For more on the Reddit breach, see CyberWire Pro. Did you know that CyberWire Pro offers five tailored briefings to help you focus in on your area of cybersecurity speciality? PLUS, get ad-free listening of all of our public podcasts and exclusive CyberWire Pro podcasts like CSO Perspectives and extended Interview Selects. The Russian cyber auxiliaries appear to have ready access to commodity criminal DDoS tools, notably the Passion botnet described last week by Radware. CERT-UA attributes the activity to a threat actor tracked as UAC-0050.
Russia responded to announcements of coming German and American tank deliveries to Ukraine with a wave of missile attacks against Ukrainian cities early this morning. In a widely expected move, the US has announced that it will send Ukraine additional military aid that includes M1 Abrams tanks. This is enough to equip one Ukrainian tank battalion. The UK had earlier announced that it would sendt fourteen Challenger II tanks to Ukraine, or roughly half a battalion's worth. The majority of the 2nd GMRD has now transferred back to Russia, before almost certainly being recommitted to operations in Ukraine.1 month ago CyberWire
( New York Times ) Leery of Russian aggression, Europe’s economic giant is making a historic attempt to revitalize its armed forces. Hacktivism Is a Risky Career Path ( WIRED ) The IT Army of Ukraine saw a huge influx of first-time hackers. Audacious Breach of FBI Databases Exposes Agents ( Security Intelligence ) Recently, two major breaches of FBI databases and Infragard have created concerns about the organization's data security. Realtek SDK Vulnerability Attacks Highlight IoT Supply Chain Threats ( Unit 42 ) We observed a recent spate of supply chain attacks attempting to exploit CVE-2021-35394, affecting IoT devices with chipsets made by Realtek. Sliver C2 Leveraged by Many Threat Actors ( Cybereason ) Threat Research: Sliver C2 gets more and more traction from Threat Actors, often seen as an alternative from Cobalt Striker.1 month ago CyberWire
Phishing attacks attempt to reel in victims worldwide. For more on the T-Mobile breach, see CyberWire Pro. The researchers found that 60% of all travel-themed emails sent between December 20th and January 10th were phishing attacks. And increasingly data security is cloud security. Additionally, 43% of vulnerabilities were discovered by security researchers rather than the equipment manufacturers.2 months ago CyberWire
The attackers accessed the data of 133 users by using employee credentials acquired in a social engineering attack aimed at MailChimp staff and contractors. “The unauthorized access to 133 customer accounts is a very insignificant security incident for such a large company as Mailchimp. Moreover, the reportedly compromised account of a technical support specialist likely had access to a much larger number of customer accounts, evidencing that the incident was timely detected and contained.”The MailChimp incident and the importance of zero trust. “The recent Mailchimp incident has security experts now pondering if the bad actors are going after email accounts, it’s safe to say they are also going after your data, data stores, repos, APIs and more. “This cybersecurity incident shows just how clever threat actors can be in adapting existing social engineering tactics.2 months ago CyberWire
For more on the implications of ChatGPT, see CyberWire Pro. For more on the impersonation campaign, see CyberWire Pro. The Telegraph broke the news of the confirmed ransomware attack Thursday, with attribution to LockBit, or an actor using the gang’s encryptor. For more on the Royal Mail ransomware attack, see CyberWire Pro. In order for this to work, we need more healthcare organizations to adopt common, standardized processes.” For more on Health3PT, see CyberWire Pro.2 months ago CyberWire
Russian propaganda and diminishing returns. Russian propaganda and diminishing returns. Meanwhile, yesterday the Russian Ministry of Defense announced that it had killed over six-hundred Ukrainian soldiers in a "retaliatory" strike designed to exact retribution for Makiivka. Ministry spokesman Igor Konashenkov said the strikes were retaliation for Ukraine’s attack in Makiivka, in which at least 89 Russian soldiers died. They indicate that the strike was unsuccessful: the missiles failed to hit their targets, and in any case the Ukrainian soldiers weren't there.2 months ago CyberWire
( CyberWire ) Hacktivism reaches Iran as evidence collection for cyber war crimes prosecutions continues. Putin's war against Ukraine will ruin Russia ( Fox News ) Vladimir Putin is pondering the impacts of his war against Ukraine. Microsoft Patch Tuesday: 97 Windows Vulns, 1 Exploited Zero-Day ( SecurityWeek ) Microsoft fixes at least 97 documented software vulnerabilities, including a zero-day that’s already been exploited to escape the browser sandbox. TrendsState Of Software Security ( CA Veracode ) CA Veracode presents volume 9 of the State of Software Security (SOSS) report, our comprehensive review of application testing data. Synopsys Software Security | Software Integrity Group ( Synopsys ) Build high-quality, secure software faster with our application security testing tools and services.2 months ago CyberWire