Dateline Moscow and Kyiv: Kinetic, but running in place.
Ukraine at D+293: Kinetic conflict-in-place. (CyberWire) Stationary lines as Russia continues to dig in, and Ukraine knocks down more Russian drones over Kyiv.
Russia-Ukraine war: List of key events, day 294 (Al Jazeera) As the Russia-Ukraine war enters its 294th day, we take a look at the main developments.
Russia-Ukraine war at a glance: what we know on day 294 of the invasion (the Guardian) US finalising plan to send Patriot missile defence system to Ukraine; Suspected Russian FSB officer charged in US sanctions case
Ukraine: Russian strikes thwarted, wreckage hits buildings (AP NEWS) Ukrainian authorities said they thwarted a Russian attack on Kyiv and the surrounding region Wednesday as their air defense system intercepted and destroyed 13 explosive-laden drones, although wreckage from some of them damaged five buildings.
Ukraine forces shoot down drones as Kyiv hit by multiple explosions (the Guardian) Officials say 13 Iranian-made drones shot down as air raid sirens sound in capital and surrounding area
Ukraine war latest: Kyiv wakes to blasts booming through city (The Telegraph) Explosions blasted through Ukraine's capital city of Kyiv this morning, prompting a number of emergency services to be dispatched.
Ukraine’s wartime winter: Which energy facilities are at risk? (Al Jazeera) Russian attacks have destroyed at least 40 percent of Ukraine’s energy facilities since the war began in February.
Donors meet in Paris to get Ukraine through winter, bombing (AP NEWS) Dozens of countries and international organizations threw their weight and more than 1 billion euros (dollars) in aid pledges behind an urgent new push Tuesday to keep Ukraine powered, fed, warm and moving amid the onset of winter.
Russia Could Run Out Of Reliable Rockets, Artillery Shells Early Next Year, Pentagon Says (Defense One) Dwindling stockpiles is likely forcing Russian troops to use older, “degraded” ammo, a senior U.S. military officer said.
Congress supersizes munitions production with emergency authorities (Defense News) The NDAA provides billions in munitions funding and emergency procurement authorities with an eye toward competing against China and supporting Ukraine.
US poised to approve Patriot missile battery for Ukraine (AP NEWS) The U.S. is poised to approve sending a Patriot missile battery to Ukraine, finally agreeing to an urgent request from Ukrainian leaders desperate for more robust weapons to shoot down incoming Russian missiles, U.S.
Slovakia readies transfer of upgraded MiG-29 warplanes to Ukraine (Defense News) Bratislava is involving both Ukrainian and U.S. officials in the talks surrounding a prospective transfer.
Secretary of Defense Lloyd J. Austin III Participates in Call With Ukrainian Leaders (U.S. Department of Defense) Secretary of Defense Lloyd J. Austin III, Chairman of the Joint Chiefs of Staff General Mark A. Milley, and National Security Advisor Jake Sullivan spoke with Ukrainian Minister of Defence Oleksii
Ukraine says it killed Wagner mercenaries, who are they? (Al Jazeera) Controversial armed group emerged from being a murky guns-for-hire enterprise to a public extension of the Russian army.
Kremlin says no peace for Ukraine by Christmas (or New Year’s) (Washington Post) The withdrawal of Russian troops from Ukraine by the end of the year is “out of the question,” Kremlin spokesman Dmitry Peskov said on Tuesday, adding that any peace deal with Kyiv was “impossible.”
The West should not hold its breath for a negotiation with Putin (The Telegraph) Russia's president judges that Europe will endure one cold winter to support Ukraine and no more, and he’s probably right
Russia’s New Theory of Victory (Foreign Affairs) Christmas Day will be a grim milestone for the Ukrainian people. It will mark almost exactly ten months since Russian forces crossed into their country, bringing devastation on a scale not seen in Europe since World War II. Tens of thousands of Ukrainians have been killed. Millions have fled their homes. Most of the state has lost power, leading Kyiv to worry that—as winter sets in—many of its citizens will freeze.
Vladimir Putin: 2022 Loser of the Year (Atlantic Council) Russian leader Vladimir Putin is the biggest loser of 2022. His disastrous decision to invade Ukraine has left Russia internationally isolated and shattered the country's reputation as a military superpower.
Is Putin Finally Getting Smart About His Ukraine Disaster? (Washington Post) The Ukrainian winter will be brutal, but it won’t bring the war to a freezing halt. Ukraine and Russia both face key decisions that could reshape the conflict diplomatically and militarily.
