Dateline Moscow, Kyiv, Washington, and Beijing: Cyber phases of a hybrid war.
Ukraine at D+14: Prebunking a provocation. Regular and irregular hacking. Atrocities and incompetence. (The CyberWire) Information operations, cyberespionage, and nuisance attacks mark the cyber phases of Mr. Putin's hybrid war. The Russian army turns to terror to redress battlefield failure.
Map: Where Russian Troops Are Positioned Around Ukraine (New York Times) An estimated 130,000 Russian troops are in position on Ukraine’s northern, eastern and southern sides.
Ukraine war at 2-week mark: Russians slowed but not stopped (AP NEWS) Two weeks into its war in Ukraine , Russia has achieved less and struggled more than anticipated at the outset of the biggest land conflict in Europe since World War II.
Attack on Ukrainian hospital draws outrage as talks stall (AP NEWS) A Russian airstrike on a Mariupol maternity hospital that killed three people brought condemnation down on Moscow on Thursday, with Ukrainian and Western officials branding it a war crime, while the highest-level talks yet yielded no progress in stopping the fighting.
Ukraine accuses Russia of genocide after bombing of children's hospital (Reuters) Ukrainian's president accused Russia of carrying out genocide after officials said Russian aircraft bombed a children's hospital on Wednesday, burying patients in rubble despite a ceasefire deal for people to flee the besieged city of Mariupol.
Russians ‘were shooting civilians’: Ukraine refugees saw abuses (Military Times) The latest on what we know about the Russian war on Ukraine, March 10.
No progress on Ukraine ceasefire in Lavrov-Kuleba meeting (Reuters) Talks between Russia and Ukraine's foreign ministers on Thursday made no apparent progress towards a ceasefire in the two-week-old conflict or on a humanitarian corridor from the southern Ukrainian port of Mariupol.
Ukraine Live Updates: Top Envoys Fail to Make Progress Toward Ending War (New York Times) There was no breakthrough after the foreign ministers of Russia and Ukraine met. Three people were killed in a Russian strike against a maternity hospital on Wednesday, Ukrainian officials said.
Ukraine: Mariupol shelling resumes after deadly hospital attack - BBC News (BBC News) The Ukrainian city is under renewed bombardment, a day after a Russian air strike hit a maternity unit, killing three.
Ukraine-Russia morning briefing: Five developments as nuclear energy agency 'loses contact with Chernobyl' (The Telegraph) Plus: British troops may have gone to fight Russia and MoD says Russian forces are failing to make any significant breakthroughs
Ukraine Update: U.S. Eyes New Sanctions as Ukraine Awaits EU Aid (Bloomberg) The White House is considering imposing sanctions on nuclear power supplier Rosatom Corp., according to people familiar with the matter, a move that would broaden the U.S. ban on Russian imports of crude, coal, and other energy products.
Russian Prowess in Question With Military Bogged Down in Ukraine (Bloomberg) Questions over missing capabilities, from airpower to cyber. Poor troop morale, organization echo past weaknesses.
How to take on the Russians and win – by a former Cold War soldier (The Telegraph) Before turning to academia Professor James Goodwin spent 12 years in the infantry. He reveals how Russia’s army is getting it so wrong
Belarusian military reluctant to join Vladimir Putin’s Ukraine War (Atlantic Council) Belarus was widely expected to join the Russian invasion of Ukraine but indications are growing that the Belarusian military is strongly opposed to any involvement in Vladimir Putin's war of aggression.
Russian invasion plans 'profoundly flawed,' but 'ugly next few weeks' for Ukraine coming: US intel (Breaking Defense) “If they pursue the maximalist plan, we judge it will be especially challenging for the Russians to hold and control Ukrainian territory and install a sustainable pro-Russian regime in Kiev in the face of what we assess is likely to be persistent and significant insurgency,” said Avril Haines, director of national intelligence.
Putin's invasion is a logistical nightmare (The Telegraph) With a strategy based on flawed assumptions, Russia's capabilities look likely to degrade further
Russia calls in feared Chechen soldiers to capture Kyiv (The Telegraph) Mercenaries paid by the Wagner Group, a shadowy private military company, are also now operating on the ground
Russia admits throwing conscripts into battle in Ukraine (The Telegraph) Young soldiers pressured to fight, as defence analysts say the is Kremlin finding it difficult to build a force large enough to capture Kyiv
Russia's Next Attack on Ukraine: An Invasion by Sea Near Odessa? (19FortyFive) At least six Russian amphibious landing ships that can carry an impressive number of troop could be headed towards Odessa, Ukraine.
