Dateline Moscow, Kyiv, Brussels, Washington, Tokyo, Seoul: Stalled but brutal, with influence ops and sanctions.
Ukraine at D+8: Weight of metal, not tactical ability; propaganda, not cyber ops. (The CyberWire) Russia's army seems to be compensating for tactical and materiel ineptitude with brutally intense and indiscriminate fires. Propaganda has apparently eclipsed cyber operations, and sanctions bring more pressure on Russia's economy (and government).
Russian Assault Shows No Letup as War Enters a Second Week (Bloomberg) Lavrov says any cease-fire deal must ‘demilitarize’ Ukraine. Baltic leaders seek UN safe corridor so Ukrainians can flee.
Russian troops enter Ukrainian city of Mykolayiv - local authorities (Reuters) Russian troops have entered the Ukrainian Black Sea port city of Mykolayiv for the first time, regional authorities said on Friday.
Putin Thought Ukraine Would Fall Quickly. An Airport Battle Proved Him Wrong. (Wall Street Journal) Russia wanted to use Hostomel Airport outside Kyiv to bring troops directly to the capital. A band of Ukrainian soldiers fought to keep the Russians from using the landing strip, forcing them to move soldiers and supplies over land.
How Ukraine’s Military Has Resisted Russia So Far (New York Times) Ukrainian troops have mounted a stiffer-than-expected opposition to a superior force in the early days of the war. But U.S. officials say it may not last.
Russia's chaotic and confusing invasion of Ukraine is baffling military analysts (CNBC) One week into Russia's invasion of Ukraine and military analysts are united on one front: Russia's invasion has not gone entirely to plan.
'Tanks and mud are not friends' — Ukraine's terrain is proving to be a problem for Russian armor (Task & Purpose) The Russian army in Ukraine is finding out the hard way that mud is one of the greatest threats against tanks and other vehicles.
Ukraine jets hit Russian column; Russia has used thermobarics, Ukraine military says (Military Times) Startling new claims in Russia's war on Ukraine by the head of Ukraine's defense intelligence agency.
Vladimir Putin’s chilling warning on Ukraine: The worst is yet to come (The Telegraph) Russian president vows to take over whole country and prepares to crush anti-war dissent at home by imposing martial law
Letter from Kyiv: Putin’s War on Ukraine is 'Pozor Rossii' (Breaking Defense) Writing from Kyiv, Breaking Defense's Ukraine correspondent grapples with the strategic implications and lessons learned a week after Russia's invasion.
Ukraine conflict: Who's in Putin's inner circle and running the war? (BBC News) Russia's president cuts an isolated figure but he relies on an inner circle when he makes key decisions.
Washington’s Newest Worry: The Dangers of Cornering Putin (New York Times) Surprised by the speed at which sanctions have been poured on Russia, Biden’s top aides suspect that Putin’s reaction will be to double down and lash out — and perhaps expand the war.
Ukrainians say hackers used local government sites to spread fake 'capitulation' news (Reuters) Ukrainian officials say hackers have broken into local government websites to spread false reports that Kyiv had capitulated and signed a peace treaty with Moscow.
Last Vestiges of Russia’s Free Press Fall Under Kremlin Pressure (New York Times) “Everything that’s not propaganda is being eliminated,” a Nobel Prize winning editor said as Russian authorities moved to control the narrative in the Ukraine war.
Don’t mention the war: Russian state media sells the lie of Ukrainians shelling their own cities (The Telegraph) Since the invasion began, Kremlin propaganda machine has been ramped up – but anti-war activists find new ways to spread truth
With her hair in plaits and a song on her lips, Russia puts an angelic face on its propaganda war (The Telegraph) Kremlin clip, hosted by 12-year-old singing star, shamelessly denies war with Ukraine and seeks to discredit images from the front line
Ukraine forces reportedly kill top Russian general in blow to invading army (Newsweek) A colleague of General Andrei Sukhovetsky posted news of his death on social media and Ukrainian and Russian media outlets have also published the story.
Ukraine Nuclear Power Plant Fire Raises Fears, Calls for Cease-Fire in Area (Wall Street Journal) A fire at a nuclear power plant in Ukraine raised concerns with the United Nations’ atomic agency and prompted a call between President Biden and Ukraine’s President Volodymyr Zelensky.