Russia Admits 'No One Likes Us' As UK Predicts More Strategic Failure For Moscow (Yahoo) Moscow's place on the international stage is looking increasingly precarious as the war progresses.
Ukrainian Jews have historically spoken Russian. The war is changing that (Times of Israel) History led Jewish communities in Ukraine to eschew the language, but disgust at Russia's invasion brings change -- and an increased perception of being part of Ukrainian society
Cyber-espionage group Cloud Atlas targets Russia and its supporters (The Record by Recorded Future) Cyber-espionage group Cloud Atlas has ramped up activities targeting Russia, Belarus and disputed parts of Ukraine and Moldova.
Five Russian Nationals, Including Suspected FSB Officer, and Two U.S. Nationals Charged with Helping the Russian Military and Intelligence Agencies Evade Sanctions (US Department of Justice) “As alleged, the defendants perpetrated a sophisticated procurement network that illegally obtained sensitive U.S. technology to facilitate the Russian war machine,” stated United States Attorney Peace. “Our Office will not rest in its vigorous pursuit of persons who unlawfully procure U.S. technology to be used in furtherance of Russia’s brutal war on democracy.”
Russian Military and Intelligence Agencies Procurement Network Indicted in Brooklyn Federal Court (US Department of Justice) Publicly filed court documents, including a 16-count indictment unsealed today in Brooklyn, charge five Russian nationals – including a suspected Federal Security Service (FSB) officer – and two U.S. nationals with conspiracy and other charges related to a global procurement and money laundering scheme on behalf of the Russian government in which the defendants allegedly conspired to obtain military-grade and dual-use technologies from U.S. companies for Russia’s defense sector, and to smuggle sniper rifle ammunition, in violation of new U.S. sanctions imposed earlier this year.
Attacks, Threats, and Vulnerabilities
Pacific archipelago Vanuatu recovers from cyber attack (South Carolina Public Radio) While the government isn't sharing many details, this breach raises questions about the global costs of cybercrime and the future of geopolitical relations in the region.
Cybersecurity Experts Uncover Inner Workings of Destructive Azov Ransomware (The Hacker News) Cybersecurity researchers have unveiled the inner workings of a devastating new ransomware known as Azov Ransomware, designed to corrupt data.
Would’ve, Could’ve, Should’ve…Did: TA453 Refuses to be Bound by Expectations (Proofpoint) From at least late 2020 and through 2022, TA453 has engaged in campaigns that deviate from the group's expected phishing techniques and target victimology.
Iran-linked cyberspies expand targeting to medical researchers, travel agencies (The Record by Recorded Future) A cyberespionage group aligned with Iran’s Islamic Revolutionary Guard Corps (IRGC) has been observed attacking new targets over the last two years.
FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked (KrebsOnSecurity) InfraGard, a program run by the U.S. Federal Bureau of Investigation (FBI) to build cyber and physical threat information sharing partnerships with the private sector, this week saw its database of contact information on more than 80,000 members go up…
APT5: Citrix ADC Threat Hunting Guidance (NSA) APT5 has demonstrated capabilities against Citrix® Application Delivery Controller™ (ADC™) deployments (“Citrix ADCs”).
U.S. agency warns that hackers are going after Citrix networking gear (Reuters) A hacking group named APT5, which is suspected to be Chinese, has exploited a vulnerability in networking gear from U.S. technology company Citrix Systems Inc to spy on targets.
NSA Outs Chinese Hackers Exploiting Citrix Zero-Day (SecurityWeek) Citrix ships an emergency patch to cover a pre-auth code execution flaw in network appliances and the NSA blames a Chinese hacking group for zero-day exploitation.
Threat actor exploits critical Citrix vulnerability (Cybersecurity Dive) CISA and the NSA quickly issued advisories on the vulnerability, underscoring evidence that a threat actor, active for at least 15 years, is exploiting the flaw.
APT5 Exploiting New Flaw in Citrix ADC and Gateway (Decipher) APT5, a Chinese threat group, has used a newly discovered flaw (CVE-2022-27518) in Citrix ADC and Gateway to target a small number of organizations.
NSA says Chinese hackers are actively attacking flaw in widely used networking device (CyberScoop) A severe flaw in a Citrix device allowed hackers believed to be part of the group known as APT5 to carry out remote code execution.
