Europe
European cybersecurity labels are coming. Who's signed up?
Scheme will pave the way for upcoming certification schemes: EUCS on cloud services and EU5G on 5G security
Cloudflare
Cloudflare says hackers stole source code, breached Atlassian and AWS environments
Incident forces huge hygiene effort, as Cloudflare rotates 5,000 credentials, triages 4,893 systems, reimages and reboots every machine after compromise.
Microsoft
How Russian spooks hacked Microsoft, the gap in its “morally indefensible” response, and what CISOs can learn from the attack
Expect to start hearing more about MS Graph...
Next for The Bear: Hacking HPE inboxes
"Cozy Bear" gained unauthorized access to HPE’s cloud-based email environment
Microsoft
Russian group hacks emails of Microsoft’s “senior leadership” and cybersecurity staff
"We will act immediately to apply our current security standards to Microsoft-owned legacy systems and internal business processes..."
Cybersecurity
Ivanti VPN appliance exploitation now happening at scale
VPN appliances "all appear to have been constructed with the code equivalent of string, stamped with the word ‘secure’ and then just left to decay for 20 years..."
vulnerabilities
Pre-auth RCE zero days in Ivanti VPNs are being exploited by a Chinese APT and there won’t be a patch for weeks. Buckle up.
Attackers re-write JavaScript loaded by the VPN login page for the Appliance to capture credentials; also grabbed Veeam credentials, moved laterally for full SYSTEM control.
Cybersecurity
Software licensing bug percolates pre-auth RCE risk downstream to PLC-land
Another arguably more potent example and one actively exploited in the wild is CVE-2023-46604 – a CVSS 10 RCE vulnerability in Apache ActiveMQ; an open source message broker written in Java.
Interviews
The Big Interview: Rubrik CEO Bipul Sinha on going from no running water, to running a $500m business
On Magic Quadrants, deal size, changing approaches to cyber-resilience and learning from his father.
Cybersecurity
Utilities splash cash to get OT security in order as new "e-CAF" regime shakes up sector
Another £82 million in Operational Technology and cybersecurity contracts hits the market as water, gas companies overhaul legacy systems amid pressure...
bug bounty
Hallucinated vulnerability disclosure for Curl generates disgust
But Bug Bounty platform HackerOne isn't too worried that LLM-generated bug reports will become a deluge...
News
NSA updates software guidelines
The NSA has posted a new set of cybersecurity guidelines for government agencies