Dateline Moscow, Kyiv, Podgorica: A counteroffensive, recruiting troubles, and privateering.
Ukraine at D+189: The third day of Ukraine's counteroffensive. (CyberWire) Ukraine claims to have made slow but significant progress in its counteroffensive around Kherson. Isolation of the battlefield continues, with rocket strikes against bridges and airstrikes against Russian air defense radars. Russia continues to look for a solution to its manpower shortages. And the cyberattack against Montenegro is now known to be a ransomware campaign.
Russia-Ukraine war: List of key events, day 190 (Al Jazeera) As the Russia-Ukraine war enters its 190th day, we take a look at the main developments.
Ukraine exploits Russia’s ‘thin’ defences in Kherson counter-offensive (The Telegraph) Kyiv has pushed back the front line by ‘some distance’, according to the Ministry of Defence
Ukraine nuclear reactor shut down due to shelling, operator says (Reuters) One of two operational reactors at Ukraine's Russian-held Zaporizhzhia nuclear plant complex has been shut down due to Russian shelling, operator Energoatom said on Thursday.
Ukraine war: Zaporizhzhia reactor 'shut down' amid heavy shelling (The Telegraph) One of the six reactors at a Russian-held nuclear plant in southern Ukraine has shut down as an emergency protection measure after shelling in the area, Ukraine's nuclear agency said.
Russia-Ukraine war: UN inspectors reach Zaporizhzhia nuclear plant despite reports of shelling – live (the Guardian) IAEA team seen arriving at the plant in a large convoy with a heavy presence of Russian soldiers nearby
Ukraine exploits Russia’s ‘thin’ defences in Kherson counter-offensive (The Telegraph) Kyiv has pushed back the front line by ‘some distance’, according to the Ministry of Defence
Zero Hour in Ukraine (Puck) There is understandable trepidation in Washington and Kyiv as Ukraine mounts a stunning counteroffensive. Should it succeed, it would solidify Ukraine’s reputation as the military comeback kid. If it fails, it could make this winter’s triumph look like a fluke—and embolden Putin for a new wave of horrors.
WSJ News Exclusive | Ukrainian Soldiers Say They Are Advancing in the South, but at a Cost (Wall Street Journal) Ukrainian army units are pushing toward the city of Kherson, but Ukrainian officials and military analysts have said losses could be high, even if the offensive is successful.
Ukraine war: Intense fighting rages as Kyiv 'breaks through' Russian defences in Kherson (The Telegraph) "Heavy fighting" has broken out across nearly all of the southern Kherson region, after Ukrainian forces broke Russian defences in their long-awaited counter-offensive to retake the territory.
Alcohol-swigging Russian soldier kills two FSB officers in drunken shootout (The Telegraph) Deadly row in a cafe in occupied Kherson shows chaotic nature of Kremlin forces
Russia's military suffering manpower shortages -U.S. intelligence (Reuters) The Russian military is suffering manpower shortages as it battles Ukraine and is seeking to recruit contract service members and may even draw in convicted criminals, a U.S. official said on Wednesday, citing U.S. intelligence.
A Draft for Russia’s Army? Putin Opts for Domestic Stability Instead. (New York Times) Western officials are puzzled by the Russian leader’s decision to avoid mass conscription. But analysts say he is intent on maintaining a sense of normalcy to prevent any public backlash.
Ukraine is using a ghost army of fake HIMARS to trick Russian artillery (Task & Purpose) Ukraine has found a useful tactic: Wooden artillery decoys designed to trick Russia into wasting munitions.
Why Washington should provide ATACMS weapons to Ukraine (Defense News) The ATACMS can help Ukraine defeat the invasion while avoiding direct conflict between Russia and NATO.
Montenegro blames criminal gang for cyber attacks on government (Reuters) Montenegro on Wednesday blamed a criminal group called Cuba ransomware for cyber attacks that have hit its government digital infrastructure since last week, described by officials as unprecedented.