‘Atrocity’ as maternity hospital in besieged Mariupol destroyed by Russian air strikes (The Telegraph) Women, children and doctors trapped under the rubble following direct hit by Kremlin forces in Ukrainian city
Besieged Ukraine city of Mariupol buries dead in mass grave (AP NEWS) Under steady Russian bombardment, workers in Ukraine's besieged southern port city of Mariupol are hastily and unceremoniously burying scores of dead Ukrainian civilians and soldiers in a mass grave.
Russian War Report: Russia escalates nuclear and chemical false-flag allegations (Atlantic Council) On March 9, Russia escalated their claims that Ukraine intended to use nuclear or biological weapons against Russia and that capturing nuclear power plants were to "prevent" such attempts.
Vladimir Putin ‘plotting chemical weapons attack in Ukraine’ (The Telegraph) ‘Serious concern’ in West that Russians could resort to Syrian-style assault, as maternity hospital hit by air strike during ceasefire
White House warns Russia could use chemical weapons in Ukraine (TheHill) White House press secretary Jen Psaki on Wednesday warned of the potential for Russia to use chemical weapons in Ukraine after Moscow alleged the United States was housing biological weapons in Ukrainian territory.
Russia could use chemical or biological weapons in Ukraine, Psaki says (Newsweek) White House press secretary Jen Psaki tweeted that Russia's claims of U.S. bioweapons in Ukraine could be an excuse for Russia to release one of its own.
Russia ‘may be preparing to use chemical weapons in Ukraine’ (The Telegraph) One expert warns that ‘the EU and Nato need to prepare for the almost unimaginable’
Why biological weapons could be more of a threat than nuclear warfare (The Telegraph) As war in Ukraine escalates, weapons and defence expert Andy Weber explains why it’s not Russia’s atomic arsenal that we should worry about
How to Stop a New Nuclear Arms Race (Foreign Affairs) With Russia going rogue, America must cooperate with China.
Ukraine Open to Neutrality, Won’t Yield Territory, Aide Says (Bloomberg) Zelenskiy aide reinforces demand for security guarantees. Ihor Zhovkva, in interview, lays out pre-conditions for talks.
How Russian mothers could change the course of the war (The Telegraph) As the sole group with the moral authority to challenge Vladimir Putin, it is their voices raised in horror that are shaking the Motherland
Russian World: the dangerous doctrine driving Putin’s destruction of Ukraine (The Telegraph) Putin’s foreign policy aims to reunite the Orthodox 'family' of Russians, Slavs, Ukrainians and Belarusians – whether they like it or not
Why Vladimir Putin may stay in power longer than we think (The Telegraph) The ‘coalition’ still propping him up means the West must be patient if we want to see the Russian president overthrown
Opinion | How Vladimir Putin Lost Interest in the Present (New York Times) Does the president of Russia have anyone who can tell him when he’s making a mistake?
The Ukraine Dilemma (Foreign Affairs) Can the West save Kyiv Without Starting a war with Russia?
What are the risks and benefits of US/NATO military options in Ukraine? Our strategic risk calculator has answers. (Atlantic Council) A strategic risk calculator for policymakers on both sides of the Atlantic to assess the possible risks and benefits of boosting their military assistance to the Ukrainian government.
After Ukraine, Europe wonders who's next Russian target (AP NEWS) For some European countries watching Russia's brutal war in Ukraine , there are fears that they could be next.
Europe’s New Security Unity Can Repair Damaged Relationships (Foreign Policy) The United Kingdom should be a critical part of post-Ukraine arrangements.
Ukraine Is Europe’s Chance for Renewal (Foreign Policy) Russia’s war in Ukraine has to be met not just with resistance but with inspiration.
Britain mulls giving ‘Starstreak’ air-defense weapons to Ukraine (Defense News) “We believe that this system will remain within the definition of defensive weapons, but will allow the defending force to better defend the skies,” Defense Secretary Ben Wallace said.
Biden’s Ukraine aid package is getting super-sized by Congress (Defense News) Lawmakers unveiled a $13.6 billion Ukraine aid package on Wednesday that took President Joe Biden’s request for weapons and training for Ukrainian forces and put it on steroids.
Pentagon rejects Poland’s offer to transfer fighter fleet for Ukraine (Military Times) The Pentagon rejected Poland's offer to transfer its MiG-29 fighter jets to the U.S., who would have then given them to Ukraine.
