Ukraine attributes cyberattacks to Russia, and Microsoft's analysis of the incidents suggests the attackers may have used a wiper. A new Chinese threat actor is described. Cobalt Strike being used against VMware Horizon Server.
Cyber conflict and mixed signals. Nation-state cyberespionage, privateering, and direct theft.
Open source security concerns. Cyberespionage, with some catphishing. Spyware in El Salvador.
Warning of Russian cyber ops. Ransomware notes. Short-form fraud. NIST's secure engineering standards.
Software supply chain security. A new backdoor. An intelligence agency fumbles a RAT. A warning on commercial surveillance. Europol told to delete personal data. Denmark investigates the leak of "highly classified" material. And bogus QR-codes are being used as phishbait in a parking fee scam.