#StopRansomware: Cuba Ransomware (CISA) Actions to take today to mitigate cyber threats from ransomware: • Prioritize remediating known exploited vulnerabilities. • Train users to recognize and report phishing attempts. • Enable and enforce phishing-resistant multifactor authentication.
I Solemnly Swear My Driver Is Up to No Good: Hunting for Attestation Signed Malware (Mandiant) We discovered a malicious driver used to terminate select processes on Windows systems.
Driving Through Defenses | Targeted Attacks Leverage Signed Malicious Microsoft Drivers (SentinelOne) Threat actors are abusing legitimately signed Microsoft drivers in active intrusions into telecommunication, BPO, MSSP, and financial services businesses.
Ransomware Gang Abused Microsoft Certificates to Sign Malware (WIRED) The company has taken measures to mitigate the risks, but security researchers warn of a broader threat.
Microsoft-signed malicious Windows drivers used in ransomware attacks (BleepingComputer) Microsoft has revoked several Microsoft hardware developer accounts after drivers signed through their profiles were used in cyberattacks, including ransomware incidents.
Security Flaw in Atlassian Products (Jira, Confluence,Trello, BitBucket) Affecting Multiple Companies (CloudSEK) We discovered a Security Flaw in Atlassian products (Jira, Confluence, and BitBucket), cookies are not invalidated, even if the password is changed, with 2FA (Two-factor Authentication) enabled, as the cookie validity is 30 days. They only expire when the user logs out, or after 30 days.
Fortinet says SSL-VPN pre-auth RCE bug is exploited in attacks (BleepingComputer) Fortinet urges customers to patch their appliances against an actively exploited FortiOS SSL-VPN vulnerability that could allow unauthenticated remote code execution on devices.
Royal Rumble: Analysis of Royal Ransomware (Cybereason) The Royal ransomware group emerged in early 2022 and has gained momentum since the middle of the year. Its ransomware, which the group deploys through different TTPs, has impacted multiple organizations across the globe.
ESF Potential Threats to 5G Network Slicing (NSA, CISA, and ODNI) Building upon the work published in the Enduring Security Framework’s Potential Threat Vectors to 5G Infrastructure, the Enduring Security Framework1 (ESF) established a working panel comprised of government and industry experts and conducted an in-depth review of network slicing, a key component of 5G infrastructure.
Severe vulnerabilities found in most industrial controllers (Washington Post) Report: 75 percent of industrial control devices are vulnerable, unpatched
New GoTrim botnet brute forces WordPress site admin accounts (BleepingComputer) A new Go-based botnet malware named 'GoTrim' is scanning the web for self-hosted WordPress websites and attempting to brute force the administrator's password and take control of the site.
Python Malware Starting to Employ Anti-Debug Techniques (JFrog) First time anti-debug techniques are discovered in PyPI malware. Read how these techniques are implemented, including analysis and tips from JFrog Security Research.
AWS ECR Public Vulnerability (Lightspin) Let's go over a critical AWS Elastic Container Registry Public (ECR Public) vulnerability that allowed external actors to delete, update, and create ECR Public images, layers, and tags in registries and repositories that belong to other AWS Accounts, by abusing undocumented internal ECR Public API actions.
SMS Scams Exposed: A Look at Ongoing Campaigns Worldwide (Bitdefender Labs) SMS phishing might not sound like much of a threat.
Uber suffers ANOTHER data leak after supplier breach (Computing) Ride-hailing firm Uber has been hit with yet another data breach, with stolen data shared on a hacking forum over the weekend.
California hospital breach exposed patients’ Social Security numbers, medical info (The Record by Recorded Future) San Gorgonio Memorial Hospital in California’s Riverside County has reported a data breach to its patients.
LockBit threatens to leak data stolen from California state (Register) Databases, details of 'sexual proceedings in court' and more apparently pilfered from finance IT
600,000+ records allegedly belonging to India Federal Bank/Fedfina customers offered for sale on a forum (SafetyDetectives) The SafetyDetectives cybersecurity team has discovered a forum post about a database being offered for sale online which the vendor claims is owned by India’s F
Twitter confirms recent user data leak is from 2021 breach (BleepingComputer) Twitter confirmed today that the recent leak of millions of members' profiles, including private phone numbers and email addresses, resulted from the same data breach the company disclosed in August 2022.