Opinion | Why the US should think twice about arming a Ukrainian insurgency (Task & Purpose) The U.S. needs to think long and hard before plunging into what would be a long, bloody proxy war against Moscow.
Putin Is Losing the Information War in Ukraine—So Far (World Politics Review) Russia has long used disinformation to advance its interests, and the war in Ukraine is no exception. Washington has so far reacted effectively, but the next phase of the conflict will bring new challenges. The U.S. government and tech companies should push back on Russian tactics in ways that affirm democratic principles.
Russia, China May Be Coordinating Cyber Attacks: SaaS Security Firm (eSecurityPlanet) A new report says a spike in cyber attacks from Russia and China suggests the two companies may be coordinating their cyber efforts.
Russia’s Vigilante Hackers Join The Attack on Ukraine (Stanford Arts Review) In a fine beautiful war zone of Ukraine with a fine gust of wind, when officials, customers, people of the country tried to log in to their respective government sites, there was CODE 404 of page not found stating that the “PAGE IS NOT FOUND”. Hackers doing their job I guess...
Chinese and Belarusians Join Russian Hackers in Attacks on Ukrainian and EU Agencies (Toolbox) Hackers groups Fancy Bear, Mustang Panda, and GhostWriter are phishing Ukrainian and EU government and military officials to steal credentials and sensitive communications.
I’m a Ukrainian Official. We Need More Help on the Digital Front (Wired) Ukraine's deputy minister of Digital Transformation says Western tech sanctions have helped—but it's time to remove Russia from the global IT ecosystem.
Ice Miller Cybersecurity Law Snapshot: Russian Aggression Heightens Cybercrime Alert Level | Ice Miller LLP: Insights (Ice Miller LLP) Russia’s unprovoked invasion of Ukraine and the subsequent widespread sanctions and condemnation by leaders across the world, including the United States and NATO allies, have raised concern about Russian retaliation using cyberwar tactics.
Hackers targeted US energy companies ahead of Ukraine invasion: source (Fox News) Nearly two dozen American companies involved with liquefied natural gas production were attacked by hackers in early February – two weeks prior to Russia’s invasion of Ukraine, Fox News has learned.
Why the U.S. can engage Russia on cyber over Ukraine (VentureBeat) The U.S. Cyber Command, a branch of the military, can legally counter Russian cyberattacks against Ukraine without becoming part of the war.
Washington must do more to support companies facing Russian hackers (C4ISRNet) Moscow has repeatedly demonstrated that its hackers — which include military and intelligence cyber units as well as “independent” proxies — have the capability to inflict untold damages on the infrastructure and companies the global economy depends upon.
More Than 5 Million Anti-Propaganda Text Messages Sent to Russians in Anonymous Information Warfare (Hstoday) One Anonymous group said it seized control of more than 400 Russian camera feeds and is using them for "anti-propaganda to open the eyes of Russian civilians."
Anonymous hacked Russian cams, websites, announced a clamorous leak (Security Affairs) The collective Anonymous has hacked public cameras in Russia and transmitted their live feed on a website, it also announced a clamorous leak. Anonymous and other hacker groups continue to target Russia, in a recent attack the collective has taken over more than 400 Russian cameras in support of Ukraine. The hacktivist shared the live feed […]
Amazon Identifies Malware Targeting Aid Organizations in Ukraine (CNET) Amazon Web Services said it has been working with Ukrainian IT organizations to repel the attacks.
EXCLUSIVE BNP Paribas bars Russia-based staff from computer systems as cyber attack fears grow (Reuters) France's largest bank BNP Paribas has cut off its Russia-based workforce from its internal computer systems as it seeks to bolster its defences against any potential cyber attack, a source with direct knowledge of the matter told Reuters.
Inside Conti leaks: The Panama Papers of ransomware (The Record by Recorded Future) Conti, one of the most successful ransomware gangs in the world, has a leak problem. Shortly after the group pledged its support to Russia in its campaign against Ukraine, someone released more than two years’ of its internal chat logs. What they reveal has rocked the cyber world and, among other things, made clear that running a world-class ransomware operation isn’t as easy as it used to be – even with some help from their Russian friends.
Putin’s Ukraine War leaves Russia trapped behind a new iron curtain (Atlantic Council) Vladimir Putin's Ukraine War is part of a broader Kremlin offensive against human rights and civil liberties that is also being waged inside Russia itself against the country's marginalized and muzzled civil society.
