Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Government

In Other News: CISA Hacked, Chinese Lock Backdoors, Exposed Secrets

Noteworthy stories that might have slipped under the radar: CISA hacked via Ivanti vulnerabilities, Chinese electronic lock backdoors, secrets exposed on GitHub.

Cybersecurity News tidbits

SecurityWeek’s cybersecurity news roundup provides a concise compilation of noteworthy stories that might have slipped under the radar.

We provide a valuable summary of stories that may not warrant an entire article, but are nonetheless important for a comprehensive understanding of the cybersecurity landscape.

Each week, we curate and present a collection of noteworthy developments, ranging from the latest vulnerability discoveries and emerging attack techniques to significant policy changes and industry reports. 

Here are this week’s stories:   

CISA hacked via Ivanti vulnerabilities

The US cybersecurity agency CISA took two of its systems offline last month after discovering that they had been compromised through the exploitation of vulnerabilities in Ivanti products, The Record reported. The impacted devices were reportedly associated with systems that house critical chemical sector information. It’s unclear if the attackers targeted CISA’s Ivanti devices as part of a targeted attack, and whether any information was compromised. 

Microsoft Configuration Manager attack techniques disclosed 

Researchers at SpecterOps have identified 22 new techniques for attacking Microsoft Configuration Manager, formerly System Center Configuration Manager, or using it post-exploitation. They found that the Configuration Manager is an easy target that offers many ways for an attacker to move laterally or escalate privileges, enabling them to deploy malware or steal sensitive information.

Advertisement. Scroll to continue reading.

Tuta emails protected with quantum-safe encryption 

Privacy-focused email service Tuta announced TutaCrypt, a post-quantum encryption protocol. This hybrid protocol combines quantum-safe algorithms with traditional algorithms. The move allegedly makes Tuta the first provider that can protect emails from quantum computer attacks. 

Russian independent news site Meduza hit by intense cyberattacks

Meduza, the independent news website focusing on Russia, has been hit by what it described as “the most intense cyberattack campaign in its history”. The site is regularly targeted in cyberattacks, but the attacks intensified around the time of Alexey Navalny’s death. The organization has been targeted with DDoS attacks and the Russian government has been getting better at identifying and shutting down mirror servers. 

Zoom, Palo Alto Networks and Mitel patches

Zoom released two new advisories this week, including one describing a high-severity improper access control flaw that can be used for DoS attacks.

Palo Alto Networks released three new advisories, describing medium-severity issues that can be exploited to cause disruption, escalate privileges, or disable protection. 

Mitel has patched a critical vulnerability in InAttend and CMG that could allow an attacker to access sensitive information, modify the system configuration, or execute arbitrary commands. 

US lawmaker concerned about Chinese electronic lock backdoors

US Senator Ron Wyden has raised concerns over the potential risks associated with electronic locks made by Chinese companies. Specifically, the lawmaker pointed out that electronic locks such as the ones used for safes can be unlocked using special ‘manufacturer’ or ‘management’ reset codes. These backdoor codes are mainly present in consumer products that are not approved for use by the government, but Wyden is concerned that the codes are a “juicy target for hacking or espionage” and they could allow foreign adversaries to steal sensitive information stored by US businesses in safes, including intellectual property and trade secrets.   

12 million secrets detected on GitHub in 2023

GitGuardian detected more than 12 million new secrets in public GitHub commits in 2023 — the number has increased four times over the past four years. Secrets such as credentials, tokens, and keys were found in 8 million commits. The company reported finding over one million occurrences of Google API secrets, 250,000 Google Cloud secrets, and 140,000 AWS secrets.

BlackBerry sees one million attacks on global financial sector in 120 days

BlackBerry’s new Global Threat Intelligence report reveals that the company saw one million attacks aimed at the global financial sector over a period of 120 days. The company also saw a 27% increase in novel malware, and found that 62% of industry-related attacks were aimed at critical infrastructure.

CISA SCuBA hybrid identity solutions guidance
CISA has published new guidance (PDF) to help organizations make better decisions when implementing identity management capabilities. The document was released as part of CISA’s Secure Cloud Business Application (SCuBA) project, which aims to help governmental agencies and public entities effectively implement cybersecurity when migrating to the cloud.

Related: In Other News: Google Flaw Exploited, 3D Printers Hacked, WhatsApp Gets NSO Spyware

Related: In Other News: Google AI Hacking, Font Vulnerabilities, IBM Training Facility

Written By

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

People on the Move

Kim Larsen is new Chief Information Security Officer at Keepit

Professional services company Slalom has appointed Christopher Burger as its first CISO.

Allied Universal announced that Deanna Steele has joined the company as CIO for North America.

More People On The Move

Expert Insights

Related Content

Cloud Security

Cloud security researcher warns that stolen Microsoft signing key was more powerful and not limited to Outlook.com and Exchange Online.

Cyberwarfare

US National Cybersecurity Strategy pushes regulation, aggressive 'hack-back' operations.

Government

Companies have announced securing billions of dollars in cybersecurity-related contracts with the United States government in 2022.

Funding/M&A

Private equity giant plans to buy Forcepoint’s Global Governments and Critical Infrastructure (G2CI) business unit for $2.5 billion.

Cloud Security

Redmond is accused of “negligent cybersecurity practices” that enabled a successful Chinese hack of the United States government.

Government

NIST releases Cybersecurity Framework 2.0, the first major update since the creation of the CSF a decade ago.

Government

CISA has described and published a set of principles for the development of security-by-design and security-by-default cybersecurity products.

Government

The proposed UK Online Safety Bill is the enactment of two long held government desires: the removal of harmful internet content, and visibility into...