[TheRecord] CISA, FBI issue holiday warning about hackers, urge vigilance

Hackers could try to ruin your holiday season, the Cybersecurity and Infrastructure Security Agency and the FBI warned on Monday.

The organizations issued a joint advisory just a few days before Thanksgiving to remind “critical infrastructure partners that malicious cyber actors aren’t making the same holiday plans as you.”

“Recent history tells us that this could be a time when these persistent cyber actors halfway across the world are looking for ways — big and small — to disrupt the critical networks and systems belonging to organizations, businesses, and critical infrastructure,” the advisory states.

The holiday season has long been prime time for hackers and cybercriminals to target consumers with phishing and other attacks, ultimately compromising organizations.

The three biggest ransomware attacks of 2021 — against the Colonial Pipeline, meat processing giant JBS and software company Kaseya — all occurred over weekends and major holidays.

Neither CISA, nor the FBI, “currently have identified any specific threats,” according to the advisory. 

However, they note, “recent 2021 trends show malicious cyber actors launching serious and impactful ransomware attacks during holidays and weekends,” including Independence Day and Mother’s Day.

The organizations provided a checklist of actions executives and organizations should take to better protect themselves against malicious actors that includes such staples as applying software patches, switching on multi-factor authentication and reviewing existing response plans.

“CISA and the FBI urge users and organizations to take these actions immediately to protect themselves against this threat,” the advisory warns.

The post CISA, FBI issue holiday warning about hackers, urge vigilance appeared first on The Record by Recorded Future.

Source: Read More (The Record by Recorded Future)

You might be interested in …

[ESET] Apple releases patch for zero‑day flaw in iOS, iPadOS and macOS

All posts, ESET feed

The vulnerability is under active exploitation by unknown attackers and affects a wide range of Apple’s products. The post Apple releases patch for zero‑day flaw in iOS, iPadOS and macOS appeared first on WeLiveSecurity Source: Read More (WeLiveSecurity)

Read More

[ZDNet] Cloud and security certifications for Google, Windows, AWS and more lead to highest-paying IT positions

All posts, ZDNet

Number one on the list was the Google Certified Professional Data Engineer, which the survey found can bring in $171,749 annually. Source: Read More (Latest topics for ZDNet in Security)

Read More

[ThreatPost] 200M Adult Cam Model, User Records Exposed in Stripchat Breach

All posts, ThreatPost

The leak included model information, chat messages and payment details. Source: Read More (Threatpost)

Read More