Russian forces surround Ukraine’s biggest nuclear plant, sparking UN concerns (the Guardian) Nuclear watchdog chief pleads with invading troops to allow workers to carry on ‘providing safety and monotoring radiation’ at Zaporizhzhia
Kremlin forces open fire near Europe’s largest nuclear power plant (The Telegraph) Russian forces have opened fire in the Ukrainian town of Energodar next to Europe's largest nuclear power plant after entering in tanks, a Ukrainian official has said.
Concern mounting over huge Russian military convoy outside Kyiv (the Guardian) Speculation that massive column of Russian vehicles and troops may be regrouping for assault on capital
What will happen to Russia’s 40-mile convoy? Your questions, answered. (Washington Post) Russian forces have been continuing their deadly assault on Ukrainian cities. They appeared to escalate their attacks on residential areas, with videos and social media posts documenting the devastation and fierce fighting. A 40-mile-long convoy of tanks, troop carriers and artillery is idling just 20 miles north of central Kyiv, Ukraine’s capital, where residents are bracing for an all-out assault by Russian forces.
Russian convoy’s advance on Kyiv deflated by flat tyres and Ukrainian mud (The Telegraph) Experts suggest 'truck maintenance corruption' and the changing weather are combining to cause havoc for Vladimir Putin's invading forces
Watch: Russian ‘delegates’ hold hand grenades aloft as defiant Ukrainians send them packing (The Telegraph) Moments earlier, the soldiers had informed residents of Konotop that unless they surrendered, the invading army would raze their city
How Might the War in Ukraine End? Five Factors Will Shape the Outcome (Wall Street Journal) Russian forces have performed poorly thus far, but Ukraine’s military is expected to eventually crack. What then?
Russia Crisis Military Assessment: Why did Russia's invasion stumble? (Atlantic Council) Russian ground forces have become bogged down—but the situation is still perilous.
Limited cease-fire reached for civilian evacuations as Russian forces cut off key cities (Washington Post) Ukraine and Russia say they have agreed to temporary local cease-fires to create “humanitarian corridors” for the evacuation of civilians and delivery of vital supplies, as Russian forces encircled major port cities and advanced toward other population centers.
More than a million people have left Ukraine, foreshadowing a massive humanitarian crisis (Washington Post) Photos and videos show long waits, freezing temperatures and sparse accommodations along Ukraine’s borders. Millions more are likely to be displaced in the coming months.
Through a mountain pass, Poles frantically rebuild a rail link to Ukraine to help refugees (Washington Post) The tracks were first laid by the Austro-Hungarian empire a century and a half ago, linking Vienna with Lviv. But disuse and the grinding gears of time forced them out of service 12 years ago.
Russian troops in disarray and ‘crying’ in combat, radio messages reveal (The Telegraph) Soldiers are refusing to obey orders – including to shell Ukrainian towns – while others have walked away from battle
Demoralised Russian soldiers tell of anger at being ‘duped’ into war (the Guardian) Videos of PoWs used for Ukraine propaganda, but there is an authentic sense of regret among Russian servicemen
'We were deceived and used like meat shields': Anger of the Russian soldiers duped into killing (The Telegraph) The Ukrainian defence ministry has invited Russian mothers to travel to Kyiv to pick up their captured sons and take them home
Russia fights back in information war with jail warning (Reuters) Russia's parliament on Friday passed a law imposing a jail term of up to 15 years for spreading intentionally "fake" news about the military, stepping up the information war over the conflict in Ukraine.
Ukrainians have united in an effort to fight misinformation and spread facts about the war with ads on websites in Russia and Belarus (Business Insider) "Crisis management in the Ukrainian ad industry is unique," said MGID Chief Marketing Officer Nickolas Rekeda, who is volunteering in the effort.
The propaganda war has eclipsed cyberwar in Ukraine (MIT Technology Review) Frauds, liars, and grifters are adding to the chaos of the fighting.
China seeks to unify public in support for Russia (AP) As the West condemns Russia, President Vladimir Putin has vocal supporters in China, where the ruling Communist Party tells its people they are fellow targets of U.S.-led harassment.