Facebook Leak Just One Reason Taxpayer Data Sharing Must Stop (Bloomberg Tax) The government must reform regulations to reflect the changing landscape of tax preparation. If the government is going to make taxpayers use private entities for tax preparation by not providing a comparable public option, it should at least ensure it’s also not forcing those taxpayers to expose their data.
City of Whitehall sends out 37,000 notification letters after ransomware attack (10tv.com) City administrator Zach Woodruff said the city did not pay the ransom and was able to retrieve the files that were compromised.
Data Breach (Whitehall, OH) The City has notified individuals whose personal information may have been impacted by a recent data breach. Learn about the incident and find an FAQ on what to do if you were notified here.
Cyber criminals scam Kiwis out of $35 million this year (NZ Herald) 'Digital ram raids have tallied over tens of millions in damage.'
CISA Adds Five Known Exploited Vulnerabilities to Catalog (CISA) CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose a significant risk to the federal enterprise. Note: To view newly added vulnerabilities in the catalog, click on the arrow in the "Date Added to Catalog" column, which will sort by descending dates.
Security Patches, Mitigations, and Software Updates
SAP Security Patch Day December 2022 (Onapsis) SAP released new and updated SAP security patches for its December SAP Patch Day. Read a comprehensive summary and how Onapsis contributed.
December 2022 Security Updates (Microsoft Security Response Center) This release consists of security updates for the following products, features and roles.
December Patch Tuesday Updates | 2022 - Syxsense Inc (Syxsense Inc) Microsoft releases 52 fixes this month including 6 Critical, one Public Aware and one Weaponised Threat.
Microsoft December 2022 Patch Tuesday fixes 2 zero-days, 49 flaws (BleepingComputer) Today is Microsoft's December 2022 Patch Tuesday, and with it comes fixes for two zero-day vulnerabilities, including an actively exploited bug, and a total of 49 flaws.
Microsoft Squashes Zero-Day, Actively Exploited Bugs in Dec. Update (Dark Reading) Here's what you need to patch now, including six critical updates for Microsoft's final Patch Tuesday of the year.
Microsoft fixes exploited zero-day, revokes certificate used to sign malicious drivers (CVE-2022-44698) (Help Net Security) Microsoft has delivered fixes for 50+ vulnerabilities, including a Windows SmartScreen bypass flaw (CVE-2022-44698) exploited by attackers.
Microsoft Releases December 2022 Security Updates (CISA) Microsoft has released updates to address multiple vulnerabilities in Microsoft software. An attacker can exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Microsoft’s December 2022 Security Update Guide and Deployment Information and apply the necessary updates.
Apple security updates (Apple Support) This document lists security updates for Apple software.
We finally know why Apple pushed out that emergency 16.1.2 update (Macworld) An actively exploited zero-day vulnerability was patched.
Why You Should Enable Apple’s New Security Feature in iOS 16.2 Right Now (Wirecutter) Apple just rolled out end-to-end encryption for iCloud backups. Here’s how to set it up.
Apple Releases Security Updates for Multiple Products (CISA) Apple has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected device. CISA encourages users and administrators to review the Apple security updates page for the following products and apply the necessary updates as soon as possible:
Citrix ADC and Citrix Gateway Security Bulletin for CVE-2022-27518 (Citrix) Citrix ADC and Citrix Gateway Security Bulletin for CVE-2022-27518
State-sponsored attackers actively exploiting RCE in Citrix devices, patch ASAP! (CVE-2022-27518) (Help Net Security) An unauthenticated RCE flaw (CVE-2022-27518) is being leveraged by APT5 to compromise Citrix ADC deployments.
Citrix Releases Security Updates for Citrix ADC, Citrix Gateway (CISA) Citrix has released security updates to address a critical vulnerability (CVE-2022-27518) in Citrix ADC and Citrix Gateway. An attacker could exploit this vulnerability to take control of an affected system. This vulnerability has been exploited in the wild.
VMware Patches VM Escape Flaw Exploited at Geekpwn Event (SecurityWeek) VMware releases urgent patches to fix a trio of security problems in multiple software products, including a virtual machine escape bug exploited at the GeekPwn 2022 hacking challenge.
