InfoSecBulletin Cybersecurity for mankind
Global threat actors have significantly increased attacks on government sectors, with malware-driven attempts rising by triple digits in the first quarter of the year, according to SonicWall. The security vendor’s analysis shows a 236% increase in blocked attacks in Q1 2024 compared to last year, along with a 27% rise in attacks on government entities in the month before the US election.
Concerns are rising about foreign interference in the close presidential election, which aims to create uncertainty about the results. SonicWall reported that DDoS attacks are expected to exceed last year’s numbers by 32%.
CVSS 9.6: IBM QRadar & Cloud Pak Security Flaws Exposed
ALERT
Thousands of IP addresses compromised nationwide: CIRT warn
New Android Malware ‘Crocodilus’ Targets Banks in 8 Countries
Qualcomm Patches 3 Zero-Days Used in Targeted Android Attacks
Critical RCE Flaw Patched in Roundcube Webmail
Hacker claim Leak of Deloitte Source Code & GitHub Credentials
CISA Issued Guidance for SIEM and SOAR Implementation
Linux flaws enable password hash theft via core dumps in Ubuntu, RHEL, Fedora
Australia enacts mandatory ransomware payment reporting
Why Govt Demands Foreign CCTV Firms to Submit Source Code?
The vendor reported blocking over 12.9 million attacks on IP cameras this year. IoT devices are often hijacked and combined into botnets for DDoS and other attacks.
A study released yesterday found that most US county websites could be easily faked, potentially spreading election disinformation and enabling phishing attacks, with less than a week until voting.
They were registered with non-.gov domains, and the report also noted that many contact email addresses lack DMARC anti-phishing protection.
“As attackers continue to attack critical government services and election-related systems, the importance of multi-layered cybersecurity measures cannot be overstated,” said SonicWall executive director of threat research, Doug McKee.
“In a rapidly evolving threat landscape, the stakes have never been higher. We must embrace cross-industry collaboration and threat intelligence information sharing to ensure the integrity of our electoral processes and protect our vital infrastructure from those seeking to exploit these systems.”
SonicWall noted a 33% rise in software supply chain attacks since the start of the year.
Sonatype reported a 156% year-over-year rise in attacks on open source ecosystems, with over 704,102 malicious packages identified since 2019.
