The US Cybersecurity and Infrastructure Security Agency (CISA) has launched the "Secure by Design" initiative in 2023, now urging software consumers to adopt a "Secure by Demand" approach. CISA Director Jen Easterly emphasized at Black Hat USA the role of organizations in promoting Secure by Demand by using their purchasing power to prioritize software security. A new Secure by Demand Guide provides questions and resources to help organizations evaluate the cybersecurity practices of software manufacturers. In May, a Secure by Design pledge was introduced, with nearly 200 software manufacturers committing to improved security practices. CISA is actively tracking and promoting the progress of these manufacturers to reduce vulnerabilities and improve security across the technology ecosystem.

CISA Encourages Organizations to Adopt a 'Secure by Demand' Strategy Infosecurity Magazine

The FBI and Cybersecurity and Infrastructure Security Agency (CISA) have issued an updated advisory warning about the rebranded BlackSuit ransomware group, formerly known as Royal Ransomware. This group has extorted victims for as much as $60 million, with total demands reaching $500 million. The advisory provides updated tactics, techniques, procedures, and indicators of compromise to help cybersecurity defenders. BlackSuit primarily gains access through phishing and disables security protections to exfiltrate data before deploying ransomware. Notably, their ransom demands involve direct dark web contact and aggressive extortion tactics. The FBI recommends mitigation measures including strong password policies, timely patching, multi-factor authentication, and network segmentation.

FBI Issues Warning As ‘Men In Black’ Hackers Demand $60 Million Ransom Forbes

Las Vegas law enforcement, the FBI, and Semperis conducted a ransomware tabletop exercise targeting the healthcare sector at Black Hat USA 2024 to tackle rising threats exemplified by the Change Healthcare attack. This exercise involved a red team launching a ransomware attack against a simulated hospital, Sunshine Healthcare, intending to disrupt patient services to the point of forcing a ransom payment. The scenario illustrated the ease with which attackers exploit vulnerabilities despite healthcare's need for quick yet cautious responses due to patient care priorities. Post-Change Healthcare's attack, United Healthcare paid a $22 million ransom, underscoring the critical negotiations' challenges. Experts emphasize that direct communication with attackers should be avoided, advocating for third-party negotiation assistance to mitigate risks.

#BHUSA: Ransomware Drill Targets Healthcare in Operation 911 Infosecurity Magazine

Grant Smith, a security researcher, received a 'USPS package delivery' smishing text—one of up to 100,000 scam texts sent daily worldwide by the Smishing Triad. Upon discovering that his wife had fallen for the scam and entered her credit card details, Smith embarked on a mission to hunt down the scammers. Over several weeks, he exposed the Chinese-language group behind the scheme, hacked into their systems, and gathered substantial evidence. He provided this information to USPS inspectors and a US bank, preventing further fraudulent activities. Smith's findings reveal the mass scale of the problem, affecting hundreds of thousands of victims who inadvertently provided sensitive personal information.

USPS Text Scammers Duped His Wife, So He Hacked Their Operation Wired