"Join Us in Salt Lake City for the Futurecon Cybersecurity Event! Hear from our esteemed speakers while gaining up to 10 CPE credits. Immerse yourself in the latest cybersecurity developments to gain valuable insights in today’s dynamic threat landscape. Learn how to effectively manage risk, demo the newest technologies from an array of different sponsors, and network with your local community. Don’t miss our special ceremony recognizing our honorary attendees receiving an Award of Excellence!
"The inaugural Advancing Construction Cybersecurity Summit is uniting CISOs, CIOs, cybersecurity, information security, legal and GRC experts across the AEC community to tackle shared challenges surrounding the enterprise-wide protection and security of valuable personnel, project and financial data. Unearth lessons learned from ransomware attacks, discover how others are ensuring CMMC compliance, develop robust security protocols for you and your partners across all project sites and many more security strategies all available to you in just 3 days.
By grigby1
By krahal
By grigby1
The US Department of Homeland Security (DHS) has developed a four-legged robot called "NEO" to jam the wireless transmissions of smart home devices. NEO has an onboard computer and antenna array that enable law enforcement officers to launch a Denial-of-Service (DoS) attack, disabling potentially harmful Internet of Things (IoT) devices. Although NEO might not be able to impact hard-wired smart devices, it can still disable the radio frequencies most wireless IoT devices use to reduce risks for officers. This article continues to discuss the NEO robot that can create DoS events.
According to a recent memo from the Office of Science and Technology Policy (OSTP), certain covered institutions will be required to implement cybersecurity programs for Research and Development (R&D) security. These mandates will also apply to higher education institutions that support R&D. In addition to enhancing the overall security of the US, this action is a direct response to increasing threats presented by the People's Republic of China (PRC), according to Arati Prabhakar, Assistant to the President for Science and Technology and author of the memo.