The European Union on Friday publicly attributed the GhostWriter cyberespionage and disinformation operation to Russia. "The European Union and its Member States strongly denounce these malicious cyber activities, which all involved must put to an end immediately. We urge the Russian Federation to adhere to the norms of responsible state behaviour in cyberspace." The attribution and warning didn't say which nations had received the attentions of GhostWriter, but, as the Washington Post notes, the timing of the communiqué suggests concern for Germany, which held elections over the weekend.
Independently, Finland's Security and Intelligence Service called out both Russian and Chinese cyberespionage and influence operations as major continuing threats, Bloomberg reports.
According to Rest of World, Cambodian Prime Minister Hun Sen zoombombed an online conference held by the country's banned opposition party to tell participants that their communications were being monitored.
On Friday ZeroFox discovered and described a new ransomware strain they're calling "Colossus." Its one known victim is a US-based automotive dealership group, and the attack is the now familiar double-extortion that both encrypts data and then threatens their public release. Colossus hasn't shown much disposition to chatter on the dark web, but its operation suggests familiarity with the ransomware-as-a-service criminal market.
The Record reports that the major European call-center operator GSS has sustained an attack with Conti ransomware.
Russophone security researcher Habr, disappointed with his treatment by Apple's bug bounty program and Apple's failure to respond, has published, Forbes says, three zero-day vulnerabilities in iOS 14 and iOS 15.