FBI's team to investigate massive cyberattack in Montenegro (AP NEWS) A rapid deployment team of FBI cyber experts is heading to Montenegro to investigate a massive, coordinated attack on the tiny Balkan nation's government and its services, the country's Ministry of Internal Affairs announced Wednesday.
US issues rare security alert as Montenegro battles ransomware (TechCrunch) The U.S. Embassy issued an unprecedented warning about an "persistent and ongoing" cyberattack in the eastern European country.
Cuba ransomware group claims attack on Montenegro government (IT PRO) The double extortion specialists claim to have stolen the data days before Montenegro announced a sustained and co-ordinated series of cyber attacks targeting it from Russia
Cuba Ransomware Team claims credit for attack on Montenegro (Databreaches.net) When Montenegro claimed Russian hackers attacked them, most of us probably didn’t think about the Cuba ransomware team, but the Cuba group claimed credit for the attack.
Montenegro blames Cuba ransomware for cyberattack (Cybernews) The cyberattack that crippled the Montenegro government’s digital infrastructure was likely carried out by a Russia-linked Cuba ransomware gang, authorities claim.
Cybercriminals Apparently Involved in Russia-Linked Attack on Montenegro Government (SecurityWeek) Montenegro’s government was recently hit by a massive Russian cyberattack and the Cuba ransomware group may have been involved.
Meme war: You can pay to get memes painted on Ukrainian artillery, bombs, and rockets (Task & Purpose) There’s at least one Ukrainian artillery battery that will combine your love of trolling with high explosive munitions.
The Undignified Fall of Russia’s Once-Dignified Diplomatic Corps (Foreign Policy) Russian diplomats were once viewed with begrudging respect in the West. Now they’re seen as irrelevant mouthpieces for Putin’s war in Ukraine.
EU agrees to suspend Russian visa facilitation deal - but no blanket ban (The Telegraph) The EU has agreed to suspend a visa facilitation deal with Russia, but stopped short of a blanket ban as requested by Ukraine.
Russia just exported the most oil in any August on record, with Greek tankers handling most of the cargoes (Markets Insider) "Russia is exporting more crude than ever," the Institute for International Finance said, adding that Greek-owned tankers were doing much of the work.
WSJ News Exclusive | U.S., Allies Prepare to Outline Plan to Limit Price of Russian Oil (Wall Street Journal) Western nations will set out a plan Friday to reduce Russian energy revenues without increasing global oil prices.
Russia halts natural gas flows via Nord Stream 1 pipeline, intensifying the pressure on Europe in its energy crisis (Markets Insider) Moscow is choking off Europe's energy supply to hit back against Western sanctions imposed after the invasion of Ukraine.
Putin has pulled off a shock win that could destroy the free world (The Telegraph) The Kremlin’s energy war is pushing Europe and the UK towards economic meltdown and socialism
Satellite phones, a safe house in the mountains, and cash reserves: How one Ukrainian tech company's extensive war-prep plan enabled it to grow amid the Russian invasion and even aid the fight (Business Insider) WeSoftYou founder Maksym Petruk said its war prep gave employees' families a sense of safety and got the company back to 90% operational in two days.
Mikhail Gorbachev had 'huge impact on the course of world history', says Vladimir Putin (The Telegraph) Vladimir Putin expressed 'deepest condolences' after the 91-year-old died following a 'serious and prolonged illness'
History's bookends: Putin reversed many Gorbachev reforms (AP NEWS) One stood for freedom, openness, peace and closer ties with the outside world. The other is jailing critics, muzzling journalists, pushing his country deeper into isolation and waging Europe’s bloodiest conflict since World War II.
Mikhail Gorbachev: No state funeral for leader who oversaw Soviet Union’s collapse (The Telegraph) Kremlin says former Soviet leader was wrong to trust the ‘bloodthirsty’ West
The defining moments and fall of Mikhail Gorbachev's political career (The Telegraph) The former Soviet leader became invisible when he was placed under house arrest, leading to the rise of Boris Yeltsin
The West’s Illusions About Gorbachev and the Victory of Liberalism (New York Times) As the Soviet Union’s final leader, Mikhail Gorbachev dreamed of a “common European home,” but three decades later that tantalizing idea remains out of reach.
