CyAN’s regular cybersecurity updates
Contents: News Analysis CyAN News Events News: Australia’s first Cyber Security Act becomes law https://ia.acs.org.au/article/2024/australia-s-first-cyber-security-act-becomes-law.html Australia’s inaugural Cyber Security Act has officially passed, mandating critical infrastructure providers to adopt stringent cybersecurity measures. The legislation focuses on protecting essential services like energy, health, and communications from …
Contents: News Analysis Events News: Ransomhub ransomware gang claims the hack of Mexican government legal Affairs Office https://securityaffairs.com/171257/data-breach/mexico-suffers-ransomware-attack.html The Ransomhub ransomware group has claimed responsibility for a cyberattack targeting Mexico’s Legal Affairs Office, alleging it has exfiltrated critical government documents. The group is threatening to …
Contents: News Analysis Events News: Black Friday turning into Black Fraud Day, says UK cybersecurity chief https://www.theguardian.com/business/2024/nov/18/black-friday-turning-into-black-day-says-uk-cybersecurity-chief The UK’s cybersecurity chief has sounded an alarm over the growing risks of Black Friday, warning that cybercriminals are exploiting the shopping frenzy to conduct widespread online fraud. …
Contents: News Analysis Events News: NSO – not government clients – operates its spyware, legal documents https://www.theguardian.com/technology/2024/nov/14/nso-pegasus-spyware-whatsapp New legal documents suggest that NSO Group, not its government clients, operates the Pegasus spyware used to hack into devices. This claim contradicts NSO’s public stance that only …
Contents: News Analysis Events News: Amazon confirms employee data breach after vendor hack https://www.bleepingcomputer.com/news/security/amazon-confirms-employee-data-breach-after-vendor-hack/ Amazon has confirmed that a data breach compromised employee information following a cyberattack on one of its third-party vendors. The breach exposed sensitive employee data, raising concerns about the security of …
Contents: News Trust in Focus [Monthly Supplement] Events News: 24% of CISOs Actively Looking to Leave Their Jobs https://www.csoonline.com/article/3595796/24-of-cisos-actively-looking-to-leave-their-jobs.html A recent survey reveals that 24% of Chief Information Security Officers (CISOs) are actively seeking new job opportunities, with many others contemplating leaving within three years …
Contents: News Analysis Events News: DocuSign’s Envelopes API abused to send realistic fake invoices https://www.bleepingcomputer.com/news/security/docusigns-envelopes-api-abused-to-send-realistic-fake-invoices/ Cybercriminals are exploiting DocuSign’s Envelopes API to deliver highly convincing fake invoices, tricking recipients into clicking on malicious links. By abusing this legitimate API, attackers are able to create phishing …
Contents: News Events News: LottieFiles hacked in supply chain attack to steal users’ crypto https://www.bleepingcomputer.com/news/security/lottiefiles-hacked-in-supply-chain-attack-to-steal-users-crypto/ LottieFiles, a platform for animated graphics, recently suffered a supply chain attack compromising its ‘lottie-player’ library versions 2.0.5 to 2.0.7. The attackers injected malicious code designed to steal cryptocurrency by …
Contents: News Analysis Events News: 1. Cybercriminals Pose a Greater Threat of Disruptive US Election Hacks Than Russia or China https://www.wired.com/story/cybercriminals-disruptive-hacking-us-elections-dhs-report As the 2024 U.S. election season unfolds, the Department of Homeland Security highlights that cybercriminals, motivated by financial or ideological aims, pose a more …
Welcome to our 100th edition of the Cybersecurity Advisors Network newsletter—newly renamed Cyber (In)Securities! What began as a simple way to keep you informed has grown into a dynamic and evolving resource, all thanks to your engagement and feedback. Over time, we’ve refined our format …