Top-5 Cybersecurity Events of August 2024 September 1, 2024 In case you missed it, these are the top-5 cybersecurity events from August of 2024. RansomHub Ransomware Hits U.S. Healthcare: The RansomHub ransomware group, previously known as Cyclops, launched attacks against U.S. healthcare providers, leading to data breaches and operational chaos.1 Key Takeaway: Healthcare organizations need […]
5ironCyber – the new driving force in active cyber defense – once again earns a spot on Inc’s 2023 list of fastest-growing private companies in America. NASHVILLE, TN, August 13, 2023 —5ironCyber, a leading US-based cybersecurity firm, today announced the company has for the third year in a row earned a place on the Inc. 5000 […]
Crowdstrike Update – 7/25/24 At approximately 12:09 EST on July 19, Crowdstrike released a sensor configuration update that caused outages of approximately 8.5 million Windows devices globally. 5ironCyber has numerous clients using the Crowdstrike Falcon EDR platform. By 2:30 am EST, the 5ironCyber team notified clients directly affected by the outage and worked through the […]
July 10, 2024 Threat Level : Critical Threat: RADIUS Protocol Spoofing Vulnerability SUMMARY On July 7, 2024, security researchers disclosed the following vulnerability in the RADIUS protocol: CVE-2024-3596: RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by an on-path attacker who can […]
Ascension Healthcare Ransomware Attack In May 2024, Ascension Healthcare, one of the largest U.S. health systems, was hit by a ransomware attack attributed to the Black Basta group. The attack, which began when an employee inadvertently downloaded a malicious file, disrupted operations across 142 hospitals, including electronic health records, phone systems, and medication ordering processes. […]
September 2, 2024 Threat Level : Medium Threat: Cisco Duo Telephony Logs Compromised SUMMARY On April 1, 2024, a third-party telephony vendor used by Cisco Duo experienced a data breach. The breach exposed message logs transmitted March 1 through March 31 containing phone numbers, carrier information, geographic data, the date, time, and type of message […]
February 13, 2024 Summary Today, Proofpoint announced that they began seeing attacks using Bumblebee Malware on February 8th, 2024 after being absent from the threat landscape for several months. In the most recent campaign, US companies were targeted with an email containing the subject of “Voicemail February” from info@quarlessa[.]com. These attacks contain OneDrive URLs that […]
January 21, 2024 Threat Level: Critical Threat: Citrix Releases Security Updates for NetScaler ADC and NetScaler Gateway SUMMARY Citrix has released security updates to address vulnerabilities in NetScaler ADC and NetScaler Gateway. If left unpatched, a threat actor could exploit one of these vulnerabilities to take control of an affected system The vulnerabilities—CVE-2023-6548 and CVE-2023-6549—only […]
January 20, 2024 Threat Level : High Threat: Microsoft Attacked by Nation State Actor Midnight Blizzard SUMMARY On January 12, 2024 the Microsoft Security team detected attacks on their corporate systems by a threat actor known as Midnight Blizzard, the Russian state-sponsored actor. This is the same Russian threat actor behind the SolarWinds breach. Three […]