North Korea: US and its allies are ‘root cause’ of Russia’s invasion of Ukraine (Stars and Stripes) North Korea identified “the hegemonic policy” of the United States and its allies as the “root cause” of Russia’s invasion of Ukraine, according to a Monday statement from the communist regime’s Foreign Ministry.
The gory online campaign Ukraine hopes will sow anti-Putin dissent probably violates the Geneva Conventions (Washington Post) The Ukrainian government has posted grisly photos and videos of killed and captured Russian soldiers in hopes of undermining the Kremlin’s onslaught. But military-justice experts argue the campaign violates international law.
Threat Monitoring Newly Created Ukraine-Related Domain Names (DomainTools) DomainTools is offering a new, free threat intelligence feed of newly observed or registered Ukraine-related domain names to help organizations monitor threats.
Spotify Shutters Russia Office, Removes All RT and Sputnik Content (Variety) Spotify has taken several steps in response to Russia’s military attack on Ukraine, including closing its offices in Russia “indefinitely.” The company is not disabling access to …
Reddit bans links to Russian state media across the entire site (Engadget) Reddit is further responding to Russia's invasion of Ukraine by banning links to state-backed Russian media across the whole site..
Tripadvisor, Google Maps Suspend Reviews of Some Russian Listings (Wall Street Journal) Alphabet Inc.’s Google Maps and the travel search platform Tripadvisor Inc. temporarily blocked users from posting new reviews to some listings in Russia, Ukraine and Belarus, the companies said Tuesday.
The suspensions were made in response to an influx of political statements posted as reviews to
An American gig work app was accused of working for Russia. Why? (NBC News) In the confusion, Google, an early investor in Premise, temporarily removed the app.
Twitch Says It Will Bar Chronic Spreaders of Misinformation (NYTimes) The new policy will take down channels that persistently lie about vaccines and election fraud, as well as Russian state-run media.
Apple Maps now says Crimea is part of Ukraine – except if you're in Russia (9to5Mac) Instead of showing up as an independent territory, Crimea is once again displayed as part of Ukraine in Apple Maps.
Russia blocks Apple's App Store, report (Computing) Google Play and BBC websites also taken down
How 9 vendors have responded to Russia following Ukraine invasion (CRN) The likes of Apple, HP, HPE and Dell have suspended business in the country
RT America ceases productions and lays off most of its staff (CNN) RT America will cease productions and lay off most of its staff, according to a memo from T&R Productions, the production company behind the Russian state-funded network, which CNN obtained.
Russia's Eugene Kaspersky remains neutral over Ukraine war (Computing) But in trying to remain neutral, Kaspersky may have angered both sides
Russian logistics 'grinding to a halt' as sanctions begin to bite (The Loadstar) The impact of sanctions against Russia is beginning to be felt across its logistics sector, as transport options dwindle and payment systems lose support. A source closely tied to Europe’s forwarding and shippers community said that, while “of course” trade with Russia continued, transport operations and financial aspects of the business were “grinding to a halt”, as efforts to persuade Putin to withdraw from Ukraine ratchet up. The source told The Loadstar: ...
‘Yes, he would’ – Fiona Hill on Putin and nukes (The Loadstar) If you read just one thing on Russia and Putin’s aims for Ukraine, make it this Politico article. Fiona Hill, “one of America’s most clear-eyed Russia experts and someone who has studied Putin for decades, worked in both Republican and Democratic administrations and has a reputation for truth-telling”, explains what his aims are and, with one eye on history, shows how similar this situation is to the rise of Nazism. She ...
Ukraine's request to cut off Russia from the global internet has been rejected (CNN) The international non-profit that coordinates management of the internet told Ukraine it will not intervene in the country's war with Russia, rebuffing a request to cut Russia off from the global internet.
The internet in Ukraine is still mostly online. Could Starlink be a backup if it goes out? (The Record by Recorded Future) Elon Musk has a tendency to be outrageous on Twitter, and the Ukrainian government may have found a way to leverage him to help the country stay online if the internet goes out during the Russian invasion.
