Several significant developments have emerged in today's dynamic cybersecurity landscape, highlighting threat actors' evolving tactics and the critical importance of robust cybersecurity measures.

Firstly, the emergence of ShrinkLocker, a ransomware variant exploiting Windows BitLocker, underscores cybercriminals' adaptability in leveraging built-in encryption features for malicious purposes.

Secondly, pharmacy benefit management company Sav-Rx's disclosure of a data breach affecting 2.8 million Americans underscores the ongoing challenges in safeguarding sensitive personal and medical information.

Standard tools are now being employed against organizations, as hackers no longer need to develop or learn new techniques, all while evading detection. This trend has significantly reduced the time required to execute a successful attack, particularly because most organizations rely on well-known software.

 1. Ransomware Exploits Windows BitLocker

A new strain of ransomware, dubbed ShrinkLocker, has surfaced. It leverages the Windows BitLocker feature to encrypt victim data. Threat actors are manipulating BitLocker, a full-volume encryptor integrated into the Windows operating system, to encrypt entire hard drives, rendering data inaccessible. Researchers from Kaspersky have identified this new threat, highlighting the importance of robust cybersecurity defenses.

 2. Sav-Rx Discloses Data Breach

Pharmacy benefits management company Sav-Rx has disclosed a data breach affecting 2.8 million Americans. The cyberattack, which occurred last October, resulted in the theft of personal data, including sensitive medical information. Investigations into the breach have been ongoing for eight months, underscoring the complex nature of cyber incidents and the importance of timely detection and response.

 3. New ATM Malware Poses Global Threat

A new strain of ATM malware has been advertised on the dark web, claiming to compromise a significant percentage of ATMs worldwide. Targeting machines from leading manufacturers, including Diebold Nixdorf and NCR, the malware seriously threatens financial institutions and consumers. The availability of a three-day trial further underscores the sophistication of cybercriminal tactics.

 4. Phishing Campaigns Targets Finance Companies

A phishing campaign employing a Python clone of the popular game Minesweeper has surfaced, targeting finance companies in Europe and the U.S. The campaign utilizes malicious scripts hidden within the game code to install remote management software, granting threat actors access to compromised systems. Vigilance against phishing attempts remains essential in mitigating cyber risks.

 5. High-Severity Vulnerability Affects Cisco Firepower Management Center

Cisco has issued a warning regarding a high-severity vulnerability in the web-based management interface of the Firepower Management Center (FMC) Software. Exploitable via SQL injection, the vulnerability poses a significant risk to organizations using Cisco's security solutions. Immediate action is advised to mitigate potential exploitation. 

6. Recovery Efforts Continue at Ascension Following Cyberattack

Healthcare network Ascension is gradually recovering from a recent cyberattack, which disrupted operations across its 140 member hospitals and senior care centers. The incident underscores the critical importance of cybersecurity in safeguarding patient care and sensitive medical information. Despite ongoing recovery efforts, challenges persist, highlighting the far-reaching impact of cyber incidents on healthcare organizations.

 7. Courtroom Recording Software Compromised with Backdoor Installer

Justice AV Solutions (JAVS), a widely used technology for recording courtroom proceedings, has been compromised by hackers. A backdoor installer implanted in a software update allows threat actors to gain complete control of systems, posing significant privacy and security risks. Organizations utilizing JAVS technologies are advised to address the security issue and mitigate potential threats immediately.

Stay informed and proactive about evolving cyber threats. Cybersecurity remains a top priority for safeguarding digital assets and maintaining trust in an increasingly interconnected world.

In summary, the cybersecurity landscape continues to evolve, presenting complex challenges for organizations and individuals alike. By remaining vigilant, proactive, and leveraging robust cybersecurity solutions, stakeholders can effectively mitigate risks and safeguard against emerging threats in an increasingly interconnected digital environment.

 Stay informed and proactive in the face of evolving cyber threats. Cybersecurity remains a top priority in safeguarding digital assets and maintaining trust in an increasingly interconnected world.

CyberSecOp is a leading Cybersecurity Services Provider offering a comprehensive portfolio of Cybersecurity Maturity Model Certification (CMMC) advisory services and cyber security solutions.  