Attacks, Threats, and Vulnerabilities
Chile says gov’t agency struggling with ransomware attack (The Record by Recorded Future) Chile’s cybersecurity incident response team said an unnamed government agency is dealing with a ransomware attack that started last Thursday.
Hackers Hit Italian Oil Giant Eni’s Computer Network (Bloomberg) Eni evaluating consequences, saying they “are currently minor.” Earlier this week energy agency GSE suffered malware attack.
THREAT ANALYSIS REPORT: Ragnar Locker Ransomware Targeting the Energy Sector (Cybereason) The Cybereason Global Security Operations Center (GSOC) Team issues Threat Analysis Reports to inform on impacting threats. The Threat Analysis Reports investigate these threats and provide practical recommendations for protecting against them.
Hacker Infrastructure Used in Cisco Breach Discovered Attacking a Top Workforce Management Corporation & Russia’s Evil Corp Gang Suspected, Reports eSentire (eSentire) eSentire's Threat Response Unit discovered that the IT infrastructure used to attack Cisco in May 2022 was also used in an attempted compromise of one of its clients in April 2022. Learn more about the threat actors behind this attack, how they gained network access, tools used and tips to protect…
BianLian Ransomware Gang Gives It a Go! ([redacted]) [redacted] gives our clients control—not just over the security of their business, but also over their adversaries. We offer end-to-end security with the unique ability to attribute and pursue attackers.
Behind the News: The Ragnar Locker Attack on Greek Natural Gas Supplier DESFA - Radiflow (Radiflow) We provide analysis of the Ragnar Locker ransomware and data interception attack on Greek Natural Gas Supplier DESFA's IT & OT operations.
Deep Dive into a Corporate Espionage Operation (Bitefender) Corporate espionage is on the rise targeting smaller organizations rather than enterprises. Learn what it is and recommendations on how to combat it.
Mobile App Supply Chain Vulnerabilities Could Endanger Sensitive Business Information (Broadcom Software Blogs / Threat Intelligence) Over three-quarters of the apps Symantec analyzed contained valid AWS access tokens that allowed access to private AWS cloud services.
TikTok bug discovered by Microsoft allows one-click account hijack (Computing) The security issue has been fixed by TikTok so users should ensure they are on the latest version
A ‘high severity’ TikTok vulnerability allowed one-click account hijacking (The Verge) A malicious link would have been enough to take over a profile.
Ragnar Locker ransomware claims attack on Portugal's flag airline (BleepingComputer) The Ragnar Locker ransomware gang has claimed an attack on the flag carrier of Portugal, TAP Air Portugal, disclosed by the airline last Friday.
Attackers now actively use silver offensive security framework (IT World Canada) Microsoft security experts believe that the Silver framework is actively used by cyberattackers to carry out intrusion campaigns.
Hacker Uses James Webb Space Telescope Image for Malware Attack (PCMAG) The hacker's rigged image, which carries computer code to help execute a malware program, can bypass antivirus detection.
Hackers Snuck Malware into an Image From the Webb Space Telescope (Gizmodo) A piece of the malware is hidden within a copy of SMACS 0723, the first full-color image from the Webb Space Telescope.
Webb's deep field picture infected with malware (Cybernews) The James Webb Space Telescope’s scientific endeavor has grasped our attention, reporting news about the early universe. As is typical with trends, threat actors followed, exploiting one of Webb’s pictures to deliver the payload.
Migration policy org confirms cyberattack after extortion group touts theft (The Record by Recorded Future) The International Centre for Migration Policy Development (ICMPD) confirmed on Wednesday it suffered a cyberattack that led to a data breach.