Experts detailed a previously undetected VMware ESXi backdoor (Security Affairs) A new Python backdoor is targeting VMware ESXi servers, allowing attackers to take over compromised systems. Juniper Networks researchers spotted a previously undocumented Python backdoor targeting VMware ESXi servers. The researchers discovered the backdoor in October 2022, experts pointed out the implant is notable for its simplicity, persistence and capabilities. The experts were not able […]
VMware Releases Security Updates for Multiple products (CISA) VVMware has released security updates to address multiple vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review VMware Security Advisories VMSA-2022-0031, VMSA-2022-0033, and apply the necessary updates.
Mozilla Releases Security Updates for Thunderbird and Firefox (CISA) Mozilla has released security updates to address vulnerabilities in Thunderbird, Firefox ESR, and Firefox. An attacker could exploit these vulnerabilities to take control of an affected system.
Adobe Patches 38 Flaws in Enterprise Software Products (SecurityWeek) Adobe patches multiple software security defects that could expose users to code execution and privilege escalation attacks across all computer platforms.
CISA Releases Three Industrial Control Systems Advisories (CISA) CISA has released three (3) Industrial Control Systems (ICS) advisories on December 13, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for technical details and mitigations:
Trends
Talos Year in Review 2022 (Cisco Talos Blog) We expect this data-driven story will shed some insight into Cisco’s and the security community’s most notable successes and remaining challenges. As these Year in Review reports continue in the future, we aim to help explain how the threat landscape changes from one year to the next.
2022 Identities and Security Survey Results – Understanding The Challenges Fragmented Identity Tools Create For Organizations Security Posture (One Identity) The major identity breaches we’ve seen this year showcase that companies' fragmented approach to identity security tools is insufficient in defending against the threat landscape. So how can companies improve their identity security posture?
MH Global CISO Research Report 2022 (Marlin Hawk) Global study about the Chief Information Security Officer
Global Snapshot: The CISO in 2022 (Marlin Hawk) With the world on the precipice of a global recession, there shows little sign of slowdown in the changeable cybersecurity field. Cyber risk continues to outpace organisational defense, as does the damage caused by security breaches
Executives are four times more likely to be victims of phishing than workers (SC Media) Ivanti on Tuesday reported that despite a stunning 97% of security pros saying that their organization is now “as prepared” or “more prepared” to defend against cybersecurity attacks than they were a year ago, 1 in 5 “wouldn’t bet a chocolate bar” they could prevent a damaging breach.
Keeper Security's 2022 Cybersecurity Census Report Unveils Investment Urgency for UK’s Education Sector (Business Wire) Keeper Security's 2022 Cybersecurity Census Report Unveils Investment Urgency for UK’s Education Sector
Marketplace
Booz Allen’s Commercial MTS Business Combines with Security On-Demand to Launch DeepSeas (Booz Allen Hamilton) DeepSeas cyber defense unites Booz Allen’s commercial Managed Threat Services business with Security On-Demand.
Cybersecurity startup SafeHouse raises pre-Series A funding (VCCircle) SafeHouse Technologies Ltd, a startup focused on mobile-first cybersecurity, has secured pre-Series A funding of $6...
FireTail Raises $5M to Accelerate API Security, Led by Paladin Capital Group (Business Wire) FireTail has raised $5 million in new funding led by Paladin Capital Group.
DIA awards contract to modernize secretive IT network to unnamed firm (C4ISRNet) The agency declined to disclose the winning contractor, and the value of the deal is classified, according to officials.
CyberRes Security Operations Portfolio Closes Out 2022 Strong with Solid Ratings and Innovation News (Micro Focus) CyberRes Security Operations Portfolio Closes Out 2022 Strong with Solid Ratings and Innovation News
650 Group Recognizes Versa Networks as the Market Leader for Both Deployed SASE and Enabled SD-WAN (Business Wire) Versa Networks, the recognized leader of single-vendor Secure Access Service Edge (SASE), today announced it has again been named the Deployed SASE an
Musk Shakes Up Twitter’s Legal Team as He Looks to Cut More Costs (New York Times) Twitter has stopped paying rent on offices and is considering not paying severance packages to former employees, among other measures.
Unisys Names John Kritzmacher to Board of Directors (MarketScreener) Unisys Corporation today announced that John Kritzmacher has been elected to the Unisys Board of Directors, effective today. Kritzmacher, who...
Barracuda appoints new Chief Financial Officer (PR Newswire) Barracuda Networks, Inc., a trusted partner and leading provider of cloud-first security solutions, today announced Joe Billante as its new...
