Daily Cyber Insights - Iain Fraser | Accredited Cybersecurity Journalist & Authority Writer

28th November 2023  CYBERSECURITY NEWS: UK NCSC & South Korea´s NIS and issue joint advisory  Syndicated By: Iain Fraser/ Cyber PR Wire via IainFRASER.net/ CyberPRWire CYBERSECURITY NEWS: NCSC & South Korea´s NIS and issue joint advisory warning about DPRK state-linked cyber actors attacking software supply chains. Joint advisory observes cyber actors leveraging zero-day vulnerabilities and exploits in third-party software.  Cyber actors linked to the Democratic People’s Republic of Korea (DPRK) are increasingly targeting software supply chain products to attack organisations around the world, the UK and the Republic of Korea have warned. In a new joint advisory, the National Cyber Security Centre (NCSC) – a part of GCHQ – and the National Intelligence Service (NIS) have detailed how DPRK state-linked cyber actors have been using increasingly sophisticated techniques to gain access to victims’ systems. The actors have been observed leveraging zero-day vulnerabil...

28th November 2023  CYBERSECURITY NEWS: ECSO Launches its latest ground-breaking initiative CYBERHive  Syndicated By: Iain Fraser/ Cyber PR Wire via IainFRASER.net/ CyberPRWire ECSO is delighted to announce the launch of its new, ground-breaking initiative: Cyberhive EUROPE. Cyberhive is the first-ever European marketplace co-created with- and for the European cybersecurity ecosystem, and will offer global accessibility to all Europe-headquartered cybersecurity solution providers, while also being freely accessible to end-users worldwide. Through the Cyberhive, ECSO will connect market players, promote European-made products, and ultimately strengthen the European cybersecurity market as a whole. To learn more about the Cyberhive, read below.  The second Annual CISO Meetup, organised by ECSO, starts today! Over 150 CISOs are joining us in Florence from all over Europe to engage in high-level discussions on critical cybersecurity topics. Read more below. Learn More /... ...

28th November 2023  CYBERSECURITY NEWS: EUROPOL - International collaboration leads to dismantlement of ransomware group in Ukraine amidst ongoing war  Syndicated By: Iain Fraser/ Cyber PR Wire via IainFRASER.net/ CyberPRWire The ransomware gang is behind high-profile attacks that created losses of hundreds of millions of euros.  In an unprecedented effort, law enforcement and judicial authorities from seven countries have joined forces with Europol and Eurojust to dismantle and apprehend in Ukraine key figures behind significant ransomware operations wreaking havoc across the world.  The operation comes at a critical time, as the country grapples with the challenges of Russia’s military aggression against its territory. On 21 November, 30 properties were searched in the regions of Kyiv, Cherkasy, Rivne and Vinnytsia, resulting in the arrest of the 32-year-old ringleader. Four of the ringleader's most active accomplices were also detained. Learn More /... About EUROP...

Tuesday, 28th November 2023 CYBER THREAT INTEL: AI - UK & US Spooks publish AI Development Guidance Posted by: Iain Fraser - Cybersecurity Journalist Gibraltar via IainFraser.net/ Daily Cyber Insights CYBER THREAT INTEL: AI - UK & US Spooks publish AI Development Guidance The UK NCSC & US CISA have joint-published what they term as "security-focused guidance" for AI & ML developers and those who leverage AI/ML with their protocols and systems.  The Publication of Guidelines for Secure AI System Development (PDF),  apply to all types of AI/ML systems, regardless of whether built from wireframe up or added as a bolt-on on third-party resources, to address issues related to AI, cybersecurity, and critical infrastructure. Devised to be used in conjunction with existing Cybersecurity, Incident Response and Cyber Risk-Management protocols. The NCSC and CISA have said “Providers should implement security controls and mitigations where possible within their mode...

Thursday, 23rd November 2023 CRYPTO FRAUD: US DoJ - Binance and CEO Plead Guilty to Federal Charges in $4B Resolution Syndicated By: IainFraser.net/CyberPRWire Daily Cybersecurity PRWire Binance Admits It Engaged in Anti-Money Laundering, Unlicensed Money Transmitting, and Sanctions Violations in Largest Corporate Resolution to Include Criminal Charges for an Executive Binance Holdings Limited (Binance), the entity that operates the world’s largest cryptocurrency exchange, Binance.com, pleaded guilty today and has agreed to pay over $4 billion to resolve the Justice Department’s investigation into violations related to the Bank Secrecy Act (BSA), failure to register as a money transmitting business, and the International Emergency Economic Powers Act (IEEPA). Binance’s founder and chief executive officer (CEO), Changpeng Zhao, a Canadian national, also pleaded guilty to failing to maintain an effective anti-money laundering (AML) program, in violation of the BSA and has resigned as CEO...

CYBER THREAT INTELLIGENCE - IAEA: Enhancing Cybersecurity for Nuclear Safety and Security Posted By: Iain Fraser - Cybersecurity Journalist via Daily Cyber Insights PR Wire  IainFraser.net/CyberInsights The International Atomic Energy Agency (IAEA) published an article back in June this year but the topic is so evocative I have decided to revisit the subject particularly with developments in the Russia - Ukraine War. Only a few weeks ago Russia launched an attack of  Iranian-designed Shahed drones on the Khmelnytsky Nuclear Power Plant region. The IAEA was quick to confirm that the plant's operations were unaffected. IAEA Director General Rafael Grossi said in a statement at the time that "Powerful explosions shook an area near Ukraine's Khmelnytsky," "The blasts highlight the dangers to nuclear safety" posed by the war, he added. Writing on the IAEA Website back in June this year in her article Enhancing Computer Security for Nuclear Safety and Security - ...