Cybersecurity news February 2024

Curated cybersecurity news

summary for facility management professional, building owners and IT professionals who are interested in building security and Facility IT.

What is new in February, 2024 in Cybersecurity?

FBI director warns that Chinese hackers are preparing to ‘wreak havoc’ on US critical infrastructure

FBI Director Christopher Wray on Wednesday warned that Chinese hackers are preparing to “wreak havoc and cause real-world harm” to the US.

“China’s hackers are positioning on American infrastructure in preparation to wreak havoc and cause real-world harm to American citizens and communities, if or when China decides the time has come to strike,” Wray told the House Select Committee on the Chinese Communist Party. Read more

Announcing the Alpha Release of BACCARI

BACnet International is proud to announce the alpha release of BACCARI – The BACnet Certificate Authority Reference Implementation Tool, now available to all registered participants of the Cybersecurity Acceleration Program. This project is an example implementation of a Certificate Authority for BACnet.  It builds and processes files using the CARI file format, as proposed in 135-2020 Addendum cs, out for public review. The zip file format conveys BACnet/SC CSRs to a certificate authority and returns the signed operating certificates. This tool will become the industry’s standard for certificate authority implementation.

Currently, this project is at the ALPHA stage. The user-interface is not in the final style, but is functional. The beta version will be scheduled for later in the year. Read more

NIST updates Cybersecurity Framework after a decade of lessons

After ten years operating under the original model, and two years working to revise it, the National Institute of Standards and Technology (NIST) has released version 2.0 of its Cybersecurity Framework (CSF).

Unlike the original, which was designed with critical infrastructure sectors in mind, CSF 2.0's scope has been expanded to suitable security tips for organizations in any sector and of any size "regardless of their degree of cybersecurity sophistication," NIST said. Read more

DOE Announces $45 Million to Protect Americans From Cyber Threats and Improve Cybersecurity in America's Energy Sector

8 Worrying Cybersecurity Statistics You Need to Know in 2024

We asked over 1,000 businesses about data breaches and their readiness to defend against them. Here's what we found. The year 2023 was littered with cyber attacks, data breaches, and other online criminal activity targeting both businesses and consumers. Unfortunately, there's no reason to believe 2024 will be any different. Now more than ever, businesses have to be on their guard to defend against the latest cybersecuruity threats. Read more

New SEC Cybersecurity Disclosure Rule: Why Wall Street Will Take Cybersecurity Seriously In 2024

Last year, the Securities and Exchange Commission (SEC) adopted its first-ever rule for cybersecurity. The rule states that if a company experiences a material cybersecurity incident, it has four business days to report the incident and its response to the SEC. While the rule itself won’t revolutionize cybersecurity on Wall Street, it signals a sea change in perception: Wall Street and the broader business community is now giving cybersecurity deserved attention. Read more

Cloud intrusions spiked 75% in 2023, CrowdStrike says

Threat actors are targeting organizations’ inconsistent cloud security systems to intrude networks and maintain persistence. More than 4 in 5 cloud intrusions directly attributed to a threat actor last year were financially motivated, the report said. Read more

Also in Cimetrics News