Sharing is NOT caring: Android apps that can’t get enough of you - Incogni Blog (Incogni Blog) Taking inspiration from Apple's “privacy labels”, Google first announced the introduction of its new data safety section back in 2021. Finally, since July 20
Real Money, Fake Musicians: Inside a Million-Dollar Instagram Verification Scheme (ProPublica) A jeweler. A plastic surgeon. An OnlyFans Model. They and others received a blue check in likely the biggest Instagram verification scheme revealed to date. After ProPublica started asking questions, Meta removed badges from over 300 accounts.
“Looking for pentesters”: How Forum Life Has Conformed to the Ransomware Ban (Digital Shadows) Digital Shadows consistently monitors ransomware groups and cybercriminal forums, tracking their victims behavior, and related chatter. Read more.
Security Patches, Mitigations, and Software Updates
Apple Fixed a Serious iOS Security Flaw—Have You Updated Yet? (WIRED) Plus: Chrome patches another zero-day flaw, Microsoft closes up 100 vulnerabilities, Android gets a significant patch, and more.
Apple backports fix for actively exploited iOS zero-day to older iPhones (BleepingComputer) Apple has released new security updates to backport patches released earlier this month to older iPhones and iPads addressing a remotely exploitable WebKit zero-day that allows attackers to execute arbitrary code on unpatched devices.
Chrome patches 24 security holes, enables “Sanitizer” safety system (Naked Security) 24 existing bugs fixed. And, we hope, numerous potential future bugs prevented.
Trends
Creating Connections: Starting early. (CyberWire) We are moving into the fall. Time is still moving in a sometimes really fast, and also sometimes weirdly slow way thanks to the legacy of the pandemic.
Self-harm posts are surging on Twitter, despite breaking content rules (Washington Post) Self-harm-related hashtags have increased roughly 500 percent since October, a new report says
Cybersecurity risk disclosures and oversight (EY) Learn how enhanced cybersecurity-related disclosures help stakeholders and investors to make them understand to govern cybersecurity risks.
Marketplace
ConnectWise Announces Acquisition of Wise-Sync (GlobeNewswire News Room) ConnectWise partners to benefit from an integrated payment processing platform built into ConnectWise Manage and now, ConnectWise Sell...
CRN Fast50 firm Wise-Sync acquired by ConnectWise (CRN Australia) Melbourne firm enables MSP giant to take first step into payment processing.
CrowdStrike Reports Second Quarter Fiscal Year 2023 Financial Results (CrowdStrike) Ending ARR grows 59% year-over-year to reach $2.14 billion. Achieves record net new ARR of $218 million with accelerating year-over-year growth. Adds record 1,741 net new subscription customers. Cash flow from operations of $210 million grows 94% year-over-year, free cash flow of $136 million grows 84% year-over-year
CACI wins $5.7 billion award to start privatizing Air Force network management (Federal News Network) The ten-vendor team led by CACI will be responsible for "Wave 1" of the Air Force's EITaaS rollout, focusing on end-user devices, IT service management and support services.
Telstra to tear out Digicel’s Huawei equipment in ‘next refresh’ (Australian Financial Review) Oliver Camplin-Warner, Telstra International chief executive, said the Papau New Guinea-based telco would remove equipment from the Chinese state-owned infrastructure company due to national security concerns.
Incode Expands Executive Team, Appointing New Global Vice President of Growth and Enablement (PR Newswire) Incode, the next-generation identity verification and authentication platform for global enterprises, today announced the appointment of...
Skyhigh Security Appoints John N. Stewart as Executive Advisor (Business Wire) Skyhigh Security today announced the appointment of John N. Stewart, angel investor and President at Talons Ventures, as Executive Advisor. Stewart wi
Barracuda names Chris Ross as Chief Revenue Officer Posted date: 2022-09-01 3:00 AM (Barracuda) Barracuda, a trusted partner and leading provider of cloud-first security solutions today announced that security, storage and channel veteran Chris Ross has been appointed Chief Revenue Officer (CRO), responsible for worldwide sales and partnerships. Ross joined Barracuda in 2015 as senior vice president of international sales and brings over 30 years of technology experience to the company.