SpaceX sent Starlink internet terminals to Ukraine. They could paint a 'giant target' on users' backs, experts say (CNN) SpaceX CEO Elon Musk sent a truckload of Starlink antennas — which can be used to connect to the company's satellite-based internet service — to Ukraine this week, responding to a plea from the country's vice prime minister amid fears that Ukrainians could lose internet access if Russia continues its attacks on communication infrastructure.
Ukraine’s Vital Tech Industry Carries On Amid Russian Invasion (Wall Street Journal) Amid an increasingly violent Russian invasion, Ukraine’s long-vibrant software sector is managing to churn out code for clients overseas and help the country’s war effort.
Ukraine Has Received Over $50 Million in Crypto Donations - Decrypt (Decrypt) The Ukrainian crypto crowdfunding effort has now exceeded $50 million, through almost 90,000 separate donations.
Ukraine cancels crypto airdrop, plans to sell NFTs instead (The Block) Ukraine's government abruptly canceled its planned crypto airdrop and said it would instead sell NFTs to raise funds.
Ukraine’s Crypto Army Is Both Inspiration and Cautionary Tale (Bloomberg) Donations pour in, but lack of transparency poses a hindrance. Botched airdrop and scams plague crypto giving efforts.
First He Fought The Russians Online. Now He’s Fighting Them On Kyiv’s Streets. (Forbes) Maksym Skubenko runs the largest independent outfit in Ukraine tracking disinformation. Now he has shifted from combating the Russians on the Web to fighting them face to face.
Volodymyr Zelensky Is Not a Meme (Wired) The Ukrainian president's actions in the face of the Russian invasion turned him into a hero online. But the Marvelization of political figures is dangerous.
Ukraine war sanctions could spur Russian cyberattacks on U.S., expert warns (CBS News) Cyber conflict can hit businesses, government — and you, said Chris Krebs, former head of the U.S. Cybersecurity and Infrastructure Security Agency.
Opinion | I’ve Dealt With Foreign Cyberattacks. America Isn’t Ready for What’s Coming. (New York Times) U.S. leaders must rethink the current cyberdefense system and rally around a centralized regulator.
Pentagon establishes communication line with Russians amid war in Ukraine (Stars and Stripes) The Pentagon has established a communication line to the Russian Defense Ministry in attempts to reduce the risk of dangerous misunderstandings as Russia wages war on Ukraine, a U.S. defense official said Thursday.
NATO chief says ‘Putin failed to divide us,’ as Blinken tours Europe (Washington Post) NATO Secretary General Jens Stoltenberg said Friday that Russian President Vladimir Putin “has failed to divide us,” stressing Western unity as Russia’s assault on Ukraine enters its second week.
This is Putin's war, and Putin has to stop it, EU says (Reuters) The European Union's foreign policy chief called on Russia's President Vladimir Putin on Friday to stop indiscriminate shelling and bombing of Ukraine.
Cyber insurance policies may be put to the test by Russian attacks, credit ratings firm warns (The Record by Recorded Future) Credit ratings giant Fitch said on Tuesday that cyberattacks linked to Russia's invasion of Ukraine might be a test for language commonly used in cyber insurance policies that excludes damages caused by acts of war.
In one week of war, Russia’s invasion of Ukraine may have veered history in a new direction (Washington Post) In one week of war, life within the boundaries of Ukraine has been upended, but the brutal assault Russian President Vladimir Putin launched last Thursday has also reverberated around the globe, steering history in a new direction and switching up 75 years of relations among some of the world’s most powerful and wealthy countries.
Inside Vladimir Putin’s criminal plan to purge and partition Ukraine (Atlantic Council) Vladimir Putin's invasion of Ukraine has raised the chilling prospect of a brutal occupation including a purge of pro-Ukrainian and pro-Western elements of the civilian population and possible annexations of Ukrainian land.
Lavrov says Russia will continue Ukraine war till 'the end' (Reuters) Russian Foreign Minister Sergei Lavrov said on Thursday he believed some foreign leaders were preparing for war against Russia and that Moscow would press on with its military operation in Ukraine until "the end".
Russia thinks West will "get over" Ukraine war, calls response "hysteria" (Newsweek) After dismissing international condemnation, Russia's foreign minister said "it's clear to everyone that World War III can only be a nuclear one."