Beyond Identity Welcomes Accomplished Cybersecurity Veterans Pia McSharry and Susanne Gurman to Leadership Team (Beyond Identity) McSharry joins as VP of global sales engineering, Gurman named VP of Revenue Marketing, both join Women of Beyond Identity resource group
IonQ Announces Rima Alameddine as New Chief Revenue Officer, Appoints Wendy Thomas, President and CEO of Secureworks, to Board of Directors (IonQ) Working to build the world's best quantum computers to solve the world's most complex problems
Products, Services, and Solutions
Contrast Security Delivers Relevant, Easy-to-Understand Security Education for Developers to Secure Code Confidently (Contrast Security) Code security leader expands its superior developer experience with the introduction of two new initiatives: Contrast Secure Code Learning Hub and Contrast Community.
Gigamon Deep Observability Pipeline Fundamentally Enables the DOD Zero Trust Strategy and Capability Execution Roadmap (Business Wire) Today, Gigamon announced that its Gigamon Deep Observability Pipeline fundamentally enables the implementation of the newly released United States Dep
Top industrial IoT security solutions (TechRepublic) From safety to where? Find out the right way to turn with this comprehensive analysis of seven options for your business.
Red Canary and Palo Alto Networks expand partnership to improve detection coverage (Help Net Security) Red Canary has unveiled a new integration with Palo Alto Networks, adding Cortex XDR and detection coverage for mutual customers.
Google Launches OSV-Scanner Tool to Identify Open Source Vulnerabilities (The Hacker News) Google on Tuesday announced the open source availability of OSV-Scanner, a scanner that aims to offer easy access to vulnerability information about v
Contrast Security Delivers Relevant, Easy-to-Understand Security Education for Developers to Secure Code Confidently (PR Newswire) Contrast Security (Contrast), the code security platform built for developers and trusted by security, today announced the launch of its...
Box Announces Availability of New Security Enhancements to Help Combat Cyber Threats in the Cloud (Business Wire) Box, Inc. (NYSE: BOX), the leading Content Cloud, today announced the availability of several enhancements to Box Shield, the company’s flagship secur
Rockwell Automation Partners with Fortinet to Secure Operational Technology Environments (automation.com) Fortinet has joined the Rockwell Automation PartnerNetwork as a Gold Technology Partner.
Clearspeed Launches Surge to Quickly and Accurately Assess Claims Risk for Catastrophic Events (Business Wire) Clearspeed, the leading provider of voice analytics technology for risk assessment in the insurance, government, and security sectors, today announced
It’s time to scale up your cloud security posture (Lacework) Today, Lacework is releasing new cloud security posture management (CSPM) capabilities to help organizations achieve operational excellence and effectively manage security and compliance at scale, all from one flexible platform.
Stellar Cyber Integrates with Deep Instinct’s Deep Learning Technology for Unrivaled Cyber Attack Prevention (Business Wire) Stellar Cyber, the innovator of Open XDR, today announced a new integration with Deep Instinct, the first company to apply end-to-end deep learning to
Technologies, Techniques, and Standards
International Engagement Blog: Singapore International Cyber Week, the Regional Initiative for Cybersecurity Education and Training, and More (NIST) NIST has continued to collaborate into the fall season with partners throughout the world on the
Oil & gas cyber security considerations (Engineer Live) Building cyber resilience in an interconnected world
The Cybersecurity Industry Doesn't Have a Stress Problem — It Has a Leadership Problem (Dark Reading) Organizations need servant leaders to step forward and make their teams' professional effectiveness and happiness a priority.
Research and Development
DreamPort ICS/OT Lab to Advance U.S. Cybersecurity Capabilities (Cisco Blogs) The state-of-the-art DreamPort lab – with cutting edge technology from Cisco and CyKor – will be another important asset in plugging the cyber gap and advancing our nation’s cybersecurity capabilities and strengths.
Testing zero-trust security tools is now possible at Cyber Command innovation center (Axios) Government agencies can test zero trust tech at the lab ahead of a looming 2024 executive order deadline.
Intel 471 and Threatray Announce Joint Research Collaboration (GlobeNewswire News Room) Intel 471, the premier provider of cyber threat intelligence for leading...
Academia
What every school should know about cybercrime (Tes Magazine) Just how big of a risk does cybercrime pose to the education sector? We speak to experts about some of the steps schools can take to protect themselves
Legislation, Policy, and Regulation
OECD Countries to Limit Government Access to Personal Data (Wall Street Journal) The first-of-its-kind framework outlines the limitations on how governments, intelligence agencies and law-enforcement officials can access personal data held by companies.
