Reddit breached. Top US cyber diplomat says his Twitter account was hacked. Updates on cyber activity in the hybrid war against Ukraine. Courts and torts. Policies, procurements, and agency equities.

1 month ago CyberWire

For more on the Reddit breach, see CyberWire Pro. Did you know that CyberWire Pro offers five tailored briefings to help you focus in on your area of cybersecurity speciality? PLUS, get ad-free listening of all of our public podcasts and exclusive CyberWire Pro podcasts like CSO Perspectives and extended Interview Selects. The Russian cyber auxiliaries appear to have ready access to commodity criminal DDoS tools, notably the Passion botnet described last week by Radware. CERT-UA attributes the activity to a threat actor tracked as UAC-0050.
Continue reading...

Read On "CyberWire"

More News On "CyberWire"

Ukraine at D+336: Missile reprisal for tank promises.

Russia responded to announcements of coming German and American tank deliveries to Ukraine with a wave of missile attacks against Ukrainian cities early this morning. In a widely expected move, the US has announced that it will send Ukraine additional military aid that includes M1 Abrams tanks. This is enough to equip one Ukrainian tank battalion. The UK had earlier announced that it would sendt fourteen Challenger II tanks to Ukraine, or roughly half a battalion's worth. The majority of the 2nd GMRD has now transferred back to Russia, before almost certainly being recommitted to operations in Ukraine.

1 month ago CyberWire

DragonSpark hits East Asia. ProxyNotShell in the wild. Privacy investment. IoT supply chain threat.

( New York Times ) Leery of Russian aggression, Europe’s economic giant is making a historic attempt to revitalize its armed forces. Hacktivism Is a Risky Career Path ( WIRED ) The IT Army of Ukraine saw a huge influx of first-time hackers. Audacious Breach of FBI Databases Exposes Agents ( Security Intelligence ) Recently, two major breaches of FBI databases and Infragard have created concerns about the organization's data security. Realtek SDK Vulnerability Attacks Highlight IoT Supply Chain Threats ( Unit 42 ) We observed a recent spate of supply chain attacks attempting to exploit CVE-2021-35394, affecting IoT devices with chipsets made by Realtek. Sliver C2 Leveraged by Many Threat Actors ( Cybereason ) Threat Research: Sliver C2 gets more and more traction from Threat Actors, often seen as an alternative from Cobalt Striker.

1 month ago CyberWire

Orca describes, Microsoft fixes, four Azure SSRF issues. DNV recovering from ransomware. T-Mobile discloses a data breach. Cyberattack hits Nunavut utility.

Phishing attacks attempt to reel in victims worldwide. For more on the T-Mobile breach, see CyberWire Pro. The researchers found that 60% of all travel-themed emails sent between December 20th and January 10th were phishing attacks. And increasingly data security is cloud security. Additionally, 43% of vulnerabilities were discovered by security researchers rather than the equipment manufacturers.

2 months ago CyberWire

Industry looks at the MailChimp data incident.

The attackers accessed the data of 133 users by using employee credentials acquired in a social engineering attack aimed at MailChimp staff and contractors. “The unauthorized access to 133 customer accounts is a very insignificant security incident for such a large company as Mailchimp. Moreover, the reportedly compromised account of a technical support specialist likely had access to a much larger number of customer accounts, evidencing that the incident was timely detected and contained.”The MailChimp incident and the importance of zero trust. “The recent Mailchimp incident has security experts now pondering if the bad actors are going after email accounts, it’s safe to say they are also going after your data, data stores, repos, APIs and more. “This cybersecurity incident shows just how clever threat actors can be in adapting existing social engineering tactics.

2 months ago CyberWire

Dealing with the implications of ChatGPT. Telegram impersonation affects cryptocurrency firm. Phishing attacks.

For more on the implications of ChatGPT, see CyberWire Pro. For more on the impersonation campaign, see CyberWire Pro. The Telegraph broke the news of the confirmed ransomware attack Thursday, with attribution to LockBit, or an actor using the gang’s encryptor. For more on the Royal Mail ransomware attack, see CyberWire Pro. In order for this to work, we need more healthcare organizations to adopt common, standardized processes.” For more on Health3PT, see CyberWire Pro.

2 months ago CyberWire

A snapshot of Russian disinformation, and its remaining audience. A look at ChatGPT.

