Dateline Moscow and Kyiv: Prospects for a winter war.
Ukraine at D+281: International support for Ukraine. (CyberWire) Ukraine seeks to maintain its momentum going into the winter, as the US and France pledge continued support and say any negotiations are up to Kyiv. Russia apparently DDoSed the Vatican, and Google pledges further support to Ukraine.
Russia-Ukraine war: List of key events, day 282 (Al Jazeera) As the Russia-Ukraine war enters its 282nd day, we take a look at the main developments.
In Ukraine’s capital, Putin’s attacks don’t dim the resolve to fight Russia (Washington Post) Many Kyiv residents say they would rather endure Russian missiles than make concessions.
Vladimir Putin’s Ukrainian Genocide: Nobody can claim they did not know (Atlantic Council) The overwhelming evidence of Russian war crimes in Ukraine together with the openly genocidal intent on display in Moscow mean nobody claim they did not know about Putin's Ukrainian Genocide, writes Peter Dickinson.
Russia Crisis Military Assessment: Can Ukraine press its offensive this winter? (Atlantic Council) Ukraine must carefully balance the allure of capitalizing on momentum against a weakened opponent with the challenge of sustaining hard-won gains through the winter.
Preparing for victory: A long-haul strategy to help Ukraine win the war against Russia—and secure the peace (Atlantic Council) Ukraine’s counteroffensives, backed by expanded and accelerated US and allied support, continue to push Russian forces out of Ukrainian territory, although at a reduced rate. These hard-won successes, however, bring with them possible challenges that also must be addressed.
As Putin retreats in Ukraine, he is also losing Kazakhstan (Atlantic Council) Putin's rapidly unraveling invasion of Ukraine is eroding Russian influence throughout the former Soviet Empire. This process of imperial retreat is nowhere more visible than in Kazakhstan, writes Kamila Auyezova.
Vladimir Putin’s axis of evil is crumbling fast (The Telegraph) The protests rocking both Iran and China blow apart the idea that autocracy is superior to democracy
Vladimir Putin is now caught in a death spiral of his own making (The Telegraph) Whilst anti-war liberals remain a minority, Russians are increasingly sceptical about their dictator's homicidal adventurism
U.S., French Presidents State Support for Ukraine, Global Security (U.S. Department of Defense) The United States, France, other partner nations and NATO stand firm in support of Ukraine's defense against Russia's brutal invasion, President Joe Biden said.
Joint Statement Following the Meeting Between President Biden and President Macron | The White House (The White House) Today, the President of the United States and the President of the French Republic met in Washington during the first State Visit of the Biden-Harris
Kremlin says Russia open to talks with US if DC can respect Moscow's security interests (Republic World) Russia has said it is ready for strategic stability talks with US provided that Washington DC takes into account Moscow's core security interests.
Biden Says He Is Willing to Talk to Putin About Ukraine, With Conditions (New York Times) Showing a united front during a state visit, President Biden and President Emmanuel Macron of France affirmed their support for Ukraine ahead of a cold winter that will test the alliance.
Pentagon awards Raytheon $1.2 bln contract for Ukrainian NASAMS (Reuters) The U.S. Army awarded a $1.2 billion contract to Raytheon Technologies Co for six National Advanced Surface-to-Air Missile Systems (NASAMS) for Ukraine on Wednesday, the Pentagon said.
Army could rush in new rockets as Ukraine war exposes Britain's 'out of date' artillery (The Telegraph) Ben Wallace says years of campaigning in Iraq and Afghanistan has left the traditional war fighting role of the army 'neglected'
US Trying to Persuade More Allies to Send NASAMS Missiles to Ukraine, Raytheon CEO Says (Defense One) If U.S. officials can broker a deal, Kyiv won’t have to wait for factory-produced interceptors.
