Through the Lens of ISMG: Cyberattacks, Hacks and Everything in the Middle | Edition 96
This month saw cyberattacks, data leaks worth millions and widespread evidence of inadequate cybersecurity measures across industries such as healthcare, finance and hardware. This alarming trend revealed a sobering reality: despite advanced security measures, organizations continue to fall victim to sophisticated cyberthreats. Why do major economies struggle to defend against smaller, resourceful hacker groups?
In this 96th edition of The Pulse of Cybersecurity newsletter, let’s explore the cyberattacks that took industries by storm this month.
T-Mobile disputed claims that Chinese state-sponsored hackers breached its systems and stole customer data, warning that some U.S. communications networks may still be compromised and detailing how its layered defenses and third-party cybersecurity partnerships thwarted the attack.
Two vulnerabilities in Mozilla products and Windows are being actively exploited by RomCom, a Kremlin-linked cybercriminal group known for targeting businesses and conducting espionage, warn security researchers from Eset. Exploiting the two flaws together enables attackers to execute arbitrary code.
Major grocery store chains, Starbucks and other large organizations are experiencing disruptions following a ransomware attack against supply chain management service provider Blue Yonder. The provider said it is continuing to probe the attack and has no timeline for service restoration.
A South Asian threat actor identified as Mysterious Elephant or APT-K-47 by Knownsec 404 researchers is using a Hajj-themed lure to trick victims into malicious payload disguised as a Windows file. The hacker is using upgraded Asyncshell malware disguised as a Microsoft Compiled HTML Help file.
A Russian cyberespionage group hacked a Washington, D.C.-based organization focused on Ukraine by deploying a new attack technique that exploits Wi-Fi connectivity, according to new research. The "nearest neighbor attack" methodology could lead to a significant broadening of targeting and attacks.
Follow us on Instagram for more updates!
Upcoming #ISMGEvents This Year
Virtual IoT and OT Security Summit
The IoT and OT Security Summit will explore strategies for securing IoT and OT environments. The event features expert sessions, case studies and roundtable discussions focusing on cyber risk management, zero trust networks and critical infrastructure protection.
Recently Concluded #ISMGSummits
Cybersecurity Summit NY: Financial Services
Here's a look back at our recently concluded Cybersecurity Summit New York: Financial Services. We discussed shifting responsibilities of #InfoSec leaders across Financial services, advanced threat intelligence, payment fraud prevention, the transformative impact of AI and other #cybersecurity challenges and opportunities facing the financial sector.
Cybersecurity Summit: Mumbai
After concluding high-energy, insightful, and interactive summits around the world - from New York, Washington, Chicago, London, Canada, Paris, Amsterdam, Delhi and more - our 2024 Mumbai edition concludes on an incredible note!From the transformative role of #AI in cybersecurity to regional government policies, enterprise security leadership, operationalizing threat intelligence in OT environments, and CISOs' Vision for 2025, the insights were unmatched. 🔐✨
That's all for today. We will be back next week.
Until then, stay current with the latest happenings in cybersecurity by subscribing to our newsletter and follow us on @ismg_global on Instagram.
Have a nice day ahead.
- ISMG Social Media Desk