CyberSecOp is an CMMC Registered Provider Organization (RPO) listed on the CMMC-AB Marketplace. Our organization staff have passed the RP Exam, Background Check and signed the RPO agreement, indicating our commitment to comply with the CMMC-AB Code of Professional Conduct. CyberSecOp is also an ISO 27001-certified organization.

 What are CMMC-AB, CMMC, and the Responsibility of the RPO Designation?

 CMMC-AB authorizes RPOs to provide CMMC consulting services in support of government contractors, supply chain/DoD suppliers, and organizations seeking certification within the Defense Industrial Base (DIB).

The CMMC-AB is an independent accreditation body that manages the CMMC on behalf of the DoD. The CMMC framework is a set of mandatory cybersecurity requirements that all contractors within the DoD supply chain will be required to implement and, beginning this year, to have verified by an independent CMMC Third Party Assessment Organization (C3PAO). CMMC was created to address the ongoing theft of and unauthorized access to Controlled Unclassified Information (CUI) by foreign adversaries through the enforcement of good cyber hygiene and best practices. 

It initially launched in June 2020 and formally announced in August 2020 that it was accepting applications for five types of credentialed roles within the CMMC ecosystem. These include the following:

·         C3PAOs

·         Certified Assessors (CAs)

·         Certified Professionals (CPs)

·         Licensed Partner Publishers (LPPs)

·         Registered Practitioners (RPs)

·         Registered Provider Organizations (RPOs)

The CMMC framework establishes five certification levels with a defined security posture or maturity level an organization must achieve, determined by the sensitivity of the information they handle. These are outlined below:

How can CyberSecOp help your organization with CMMC?

CyberSecOp has created a suite of advisory services to help organizations effectively plan and prepare for an official CMMC assessment: CMMC Consulting, CMMC Readiness, Assessments, CMMC-RPO, CMMC Gap Analysis, DFARS, ITAR, VCISO, MSSP, NIST 800 53, and NIST Cybersecurity Framework (CSF), NIST 800-171, Security Services.

 CMMC Scoping Workshop – determine the type of data and the required CMMC maturity level needed. Identify how data is received, stored, shared and handled on all information systems.

CMMC Gap Analysis – identify discrepancies between current state and CMMC maturity levels as determined in the scoping workshop. The CMMC Gap Analysis will provide areas of weakness that need to be targeted to reach the desired maturity level.

 CMMC Remediation Strategy –assist the organization with remediation efforts, including resolving discrepancies identified in the CMMC Gap Analysis and creating a strategic plan for remediation. This process may include security control testing, polices, procedures and plan creation to close all known gaps related to the desired maturity level. 

VCISO (Virtual Chief Information Security Officer) – CyberSecOp provides a board-level security expert backed by a team of professionals to ensure continuous compliance and maintain the maturity level as threats, infrastructure and business objectives evolve. Services include the following.

•  Compliance Advisory Consulting Services

• CMMC Readiness

• Vulnerability and Penetration Testing Assessment

• Ransomware Response

• Forensic Analysis

• 24/7/365 Security Operations Center (SOC)

• Cyber Security Consulting

• CMMC Cybersecurity RP, RPO

• Incident Response & Incident Management

• Security Assessments

• Security Awareness

• Data Loss Prevention 

About CyberSecOp

 Cyber Security Operations Consulting (CyberSecOp) is an innovative cybersecurity firm, providing consultants and managed security services to empower businesses since 2001. Our IT & cybersecurity consulting services protect you from cyber criminals in myriad ways. From implementing individualized Cyber Security Programs, which include written Information Security Programs, Incident Response Policies and Plans, and Cybersecurity Assessments, to offering the best-in-class cybersecurity consulting, tools, and IT security solutions, we do it all.

CyberSecOp is an CMMC-AB RPO & ISO 27001 Certified Organization - join thousands of businesses by putting your security in our hands. For more information about CyberSecOp and CMMC, contact us at 866-973-2677, Sales@CyberSecOp.com or visit: www.CyberSecOp.com.