The CIA Is Looking for Russians Who Are 'Disgusted' with the Ukraine War to Recruit as Spies (Military.com) Marlowe's comments come after a top British intelligence official revealed last week that European countries have expelled over 400 Russian officials suspected of being spies this year.
Pentagon eyes major expansion of Ukraine military training (Washington Post) The plan would build on Western arms transfers by showing large Ukrainian formations how to wage a more sophisticated campaign, deepening U.S. involvement in the war
To deter Russia, EUCOM official stresses 'threat-informed' exercises (Breaking Defense) Maj. Gen. Jessica Meyeraan said an “interesting development that occurred over the course of the last 12 to 24 months in the NATO parlance is an acknowledgment that we need to focus on a real-world threat.”
Vatican hit by suspected cyber attack (euronews) The alleged cyber attack comes days Pope Francis criticised Russia's invasion of Ukraine, provoking Moscow's ire.
New ways we're supporting Ukraine (Google) Google announces new commitments and support for Ukraine
Ukrainian engineers scramble to keep mobile phones working (AP NEWS) With Ukraine scrambling to keep communication lines open during the war, an army of engineers from the country’s phone companies has mobilized to help the public and policymakers stay in touch during repeated Russian missile and drone strikes .
Windfall: How Russia managed oil and gas income after invading Ukraine, and how it will have to make do with less (Atlantic Council) The "Fortress Russia" strategy has helped Moscow withstand the initial shock of Western sanctions but the domestic economic outlook is grim.
Sanctions on Russia Are Working. Here’s Why. (Foreign Policy) The Kremlin’s ability to wage war is already constrained, but the worst is yet to come.
Attacks, Threats, and Vulnerabilities
72% of organisations remain vulnerable to Log4j vulnerability (IT Brief Australia) The data highlights legacy vulnerability remediation challenges, which are the root cause of the majority of data breaches.
ZetaNile: Open source software trojans from North Korea (ReversingLabs) ReversingLabs Malware Researcher Joseph Edwards takes a deep dive into ZetaNile, a set of open-source software trojans being used by Lazarus/ZINC.
Zimperium Reveals Details Of A Newly Discovered Android Threat Campaign That Has Been Stealing Facebook Credentials (Security Informed) Zimperium, the only mobile security platform purpose-built for enterprise environments, reveals details of a newly discovered Android threat campaign that has been stealing Facebook credentials from unsuspecting users since 2018.
Windows spyware from North Korea steals data from your phone (PCWorld) Spyware traced to North Korean hacking groups has been caught scanning phones that connect to infected PCs.
A Syntax Error Led to Crashing of KmsdBot Cryptomining Botnet (HackRead) Follow us on Twitter @HackRead - Facebook @ /HackRead
Intruders gain access to user data in LastPass incident (Register) Password manager says credentials safely encrypted, confirms link to August attack
Social Engineering Attacks: 3 Strategies to Mitigate Risk (Techopedia.com) While there is no tool or level of education that can fully prevent organizations from soc
Cuba ransomware infections of US organizations have doubled in last year, feds say (SC Media) Many of the organizations targeted by the group are designated as critical infrastructure, with the agencies flagging the financial services, government, healthcare, manufacturing and information technology sectors as top targets.
FBI: Cuba ransomware raked in $60 million from over 100 victims (BleepingComputer) The FBI and CISA revealed in a new joint security advisory that the Cuba ransomware gang raked in over $60 million in ransoms as of August 2022 after breaching more than 100 victims worldwide.
RansomHouse attack disrupts multinational Colombian health provider (SC Media) Colombian healthcare provider Keralty, which has a network of hospitals and medical centers in the U.S., Latin America, Spain, and Asia, had its company and subsidiary websites and operations disrupted by a RansomHouse ransomware attack on Sunday, reports BleepingComputer.
Keralty ransomware attack impacts Colombia's health care system (BleepingComputer) The Keralty multinational healthcare organization suffered a RansomHouse ransomware attack on Sunday, disrupting the websites and operations of the company and its subsidiaries.
