Threat Intelligence Sharing

U.S. Government Issues New TLP Guidance for Cross-Sector Threat Intelligence Sharing

U.S. Government Issues New TLP Guidance for Cross-Sector Threat Intelligence Sharing Oct 29, 2024Ravie LakshmananDigital Security / Data Privacy The U.S. government (USG) has issued new guidance governing the use of the Traffic Light Protocol (TLP) to handle the threat intelligence information shared between the private sector, individual researchers, and Read more…

An aerial view of the Pentagon.

Pentagon shares new cybersecurity rules for government contractors

Pentagon shares new cybersecurity rules for government contractors The U.S. Department of Defense introduced new cybersecurity requirements for companies that contract with the federal government. The Pentagon said that its new rules, dubbed Cybersecurity Maturity Model Certification (CMMC), will aim to simplify the process of getting certified to do government Read more…

USB drive

GoldenJackal threat group targets air-gapped government systems

GoldenJackal threat group targets air-gapped government systems A new attack is targeting networks with air-gapped machines. Researchers with ESET uncovered a threat actor dubbed “GoldenJackal” that is using a malware infection specifically designed to target air-gapped machines: PCs that are deliberately set up to run without any network or internet Read more…

Russian Government with Advanced Tools

Cyberattack Group ‘Awaken Likho’ Targets Russian Government with Advanced Tools

Cyberattack Group ‘Awaken Likho’ Targets Russian Government with Advanced Tools Oct 08, 2024Ravie LakshmananCyber Threat / APT Attack Russian government agencies and industrial entities are the target of an ongoing activity cluster dubbed Awaken Likho. “The attackers now prefer using the agent for the legitimate MeshCentral platform instead of the Read more…

Chinese State-Backed Cyber Espionage Targets Southeast Asian Government

Chinese State-Backed Cyber Espionage Targets Southeast Asian Government

Chinese State-Backed Cyber Espionage Targets Southeast Asian Government An unnamed high-profile government organization in Southeast Asia emerged as the target of a “complex, long-running” Chinese state-sponsored cyber espionage operation codenamed Crimson Palace. “The overall goal behind the campaign was to maintain access to the target network for cyberespionage in support Read more…

Stealthy BLOODALCHEMY Malware Targeting ASEAN Government Networks

Stealthy BLOODALCHEMY Malware Targeting ASEAN Government Networks

Stealthy BLOODALCHEMY Malware Targeting ASEAN Government Networks Cybersecurity researchers have discovered that the malware known as BLOODALCHEMY used in attacks targeting government organizations in Southern and Southeastern Asia is in fact an updated version of Deed RAT, which is believed to be a successor to ShadowPad. “The origin of BLOODALCHEMY and Deed RAT is Read more…

U.S. Government Releases New AI Security Guidelines for Critical Infrastructure

U.S. Government Releases New AI Security Guidelines for Critical Infrastructure

U.S. Government Releases New AI Security Guidelines for Critical Infrastructure The U.S. government has unveiled new security guidelines aimed at bolstering critical infrastructure against artificial intelligence (AI)-related threats. “These guidelines are informed by the whole-of-government effort to assess AI risks across all sixteen critical infrastructure sectors, and address threats both Read more…