CyberSecurity Updates

13 May

Five Years Later: Evolving IoT Cybersecurity Guidelines

Insights

The Background…and NIST’s Plan for Improving IoT Cybersecurity The passage of the Internet of Things (IoT) Cybersecurity Improvement Act in 2020 marked a pivotal step in enhancing the cybersecurity of IoT products. Recognizing the increasing internet connectivity of physical devices, this legislation tasked NIST with developing cybersecurity guidelines to manage and secure IoT effectively. As an early building block, we developed NIST IR 8259, Foundational Cybersecurity Activities for IoT Device Manufacturers, which describes recommended activities related to…

Read More
12 May

Update to How CISA Shares Cyber-Related Alerts and Notifications

Attacks, Insights, Malware

Starting May 12, CISA is changing how we announce cybersecurity updates and the release of new guidance. These announcements will only be shared through CISA social media platforms and email and will no longer be listed on our Cybersecurity Alerts & Advisories webpage.   The focus of our Cybersecurity Alerts & Advisories webpage will now be on urgent information tied to emerging threats or major cyber activity. CISA wants this critical information to get the attention…

Read More
10 May

Catching a phish with many faces

Information

Here’s a brief dive into the murky waters of shape-shifting attacks that leverage dedicated phishing kits to auto-generate customized login pages on the fly Camilo Gutiérrez Amaya 09 May 2025  •  , 4 min. read Phishing remains a particularly stubborn threat in the cybersecurity landscape. It sticks around partly because even though the bad guys are always after the same prize – people’s login credentials and other sensitive information – they never cease to evolve…

Read More
08 May

Beware of phone scams demanding money for ‘missed jury duty’

Information

When we get the call, it’s our legal responsibility to attend jury service. But sometimes that call won’t come from the courts – it will be a scammer. Phil Muncaster 07 May 2025  •  , 4 min. read Jury duty is one of the key civic duties you may be called upon to serve. But in your haste to fulfil this obligation, you may be targeted by malicious actors preying on your fear of arrest,…

Read More
07 May

Pakistani Firm Shipped Fentanyl Analogs, Scams to US

Information, Insights

A Texas firm recently charged with conspiring to distribute synthetic opioids in the United States is at the center of a vast network of companies in the U.S. and Pakistan whose employees are accused of using online ads to scam westerners seeking help with trademarks, book writing, mobile app development and logo designs, a new investigation reveals. In an indictment (PDF) unsealed last month, the U.S. Department of Justice said Dallas-based eWorldTrade “operated an online…

Read More
07 May

Toll road scams are in overdrive: Here’s how to protect yourself

Information

Have you received a text message about an unpaid road toll? Make sure you’re not the next victim of a smishing scam. Phil Muncaster 06 May 2025  •  , 4 min. read Driving is a way of life in the US. The country’s sprawling suburbs and nationwide network of highways and toll roads is testament to this. But it also creates a large potential pool of victims for scammers to target, as American drivers have…

Read More
06 May

Unsophisticated Cyber Actor(s) Targeting Operational Technology

Attacks, Insights, Malware

CISA is increasingly aware of unsophisticated cyber actor(s) targeting ICS/SCADA systems within U.S. critical Infrastructure sectors (Oil and Natural Gas), specifically in Energy and Transportation Systems. Although these activities often include basic and elementary intrusion techniques, the presence of poor cyber hygiene and exposed assets can escalate these threats, leading to significant consequences such as defacement, configuration changes, operational disruptions and, in severe cases, physical damage. CISA strongly urges Critical Infrastructure Asset Owners and Operators…

Read More
05 May

Small Businesses Create Big Impact: NIST Celebrates 2025 National Small Business Week

Insights

This week we’re celebrating National Small Business Week—which recognizes and celebrates the small and medium-sized business (SMB) community’s significant contributions to the nation. SMBs are a substantial and critical part of the U.S. and global economic and cybersecurity infrastructure. According to the U.S. Small Business Administration’s Office of Advocacy,[1] there are 34.8 million SMBs in the United States (making up 99% of all U.S. businesses). Of those, 81.7% are non-employer firms with no paid employees other…

Read More
04 May

RSAC 2025 wrap-up – Week in security with Tony Anscombe

Information

From the power of collaborative defense to identity security and AI, catch up on the event’s key themes and discussions 02 May 2025 That’s a wrap on the RSACTM 2025 Conference, one of the year’s premier cybersecurity events where thousands of security practitioners exchanged their views, ideas and knowledge while discussing the world’s most pressing security challenges. The theme of the 34th annual event, “Many voices. One community.”, turned the spotlight on collaboration and cooperation…

Read More
02 May

TheWizards APT group uses SLAAC spoofing to perform adversary-in-the-middle attacks

Information

In this blogpost, ESET researchers provide an analysis of Spellbinder, a lateral movement tool for performing adversary-in-the-middle attacks, used by the China-aligned threat actor that we have named TheWizards. Spellbinder enables adversary-in-the-middle (AitM) attacks, through IPv6 stateless address autoconfiguration (SLAAC) spoofing, to move laterally in the compromised network, intercepting packets and redirecting the traffic of legitimate Chinese software so that it downloads malicious updates from a server controlled by the attackers.  Key points in this…

Read More