Szolgáltatóknak

The Open Source Security Foundation has unveiled the new Siren threat intelligence sharing list that seeks to facilitate real-time information sharing regarding security flaws impacting open source projects, reports The Register.

The U.S. Department of Health and Human Services has introduced the new Universal PatchinG and Remediation for Autonomous DEfense program, which offers $50 million toward the strengthening of hospital cybersecurity amid growing cybersecurity threats, according to The Record, a news site by cybersecurity firm Recorded Future.

As we face continued headwinds on provisions like data flows and e-customs duties, further progress is both needed and achievable in digital trade policy.

CyberScoop reports that escalating cybersecurity threats against the U.S. water infrastructure have prompted the Environmental Protection Agency to commit to bolstering its security-focused inspections and enforcement activities in water utilities nationwide.

Italy's University of Siena, which is the world's first publicly funded university, was claimed to be compromised by the LockBit ransomware gang in an attack that has interrupted operations of several university services, reports The Cyber Express.

Hackread reports that cyberattacks aimed at the ongoing Indian general elections have risen by almost 300% since last year, with the polls being targeted by 16 independent hacktivist operations, including Anonymous Bangladesh and Anon Black Flag.

BleepingComputer reports that Israel and Albania have been subjected to attacks with an updated version of the BiBi Wiper malware with disk partition table deletion capabilities, which has been linked with suspected Iranian state-sponsored hacking group Void Manticore, also known as Storm-842.

Sophisticated Russian threat operation GitCaught has exploited both GitHub and FileZilla to facilitate the deployment of several malicious payloads, including the Atomic macOS Stealer, or AMOS, as well as the Octo, Lumma, and Vidar information-stealing malware strains, Security Affairs reports.

Attacks exploiting a design vulnerability in the Foxit PDF reader have been launched by various threat actors to facilitate the delivery of several malicious payloads, including Agent Tesla, Remcos RAT, AsyncRAT, and XWorm, among others, reports The Hacker News.

Microsoft Azure, Google Cloud Platform, Amazon Web Services, and other major cloud providers and technology firms could be compromised in attacks leveraging the critical memory corruption flaw within the widely used logging and metrics software Fluent Bit, according to BleepingComputer.