InfoSecBulletin Cybersecurity for mankind
Cybersecurity threats have surged to extraordinary heights, as Microsoft’s latest Digital Defense Report reveals that its customers are confronted with over 600 million cyberattacks every day.
The report highlights that cyber operations play a crucial role in geopolitical conflicts, used for espionage, influence, and destruction. The cooperation between nation-states and cybercriminal gangs contributes to this trend, as they exchange tools and techniques. The report highlights that “nation-state affiliated threat actors demonstrated that cyber operations—whether for espionage, destruction, or influence—play a persistent supporting role in broader geopolitical conflicts.”
Palo Alto Firewalls Found Vulnerable to Secure Boot Bypass
CISA Releases 6 ICS Advisories Detailing Security Issues
Account Credentials for Security Vendors Found on Dark Web: Cyble Report
Four Critical Ivanti CSA Vulnerabilities Exploited: CISA , FBI warns
GitLab Releases Patch (CVE-2025-0314) for XSS Exploit
CVE-2025-20156
Cisco Fixes Meeting Management Allowing Privilege Escalation
Delay patching leaves about 50,000 Fortinet firewalls to zero-day attack
Daily Security Update Dated: 21.01.2025
126 Linux kernel Vulns Allow Attackers Exploit 78 Linux Sub-Systems
CERT-UA alerts about “security audit” requests through AnyDesk
In the past year, Microsoft has noticed that nation-state actors are increasingly teaming up with cybercriminals for financial gain and intelligence gathering. For example, Russian actors have outsourced some cyberespionage tasks to criminal groups, particularly targeting Ukraine. In June 2024, one group used basic malware to compromise at least 50 Ukrainian military devices.
Other nation-state actors, such as those from Iran and North Korea, have also ramped up their activity. Iran is using ransomware as part of its influence tactics, while North Korea has launched a new ransomware variant called FakePenny, aimed at aerospace and defense sectors.
The report highlights worrying trends in how nation-state actors and cybercriminals are using generative AI for phishing, influence operations, and malware development. They are leveraging AI to more effectively target victims. However, there is a positive aspect: AI also helps cybersecurity professionals respond more quickly to threats.
The report emphasizes the necessity for better cooperation between public and private sectors to combat rising attacks. Microsoft suggests a two-pronged strategy: improving cybersecurity to prevent intrusions and enforcing consequences for harmful actions. This combination of defense and deterrence is crucial for changing the current trend.
“With more than 600 million attacks per day targeting Microsoft customers alone, there must be countervailing pressure to reduce the overall number of attacks online“.