Russian propaganda and diminishing returns. Russian propaganda and diminishing returns. Meanwhile, yesterday the Russian Ministry of Defense announced that it had killed over six-hundred Ukrainian soldiers in a "retaliatory" strike designed to exact retribution for Makiivka. Ministry spokesman Igor Konashenkov said the strikes were retaliation for Ukraine’s attack in Makiivka, in which at least 89 Russian soldiers died. They indicate that the strike was unsuccessful: the missiles failed to hit their targets, and in any case the Ukrainian soldiers weren't there.

2 months ago CyberWire

Cyberespionage and hybrid-war hacktivism. Healthcare cyber risk. Cryptojacking Kubernetes. Patch Tuesday.

( CyberWire ) Hacktivism reaches Iran as evidence collection for cyber war crimes prosecutions continues. Putin's war against Ukraine will ruin Russia ( Fox News ) Vladimir Putin is pondering the impacts of his war against Ukraine. Microsoft Patch Tuesday: 97 Windows Vulns, 1 Exploited Zero-Day ( SecurityWeek ) Microsoft fixes at least 97 documented software vulnerabilities, including a zero-day that’s already been exploited to escape the browser sandbox. TrendsState Of Software Security ( CA Veracode ) CA Veracode presents volume 9 of the State of Software Security (SOSS) report, our comprehensive review of application testing data. Synopsys Software Security | Software Integrity Group ( Synopsys ) Build high-quality, secure software faster with our application security testing tools and services.

2 months ago CyberWire

America's top cyber diplomat says his Twitter account was hacked

America's top cyber diplomat says his Twitter account was hacked with the South Korean government, according to the State Department.

1 month ago www.cnn.com

Reddit breached. Top US cyber diplomat says his Twitter account

UK and US issue joint sanctions against Russian ransomware operators. traced back to the May 2021 Colonial Pipeline ransomware attack.

1 month ago thecyberwire.com

Cyber Warfare as an Instrument of Hybrid Warfare: A Case Study of

The changing domains of war in hybrid regimes complemented by the cyber-attacks against Pakistan through Google domain and hacked.

1 month ago www.researchgate.net

Ukraine war: Berlin's 'hybrid war' against Russia, US Navy in Baltics

Berlin's 'hybrid war' against Russia, US Navy in Baltics and Zaporizhzhia nuclear plant. These are the latest developments in the Ukraine

5 months ago www.euronews.com

The New York Post Says Its Twitter Account Was Hacked

The New York Post Says Its Twitter Account Was Hacked Font Size: The New York Post (NYP) confirmed Thursday morning that its Twitter account

25 days ago dailycaller.com

Russia's war on Ukraine: Timeline of cyber-attacks | Think Tank

Russia launched its war on Ukraine on 24 February 2022, but Russian cyber-attacks against Ukraine have persisted ever since Russia's illegal

5 months ago www.europarl.europa.eu

Iker Casillas says his Twitter account was hacked after deleting 'I'm

Former Spain goalkeeper Iker Casillas said on Sunday his Twitter account was hacked after a post saying he was gay created a stir on the

4 months ago www.espn.com

Cyber threat activity related to the Russian invasion of Ukraine

To date, there are eight tracked malware families that Russia-linked cyber threat actors have used for destructive activity against Ukraine:

2 months ago cyber.gc.ca

Attribution of Russia's Malicious Cyber Activity Against Ukraine

These disruptive cyber operations began in January 2022, prior to Russia's illegal further invasion of Ukraine and have continued throughout the

2 months ago www.state.gov

Russia-Ukraine War Timeline: Cyber and Physical Intel | Flashpoint

Timeline of Russia's Invasion of Ukraine: Cyber and Physical Warfare · Intro: Cyber and physical warfare · October 2022: Mobilization black market.