A new iron curtain descends on Russia amid its invasion of Ukraine (Washington Post) Sanctions, airspace closures and departures of international companies threaten to cut off Russians to an extent unseen since the Soviet era
Twitter Goes on Tor with New Dark Web Domain to Evade Censorship (HackRead) Follow us on Twitter @HackRead - Facebook @ /HackRead
Kamala Harris finds herself center stage of the Ukraine crisis (POLITICO) The vice president arrives in Poland amid a worsening war and a disagreement over how to exchange fighter jets. It’s her toughest, biggest foreign policy stage yet.
Arming Ukraine: 17,000 Anti-Tank Weapons in 6 Days and a Clandestine Cybercorps (New York Times) The United States has walked to the edge of direct conflict with Russia in an operation that is reminiscent of the Berlin airlift of 1948-49, but far more complex.
A War-Weakened Russia Has No Strategic Value to China (World Politics Review) Scarcely more than a week ago, Chinese social media and the country’s internet were ablaze with praise for Vladimir Putin’s armed bid to subdue Ukraine. But when one takes a step back from the day-to-day events, the picture for China could hardly look more different from the way Putin’s cheerleaders imagined it.
Ukraine crisis: China accuses NATO of pushing Russia to 'breaking point' (WION) Chinese foreign ministry spokesman Zhao Lijian has accused US-led NATO of pushing Russia to a ''breaking point'' in the Ukraine crisis.
Russia taking over Ukraine could be a headache for Putin (Newsweek) Maintaining control of Ukraine would require Putin to commit tens of thousands of troops and make a significant financial investment in rebuilding the country.
Putin Clings to Russia’s Market Economy as Sanctions Wind Back the Clock (Bloomberg) Preserving the illusion of normalcy is paramount, even as the import-dependent country reels.
UK bans space-related exports to Russia (SpaceNews) New trade sanctions aimed at Russia’s space sector were announced March 9 by UK Foreign Secretary Liz Truss.
U.S. Weighs Sanctions on Russian Uranium Supplier Rosatom (Bloomberg) White House assessing impacts but no final decision made. Move could impact nuclear power industry, uranium mining.
Oil Slumps With OPEC+ and Ukraine Headlines Sparking Huge Swings (Bloomberg) Ukraine reiterates its willingness to compromise with Russia. UAE says it will call on OPEC+ to boost oil output faster.
Biden’s Russian oil ban: Slick, or nothing special? (Atlantic Council) Our experts break down the new US move against Russia's energy industry, from its impact on global oil prices to the pressure it puts in Europe.
EU Says Russia, Belarus Sanctions Extend to Crypto (CoinDesk) Crypto assets fall into the category of "transferrable securities" and are therefore clearly included in the scope of sanctions, the EU said.
Michael Dell: Russia’s Ukraine Invasion Is ‘A Great Tragedy’ (CRN) Michael Dell says the Russia Ukraine invasion is a horrible situation as Dell Technologies stops selling products to Russia.
Verizon expands humanitarian crisis relief (GlobeNewswire News Room) Today, Verizon extended its relief efforts to help keep its customers connected during the humanitarian...
Amazon suspends access to Prime Video in Russia, halts shipments to the country (TechCrunch) Amazon is suspending access to Prime Video for customers based in Russia amid the country’s invasion of Ukraine. In a blog post about the announcement, the company also noted that it has suspended the shipment of retail products to customers based in Russia and Belarus. Amazon will also no lo…
Tens of thousands of Russian gig workers left behind as tech platforms pull out (Washington Post) As Western companies scramble to react to public pressure and sanctions, tens of thousands of Russians who relied on online freelance work are being left behind.
Here are some of the businesses that have pledged to cut ties with Russia. (New York Times) Under pressure from investors and consumers, many Western companies have started to unwind their investments, close stores and pause sales in Russia.
Russia’s Other Contest With the West: Economic Endurance (New York Times) Which side can maintain domestic support as the war costs regular citizens could also determine the outcome in Ukraine.
Roman Abramovich sanctioned throwing future of Chelsea into turmoil (The Telegraph) A sale of Chelsea Football Club is now on hold, with the club unable to sell tickets for future matches
Attacks, Threats, and Vulnerabilities
CISA updates Conti ransomware alert with nearly 100 domain names (BleepingComputer) The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has updated the alert on Conti ransomware with indicators of compromise (IoCs) consisting of close to 100 domain names used in malicious operations.
Google Blocks Chinese Phishing Campaign Targeting U.S. Government (SecurityWeek) Google says it has blocked a phishing campaign originating from China and aimed at Gmail users associated with the U.S. government.