Products, Services, and Solutions
Palo Alto Networks Strengthens Its Protection for SaaS Applications and Reinforces ZTNA 2.0 With New Capabilities (Palo Alto Networks) The introduction of SaaS Security Posture Management (SSPM), powered by the company's Next-Gen CASB technology, reduces data breaches related to SaaS misconfigurations SANTA CLARA, Calif., Aug....
Netenrich Resolution Intelligence Cloud Now on Google Cloud Marketplace (Netenrich) Resolution Intelligence Cloud is a data analytics SaaS platform for managing secure operations. We are now available on Google Cloud Marketplace.
Strider Technologies Partners with Mandiant to Protect Against Intellectual Property Theft from State-Sponsored Actors - Strider | Prevent intellectual property theft and supply chain vulnerabilities (Strider | Prevent intellectual property theft and supply chain vulnerabilities) Strider Technologies, Inc. (“Strider”) today announced a new strategic partnership with Mandiant to deliver joint customers access to the Strider Shield™ dataset as part of their suite of Mandiant Insider Threat Security Services. The partnership is designed to provide organizations with actionable and contextualized insights that will help […]
(ISC)² Launches Certified in Cybersecurity℠ Entry-Level Certification to Address Global Workforce Gap (PR Newswire) (ISC)² – the world's largest nonprofit association of certified cybersecurity professionals – today announced a landmark expansion of its...
(ISC)² Candidates Make Cybersecurity Career Success Accessible to More People (PR Newswire) (ISC)² – the world's largest nonprofit association of certified cybersecurity professionals – today launched (ISC)² Candidates for individuals...
(ISC)² Opens Global Enrollment for One Million Certified in Cybersecurity (PR Newswire) /PRNewswire/ -- (ISC)² – the world's largest nonprofit association of certified cybersecurity professionals – today announced that the (ISC)² One Million...
Styra Further Shifts Security Left With New Policy-as-Code Repository Scanning (Business Wire) Styra introduces Repo Scan as the newest feature in the Styra Declarative Authorization Service (DAS).
Traceable AI Announces API Security Testing (PR Newswire) Traceable AI, the industry's leading API security and observability company, today announced the general availability of its API Security...
IHSE USA Debuts Draco tera KVM-over-IP Gateway
(InGear) The Draco tera IP Gateway Combines the Security and Performance of the Draco tera KVM System to Create the Ultimate Bridge to KVM Matrices over IP Networks
Tenacity platform enhancements provide visibility into entire AWS and Azure cloud infrastructure (Help Net Security) Tenacity Cloud launched agentless, automated and self-directed activation capability with immediate deployment within its platform.
Technologies, Techniques, and Standards
CISA Seeks Software Engineers to Build New Registrar for .Gov Domain (Nextgov.com) The agency is taking new hiring authorities out for a spin in the recruitment effort to make state and local government websites more secure
NCSC and Federal Partners Focus on Countering Risk in Digital Spaces during National Insider Threat Awareness Month 2022 (ODNI) NCSC and Federal Partners Focus on Countering Risk in Digital Spaces during National Insider Threat Awareness Month 2022 For Immediate Re...
Academia
Cyberbit Launches First Hyper-Realistic Cyber Security Tournament for Higher Education (PR Newswire) Cyberbit, provider of the world's leading cyber readiness and skills development platform, has announced the International Cyber League:...
NACD, Carnegie Mellon University, and Ridge Global Unveil Updated Cyber Certificate Program for Board Directors (NACD) The National Association of Corporate Directors (NACD), the authority on boardroom practices representing more than 23,000 board members, today announced the release of new improvements to its CERT Certificate in Cyber-Risk Oversight Program.
