Top cybersecurity news of 2023

Top Cybersecurity News: The Biggest 10 Stories of the 2023

As we reflect on the cybersecurity landscape of 2023, it’s evident that this was a year of both challenges and advancements. From sophisticated cyberattacks to generative artificial intelligence (AI) developments to pivotal policy changes, 2023 has been a testament to how quickly the cyberthreat landscape evolves and, therefore, how quickly defenders must work to keep up. As a specialist cybersecurity PR & marketing agency, the Code Red team are immersed in the industry news, and work closely with trade journalists every single day to share our clients’ expertise. So, in no particular order, here are our 10 top cybersecurity news stories of 2023!

Top Cybersecurity News of 2023

1. Exploitation of Zero-Day in MOVEit Transfer

A critical zero-day vulnerability in MOVEit Transfer, a popular file transfer solution, was exploited by threat actors. This incident underscored the ongoing challenges organizations face in securing their file transfer protocols against sophisticated cyber-attacks. Read more in The Stack, featuring comment from security researchers at Rapid7 who observed the exploitation of this vulnerability.


New SEC Breach Disclosure Rules

The Securities and Exchange Commission (SEC) introduced new rules for breach disclosure. In particular, the aim of this was to enhance transparency and accountability in the event of cybersecurity incidents. In reality, this development received a mixed response from the industry, as you’ll see in this piece for BetaNews, featuring Delinea’s Joseph Carson and WithSecure’s Paul Brucciani.

Biden’s Executive Order on AI

President Biden’s executive order on AI sparked significant reactions across Europe, reflecting the growing importance of AI in cybersecurity strategies and the need for international collaboration. Read these reactions in SC Magazine UK, featuring Jamf’s Michael Covington and Illumio’s Gary Barlet.

Hackers Using ChatGPT to Spread Malware

In a concerning trend, hackers have been leveraging ChatGPT to spread malware through platforms like Facebook, Instagram, and WhatsApp. Interestingly, this news emerged not long after regulators in Italy decided to ban access to the gen-AI tool, in a decision that many considered an overreaction. You can find out more about the ChatGPT trend on Forbes, featuring BlackFog’s Darren Williams. You can also read about the ChatGPT ban in Italy on The Times, featuring Rapid7’s Erick Galinkin.

US Cybersecurity Strategy

The United States unveiled its comprehensive cybersecurity strategy. It focuses on enhancing national cybersecurity defenses and fostering public-private partnerships. This strategy represents a significant step in addressing the complex and dynamic nature of cyber threats. Read more about the educational and workplace elements of this strategy on Professional Security Magazine, featuring Hackuity’s Sylvain Cortes and Delinea’s Joseph Carson.

Greater Manchester Police Data Breach

This breach occurred due to a ransomware attack on a third-party vendor that supplied ID cards. The personal data of hundreds of police officers, including names, addresses, and photographs, was exposed, which raised concerns about the potential exposure of undercover officers’ identities. This incident was reportedly part of a series of successful cyberattacks on UK law enforcement agencies over a two-month period. Read more about this breach in Infosecurity Magazine, featuring Illumio’s Raghu Nandakumara.

LockBit Ransomware Group Under Scrutiny

The LockBit ransomware group found itself in the crosshairs of international cyber police in the latest arrest. This highlighted the intensified global efforts to combat ransomware operations. Read more on IT Pro, featuring comment from WithSecure’s Stephen Robinson and BlackFog’s Darren Williams, as well as much more top cybersecurity news.

PSNI Data Breach

The Police Service of Northern Ireland (PSNI) suffered a data breach in August 2023, which has been described as the most in the history of UK policing, given the political history and context of contemporary policing in Northern Ireland​​​​​​​​​​​​​​. The breach compromised the details of thousands of serving officers and civilian staff. It was primarily attributed to an outdated approach to data protection and compliance within the force. Consequently, officers’ and staffers’ personal data, including names and department locations, fell into the hands of potential adversaries.  Read more in Infosecurity, featuring Illumio’s Trevor Dearing.

Royal Mail Ransomware Attack

In January, Royal Mail suffered a ransomware attack linked to the aforementioned LockBit operation. The attack disrupted international shipping services, encrypting devices used for international shipping and causing ransom notes to be printed on printers used for customs dockets. The ransomware operation initially disclaimed responsibility but later confirmed their involvement. They subsequently demanded a substantial ransom, which Royal Mail refused to pay. This in turn lead to significant operational disruptions and financial losses for Royal Mail​​​​​​​​. Read more in Infosecurity Magazine, featuring BlackFog’s Darren Williams.

Electoral Commission Data Breach

News emerged in August that the UK Electoral Commission had experienced a major data breach where hostile actors accessed its systems. This incident potentially impacted around 40 million voters, with compromised data including names, emails, and addresses. The breach was first detected in 2022, but the initial unauthorized access occurred in 2021, and the delay in public notification was due to necessary steps taken to secure the systems and assess the breach’s impact. However, despite the scale of the breach, there was no evidence of impact on the security of UK elections​. Find out more in Silicon, featuring Illumio’s Gary Barlet.

 

What Will Be the Top Cybersecurity News of 2024?

Looking forward to 2024, the cybersecurity landscape is poised for further evolution. Evidently, as threat actors become more sophisticated, leveraging emerging technologies like AI, the industry must continue to adapt and innovate. The coming year will undoubtedly bring new challenges, but also opportunities for advancements in cybersecurity defenses and strategies.

If you’re looking to be in these top cybersecurity news headlines in 2024, book in a call with our CEO, Robin Campbell-Burt, to see how we can help your company elevate its media presence.

Back to Knowledge Hub