Cyber Bits · · 2 min read

Cyber Bits: March 4, 2024

Cyber Bits: March 4, 2024

Following last week's headlines this weeks Cyber Bits is a comparably less exciting, but it’s been far from a slow new week in Cybersecurity.

Ransomware group Lockbit are back at work

Link: Bleeping Computer

After last weeks successes by law enforcement it appears that ransomware group Lockbit are back up and running with new infrastructure. This demonstrates the difficult job that law enforcement has in shutting these organizations down.

CISA Warns of Windows Streaming Service Vulnerability Exploitation

Link: Security Week

This vulnerability, which was patched in June last year, is reported by CISA as being actively exploited. If you’ve ever wondered why it’s so important to keep your systems patched, he’s another example.

Agency warns of Ubiquiti edge routers being actively exploited

Links: The Hacker News Advisory

Default or weak credentials are never good, and here’s another example. APT28 are leveraging weak or default credentials on edge routers “to facilitate covert cyber operations and drop custom malware for follow-on exploitation”. If you’re using a Ubiquiti edge router you should consult the advisory, linked above.

UK Unveils Draft Cybersecurity Governance Code to Boost Business Resilience

Link: Infosecurity Magazine

From the article; “The UK Department for Science, Innovation and Technology (DSIT) has revealed what its future Cybersecurity Governance Code of Practice will look like and the five principals it will include.” From a Cayman perspective, this makes for interesting reading, and makes us wonder if something similar would make sense for the Cayman Islands for those organizations that don’t fall under the CIMA regulations.

Read next

Cyber Bits: July 8, 2024
Cyber Bits ·

Cyber Bits: July 8, 2024

In this week's Cyber Bits, we look into Cloudflare's BGP incident, a Go-based ransomware variant targeting VMs, Ticketmaster struggling with a ransomware incident, hackers leaking Twilio data, and Cobalt Strike servers being shutdown by the feds.

Cyber Bits: June 24, 2024
Cyber Bits ·

Cyber Bits: June 24, 2024

This week - VMware's urgent security patches, a UEFI vulnerability in Intel PCs, US sanctions on Kaspersky, ransomware attacks on old Android phones, and a breach of 1,590 crypto wallets by North Korean hackers. Stay updated with the latest cybersecurity news and tips.