Despite this, infrastructure operators have been underinvesting in OT security. Based on Lee’s anecdotal experience, about 95% of cyber spend is focused on IT, and just 5% on OT. The latter also have distinct operational demands: Systems often must run… Read More "Warning to feds: US infrastructure is under silent attack"
The US government has warned businesses and critical infrastructure organizations to stay vigilant against wide-ranging attacks from the Interlock ransomware gang. The joint advisory from four government agencies including the FBI and the Department of Health and Human Services (HHS),… Read More "US Government Warns of Wide-Ranging Interlock Attacks"
Jul 23, 2025Ravie LakshmananVulnerability / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added two security flaws impacting SysAid IT support software to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerabilities in… Read More "SysAid Flaws Under Active Attack Enable Remote File Access and SSRF"
DAST- & SAST-Tools – was ist das? Es ist nicht überraschend, dass sowohl SAST- als auch DAST-Tools in Zusammenhang mit der Absicherung von Softwarelieferketten wieder an Bedeutung gewinnen. Schließlich geben sie den Entwicklern die Werkzeuge an die Hand, um sicheren… Read More "Die besten DAST- & SAST-Tools"
The State of New York has released a series of proposed cybersecurity regulations for water and wastewater systems across the state. Governor Kathy announced the proposals in a public release on July 22, which contain separate operational technology (OT) security… Read More "New York Proposes Cybersecurity Regulations for Water Systems"
Security experts have been talking about Kerberoasting for over a decade, yet this attack continues to evade typical defense methods. Why? It’s because existing detections rely on brittle heuristics and static rules, which don’t hold up for detecting potential attack… Read More "A New Approach to a Decade-Old Challenge"
They have also employed ClickFix, a social engineering method that tricks victims into running a malicious payload under the pretense of resolving a system issue. Once inside, the actors then deploy various methods for discovery, credential access, and lateral movement… Read More "Interlock ransomware threat expands across the US and Europe, hits healthcare and smart cities"
The French employment agency, France Travail, has suffered a data breach that could affect hundreds of thousands of jobseekers. The agency sent an email to its users on July 22, warning them of a data breach that was detected on… Read More "France: New Data Breach Could Affect 340,000 Jobseekers"
Jul 23, 2025Ravie LakshmananWindows Security / Cryptocurrency The Windows banking trojan known as Coyote has become the first known malware strain to exploit the Windows accessibility framework called UI Automation (UIA) to harvest sensitive information. “The new Coyote variant is… Read More "New Coyote Malware Variant Exploits Windows UI Automation to Steal Banking Credentials"
“The cyberattack forced Clorox to take systems offline, pause manufacturing, and rely on manual order processing for weeks,” it said. The cyberattack caused Clorox about $380 million in damages, including over $49 million in remedial costs, and “hundreds of millions… Read More "Clorox sues Cognizant for $380M over alleged helpdesk failures in cyberattack"
