IoT Devices in Password-Spraying Botnet Microsoft is warning Azure cloud users that a Chinese controlled botnet is engaging in “highly evasive” password spraying. Not sure about the “highly evasive” part; the techniques seem basically what you get in a distributed password-guessing attack: “Any threat actor using the CovertNetwork-1658 infrastructure could conduct password spraying campaigns at … Read more
Critical infrastructure depends on embedded devices across industries such as oil and natural gas, electric, water management, automotive, medical, satellite, autonomous systems, and unmanned aircraft systems. However, these devices often lack proper security controls and are insufficiently tested for vulnerabilities. Sophisticated cyber adversaries increasingly attempt to exploit these devices, as evidenced by a growing number … Read more
With the projected growth of 55.7 billion connected devices by the year 2025 — spanning consumer electronics, healthcare equipment, industrial systems, and more — the threat landscape grows more diverse and complex each day. The scale of this interconnected ecosystem also amplifies compliance issues, as organisations struggle to adhere to stringent security standards and regulations … Read more
More than ever this year, attackers are crossing siloes to find entry points across the full spectrum of devices, operating systems, and embedded firmware. “The device has evolved from a pure asset to a reliable, sophisticated, intelligent platform for communications and services, driving a transformation in the relationship between devices, people, and networks,” said Elisa … Read more
The government of Ukraine imposed a ban on the Telegram messaging app being used on official devices belonging to government officials, military staff, and critical infrastructure workers, citing security fears. In an announcement on Friday, Ukraine’s National Security and Defence Council (Rnbo) claimed that Telegram posed a security threat to the nation, particularly during the … Read more
