At a glance.
- Joint Ransomware Task Force yields its first readout.
- US Presidential memorandum on software supply chain security.
- Webworm repurposes older RATs.
- Trends in cyber insurance claims.
- OriginLogger: the new Agent Tesla.
- SparklingGoblin APT described.
- Royal funeral phishbait.
- Nuisance-level DDoS and cyberespionage continue to mark Russia's cyber campaign in the hybrid war.
Joint Ransomware Task Force yields its first readout.
The Cybersecurity and Infrastructure Security Agency (CISA) reports that the agency, along with the Federal Bureau of Investigation (FBI), has held the first meeting of the Joint Ransomware Task Force (JRTF). The JRTF is an interagency body created by Congress to focus on ransomware threats. The task force will expand existing efforts where appropriate, and where necessary identify new initiatives across the government and private sector to protect against ransomware and stop threat actors. Some of the activities the JRTF will coordinate include:
- “Prioritization of operations to disrupt specific ransomware actors;
- “Facilitating coordination and collaboration between Federal entities and relevant private sector and SLTT entities to improve Federal actions against ransomware threats, including efforts to increase adoption of defensive measures to reduce the prevalence of successful ransomware intrusions;
- “Identifying a list of highest threat ransomware entities updated on an ongoing basis; and
- “Collecting, sharing, and analyzing ransomware trends.”
US Presidential memorandum on software supply chain security.
The White House yesterday issued guidance for Federal agencies’ use of software security practices. The memorandum instructs agencies to obtain a self-attestation from software providers that their products are in line with NIST’s security guidelines.