Cyware Weekly Threat Intelligence - August 21–25
Weekly Threat Briefing • Aug 25, 2023
We use cookies to improve your experience. Do you accept?
Weekly Threat Briefing • Aug 25, 2023
Securing the confidentiality, integrity, and authenticity of sensitive information in quantum computers has been a major point of discussion of late. In that respect, NIST has released its first draft of post-quantum cyber readiness standards. The agency has urged organizations to create plans to upgrade their networks and systems to quantum cryptography-resilient schemes, which will come into force in 2024. In another significant development, all federal contractors are now required to establish vulnerability disclosure programs and policies as per the new Vulnerability Reduction Act passed this week.
The NIST, along with the CISA, and the NSA, released the first standardization draft for post-quantum cyber readiness to help critical infrastructure organizations proactively protect the confidentiality, integrity, and authenticity of sensitive information. The report contains recommendations for organizations to develop a quantum-readiness roadmap and prepare for future implementation of the post-quantum cryptographic (PQC) standards, which NIST is likely to release in 2024.
U.S. lawmakers introduced a new bill that mandates all federal contractors to establish vulnerability disclosure programs and policies. Named the Federal Cybersecurity Vulnerability Reduction Act, the bill aims to make U.S. government agencies resilient to supply chain attacks.
The Healthcare and Public Health Sector Coordinating Council (HSCC) Cybersecurity Working Group (CWG) released an updated version of its Health Industry Cybersecurity Information Sharing Best Practices guide. It provides best security practices to help healthcare organizations establish and manage threat information-sharing programs.
A major update on Cl0p’s MOVEit hack campaign arrived. The number of organizations impacted by the hack has reached almost 1,000, with a French national employment agency confirming to be the latest victim of the incident. Meanwhile, cryptocurrency firms remain lucrative targets for attackers seeking to make quick money. This week, threat actors amassed millions of dollars by targeting two different cryptocurrency platforms. Adding to the woes, the FBI cautioned crypto firms against targeted attacks by the Lazarus group as it flagged six wallets containing roughly 1,580 bitcoins stolen from previous cryptocurrency heists.
Moving on. An infamous North Korean state-sponsored group was observed launching attacks on healthcare entities in Europe and the U.S. As per a Cisco Talos report, the attackers exploited a ManageEngine ServiceDesk vulnerability to deploy a new malware called QuiteRAT. A new attack involving the misuse of LLMs to grab Facebook credentials also made the headlines this week, thus, raising security concerns. What else? A previously undetected APT hacking group called Carderbee was found engaging in supply chain attacks that deployed PlugX RAT on victims’ systems.