Hackers Target Colombia's Healthcare System With Ransomware (Infosecurity Magazine) The attack disrupted IT operations, websites and scheduling of medical appointments
Aqua Nautilus Discovers Redigo — New Redis Backdoor Malware (Aqua Security) Aqua Nautilus discovers Redigo, new previously undetected Go-based malware that targets Redis servers to gain domination on the compromised machine
Purpose Built Criminal Proxy Services and the Malicious Activity They Enable (DomainTools) As demand for malicious proxy services continues, new players have entered the market. Black Proxies is marketed to other cybercriminals for their reliability, scope, and overwhelming number of IP addresses.
Lookout Threat Lab Discovers Predatory Loan Apps on Google Play and Apple App Store (PR Newswire) Lookout, Inc., the endpoint to cloud security company, today announced the discovery of nearly 300 loan apps that exhibit predatory behavior...
Flaws in GX Works3 Threaten Mitsubishi Electric Safety PLC Security (Nozomi Networks) Nozomi Networks Labs reveals vulnerabilities in Mitsubishi Electric GX Works3 that may lead to the compromise of safety PLCs
Notice of Recent Security Incident (The LastPass Blog) We are working diligently to understand the scope of the incident and identify what specific information has been accessed.
Patient data among files accessed in Virginia Mason Franciscan Health data breach (MyNorthwest) A hacking incident in October that impacted workers at Virginia Mason Franciscan Health and its patients was determined to be ransomware.
Little Rock School District reports potential data breach (Arkansas Times) The Little Rock School District announced today that it had detected “unauthorized activity” on its network. From the release: The Little Rock School District (LRSD) recently detected unauthorized activity on its network. Upon discovery, we immediately activated our incident response protocols and hired independent computer forensic experts to help us determine the nature and scope […]
Security Patches, Mitigations, and Software Updates
Mitsubishi Electric MELSEC iQ-R Series (CISA) 1. EXECUTIVE SUMMARY CVSS v3 8.6 ATTENTION: Exploitable remotely/low attack complexity Vendor: Mitsubishi Electric Equipment: MELSEC iQ-R Series Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a remote unauthenticated attacker to cause a denial-of-service condition on a target product by sending specially crafted packets.
BD BodyGuard Pumps (CISA) 1. EXECUTIVE SUMMARY CVSS v3 5.3 Vendor: Becton, Dickinson and Company (BD) Equipment: BodyGuard Pumps Vulnerability: Missing Protection Mechanism for Alternate Hardware Interface 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to change configuration settings or disable the pump.
Horner Automation Remote Compact Controller (CISA) 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Horner Automation Equipment: Remote Compact Controller (RCC) 972 Vulnerabilities: Inadequate Encryption Strength, Use of Hard-coded Cryptographic Key, Excessive Reliance on Global Variables 2.
Trends
AuditBoard Survey Finds Internal Audit Resources Misaligned With Key Risks (Business Wire) AuditBoard, the leading cloud-based platform transforming audit, risk, and compliance management, today announced the release of its 2023 Focus on the
Businesses Increasing Cyber Spend Without Clear Strategy, Fastly Finds (Infosecurity Magazine) As businesses aim to spend more on cybersecurity, Fastly warns that many do so without a clear strategy
7 Cybersecurity Trends for 2023 to Watch Out For (Dice Insights) It’s a good time to jump into cybersecurity. But what trends will define the field over the next year, and what do you need to know?
3 of the Worst Data Breaches in the World That Could Have Been Prevented (Security Affairs) Data breaches can be devastating for organizations, these are 3 of the worst incidents that could have been prevented Data breaches can be devastating for organizations and even entire countries. Eliminating the risk of a data breach is nearly impossible, but some things can be done to reduce it significantly. Here are three of the […]
Marketplace
The cull of puffed-up tech unicorns has only just begun (The Telegraph) Much of the tech sector now faces an acid test of their true prospects
HYPR raises $25 million to reduce reliance on passwords (Help Net Security) HYPR announced a $25 million Series C1 led by Advent International through Advent Tech, the firm’s dedicated global technology fund.