Legislation, Policy, and Regulation
U.S. Restricts Sales of Sophisticated Chips to China and Russia (New York Times) Limits were placed on high-end GPUs that power supercomputers and artificial intelligence, said Nvidia and AMD, two Silicon Valley chip makers.
Nvidia, AMD warned of new US export restrictions on AI chips (Protocol) The U.S. government has issued new export licensing requirements to Nvidia and AMD for export to China and Russia of the advanced GPUs used for AI.
Australia’s New Anti-Encryption Law Is Unprecedented and Undermines Global Privacy (Foundation for Economic Education) If firms don't have the power to intercept encrypted data for authorities, they will be forced to create tools to allow law enforcement or government to have access to their users’ data.
The European Union Opens “Tech Embassy” in Silicon Valley Ahead of New Technology Regulations (Snell & Wilmer) Snell & Wilmer is one of the largest law firms in the western Unites States.
The FTC May (Finally) Protect Americans From Data Brokers (WIRED) The agency’s lawsuit against Kochava should squash the industry’s core defense—and help keep sensitive info off the open market.
FTC ANPR Notice Explores Wide-Ranging Topics for Privacy and Cybersecurity Rulemaking (Lexology) On Thursday, August 11, the U.S. Federal Trade Commission (FTC) announced that it is exploring rules to crack down on harmful commercial surveillance…
Plugging Cyber Holes in Federal Acquisition (Meritalk) By Ken Walker, President & Chief Executive Officer, Owl Cyber Defense
NSA, Cyber Command mobilizing Election Security Group to fight foreign cyberattackers (The Washington Times) The National Security Agency and Cyber Command have activated their Election Security Group tasked with disrupting foreign cyberattackers aiming to hack or interfere with the upcoming midterm elections, assembling a team to combat threats coming from China, Iran and Russia.
The IRS will be more like the NSA after Biden’s changes (The Hill) President Biden and the Democrats are setting up the IRS as the next three-letter intelligence agency, with the rapid expansion of the service’s power and payroll. Changes resulting from the improp…
US Army to launch offensive cyber capabilities office (Defense News) Offensive cyber is defined as “operations intended to project power by the application of force in or through cyberspace,” according to NIST.
Army to create new offensive cyber and space program office (FedScoop) The Army will create a new offensive cyber and space program office in 2023, spinning it off from its electronic warfare portfolio, according to officials. The new colonel-led, or O-6 level, program office will be under Program Executive Office Intelligence Electronic Warfare and Sensors and will be aptly called Program […]
Litigation, Investigation, and Law Enforcement
DHS watchdog digs into uneven cyber awareness training, outdated policies (FCW) Some DHS policies and procedures aren’t up-to-date with the latest cybersecurity standards, a new report from the Office of the Inspector General at DHS says. The department, however, says that it’s taking action to mature their training program.
Experts, not MPs, should assess NHS data sharing - NDG (Computing) Independent advisor National Data Guardian for Health and Social Care urges more public involvement in decisions over health data
Sephora fined $1.2m over alleged consumer privacy breach in California (Cosmetics Business) The California Consumer Privacy Act was implemented in 2018 to give consumers more control over the personal information that businesses collect about them
US asked British spy agency to stop Guardian publishing Snowden revelations (the Guardian) Head of GCHQ rebuffed late-night request from National Security Agency amid strained relations in Five Eyes intelligence coalition
Opinion The Mar-a-Lago case is about national security, not politics (Washington Post) To protect our national security, we need to take politics out of the Mar-a-Lago documents case.
State Department debars ex-NSA cyber mercenaries who aided vast UAE surveillance operation (CyberScoop) The former intelligence operatives worked in a hacking unit of the cybersecurity firm DarkMatter, which is known for developing spyware.
Final Thoughts on Ubiquiti (KrebsOnSecurity) Last year, I posted a series of articles about a purported "breach" at Ubiquiti. My sole source for that reporting was the person who has since been indicted by federal prosecutors for his alleged wrongdoing – which includes providing false…