Author: Staff Writer

Essential Insights Targeted Exploits: Russian government-linked hackers are exploiting a Cisco vulnerability (CVE-2018-0171) to compromise critical infrastructure in the U.S., targeting unpatched networking devices. Operational Focus: The hackers, associated with the FSB’s Center 16, conduct reconnaissance on industrial control systems, modifying configuration files for unauthorized access. Escalating Threats: Cisco identifies the group as "Static Tundra," noting an uptick in attacks on Ukrainian organizations since the escalation of the Russia-Ukraine conflict in 2022. Historical Context: Center 16, also known as "Berserk Bear" and "Dragonfly," has a decade-long history of penetrating systems, primarily exploiting unencrypted protocols. Russian Hacking Threat to Critical Infrastructure…

Quick Takeaways Leadership Appointment: Gil Gur Arie has been appointed as Chief Product Officer at Claroty, enhancing product strategy and development for cyber-physical systems (CPS) protection. Extensive Experience: With over two decades of experience, Gur Arie has previously led data and AI initiatives at Ford Motor Co., contributing significantly to modernization and value creation. Focus on Innovation: His role will focus on leveraging data and AI to develop advanced protective technologies for securing vital infrastructure against cyber threats. Strategic Importance: Gur Arie emphasizes the need for innovative defenses to counter rising attacks on high-value CPS assets, aligning with Claroty’s mission…

Fast Facts Enhanced Cyber Defense: Rackspace Technology has upgraded its Cyber Defense Center (RCDC) with AI-powered features for continuous threat detection and resolution across various cloud environments. AI Security Engine: The Rackspace AI Security Engine (RAISE) combines human expertise with AI, improving detection accuracy, pattern recognition, and real-time trend analysis for quicker incident response. Adaptive Intelligence: RAISE utilizes a closed-loop system to continuously learn from incidents, refining its strategies to enhance cybersecurity operations over time. Industry Leadership: Rackspace is recognized as a leader in cybersecurity services by ISG, highlighting RAISE’s capabilities in automating processes and improving incident management efficiency. Real-Time…

Summary Points An alleged threat actor is selling a $125,000 Windows Zero-Day RCE exploit capable of bypassing security features and granting SYSTEM privileges on fully patched Windows 10, 11, and Server 2022 systems. The exploit is designed for remote, network-based attacks with no user interaction, evading detection by leading antivirus and EDR solutions, and boasting a success rate over 95%. It facilitates kernel-level code execution and privilege escalation, posing significant risks for enterprise and individual systems, especially from cybercriminal groups and APTs. Organizations should enhance monitoring of kernel activities, prioritize timely patching, and leverage threat intelligence to detect and respond…

Fast Facts Inotiv Inc. is investigating a cyberattack involving encryption of data, which disrupted access to key systems and business functions. The company has restricted system access, engaged third-party experts, and notified law enforcement, while working to restore operations without a specified timeline. The Qilin ransomware group has claimed responsibility, revealing 176 GB of purported stolen data, though authenticity remains unconfirmed. The attackers previously targeted Lee Enterprises, causing significant operational and financial disruptions, linking the threat to the same criminal group. The Issue Inotiv Inc., a biotech and pharmaceutical company, is currently under investigation following a significant cyberattack that encrypted…

Summary Points Recognition on Inc. 5000: ImagineX has secured a spot on the 2025 Inc. 5000 list, marking its third consecutive recognition as one of America’s fastest-growing private companies. Impressive Growth Rates: The company achieved a 32% compound annual growth rate (CAGR) in revenue since 2021, ranking No. 3,120 among 5,000 companies. Client Trust and Innovation: CEO Shaun Bank attributes their success to a dedicated team and trust from clients, emphasizing their commitment to innovative technology solutions. High Satisfaction Scores: ImagineX boasts remarkable Net Promoter Scores (NPS) of 82 for clients and 61 for employees, highlighting their focus on sustainable…

Summary Points Researchers unveil PromptFix, a prompt injection technique that manipulates AI browsers by embedding malicious instructions within fake CAPTCHA checks, enabling stealthy phishing and unauthorized actions. The attack exploits AI systems like Perplexity’s Comet and ChatGPT’s Agent Mode, causing them to autonomously perform scams such as online purchases or credential theft, often without user awareness. This evolution, termed "Scamlexity," heightens the risk of AI-driven scams reaching new levels of sophistication, with AI models potentially auto-completing malicious transactions and bypassing security measures. The findings highlight the urgent need for enhanced AI defenses, including advanced phishing detection, URL reputation checks, and…

Top Highlights Triple Recognition: Magna5 has earned a spot on CRN’s Fast Growth 150, Solution Provider 500, and Tech Elite 250 lists for the second consecutive year, highlighting its significant impact in the IT sector. Fast Growth: Ranking 48th on the Fast Growth 150, Magna5 exemplifies rapid expansion fueled by innovative strategies in AI, cybersecurity, and cloud computing. Revenue Benchmarking: The Solution Provider 500 celebrates North America’s largest tech solution providers, collectively generating $548.9 billion, underscoring Magna5’s influential role in IT services. Commitment to Excellence: CEO Robert Farina attributes Magna5’s success to its focus on innovative, secure solutions and strong…

Top Highlights Inotiv, a U.S.-based biotech firm, disclosed a cybersecurity breach involving unauthorized access and encryption of its systems, with ongoing investigations and uncertain full impacts. The company took immediate containment measures, such as engaging cybersecurity experts, restricting system access, and notifying law enforcement, causing temporary operational disruptions. The ransomware group Qilin claimed responsibility, stealing approximately 162,000 files (176GB) and indicating a sophisticated Ransomware-as-a-Service operation targeting critical infrastructure sectors. The breach coincides with the discovery of advanced threats like ResolverRAT, a remote access trojan employing evasion techniques mostly targeting healthcare and pharmaceutical sectors. What’s the Problem? Inotiv, an American drug…

Fast Facts Innovative Partnership: Frenos and N2K Networks have teamed up to create the first AI-powered OT security platform based on validated professional intelligence, enhancing cybersecurity for critical infrastructure. Advanced AI Integration: The integration of N2K’s certification dataset with Frenos’ SAIRA AI engine enables a sophisticated approach to threat prioritization and contextual decision-making, mimicking expert-level reasoning. Shift to Next-Generation OT Security: Frenos introduces a second-generation OT security platform that boosts existing tools to improve adaptability and resilience in security programs. Future Expansion Plans: The collaboration aims to broaden the offering with courseware and professional development resources, ensuring SAIRA continues to…