Key Asian nations join global backlash against Russia, with an eye toward China (Washington Post) When Japan in recent days announced an aggressive set of sanctions to punish Russia for its invasion of Ukraine, it wasn’t just Moscow it wished to signal, according to U.S. and Asian officials.
London Stock Exchange suspends 27 companies with Russian ties (Financial Times) Share trading freeze is latest sign of western sanctions rippling across global markets
MSCI pulls ‘uninvestable’ Russian stocks from emerging markets indices (Financial Times) Traders had waited on tenterhooks for decision as sanctions from country’s invasion of Ukraine take hold
Fitch, Moody's slash Russia's sovereign rating to junk (Reuters) Ratings agencies Fitch and Moody's downgraded Russia by six notches to "junk" status, saying Western sanctions threw into doubt its ability to service debt and would weaken the economy.
Senators want to know if Russia can use cryptocurrencies to skirt sanctions. (New York Times) Four Democrats have asked Treasury officials to explain how they’re overseeing digital assets while Russia is largely frozen out of traditional commerce.
How Putin tried — and failed — to protect the ruble from sanctions (Washinton Post) The ruble has plunged after unprecedented sanctions took aim at Russia’s central bank
For Average Russians, Western Sanctions Over Ukraine War Begin to Bite (Wall Street Journal) Soaring interest rates have pushed some Russians to hold off on buying homes. Others are stocking up on imported medications, and travel plans have been canceled.
The End of the Oligarch Era Nears With Putin’s Miscalculation in Ukraine (Bloomberg) Sanctions are punishing Russia’s wealthiest businesspeople—and the country’s leader—by bringing a cold, hard stop to 30 years of integration with the global economy.
The War on Ukraine: The Beginning of the End of Putin’s Russia (Wilson Center) On February 24, 2022, the Russian Federation launched a full-fledged war on Ukraine. This attack is the next—and hopefully the final—stage of an aggressive course that first showed its colors in 2014. It also represents a continuation, more focused this time, of the same revanchist ideology that drove the earlier incidents. An aging President Putin and his entourage are hurrying to revise the post–Cold War international order and reconfigure Russia’s place in it.
Will Putin Lose Russia? (Foreign Affairs) Putin's grip on power rests on fantasy and fear.
This Is Not Who We Are (Wilson Center) These days most Russians’ hearts go out to their Ukrainian relatives, friends, and the country as a whole. What is going on is mind-boggling. Russians have differing worldviews and opinions on politics and the country’s past, but there is one aspect of Russian identity that we all agree on. We cannot see ourselves as aggressors.
Putin’s Ukraine War fuels protest mood in Russia and Belarus (Atlantic Council) Russian President Vladimir Putin's full-scale invasion of Ukraine has sparked the biggest European conflict since WWII and is now fueling a growing anti-war protest mood in both Russia and Belarus.
Putin’s War in Ukraine Is Putting c in a Bind (World Politics Review) Azerbaijani President Ilham Aliyev recently visited Moscow, where he upgraded relations with Russia to the status of “allied cooperation.” Despite the optics of Aliyev’s visit coming against the backdrop of the invasion of Ukraine, Azerbaijan’s main concern in deepening cooperation with Moscow remains Nagorno-Karabakh.
Europe needs to prepare for a future without Russian energy (Atlantic Council) One of Putin’s greatest assets is Western reliance on Russia; to move forward, this relationship must shift from one of necessity to one of convenience.
Calling all pirates: This US lawmaker wants you to seize Russian vessels (Military Times) The anti-Putin pirates.
China denies it asked Russia not to invade Ukraine during Winter Olympics (the Guardian) Beijing dismisses as ‘fake news’ claims that Chinese officials had some knowledge of Russia’s plans
Invasions Are Not Contagious (Foreign Affairs) Russia’s war in Ukraine doesn’t presage a Chinese assault on Taiwan.
Improved Russia-China Ties Have Ominous Implications for the U.S. (Bloomberg) Beijing and Moscow get closer because they need each other more than ever.
The War in Ukraine Is Testing China’s New Partnership With Russia (World Politics Review) As Russia’s invasion of Ukraine continues to draw outrage and reprisals from the international community, China is maintaining the cautious distance from Moscow it has taken since the onset of the crisis, with many suggesting that Beijing may have been caught unaware by Russia’s decision to authorize an invasion of Ukraine.