Pangea Cyber Closes $26M Series B from GV, Decibel, and Okta Ventures for Developer-First Security Framework to Deliver Secure Apps Faster (PR Newswire) Pangea Cyber today announced its $26 million Series B funding to accelerate the delivery of its API-based security services. The Series B round...
Sophos CEO: Broadcom Is Repeating Same Mistakes With VMware That It Made With Symantec (CRN) Sophos chief executive Kris Hagerman says his British security company is picking up new business from VMware customers nervous about Broadcom’s proposed $61 billion takeover of VMware.
Products, Services, and Solutions
1Password Streamlines Login Experience with 'Sign in With' Feature (PR Newswire) 1Password, the leader in human-centric security and privacy, today announced a new 'sign in with' browser extension feature to help users get...
New Report: Identity fraud doubled in crypto and banking in 2022 (Business Wire) Sumsub, a global verification platform providing customizable KYC, KYB, transaction monitoring, and AML solutions for the whole customer journey, toda
KnowBe4 and Netskope Collaborate for New SecurityCoach Integration (KnowBe4) Netskope collaborates with KnowBe4 to help reduce risky behavior with integration to support real-time security coaching
Tigera Enhances Calico's Cluster Mesh Capabilities to Simplify Management and Security of Multi-Cluster Deployments Across Hybrid and Multi-Cloud Environments (PR Newswire) Tigera, provider of the industry's only active Cloud-Native Application Protection Platform (CNAPP) with full-stack observability for...
Peel Police, the Third Largest Police Force in Canada, Discusses Solving their Authentication Challenges with Axiad Cloud in December 8 Webinar (Business Wire) Join Peel Police, the third largest police force in Canada, for a frank discussion of how they solved their PKI authentication challenge with Axiad
Varonis and HackerOne launch vulnerability disclosure program (Help Net Security) Varonis has launched its public vulnerability disclosure program via HackerOne to enhance product security.
Zscaler Achieves FedRAMP Authorization for Entire Zero Trust Exchange Platform Portfolio of Solutions (GlobeNewswire News Room) Zscaler Private Access Awarded FedRAMP Moderate Authorization to Protect Government Agencies’ Most Sensitive Data Against Cyber Threats...
Fail-safe Ransomware Protection: Xcitium Adds Warranty Program to Ensure Customers Protection Against Rising Attacks (GlobeNewswire News Room) Xcitium, formerly known as Comodo Security Solutions, today announced a new money-back warranty to...
Technologies, Techniques, and Standards
Cyber 101: US Army Cyber Command (ARCYBER) (U.S. Cyber Command) When it comes to conducting large-scale combat operations and putting boots on the ground, the United States Army reigns supreme. These operations depend on modern information networks and secure
Most US defense contractors fail basic cybersecurity requirements (SC Media) A survey of 300 U.S. defense contractors find many still fail to meet baseline cybersecurity standards or utilize modern technologies for monitoring threats. Experts told SC Media the findings underscore how much work the Pentagon and industry have to protect the valuable intellectual property and unclassified data that underpins U.S. military superiority.
Cybersecurity of weapon systems: Assuring they’re ready when needed - Breaking Defense (Breaking Defense) JADC2 and Multi-Domain Operations Will Only Work If Weapon Systems Are Cyber Secure.
Prestige Ransomware Attack Highlights Need to Update Cyber Security (PRWeb) A NYC area cyber security consultant and managed services provider (MSP) examines recent ransomware attacks in a new article on the eMazzanti Technologies
Research and Development
Download QC IR - Accredited Standards Committee X9 (Accredited Standards Committee X9) Developed by the ASC X9 Quantum Computing Risk Study Group, these reports provides a primer on quantum computing and identifies the issues that a stable, large-scale cryptographically relevant quantum computer will pose for the industry.
