CyberWire Daily Major crackdown on international cybersecurity.
10 snips
Nov 29, 2023 Law enforcement cracks down on a ransomware gang in an international sweep. Attacks on infrastructure operators and a ransomware campaign on Qlik Sense installations. Google Workspace vulnerability discovered. Hacktivist auxiliary compromises a Russian media site. Exclusive interview with Eric Goldstein about CISA's new Secure by Design Alerts program. Insights on legislation dealing with section 702 surveillance. Security teams don't need to worry about their job after a breach.
AI Snips
Chapters
Transcript
Episode notes
Global Ransomware Takedown
- International law enforcement took down a ransomware gang targeting 71 countries in a coordinated operation.
- This highlights increasing global cooperation to combat cybercrime with complex attacks using diverse infiltration methods.
Protect Water Utilities' PLCs
- Water utilities using Unitronics PLCs should secure them by changing defaults and implementing multi-factor authentication.
- Disconnect PLCs from the internet, use firewalls or VPNs, and regularly back up configurations to prevent attacks.
Focus on Business Systems Attacks
- Ransomware attacks target utility business systems more than control systems currently.
- Core public infrastructure remains operational, but business services and communications are vulnerable and impacted.