Cybersecurity News November 2024

Curated cybersecurity news

summary for facility management professional, building owners and IT professionals who are interested in building security and Facility IT.

What is new in November, 2024 in Cybersecurity?

Google's 2025 Cybersecurity Forecast: More AI-powered scams  

Google put together a 2025 Cybersecurity Forecast to highlight several scams that are growing in popularity. Learn more.

Enhancing Cyber Resilience: Insights from CISA Red Team Assessment of a US Critical Infrastructure Sector Organization

The Cybersecurity and Infrastructure Security Agency (CISA) conducted a red team assessment (RTA) at the request of a critical infrastructure organization. During RTAs, CISA’s red team simulates real-world malicious cyber operations to assess an organization’s cybersecurity detection and response capabilities. In coordination with the assessed organization, CISA is releasing this Cybersecurity Advisory to detail the red team’s activity—including their tactics, techniques, and procedures (TTPs) and associated network defense activity. Additionally, the advisory contains lessons learned and key findings from the assessment to provide recommendations to network defenders and software manufacturers for improving their organizations’ and customers’ cybersecurity posture. Learn more

What’s new with cybersecurity standards?

Now that they’re been around for more than a few years, many of the best-known cybersecurity standards and guidelines have been added to, updated and refreshed a few times. Here’s their present status. Learn more.

AI In Cybersecurity: Understanding The New Regulatory Framework And What It Means For Businesses

AI has driven the use of machine learning algorithms to identify cyber threat patterns and their impacts. Analyzing these patterns facilitates real-time cybersecurity monitoring, helping to reduce threats and prevent unauthorized data access. AI also supports regulatory compliance in data management across business operations, aiding in sustainable practices. Regulatory bodies emphasize risk assessment to proactively identify and mitigate potential cyber threats, and AI-powered systems play a key role in strengthening these defenses. Learn more.

Cybersecurity challenges persist but optimism remains for the future

Despite relentless efforts by cybersecurity professionals to combat the growing sophistication of bad actors, this year has been marked by numerous high-profile cyberattacks and breaches. However, Mark Bowen, Editorial Director of Lynchpin Media and Editor of Intelligent CISO, believes there are still compelling reasons for optimism as the industry continues to adapt and innovate in response to these challenges. Read more

FBI, CISA, and Partners Issue Updated Advisory on BianLian Ransomware Tactics

The FBI, Cybersecurity and Infrastructure Security Agency (CISA), and Australian Signals Directorate (ASD) have released an updated joint Cybersecurity Advisory to address the evolving tactics, techniques, and procedures (TTPs) employed by the BianLian ransomware and data extortion group. This alert outlines critical steps for organizations to protect themselves and highlights how BianLian has shifted its focus from encryption to exclusive data exfiltration-based extortion as of January 2024. Read more

Zero Days Top Cybersecurity Agencies' Most-Exploited List

Which vulnerabilities need fixing first to best block nation-state and other hacking attempts?

One answer to that question arrives in the form of an annual list of the 15 vulnerabilities most routinely exploited by attackers, prepared by cybersecurity officials across the Five Eyes intelligence partnership countries, including the U.S. National Security Agency and Cybersecurity and Infrastructure Security Agency. Read more

Also in Cimetrics News