DDoS Attacks on the Environmental Services Industry Surge by 61,839% in 2023

Description: The article from The Hacker News reports a significant increase in DDoS (Distributed Denial of Service) attacks targeting the environmental services industry in 2023. Specifically, there was a 61,839% surge in HTTP-based DDoS attacks, which accounted for half of all HTTP traffic in this sector. This rise in cyber attacks coincided with major environmental events like COP 28. The pattern suggests a growing intersection between environmental issues and cybersecurity, making this sector a focal point for attackers. Additionally, the report touches on broader trends in DDoS attacks across different industries and regions.

Date: Mon, 15 Jan 2024

Source: https://thehackernews.com/2024/01/ddos-attacks-on-environmental-services.html

New Findings Challenge Attribution in Denmark's Energy Sector Cyberattacks

Description: The Hacker News piece explores fresh evidence that casts doubt on earlier assessments of who was responsible for cyberattacks on Denmark's energy industry in 2023. The assaults, which were thought to be carried out by the Sandworm gang, which had ties to Russia, affected around 22 Danish energy institutions. A security hole in Zyxel firewalls was exploited by the first wave in May, and Mirai botnet versions were used by the second wave. Forescout's research, however, indicates that both waves were distinct occurrences, with the latter phase being a part of a larger campaign against Zyxel firewalls that were not patched. The assaults appear to have been more widespread than first believed, since they may have started as early as February 2023 and targeted a number of American and European organizations.

Date: Sun, 14 Jan 2024

Source: https://thehackernews.com/2024/01/new-findings-challenge-attribution-in.html

The new Windows 11 features coming in 2024

Description: The BleepingComputer post talks on new features coming to Windows 11 for 2024, including as "CoWriter," an AI-enhanced notepad with customisable AI suggestions and intelligent editing capabilities. Support for the USB 80Gbps standard is an additional feature that improves performance and communication. Furthermore, Windows 11 will bring improved sharing options in Microsoft Edge and other browsers, interactive lock screen weather updates, and enhancements to the Voice Access feature, including multi-display capability and extended language support. It will also automatically launch Copilot on widescreen devices.

Date: Sun, 14 Jan 2024

Source: https://www.bleepingcomputer.com/news/microsoft/the-new-windows-11-features-coming-in-2024/

GrapheneOS: Frequent Android auto-reboots block firmware exploits

Description: The BleepingComputer article talks about GrapheneOS, an Android operating system with a security focus, and how it suggests often doing auto-reboots to improve security. Android devices like as Samsung Galaxy phones and Google Pixel phones have firmware vulnerabilities that might be exploited when the devices are not in a state of rest, according to GrapheneOS. Rebooting restores transient states and processes that might be abused, requiring re-authentication and re-engaging security measures. GrapheneOS intends to reduce the duration of its auto-reboot capability, which it now possesses. Other security topics like secure element throttling and PIN/password security are also covered in the essay.

Date: Sun, 14 Jan 2024

Source: https://www.bleepingcomputer.com/news/security/grapheneos-frequent-android-auto-reboots-block-firmware-exploits/

Australian breach victim's two-year road to recover from identity theft

Description:

An Australian data breach victim has detailed two years of misuse of their identity, with relief achieved only by appearing before a magistrate, or registering for services using a parent’s name.

Date: Mon, 15 Jan 2024

Source: https://www.itnews.com.au/news/australian-breach-victims-two-year-road-to-recover-from-identity-theft-604064?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed

Critical bugs patched in Nvidia AI kit

Description:

Nvidia has issued fixes for 11 firmware vulnerabilities, the most serious of which are rated crucial.

Date: Mon, 15 Jan 2024

Source: https://www.itnews.com.au/news/critical-bugs-patched-in-nvidia-ai-kit-604048?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed

Commonwealth DPP taking briefs on deepfakes from police

Description:

The Commonwealth Director of Public Prosecutions (CDPP) is already handling evidentiary briefs involving the use of deepfakes but is worried at its ability to act on them. Deepfakes are typically images that are manipulated using artificial intelligence to depict things that never happened.

Date: Mon, 15 Jan 2024

Source: https://www.itnews.com.au/news/commonwealth-dpp-taking-briefs-on-deepfakes-from-police-604060?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed

Juniper patches multiple router bugs

Description: Juniper Networks has issued its first three security updates for 2024, including a critical bug in its J-Web network management interface.

Date: Mon, 15 Jan 2024

Source: https://www.itnews.com.au/news/juniper-patches-multiple-router-bugs-604049?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed