Security Bulletin

The Biden AI EO lacks depth – the industry needs to get more involved, and NIST must offer some strong guidance.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Learn more about how Cisco technology supports the Oil & Gas industry by clicking on the link below. Cisco Portfolio Explorer for Oil & Gas

Attacks leveraging the Amadey and PrivateLoader malware to deploy the Socks5Systemz proxy botnet have compromised 10,000 devices around the world since the beginning of October, most of which are from India, the U.S., Brazil, Colombia, and South...

Mandiant/Google Cloud’s Jill C. Tyson offers up timelines, checklists, and other guidance around enterprise-wide readiness to ensure compliance with the new rule.

Several WhatsApp mods for Android have been used by threat actors to facilitate the deployment of the CanesSpy spyware, The Hacker News reports.

The Register reports that U.S. insurance and advisory services provider Hilb Group had 81,539 individuals' personal data compromised following a breach of employee email accounts earlier this year.

Admins need to patch immediately, as the prolific cybercrime group pivots from cryptomining to going after cloud secrets and credentials.

Ransomware attackers have reportedly targeted India-based IT consulting firm Infosys' U.S.-based subsidiary McCamish Systems, The Times of India reports.

Allied Pilots Association, the pilot union of American Airlines with over 15,000 members, had some of its systems encrypted following a ransomware attack, which was initially discovered on Oct. 30, reports The Record, a news site by cybersecurity...

Singaporean public health organizations had their internet connectivity disrupted by ongoing distributed denial-of-service attacks from a still unknown threat actor, according to The Record, a news site by cybersecurity firm Recorded Future.