U.S. lawmakers introduce bill to restrict Huawei's access to banks (Reuters) U.S. lawmakers have introduced a bipartisan bill to sanction Chinese tech company Huawei Technologies Ltd and Chinese 5G companies, restricting them from accessing U.S. banks.
Army one-star general fired from Cyber Command (Army Times) The general was removed by U.S. Cyber Command's leader, Gen. Paul Nakasone, following a loss of confidence.
Utah governor bans TikTok on state-owned devices (Axios) Gov. Spencer Cox said "China's access to data collected by TikTok presents a threat to our cybersecurity."
Litigation, Investigation, and Law Enforcement
Hackers planted evidence on computer of jailed Indian priest, report says (Washington Post) Jesuit priest Stan Swamy died after spending more than eight months in jail on terrorism charges
Stan Swamy’s Laptop Was 'Planted' With Incriminating Documents, Says New Forensic Report (The Wire) The new findings were released after Arsenal Consulting, a US-based digital forensics firm, examined an electronic copy of Swamy's computer, at the request of his lawyers.
Restrictive Laws Push Chinese Cybercrime toward Novel Monetization Techniques (Recorded Future) Despite difficult times and tougher laws, Chinese criminals adopt new cybercrime techniques — changes in dark web markets, predatory lending gangs, and more.
Chinese hackers innovate to get round proliferating cybersecurity laws and monetise their activities (TelecomTV) They are attacking targets at home as well as overseasAnd are getting creative as government struggles to keep upFor cybercriminals, it’s as easy as PII
SEC Charges Samuel Bankman-Fried with Defrauding Investors in Crypto Asset Trading Platform FTX (US Securities and Exchange Commission) Defendant concealed his diversion of FTX customers’ funds to crypto trading firm Alameda Research while raising more than $1.8 billion from investors
Sam Bankman-Fried criminal charges unsealed: Conspiracy to defraud the U.S., wire fraud, securities fraud, and money laundering (CNBC) Federal prosecutors accuse FTX co-founder Sam Bankman-Fried of widespread fraud and violating campaign finance laws, a new indictment says.
CFTC Sues Bankman-Fried, FTX and Alameda for Law Violations (Bloomberg) The Commodity Futures Trading Commission sued Sam Bankman-Fried, FTX and Alameda Research for violations of federal commodities laws.
Sam Bankman-Fried denied bail in Bahamas on FTX fraud charges, judge cites flight risk (CNBC) Bankman-Fried was arrested Monday evening by Bahamas law enforcement acting on a request from the United States Attorney for the Southern District of New York.
FTX execs had ‘free rein’ over exchange, Alameda, CEO Ray says (The Block) FTX CEO John Ray III spoke to the House Financial Services Committee one day after Sam Bankman-Fried was arrested in the Bahamas.
What to know about Sam Bankman-Fried and the FTX crypto exchange collapse (Washington Post) FTX founder Sam Bankman-Fried was hit with a slew of civil and criminal charges on Tuesday, a day after his arrest in the Bahamas at the request of the U.S. government.
Bahamas Told Bankman-Fried to Mint New Crypto as FTX Collapsed, Lawyers Say (Bloomberg) US lawyers claim Bahamas asked SBF to mint new crypto coins. FTX, Bahamas regulators file dueling bankruptcy court papers.
Sam Bankman-Fried’s House of Cards Is Falling Down (WIRED) The founder of collapsed cryptocurrency exchange FTX was arrested the day before his scheduled hearing in the US Congress.
SBF’s Criminal Charges Take the Heat Off the Crypto Industry (The Information) FTX founder Sam Bankman-Fried has just been charged with a raft of crimes. But they’re not really crypto crimes—and that’s a big relief for the broader crypto industry. The criminal charges, laid out in an indictment filed by federal prosecutors in New York, center on decidedly old-school ...
Keeping Up with the Bankman-Frieds (Puck) At the core of the S.B.F. dilemma is the brainy academic milieu in which he came of age: a place where effective altruism was discussed at the dinner table, shape-shifting was au naturel, and the pursuit of an ethical life undergirded it all.
Citadel’s Griffin Sues IRS for Failing to Protect His Financial Data (Bloomberg) Billionaire says it “deliberately stole” tax return details. Data breach provided look at tax strategies of the ultra-rich.