Symantec tracked down one developer of ‘China’s most advanced piece of malware’ (Sc Magazine) The malware, known as Daxin, would upend many assumptions about how China operates its espionage operations. Traditionally an actor not overly concerned with stealth, Daxin stayed under the radar for a decade or more.
Daxin Backdoor: In-Depth Analysis, Part One (Symantec) In the first of a two-part series of blogs, we will delve deeper into Daxin, examining the driver initialization, networking, key exchange, and backdoor functionality of the malware.
Daxin Backdoor: In-Depth Analysis, Part Two (Symantec) In the second of a two-part series of blogs, we examine the communications and networking features of Daxin.
Researchers disclose new Spectre V2 vulnerabilities (SearchSecurity) The Spectre V2 side-channel attack against Intel and Arm CPUs has a new variant that bypasses previous hardware mitigations.
Hackers fork open-source reverse tunneling tool for persistence (BleepingComputer) Security experts have spotted an interesting case of a suspected ransomware attack that employed custom-made tools typically used by APT (advanced persistent threat) groups.
Alarm raised over bug that opens the door to colossal DDoS attacks (TechRadar) Misconfigured servers can be used as major amplifiers for DDoS attacks
In-the-wild DDoS attack can be launched from a single packet to create terabytes of traffic (ZDNet) A test mode that shouldn't be exposed to the internet from a PBX-to-internet gateway responsible for amplification ratio of 4,294,967,296 to 1.
Mitel Devices Abused for DDoS Vector With Record-Breaking Amplification Ratio (SecurityWeek) Mitel enterprise collaboration products have been abused for DDoS attacks that employ a new vector with a record-breaking amplification ratio.
Hackers Abuse Mitel Devices to Amplify DDoS Attacks by 4 Billion Times (The Hacker News) Hackers abuse Mitel devices to perform high-impact amplification attacks to stage massive DDoS attacks with a record-breaking amplification ratio.
Major Security Misconfiguration Impacting ServiceNow Instances Discovered (Business Wire) AppOmni, the leading provider of SaaS Security, has discovered a common ServiceNow Access Control List (ACL) misconfiguration present in nearly 70% of
Microsoft Warns of Spoofing Vulnerability in Defender for Endpoint (SecurityWeek) Microsoft on Tuesday patched a class spoofing vulnerability in Defender for Endpoint and warned of its impact on all platforms.
16 Vulnerabilities Found in Firmware of HP Enterprise Devices (SecurityWeek) HP has started releasing patches for 16 UEFI firmware vulnerabilities that can be exploited for privilege escalation and arbitrary code execution.
Die Lehren aus dem Sunburst-Angriff (Funkschau) Der Sunburst-Cyberangriff auf Solarwinds im Dezember 2020 war ein Weckruf für die Softwarebranche und Zeichen einer neue Realität: Die Angriffsmethoden der Hacker sind viel komplexer und erfolgreicher geworden. Sie bedrohen die Lieferketten und die Infrastruktur, auf die alle angewiesen sind.
Biometric security beginning to pique cybercriminals’ interest (Intel471.com) Threat actors are becoming increasingly aware of the value associated with access to biometric data.
Strangest social engineering attacks of 2021 (CSO Online) Criminal gangs are getting more creative with their social engineering scams as organizations continue to struggle to defend against them.
Private information of Israeli Air Force pilots allegedly leaked on darknet by hackers (Ctech) Israeli cybersecurity company Varonis alerted the Israeli National Cyber Directorate after discovering the list, and the latter brought in the IDF to check and verify the information
Are cybercriminals waiting for an opportune time to attack U.S. trucks? (Fleet Owner) After the pandemic and other problems showed vulnerabilities, hackers sponsored by nefarious states could attempt to cause more supply chain problems, cybersecurity expert warns fleets.
India becoming ‘sextortion’ capital of the world? (Times of India Blog) Nondescript towns in Rajasthan and Haryana like Mewat, Bharatpur, Alwar are spinning a diabolical revolution. School-dropout teenage children and their uneducated but cunning masterminds run sextortion rackets that span across several countries and earn millions....
PressReader Suffers Cyber-Attack (Infosecurity Magazine) Access blocked to 7000 publications after strike on world’s largest digital newspaper distributor
Toei Animation's Website Gets Hacked, Studio Shuts Down Online Shop (Crunchyroll) Toei Animation, the anime studio behind hits like Dragon Ball, Sailor Moon, One Piece, and Digimon Adventure:, revealed in a statement yesterday that their website was the target of an online hack that was discovered on March 6. It's currently not known what was accessed, how much was accessed, or if it concerns the Toei Animation Online Shop or not, though as a precaution, the studio has closed down the shop.
Notice of Data Incident - Montrose Regional Health (Montrose Regional Health) Montrose Regional Health discovered unusual activity in an employee’s email account and immediately began an investigation, which included working with third-party specialists to determine the nature and scope of the activity. The investigation determined there was unauthorized access to certain employee email accounts between August 2, 2021 and October 26,
Attorney General Frosh urges Marylanders affected by T-Mobile data breach to protect themselves against identity theft (Nottingham MD) Attorney General Brian E. Frosh is urging all Maryland residents impacted by the data breach announced by T-Mobile in August 2021 to take appropriate steps to protect their information from identity theft. On August 17, T-Mobile reported a massive data breach compromising the sensitive personal information of millions of current, former, and prospective T-Mobile customers, including individuals who had …
Security Patches, Mitigations, and Software Updates
Critical Security Patches Issued by Microsoft, Adobe and Other Major Software Firms (The Hacker News) Patch Tuesday, March 2022 — Critical security Patches Issued by Microsoft, Adobe, Android, Cisco, Citrix and Other Software Firms
Siemens Addresses Over 90 Vulnerabilities Affecting Third-Party Components (SecurityWeek) Siemens this week addressed more than 100 vulnerabilities affecting its products, including over 90 flaws affecting third-party components.
SAP Patches Critical Security Flaws in Monitoring Solutions (SecurityWeek) German software maker SAP this week announced the release of 12 new and 4 updated security notes as part of its March 2022 Security Patch Day.
Trends
Everywhere Workplace Survey Results (Ivanti) Happier at home: Employees report more work yet more satisfaction in the Everywhere Workplace
Large organizations left exposed by three-month gap in human cyber capabilities after threats break (Immersive Labs) Analysis of 35,000 cybersecurity team members at 400 global organizations lays bare 96-day lag in knowledge, skills and judgment after attacks are out in the wild
Omada and ESG: Hybrid Work is Driving Re-Examination of Identity Governance Policies (PR Newswire) The rise of hybrid work is driving the need for strengthened Identity Governance and Administration (IGA), according to a new report released...
Marketplace
Cybersixgill Announces $35 Million in Series B Funding to Expand Global Footprint to Combat the Growing Cybercrime and Cyber Threat Landscape | Cybersixgill.com (Cybersixgill) Funding Led by More Provident, Pension Funds, REV Venture Partners – Additional Investors Include CrowdStrike Falcon Fund, Elron Ventures, OurCrowd, and SonaeIM TEL AVIV, ISRAEL– March 10, 2022 – Cybersixgill, the premier vendor of real-time and actionable threat intelligence, announced today the company has raised $35 million in Series B funding led by More Provident […]
Northern Irish firms merge to create cybersecurity managed services 'powerhouse' (CRN) Outsource Group and ANSEC IA claim the deal will create an IT security ‘powerhouse’
Thrive Acquires SouthTech to Continue Florida Expansion (PR Newswire) Thrive, a premier provider of NextGen Managed Services, has acquired SouthTech, a managed technology solutions leader on the Florida West Coast....
HelpSystems to Acquire MDR Services Firm Alert Logic (SecurityWeek) HelpSystems has agreed to acquire Alert Logic, a provider of managed detection and response (MDR) services for an undisclosed sum
BAE Systems completes BISim acquisition (Army Technology) BAE Systems has completed its previously announced acquisition of US-based software company Bohemia Interactive Simulations (BISim).
Google’s acquisition of Mandiant: A defining moment for cybersecurity and business as a whole (SC Magazine) The Google-Mandiant deal could set off another wave of merger and acquisition activity.
Chronicles Of Mandiant: Google put a ring on it (ZDNet) This acquisition augments Google Project Zero with an infusion of sophisticated practitioners in forensics, malware analysis, threat intelligence, and security research.
Plurilock's Aurora Systems Secures up to US$2 Million Line of Credit (Yahoo) Plurilock Security Inc. (TSXV: PLUR) (OTCQB: PLCKF) and related subsidiaries ("Plurilock" or the "Company"), an identity-centric cybersecurity solutions provider for workforces, is pleased to announce that, through its wholly-owned subsidiary, Aurora Systems Consulting, Inc. ("Aurora"), it has obtained a revolving line of credit from Crestmark, the Commercial Finance division of MetaBank®, N.A. (the "Lender") for up to US$2 million
2.5 million-plus cybersecurity jobs are open—women can fill them (Microsoft Security Blog) As we celebrate International Women’s Day and Women’s History Month, we examine the potential roadblocks and exciting opportunities for women in cybersecurity.
Sumo Logic Announces Fourth Quarter and Fiscal Year 2022 Financial Results (GlobeNewswire News Room) Fourth quarter revenue grew 24% year-over-year to $67.0 million Full year fiscal 2022 revenue grew 19% year-over-year to $242.1 million REDWOOD CITY,...
Immuta Announces Explosive Growth in 2021 (The Daily News) Immuta, the leader in automated data access and privacy protection for cloud data platforms, today announced record growth in 2021, increasing annual recurring revenue (ARR) by more than 100 percent, doubling its customer base, and continuing its global expansion into EMEA and APJ.
Security Leaders Find Value in Veterans to Solve Cyber Skills Shortage (SecurityWeek) CISOs struggling to fill their cybersecurity vacancies should take a closer look at the opportunities afforded by military veterans
Lab3 promotes David Boyes to CEO (CRN Australia) Replacing Chris Cook who has moved to the newly created CSO role.
Exabeam Names Mark Jensen to Board of Directors and the Chair of the Audit Committee (Exabeam) Exabeam, the leader in Next-gen SIEM and XDR, today announced the appointment of Mark Jensen to the Exabeam Board of Directors and the Chair of the Audit Committee. A veteran of Deloitte & Touche LLP, where he served as U.S. Managing Partner-Audit and Enterprise Risk Services, Technology Industry...
Vince Berk Joins Quantum Xchange as Chief Revenue and Strategy Officer (PR Newswire) Quantum Xchange is pleased to announce the appointment of Dr. Vincent Berk to the position of Chief Revenue and Strategy Officer where he will...
OurCrowd backed ThetaRay Appoints Peter Reynolds as CRO (Crowdfund Insider) ThetaRay, a provider of AI-enhanced transaction monitoring tech to protect banking institutions and Fintech platforms against financial crimes, recently revealed that it has solidified its international revenue operations with the appointment of Peter Reynolds as the firm’s Chief Revenue Officer.
Cellebrite Names Dr. Guy Rotkopf as Chairperson of Ethics & Integrity Committee (GlobeNewswire News Room) Former Director General of the Israel Ministry of Justice to oversee Committee activities...
Products, Services, and Solutions
Nexum, Inc. to Offer Versa Networks SASE (Nexum, Inc.) Nexum, Inc. announced today that Versa Networks, a secure access service edge leader, is now part of its growing list of exceptional technology partners.
SlashNext Launches Email Protection for Microsoft 365 – Five Minutes to Complete Email Phishing Protection (SlashNext) Stop 65% More Spear-Phishing, BEC, Legitimate Service Compromise, Rogue Software, Social Engineering, and Other Human Compromise Threats
Druva Delivers Comprehensive Data Protection Solution for Amazon EC2 (Druva) Combined Capabilities of Snapshots, Backups, and Disaster Recovery Strengthen Data Resiliency, Enhance Ransomware Protection, and Significantly Reduce Costs
IGI CyberLabs Partners with Cowbell Cyber to Bring Nodeware(R) Solution to Cyber Insurance Customers (Access Wire) The partnership will aim to help cyber-insurance policy holders boost their cyber hygiene
Axiad and Venafi Partner to Provide Passwordless Access for Users and Machines (GlobeNewswire News Room) Alliance simplifies lifecycle management of thousands of users and machine identities across the enterprise...
Noetic Cyber and Rumble partner to provide complete visibility into organizations' cyber assets and attack surface (PR Newswire) Noetic Cyber, a cloud-based continuous cyber asset management and controls platform, today announced an integration with Rumble Network...
Payoneer Selects ThetaRay to Monitor Global Cross-Border Payment Transactions (PR Newswire) ThetaRay, a leading provider of AI-powered transaction monitoring technology, and Payoneer (NASDAQ: PAYO), the commerce technology company...
How IBM's security command centre in India helps fight global cyberattacks (Business Standard) The unit helps train cybersecurity response techniques through highly realistic and simulated cyberattack - designed to prepare everyone from C-Suite through technical staff
Dell opts out of Microsoft's Pluton security for Windows (Register) This doesn't align with our approach, PC giant tells us
Recorded Future Announces Access to More Than 100 Global Partner Integrations for Intelligence-Led Decision Making Across the Enterprise (PR Newswire) Recorded Future, a provider of intelligence for enterprise security, today announced that it is now available through more than 100 global...
