Weekly Report 30 December 2024

Meridian Group’s Cyber Intelligence Weekly Update

Our new Cyber Intelligence Weekly Report covers various highlights of the past week. The principal events:

  • Androxgh0st rises from the ashes of Mozi to become the most widespread malware: Androxgh0st, an evolution of Mozi, has emerged as a global threat to critical infrastructure. It targets web servers and IoT devices by exploiting mass vulnerabilities. Threats are expected to increase by 100% by mid-2025.
  • The European Data Protection Supervisor and artificial intelligence models: The EDPB defines a three-step test for the legitimate use of personal data in AI models, ensuring anonymity and legitimate interest. However, activists warn about the risk of inconsistent application of the GDPR. New guidelines will be published to address emerging issues such as web scraping.
  • US investigation into Chinese dominance in semiconductors: The US investigates Chinese dominance in semiconductors, which is financed by government subsidies and considered a security risk. Chinese production, based on outdated technologies, undermines global competition. Restrictions may follow to protect the US market.
  • Europe risks becoming a ‘digital colony’: A French report denounces Europe’s technological backwardness compared to the US and China. It proposes the development of European actors to safeguard digital sovereignty. Integration into global AI governance could take place under the auspices of the United Nations.
  • Lockbit saga: Russian-Israeli citizen indicted: Rostislav Panev, alleged developer of LockBit, is charged with 41 offences. The investigation reveals the use of advanced tools for ransomware attacks on a global scale. LockBit remains active despite international operations that have affected its infrastructure.
  • North Korea and sending troops to Russia: Pyongyang prepares to send troops and suicide drones to Russia to support the war in Ukraine. About 12,000 North Korean troops are already on Russian territory, with significant casualties. North Korean actions increase geopolitical tensions in the region.
  • Cyber attack on InfoCert: An attack on InfoCert exposed the sensitive data of 5.5 million customers by exploiting a vulnerability in a third-party vendor. The company claims that its systems were not compromised. The event underlines the importance of security in the supply chain and the implementation of the NIS2 directive.


To view the full report: CLICK HERE

(Report also available in ENGLISH)

Share this post to help spread computer security awareness!

Condividi il post su: