SecurityWeek’s cybersecurity news roundup provides a concise compilation of noteworthy stories that might have slipped under the radar.
We provide a valuable summary of stories that may not warrant an entire article, but are nonetheless important for a comprehensive understanding of the cybersecurity landscape.
Each week, we curate and present a collection of noteworthy developments, ranging from the latest vulnerability discoveries and emerging attack techniques to significant policy changes and industry reports.
Here are this week’s stories:
China hacked Volkswagen
Threat actors associated with the Chinese government are believed to have hacked into Volkswagen systems in an effort to steal valuable data, according to an investigation by German news outlets. Hackers had access to the carmaker’s systems between 2011 and 2014 and stole thousands of documents, including ones related to engines and transmissions. Volkswagen confirmed the intrusion, but said it has since improved the security of its systems.
German police announce shutdown of DDoS attack service
German police have announced that the Stresser.tech DDoS attack service has been taken offline. The cybercrime website currently displays a notice informing visitors that the domain has been seized by the FBI as part of an international law enforcement action named Operation PowerOFF. The DDoS service was targeted after last year it was used to disrupt the website of the Saxon Police Force.
NSA releases updates to the Commercial National Security Algorithm Suite 2.0 (CNSA 2.0)
The NSA has announced updates to the Commercial National Security Algorithm Suite 2.0 (CNSA 2.0), urging organizations to ensure that their systems are quantum-resistant. CNSA 2.0 is the suite of quantum-resistant algorithms approved for eventual use by national security system (NSS) owners and operators. The recommendations are mainly for NSS and defense industrial base organizations, but they can be used by anyone.
Critical Start unveils MDR services for OT
Critical Start has announced the upcoming availability of managed detection and response (MDR) services for operational technology (OT). Critical Start MDR for OT combines OT-specific threat detection capabilities with the ability to leverage a customer’s existing infrastructure and tools. OT security tools from vendors such as Dragos, Claroty and Nozomi are supported, but are not a prerequisite for this service.
US announces visa restrictions over spyware development and sale
The US State Department announced visa restrictions for 13 individuals — as well as their immediate family members — believed to have been involved in the development and sale of commercial spyware. These individuals are accused of facilitating or deriving financial benefit from the use of spyware against journalists, dissidents, human rights defenders, academics, as well as US government personnel.
GAO report on cybersecurity executive order shows good progress
A GAO report shows that CISA, NIST and the OMB have fully completed 49 of the 55 requirements outlined in a 2021 cybersecurity executive order issued by President Biden. The report also reveals that CISA is aiming to provide a list of software products that are critical for the government’s cybersecurity posture by the end of September.
1,200 vulnerabilities found in Microsoft products last year
BeyondTrust’s 2024 Microsoft Vulnerabilities Report shows that more than 1,200 vulnerabilities were found in Microsoft products last year, 5% less than in the previous year. Elevation of privilege continues to be the most common type of vulnerability, accounting for 40% of the total. However, the number of critical flaws decreased to 84 in 2023.
Analysis of personas used in XZ Utils backdooring operation
Kaspersky has conducted an analysis of the personas and the techniques used in the operation whose goal was to plant a backdoor in the XZ Utils tool. Kaspersky says the perpetrators combined social manipulation and sophisticated technical exploitation to breach the project’s integrity.
Google delaying third-party cookie deprecation
Google is delaying third-party cookie deprecation in Chrome to give the UK’s Competition and Markets Authority (CMA) time to conduct a review, as well as due to challenges related to “reconciling divergent feedback from the industry, regulators and developers”.
Many cyberinsurance claims originating in the inbox
Coalition’s 2024 Cyber Claims Report shows that cyberinsurance claims have increased year-over-year, with more than half of claims related to email security incidents such as BEC or fund transfer fraud. Ransomware accounted for 19% of claims. Businesses with over $100 million in revenue saw a 14% increase in frequency, while businesses with less than $25 million in revenue experienced an 8% increase.
Mandiant report on cyber threats to global elections
State-sponsored threat actors, hacktivists, insiders, cybercriminals, and entities specializing in information operations could target global elections with the goal of causing disruption, breaching systems, and distributing and amplifying misinformation, according to a new report from Google Cloud’s Mandiant. The report summarizes the activities of several threat groups known to target elections.
Rubrik IPO
Rubrik started trading on the New York Stock Exchange (NYSE) on Thursday as RBRK. The company priced its IPO at $32, but shares increased nearly 16% on the first day of trading, settling at $37. Rubrik raised $752 million at a $5.6 billion valuation.
Ransomware attacks on industrial organizations
Dragos has released its Q1 2024 ransomware report, showing that ransomware remains a significant threat to industrial organizations worldwide. The research shows a decline in ransomware activities compared to Q4 2023 — of the 77 ransomware groups known for industrial attacks, 22 remained active — attributed to a coordinated shift in focus towards the healthcare sector.
Related: In Other News: OSS Backdooring Attempts, Botnet Operator Charged, Automotive Firm Attack
Related: In Other News: Moscow Sewage Hack, Women in Cybersecurity Report, Dam Security Concerns