Breakdown of US-Russia diplomacy runs deep, beyond Ukraine (AP NEWS) Eyeing each other warily across negotiating tables, U.S. and Russian diplomats never much trusted each other. Yet even during the Cold War, they hashed out agreements on the biggest issues of the day.
Attacks, Threats, and Vulnerabilities
No, the Army isn’t sending Ukraine draft notices via text (Army Times) There almost certainly won't be a draft outside a massive war threatening America.
Hackers Who Broke Into NVIDIA's Network Leak DLSS Source Code Online (Hacker News) Hackers who penetrated the network of the American chip manufacturer NVIDIA have leaked DLSS source code on the Internet.
Hackers warn Nvidia to open-source their GPU drivers or face data leak (Computing) Lapsus$ ransomware group wants Nvidia to remove a feature that makes its GPUs less suitable for cryptomining
Cybercriminals who breached Nvidia issue one of the most unusual demands ever (Ars Technica) Chipmaker has until Friday to comply or see its crown-jewel source code released.
Researchers warn of malicious typosquatting packages making their way into open source repositories (Computing) Malicious typosquatting packages prey on naive users or developers who make a slight typographical error
Hackers Find a New Way to Deliver Devastating DDoS Attacks (Wired) Cybercriminals are exploiting a fleet of more than 100,000 misconfigured servers to knock websites offline.
Researchers Demonstrate New Side-Channel Attack on Homomorphic Encryption (The Hacker News) Researchers Demonstrate New Side-Channel Attack on Homomorphic Encryption | Read latest news headlines on latest news and technical coverage on cybersecurity, infosec and hacking.
U.S. Gov Issues Stark Warning, Calling Firmware Security a 'Single Point of Failure' (SecurityWeek) At the very highest levels, the U.S. government is calling attention to major weaknesses in the firmware supply chain, warning that the layer below the OS presents “a large and ever-expanding attack surface.”
Venezuelan users of crypto wallet MetaMask say they can no longer access it (The Block) Users of MetaMask based in Venezuela say they can no longer access the popular digital asset wallet.
Ethereum Companies Suddenly Ban Users In Certain Countries (Vice) Social media is flooded with reports of users in Venezuela not being able to use MetaMask and Infura, and Iranian users being locked out of OpenSea.
New research from Hive Systems finds any 8-character password can be cracked in less than an hour (Security Info Watch) Brute force hacking chart featured in Newsweek, the front page of Reddit, and another major technology outlet
Healthcare Company Mon Health Discloses Second Data Breach (SecurityWeek) Monongalia Health System (Mon Health) this week started notifying patients, employees, and partners of a cyberattack that may have resulted in their data being stolen.
Michigan Medicine notifies patients of health information breach (University of Michigan Health) Michigan Medicine is notifying approximately 2,920 patients about an employee email account that was compromised which may have exposed some of their health information.
How to avoid falling for a Tinder swindler or a fake German heiress (Washington Post) What if that Tinder match you’re starting to fall for — or that new friend you’ve made — is really a scammer?
Did a Cyberattack Disrupt Archbishop Cordileone’s Rosary for Ukraine? (National Catholic Register) Archbishop Salvatore J. Cordileone's online "Rosary for Peace in Ukraine” Wednesday was disrupted by a suspected cyberattack, according to the Archdiocese of San Francisco, which reported the incident to the FBI.
Security Patches, Mitigations, and Software Updates
Cisco Patches Critical Vulnerabilities in Expressway, TelePresence VCS Products (SecurityWeek) Cisco this week announced patches that address a couple of critical vulnerabilities in its Expressway Series and TelePresence Video Communication Server (VCS) products.
BD Pyxis (CISA) 1. EXECUTIVE SUMMARY CVSS v3 7.0 Vendor: Becton, Dickinson and Company (BD) Equipment: Pyxis Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to gain access to electronic protected health information (ePHI) or other sensitive information.