VMware adds runtime security features to Carbon Black Cloud (SC Magazine) VMware has expanded the security capabilities in its Carbon Black Cloud platform with the addition of container runtime security features including runtime cluster image scanning, workload anomaly detection, threat detection, Kubernetes visibility mapping and egress and ingress security.
Armorblox Reimagines Data Loss Prevention for Microsoft Office 365, Microsoft Exchange and Google Workspace (Armorblox) Brings Natural Language Understanding to Data Loss Prevention; Reduces False Positives in DLP-related Threat Alerts by 10x
Technologies, Techniques, and Standards
Cloud Security Alliance Teams with CrowdStrike, Okta, and Zscaler to Create Focal Point for Zero Trust Education and Best Practices (CSA) CSA’s Zero Trust Advancement Center to develop research, training, professional credentialing and an online center for community Zero Trust resources
Design and Innovation
The Psychology of Ransomware Response (SecurityWeek) SecurityWeek spoke to Rebecca McKeown of Immersive Labs to understand the human psychology involved in responding to ransomware and how companies can better prepare the workforce
Academia
LFCC Cyber program chosen as part of Cyber Command (The River 95.3) Lord Fairfax Community College's (LFCC) CYBER program has been designated as a center of academic excellence in cyber defense. An email....
Southeast Missouri State University Cyber Defense Team wins state championship for 10th year in a row (KFVS 12) The Southeast Cyber Defense Team has one their 10th consecutive Missouri Collegiate Cyber Defense Competition.
Legislation, Policy, and Regulation
President Biden Issues Executive Order on Digital Assets and “Whole-of-Government Approach” to Risks and Benefits (JD Supra) President Biden has signed an Executive Order entitled “Ensuring Responsible Innovation in Digital Assets.” The press release regarding the Order is...
FACT SHEET: President Biden to Sign Executive Order on Ensuring Responsible Development of Digital Assets (The White House) Outlines First Whole-of-Government Strategy to Protect Consumers, Financial Stability, National Security, and Address Climate Risks Digital assets,
Executive Order on Ensuring Responsible Development of Digital Assets (The White House) By the authority vested in me as President by the Constitution and the laws of the United States of America, it is hereby ordered as follows:Section
U.S. Secretary of Commerce Gina Raimondo Statement on “Ensuring the Responsible Development of Digital Assets” Executive Order (U.S. Department of Commerce) Today, following President Biden’s signing of an Executive Order on “Ensuring the Responsible Development of Digital Assets” that establishes a Federal government-wide approach to the development of the digital
Bitcoin Price Surges on Biden’s Crypto Executive Order (Wall Street Journal) President Biden signed an executive order instructing federal agencies to study the possible risks presented by cryptocurrencies and consider the creation of a U.S. digital currency.
SEC may require public companies to disclose cyberattacks (Register) And it'll be in an 8-K for all to see
Litigation, Investigation, and Law Enforcement
REvil member accused of Kaseya ransomware attack arraigned in Texas (CyberScoop) Yaroslav Vasinskyi faces 115 years in jail.
Sodinokibi/REvil Ransomware Defendant Extradited to United States and Arraigned in Texas (US Department of Justice) A man charged with conducting ransomware attacks against multiple victims, including the July 2021 attack against Kaseya, made his initial appearance and was arraigned today in the Northern District of Texas.
How Israel’s Pegasus Spyware Stoked the Surveillance Debate (Council on Foreign Relations) Israel reportedly used NSO Group’s Pegasus spyware as a diplomatic bargaining chip, and its misuse by many governments has intensified the bigger debate about surveillance technology.
FBI chief: We bought NSO's Pegasus to do counterintelligence (Jerusalem Post) FBI Director Wray claimed that the FBI never used NSO's Pegasus software.
Morocco/Western Sahara: Activist targeted with Pegasus spyware in recent months – new evidence (Amnesty International) New evidence reveals a prominent human rights activist in Morocco has been targeted with NSO Group’s Pegasus spyware.
Kiwis lost more than $6.5 million to online scams in final quarter of 2021 - CERT NZ report (Newshub) The vast majority of reports to the agency related to the Flubot malware.
County Clerk Who Pushed the ‘Big Lie’ Is Indicted for Election Data Breach (The Daily Beast) Tina Peters became a conspiracy celebrity when she claimed election misconduct in her county. A grand jury says she breached her own voting machines.
