Skip to content
Home » SIEM Tuning Insights » Cyber Security Brief 5/20/2024

Cyber Security Brief 5/20/2024

Cyber Security brief Blue team in a blue room.

Below is the Cyber Security Brief 5/20/2024 security brief for today:

Hacking Activity

  • A significant ransomware attack on a U.S. healthcare payment processor, Change Healthcare, has been described as the “most serious incident of its kind”⁵.
  • The attack has had widespread effects, crippling the company’s ability to manage customer payments and insurance claims⁵.
  • The company has taken most of its systems offline to prevent the attack from spreading⁵.
  • The outage has prevented doctors from being able to electronically fill prescriptions and has kept insurance providers from reimbursing providers⁵.
  • The attack was carried out using a type of ransomware called Alphv⁵.
  • The same ransomware was used in the devastating attack on MGM Resorts in Las Vegas last year⁵.

Vulnerability Management

  • Microsoft Defender Vulnerability Management has announced new features and updates¹⁴¹⁸.
  • These include the ability to identify, report on, and recommend remediation for common, proprietary, and open-source software components known to have had security issues in the past¹⁴¹⁸.
  • A new AI-generated vulnerability description is now in public preview, providing detailed information on vulnerabilities, their impact, recommended remediation steps, and any additional information, if available¹⁴¹⁸.
  • Nucleus Security, a leading innovator in enterprise risk-based vulnerability management, has been recognized with the Risk-Based Vulnerability Management Award in the 9th Annual Cybersecurity Excellence Awards¹⁴.
  • Linguistic Lumberjack (CVE-2024-4323) is a vulnerability in the Fluent Bit utility that can allow DoS, information disclosure and RCE¹⁶.

CISA Updates

  • The Cybersecurity and Infrastructure Security Agency (CISA) has released several alerts and advisories⁹¹¹¹²¹³.
  • These include a fact sheet on defending OT operations against ongoing Pro-Russia hacktivist activity, and reports of known exploited vulnerabilities⁹¹¹¹²¹³.
  • CISA has also added to its catalog a vulnerability in the R Programming Language⁹¹¹¹²¹³.
  • CISA has warned of hackers exploiting Chrome and EoL D-Link bugs⁸.
  • Eric Goldstein will depart from his role as executive assistant director for cybersecurity at the Cybersecurity and Infrastructure Security Agency next month⁹.
  • The FBI, CISA, and HHS advised healthcare organizations to harden their systems to protect against Black Basta ransomware[^10^].

Please note that this is a brief summary and for more detailed information, you should refer to the original sources⁵⁸⁹[^10^]¹¹¹²¹³¹⁴¹⁶¹⁸.

Cyber Security Brief 5/20/2024 Sources:
(1) Ransomware attack on U.S. health care payment processor … – NBC News. https://www.nbcnews.com/tech/security/ransomware-attack-us-health-care-payment-processor-serious-incident-ki-rcna141322.
(2) Nucleus Security Wins Prestigious Award for Risk-Based Vulnerability Management. https://finance.yahoo.com/news/nucleus-security-wins-prestigious-award-130000797.html.
(3) What’s new in Microsoft Defender Vulnerability Management. https://techcommunity.microsoft.com/t5/microsoft-defender-vulnerability/what-s-new-in-microsoft-defender-vulnerability-management-april/ba-p/3781424.
(4) Vulnerability Found in Fluent Bit Utility Used by Major Cloud, Tech Companies. https://www.securityweek.com/vulnerability-found-in-fluent-bit-utility-used-by-major-cloud-tech-companies/.
(5) CISA official Eric Goldstein to step down next month. https://www.scmagazine.com/brief/cisa-official-eric-goldstein-to-step-down-next-month.
(6) News & Events | CISA. https://www.cisa.gov/news-events.
(7) Cyber Threats and Advisories | Cybersecurity and Infrastructure … – CISA. https://www.cisa.gov/topics/cyber-threats-and-advisories.
(8) Official Alerts & Statements – CISA | CISA. https://www.cisa.gov/stopransomware/official-alerts-statements-cisa.
(9) CISA warns of hackers exploiting Chrome, EoL D-Link bugs. https://www.bleepingcomputer.com/news/security/cisa-warns-of-hackers-exploiting-chrome-eol-d-link-bugs/.
(10) CISA, HHS warn healthcare of Black Basta ransomware attacks. https://healthitsecurity.com/news/cisa-hhs-warn-healthcare-of-black-basta-ransomware-attacks.
(11) Live Cyber Threat Map | Check Point. https://threatmap.checkpoint.com/.
(12) Cyber Security News Today – Latest Updates & Research – Cybernews. https://cybernews.com/.
(13) Cybersecurity – Latest News, Research and Analysis – WSJ.com. https://www.wsj.com/tech/cybersecurity.
(14) Latest cyber-attack news | The Daily Swig – PortSwigger. https://portswigger.net/daily-swig/cyber-attacks.
(15) The biggest data breaches, hacks of 2021 | ZDNET. https://www.zdnet.com/article/the-biggest-data-breaches-of-2021/.
(16) Data Breaches That Have Happened in 2024 So Far – Updated List – Tech.co. https://tech.co/news/data-breaches-updated-list.
(17) The Fall of the National Vulnerability Database. https://www.darkreading.com/vulnerabilities-threats/fall-of-national-vulnerability-database.
(18) Microsoft’s May 2024 Patch Tuesday Addresses 59 CVEs (CVE … – Tenable. https://www.tenable.com/blog/microsofts-may-2024-patch-tuesday-addresses-59-cves-cve-2024-30051-cve-2024-30040.
(19) Five Trends Shaping The Future Of Vulnerability Management – Forbes. https://www.forbes.com/sites/forbestechcouncil/2022/08/08/five-trends-shaping-the-future-of-vulnerability-management/.

Last weeks brief.

Cyber Security Brief 5/20/2024

Check out my friend’s site, probably shouldn’t link to a competitor, but it’s all good.

Leave a Reply

Your email address will not be published. Required fields are marked *