BD Viper LT (CISA) 1. EXECUTIVE SUMMARY CVSS v3 8.0 ATTENTION: Low attack complexity Vendor: Becton, Dickinson and Company (BD) Equipment: Viper LT Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to access, modify, or delete sensitive information.
IPCOMM ipDIO (CISA) 1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: IPCOMM Equipment: ipDIO Vulnerabilities: Cross-site Scripting, Code Injection 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to inject and execute arbitrary code.
Trends
Trending Evil Home Page (Mandiant) Read Mandiant’s latest cyber threat report revealing the actors, malware and tactics that Mandiant detection and response services have recently seen on the frontlines. Read the report today.
Tines Releases 'Voice of the SOC Analyst' Report Detailing Frustrations of Today's Security Analysts (PR Newswire) Tines, a no-code automation platform for security teams has released the findings from their new "Voice of the SOC Analyst" report.
Security ana ...
Cybersecurity Industry - The State of External Attack Surface 2022 (Reposify) Quis custodiet ipsos custodes? Reposify’s research team analyzed the security posture of 35 cybersecurity firms, and their 350+ subsidiaries. Download now for groundbreaking insights into the state of the cybersecurity industry’s external attack surface.
Phishers’ Favorites 2021 Year-in-Review (Vade) Get the eBook to see the most impersonated brands in phishing attacks and trends that dominated 2021.
‘Bot holiday’: Covid disinformation down as social media pivot to Ukraine (the Guardian) The usual deluge of invective prompted by coronavirus and vaccine issues is absent – Russia’s invasion may be a factor
Marketplace
BastionZero Raises $6M Seed for Secure Remote Access Tech (SecurityWeek) Venture capital firms invest in an early-stage startup tackling secure remote access to backend infrastructure.
CardinalOps Raises $17.5 Million for Threat Coverage Optimization Platform (SecurityWeek) CardinalOps has raised $17.5 million in a Series A funding round for its Threat Coverage Optimization (TCO) platform.
Auctus Capital Partners Supports Gradient Cyber, Secures Financing from Revtek Capital with $10MM Credit Facility to Drive Growth in SOCaaS - Auctus Capital Partners (Auctus Capital Partners) Auctus Capital Partners is pleased to announce its role as exclusive advisor to Gradient Cyber, supporting the leading provider of cybersecurity and security operations as a service (SOCaaS) in securing financing with a revolving line of credit from Revtek Capital...
PerimeterX Celebrates Milestones at the Close of its Fiscal Year (PerimeterX) Extends market leadership with new customers, new products and industry recognition
XDR Innovator Cynet Welcomes Former Check Point Executive Bruno Darmon (PRWeb) Cynet, the autonomous XDR platform provider, has appointed IT security leader Bruno Darmon as Chief Strategy Officer. Darmon brings over 25 years of high-t
Splunk nabs Proofpoint boss take over as new CEO (CRN) Steele was the founding CEO at cybersecurity vendor Proofpoint and will join Splunk on 11 April
Products, Services, and Solutions
Intel Unveils vPro Security Enhancements for 12th Gen Core Processors (SecurityWeek) Intel has unveiled the vPro platform security enhancements introduced with the new 12th Gen Core processors.
SpecterOps and Quest Software Partner to Minimize Attack Paths and Secure Active Directory (Business Wire) Strategic partnership allows customers to identify Active Directory attack paths, eliminate threats in real-time, and recover in case of an attack.
SpecterOps Partners with Quest Software to Minimize Attack Paths and Secure Active Directory (GlobeNewswire News Room) Ensures organizations are identifying attack vectors and securing Active Directory from every angle...
Intel Introduces vPro Platform for Revolutionary Business Performance (Intel) Intel introduces vPro platform with 12th Gen Intel Core processors for revolutionary business performance.
ConnectWise Expands Collaboration with Intel to Further Strengthen Cybersecurity for SMBs (GlobeNewswire News Room) Combined technology mitigates loss with improved detection of ransomware and cryptojacking attacks...
British Firm Tackles 'Harvest Now, Decrypt Later' Problem With Sharding Technology (SecurityWeek) UK firm Majenta Solutions believes it has solved the ‘harvest now, decrypt later problem’ but adding a form of sharding to its existing MX data transfer platform.
