Sun Sep 15 11:12:09 UTC 2024: ## Cyberattacks and Cybersecurity News: September 2024 Roundup

**This week in cybersecurity, a whirlwind of attacks, vulnerabilities, and patches hit the headlines:**

**Ransomware Reigns:**

* **Hospital Networks Targeted:** RansomHub, Rhysida, and BlackBasta ransomware gangs continued their relentless assault on healthcare institutions, targeting hospitals in the US, UK, and Middle East.
* **Data Breaches and Leaks:** Ransomware gangs leaked sensitive data from victims, including Boeing, McLaren Health Care, and Nissan Australia.
* **Record Ransom Payments:** The ransomware landscape continues to be lucrative, with groups like LockBit claiming to have earned millions in ransom payments.

**Exploited Vulnerabilities:**

* **Critical Patches Released:** SolarWinds, Ivanti, Progress Software, VMware, Cisco, Microsoft, Adobe, and others issued critical security updates to address vulnerabilities actively exploited by attackers.
* **Zero-Day Exploits:** Attackers took advantage of newly discovered vulnerabilities (zero-days) in software from Apple, Google, and Cisco.
* **CISA’s Known Exploited Vulnerabilities Catalog:** The US Cybersecurity and Infrastructure Security Agency (CISA) added numerous vulnerabilities to its “Known Exploited Vulnerabilities” catalog, urging organizations to patch them immediately.

**Other Notable Events:**

* **AI in the Crosshairs:** Concerns grew over the potential misuse of AI in cyberattacks, with reports of nation-states using generative AI for influence operations and the US issuing warnings about potential AI-based threats to critical infrastructure.
* **Singapore Police Arrest Cybercrime Syndicate:** Six individuals were arrested in Singapore for alleged involvement in a cybercrime syndicate.
* **Law Enforcement Action:** Law enforcement agencies disrupted several cybercrime operations, including the takedown of the Crimemarket dark web marketplace and the arrest of individuals linked to the LockBit, Ragnar Locker, and TrickBot gangs.

**Stay Vigilant:**

This news roundup underscores the ever-present threat of cyberattacks. Organizations must prioritize patching known vulnerabilities, implementing strong security measures, and staying informed about evolving threats.

Read More