January 24, 2025

IT CyberSecurity Headlines

Over the past few days, several significant cybersecurity developments have emerged:

SonicWall SMA1000 Appliances Deserialization Vulnerability:

SonicWall SMA1000 Appliance Management Console (AMC) and Central Management Console (CMC) contain a deserialization of untrusted data vulnerability, which can enable a remote, unauthenticated attacker to execute arbitrary OS commands.

CVE-2025-23006 Date Added: 2025-01-24

JQuery Cross-Site Scripting (XSS) Vulnerability: JQuery contains a persistent cross-site scripting (XSS) vulnerability. When passing maliciously formed, untrusted input enclosed in HTML tags, JQuery's DOM manipulators can execute untrusted code in the context of the user's browser.

CVE-2020-11023 Date Added: 2025-01-23

Russian Hackers Impersonate IT Support on Microsoft Teams

Russian cybercriminals have been posing as remote IT support staff on Microsoft Teams to infiltrate networks and deploy ransomware. They initiate contact by overwhelming targets with spam emails and then impersonate tech support personnel on Teams to gain remote access, enabling them to freeze networks and steal data for ransom. Sophos, a UK-based cybersecurity firm, has identified 15 such incidents in the past three months. The hackers are linked to Russian criminal gangs Fin7 and Storm-1811. This method exploits Microsoft Teams' default setting that allows external contacts to communicate with internal staff. The UK government is considering a ban on public bodies paying ransoms to discourage such cybercrimes and emphasizes the need for robust cyber defenses.

Credit → The Times & The Sunday Times

Outgoing FCC Chair Highlights Urgent Need for Enhanced Cybersecurity

Jessica Rosenworcel, the outgoing Chair of the Federal Communications Commission (FCC), has emphasized the critical importance of addressing telecommunications security issues in light of the recent "Salt Typhoon" hacking incident. This significant cyber-espionage attack, linked to China, compromised several U.S. telecommunications firms. Rosenworcel underscores the necessity for robust network security measures to protect national and economic interests. She has introduced new cybersecurity requirements for telecom operators, which were narrowly approved by the FCC. However, these proposals face opposition from incoming FCC Chair Brendan Carr and other GOP members, who argue against regulatory overreach. Rosenworcel stresses the need for comprehensive network security regulations to prevent future breaches.

Credits → reuters.com → WIRED

Importance of Cybersecurity Due Diligence in Mergers and Acquisitions

As organizations pursue strategic growth through mergers and acquisitions (M&A), the escalating frequency and sophistication of cyber threats necessitate stringent cybersecurity due diligence. This is essential for protecting financial and reputational interests, ensuring compliance with regulations like GDPR and CCPA, and preventing deal disruptions from cyber vulnerabilities. Key areas of focus include incident response plans, data management, technical infrastructure, emerging technologies, historical incidents, third-party risks, legal obligations, intellectual property protection, and insurance coverage. Effective cybersecurity due diligence helps safeguard investment value and establishes robust post-acquisition integration.

Credit → reuters.com