Security Bulletin

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

[This is a Guest Diary by Preston Fitzgerald, an ISC intern as part of the SANS.edu Bachelor's Degree in Applied Cybersecurity (BACS) program [1].

Boards of directors don't care about the minute technical details of the security program. They want to see how key performance indicators are tracked and utilized.

It's not theoretical anymore: the world's major powers are working with large language models to enhance their offensive cyber operations.

Over 100 Romanian hospitals downed by ransomware attack Forbes reports that more than 100 hospitals across Romania have been taken offline following a ransomware attack against the Hipocrate IT platform on Sunday, which was confirmed to have impacted...

CyberScoop reports that federal IT contractor CGI Federal revealed that the breach of its systems that resulted in the compromise of data from nearly 6,600 current and former employees at the Government and Accountability Office stemmed from the...

The U.S. Department of Defense has begun informing current and former employees, partners, and job applicants regarding the potential exposure of their personally identifiable information stemming from a service provider's inadvertent leak of several...

Ransomware operation ALPHV/BlackCat has admitted to compromising major Canadian oil and gas pipeline operator Trans-Northern Pipelines in an attack that it claims resulted in the exfiltration of 190GB of data, according to The Register.

Widespread attacks spreading the Glupteba malware in November involved the integration of a newly discovered EfiGuard Unified Extensible Firmware Interface bootkit that has provided the botnet with self-concealment and increased stealth through the...

BleepingComputer reports that attacks exploiting a new Windows Defender zero-day flaw, tracked as CVE-2024-21412, have been conducted by the Water Hydra threat operation, also known as DarkCasino, against foreign exchange traders on New Year's Eve to...

Chinese state-backed threat operation Volt Typhoon, also known as Voltzite, has been moving to cause a significant disruption in the U.S. as evidenced by its extensive targeting of the country's critical infrastructure organizations, reports...