Legislation, Policy, and Regulation
China will move to protect its firms following U.S. telecoms ban (Yahoo) China opposes the U.S. Federal Communications Commission's ban on new Chinese telecommunications equipment sales, the commerce ministry said on Thursday, vowing to adopt necessary measures to safeguard the rights of its domestic firms. The Biden administration on Friday banned the sale or import of new telecommunications equipment from China's Huawei Technologies and ZTE, citing national security risks. "China will adopt necessary measures to safeguard the legitimate rights of domestic firms," said Chinese commerce ministry spokesperson Shu Jueting at a regular press conference, urging the United States to correct the wrongdoing and stop politicising and weaponising economic and trade issues.
Brazil joins Budapest Convention to fight cybercrime (MercoPress) Brazilian authorities Wednesday announced that the South American country was joining the so-called Budapest Convention whereby it will be granted faster access to electronic evidence produced under foreign jurisdiction.
India to assume Wassenaar Arrangement chair from January (The Economic Times) At the 26th annual Plenary of the WA held in Vienna on 30 November-01 December 2022, Ambassador Eoin O'Leary of Ireland handed over the Chairmanship to Ambassador Jaideep Mazumdar, Ambassador and Permanent Representative to UN and International Organizations in Vienna.
Vanuatu struggles back online weeks after cyberattack (Bangkok Post) Vanuatu's government said on Thursday it was slowly getting its communications back online following a cyberattack that knocked out emergency services, email and phone lines on the South Pacific island nation for weeks.
New Zealand’s half-billion dollar bet on COTS to network its army (Breaking Defense) The end goal of NEA is to create the NZ Army’s future network environment, known as the Land Tactical Information Network.
Litigation, Investigation, and Law Enforcement
Kaspersky supports International Criminal Police Organization's (INTERPOL) operation to combat cybercrime in African countries (ACE Times) Kaspersky (www.Kaspersky.co.za) has contributed to INTERPOL’s Africa Cyber Surge Operation (ACSO) by sharing data, comprising of indicators of compromise (IoCs) on various cyberthreats and types of cybercriminal activity targeting African countries.
Kaspersky, Interpol Fortify Ties to Fight Cybercrime in Nigeria, Others (Business Post Nigeria) By Adedapo Adesanya Kaspersky has contributed to INTERPOL’s Africa Cyber Surge Operation (ACSO) by sharing data comprising indicators of compromise (IoCs) on various cyber threats and types of cybercriminal activity targeting African countries, including Nigeria. This evidence provided the grounds for a series of operational and investigative activities against the threat actors behind the cybercrimes […]
FTX Missing Billions Remain Mystery After Bankman-Fried Grilling (Bloomberg) Bankman-Fried spoke at New York Times event about FTX collapse. He admitted to gross errors while pushing back on fraud claims.
SCOTUS to Consider Granting Centripetal’s Cert Petition in Patent Infringement Qua Judicial Recusal Case (IPWatchdog.com) The U.S. Supreme Court will this Friday, December 2, consider whether to grant certiorari in the case of Centripetal Networks Inc. v. Cisco Systems Inc. What began as a patent infringement case has swerved into judicial ethics waters.
Colorado Springs Company Protests NSA IDIQ Award to Competitor (JD Supra) Root9B, LLC, a small business in Colorado Springs, Colorado, protested a contract award to Chiron Technology Services, Inc. The National Security...
GAO Backs Peraton's $76M Cybersecurity Support Contract (Law360) The U.S. Government Accountability Office has denied a software company's challenge of a Navy cybersecurity engineering support contract awarded to Peraton Inc. saying it had no reason to question the Navy's reasonableness in evaluating the challenging contractor's "technically unacceptable" proposal.