2 months ago flashpoint.io

BREAKING NEWS

20 days ago - Tesla Targets Lithium Bottleneck, Aims To Undercut China: Investor Day Follow Up 20 days ago - Donald Trump Jr. Claims He Has Been Barred from Going on Fox News - 'Biggest RINO Ever' Behind It? 20 days ago - 25 Best Movies On Netflix 20 days ago - FPL 2022-23: Top Captain picks, differential picks, team selection of Gameweek 26 for FPL 2022-23 season, Check out all Fantasy Premier League Tips 23 days ago - Murdoch admits some Fox News hosts 'endorsed' false election fraud claims 23 days ago - Watch: 2 needed to win, Neil Wagner crushes James Anderson and England as New Zealand win thriller by barest of margins 23 days ago - Saying Wants To Talk About Dominion 23 days ago - England captain Jos Buttler excited by buzz around team’s new leg-spinner and his impact on white-ball cricket 23 days ago - Knicks win 6th straight, drop Celtics from top spot in NBA 23 days ago - New Zealand beat England following one of all-time great finishes 23 days ago - Megan Thee Stallion Receives Belated Apology From 1501 CEO Carl Crawford Amid Years-Long Feud 23 days ago - Murdoch testified Fox commentators ‘endorsed’ Trump’s 2... 23 days ago - Avalon Airshow a display of militarism 23 days ago - The 10 perfect fits for the MCU’s Iron Lad 23 days ago - Girls’ basketball: Strong second half propels Bethlehem to semifinal victory over Shen 58-40 23 days ago - Following hectic stretch, Clippers welcome Wolves to town 23 days ago - US clears Australia to acquire new long-range missiles 23 days ago - Families Claim Years of Racist Abuse at Upland Elementary School 23 days ago - Sanjay Sharma’s killing: Working on a 360 degree approach; killers of Sharma won’t go scot free: LG Manoj Sinha 23 days ago - Exit polls: Hung House in Meghalaya, clear majority in Nagaland, iffy in Tripura 23 days ago - Jewish groups condemn settler rampage, avoid mentioning Netanyahu 23 days ago - San Bernardino County declares local emergency after massive snowstorms 23 days ago - Cyclone Gabrielle shows family violence challenge in NZ 23 days ago - Mexico official guilty of taking bribes to shield cartels 23 days ago - Simex receives mixed reactions from Dabawenyos 23 days ago - FIFA Best Football Award: Messi beats Mbappe. Ancelotti defeated by Scaloni 23 days ago - Banished Nicaraguans Assess Ways Out of Migration Limbo 23 days ago - Argentina world cup-winning captain Lionel Messi wins Best FIFA Men’s Player award ahead of Kylian Mbappe 23 days ago - Rural Rotorua community could soon be given life saving medical device 23 days ago - Destiny 2 Season 20 Artifact Mods (Season of the Defiance) 23 days ago - NZME right to apologise for Heather du Plessis-Allan' mockery of teenager - BSA 23 days ago - Master Minds Recap: February 27, 2023 – Fikkle Fame 23 days ago - Michigan misses opportunities, loses to Marquette on the road 23 days ago - Palladium Market to incur value growth at 15% CAGR by 2023 23 days ago - Jayson Tatum Adds to MVP Case With Game-Winner Over 76ers - 23 days ago - U.S. approved 70% of export license applications from China in 2022 23 days ago - Mexican president disparages pro-democracy demonstrators 23 days ago - It is time to change the way we think about crop insurance – Ohio Ag Net 23 days ago - Messi and Putellas voted best players at FIFA awards again 23 days ago - Los Angeles Lakers vs. Memphis Grizzlies – 2/28/23 Free Pick & NBA Betting Prediction 23 days ago - In relief to SpiceJet, lessor converts dues into stake 23 days ago - Adriana Lima stuns in an elegant black off-the-shoulder gown as she takes to the red carpet 23 days ago - Student Association meets with Micron to potentially develop a partnership 23 days ago - Messi, Putellas headline FIFA Best award winners as Kerr makes World XI 23 days ago - Skymet predicts ‘searing’ summer; forecast raises concerns over FY24 agri growth 23 days ago - Former FBI Special Agent Sentenced to 6 Years in Prison for Accepting Bribes Paid by Attorney Linked to Organized Crime Figure 23 days ago - Exclusive: Sequoia India's Shailendra Singh on corporate governance lapses at startups, VC accountability, frothy tech valuations, and more 23 days ago - Winds shred S. Plains; Calif. to get more snow 23 days ago - England 90 runs from 2nd test and series win in New Zealand 23 days ago - INEC disappoints Nigeria, Africa 23 days ago - Bitcoin and crypto markets gain ground on Sunday; G20 recommends a global framework for regulations 23 days ago - Atopic Dermatitis Market Facts, Future Scenarios, Growth and Analytical Insights 2031 | CAGR of 15.1% 23 days ago - Mbappé and Messi combine as leader PSG wins at Marseille 23 days ago - Kylian Mbappe finally changes his tune on Cristiano Ronaldo and Lionel Messi debate 23 days ago - Macron: ‘New era’ in economic, military strategy in Africa 23 days ago - Reuters World News Summary 23 days ago - ALLAN PATON, BIDEN AND AFRICA – THISDAYLIVE 23 days ago - Messi Wins FIFA’s Best Men’s Player Award Again 23 days ago - Ontario woman told she'd lose $4,000 after making mistake booking flight 23 days ago - ‘Rachel Hendrix’ Review: Director Victor Nuñez Makes Welcome Return With Poignant Drama