SpecterOps Partners with Quest Software to Minimize Attack Paths and Secure Active Directory (GlobeNewswire News Room) Ensures organizations are identifying attack vectors and securing Active Directory from every angle...
SentinelOne reboots Scalyr as enterprise data platform (SearchDataManagement) After acquiring data lake analytics vendor Scalyr, SentinelOne relaunched it as the DataSet enterprise data platform for users to ingest and query data.
Linedata expands its Technology Services portfolio with two new cybersecurity offerings (Linedata) Linedata, today announced its collaboration with HCL Technologies to launch global cybersecurity offerings.
Technologies, Techniques, and Standards
Attack Flow — Beyond Atomic Behaviors (Medium) Written by Andy Applebaum, Desiree Beck, Mark Haase, and Jon Baker.
NIST releases Ransomware Risk Management Cybersecurity Framework Profile and a Quick Start Guide (Continuity Central) The US NIST has published two guides to help organizations manage and respond to ransomware threats.
NISTIR 8374, Ransomware Risk Management: A Cybersecurity Framework Profile (NIST) Ransomware is a type of malicious attack where attackers encrypt an organization’s data and demand payment to restore access. Attackers may also steal an organization’s information and demand an additional payment in return for not disclosing the information to authorities, competitors, or the public. This Ransomware Profile identifies the Cybersecurity Framework Version 1.1 security objectives that support identifying, protecting against, detecting, responding to, and recovering from ransomware events. The profile can be used as a guide to managing the risk of ransomware events. That includes helping to gauge an organization’s level of readiness to counter ransomware threats and to deal with the potential consequences of events.
Getting Started with Cybersecurity Risk Management: Ransomware | CSRC (NIST) With the threat of ransomware growing, this "quick start guide" will help organizations use the National Institute of Standards and Technology (NIST) "Ransomware Risk Management: A Cybersecurity Framework Profile" to combat ransomware. Like the broader NIST Cybersecurity Framework, which is widely used voluntary guidance to help organizations better manage and reduce cybersecurity risk, the customized ransomware profile fosters communications and risk-based actions among internal and external stakeholders, including partners and suppliers.
Legislation, Policy, and Regulation
Cyber experts urge EU to reject web proposal that could impact security (Computing) A proposed amendment to Article 45 in eIDAS would have a significant, negative impact on web users' security
Cyber in the Biden administration's latest emergency funding request (The Record by Recorded Future) A White House request for $32.5 billion in emergency funding to counter Covid-19 and support Ukraine in its war against Russia would devote millions to a legion cybersecurity efforts throughout the federal government.
NSC cyber team joins fight against pandemic fraud (FedScoop) The National Security Council’s cybersecurity team is working with the federal initiative to prevent the defrauding of public benefits programs on recommendations that will become part of a forthcoming executive order. The Executive Order on Preventing Identity Theft in Public Benefits Programs will include new actions supporting victims of identity fraud and address bias that […]
Biden Puts Big Tech’s Favorite Business Model on Notice (Wired) The regulation of surveillance advertising used to be a fringe idea. Now it’s in the State of the Union address, at least when it comes to kids.
US Navy memo warns of cyber risks amid global tensions (C4ISRNet) Hackers have exploited mistakes on Navy and private, at-home networks by stealing or guessing passwords and other credentials, furtively installing malware, and posing as service members or veterans to pry information out of people.
Maryland officials outline package to tighten cybersecurity (Baltimore Sun) Maryland officials outline package to tighten cybersecurity
Litigation, Investigation, and Law Enforcement
Nigeria moves to extradite cop indicted in Hushpuppi cyberfraud case to U.S. (The Record by Recorded Future) Abba Kyari, the now suspended Deputy Commissioner of Police faces charges as an alleged conspirator of social media influencer Hushpuppi.
Apple and FBI grilled by lawmakers on spyware from Israeli NSO Group (CNBC) The letters come after The New York Times reported earlier this year that the FBI had acquired surveillance technology from the NSO Group.
The secret police: Cops built a shadowy surveillance machine in Minnesota after George Floyd’s murder (MIT Technology Review) An investigation by MIT Technology Review reveals a sprawling, technologically sophisticated system in Minnesota designed for closely monitoring protesters.
