Dateline: Russia's war against Ukraine.
Ukraine at D+460: Missile exchanges. (CyberWire) The missile war continues, Ukraine receives arms from the West, and Russia tightens control over domestic opinion.
Russia-Ukraine war at a glance: what we know on day 461 of the invasion (the Guardian) Overnight attack on Kyiv leaves one person dead; two people require medical assistance after drone strike on Moscow
Live Briefing: Russia Invades Ukraine (RadioFreeEurope/RadioLiberty) RFE/RL's Ukraine Live Briefing gives you the latest developments on Russia's ongoing invasion, Western military aid, global reaction, and the plight of civilians. The Live Briefing presents the latest developments and analysis, updated throughout the day.
Russia-Ukraine war at a glance: what we know on day 460 of the invasion (the Guardian) At least one person hospitalised after daytime missile attack on Kyiv; Ukraine claims to have shot down 37 missiles and 29 drones overnight
One person dies in third wave of strikes on Kyiv in 24 hours (the Guardian) ‘Massive’ strikes early on Tuesday morning, with falling debris setting an apartment building on fire
Ukraine war: Russia pounds Kyiv with missiles in daytime attack (The Telegraph) Russia fired 11 missiles at Kyiv and the surrounding region on Monday morning in an unusual daytime attack on the capital, Ukraine's armed forces chief said.
Russia-Ukraine war live: morning explosions in Kyiv after Ukraine claims to have downed 37 missiles overnight – as it happened (the Guardian) Capital’s mayor warns residents to take shelter after explosions reported in central area
Russia says drones damage Moscow buildings in pre-dawn attack, blames Ukraine (AP NEWS) Russian air defenses stopped eight drones converging on Moscow, officials said Tuesday, in an attack that authorities blamed on Ukraine, while Russia pursued its relentless bombardment of Kyiv with a third assault on the city in 24 hours.
Russia-Ukraine war latest: Drone attack hits Moscow's wealthy neighbourhoods (The Telegraph) The suspected Ukrainian drone attack on Moscow on Monday morning appeared to have targeted wealthier neighbourhoods and the suburbs dotted with official government residences and mansions of Russian tycoons, Nataliya Vasilyeva reports.
Fires raging across Russian-held territory since UK sent Storm Shadow missiles (The Telegraph) More than 900 war-related blazes have occurred in Kremlin-held territory in Ukraine in the last two weeks
Ukraine’s Kinzhal intercepts should cool hypersonic hype (C4ISRNet) The Ukrainian experience with Kinzhal may be a wake-up call for Russia. It should also be a wake-up call for the United States.
Putin is terrified of Ukraine’s counteroffensive (The Telegraph) Airstrikes on Kyiv were an attempt to undermine morale. Instead, they will have strengthened it
Ukraine’s coming counteroffensive has a good chance of succeeding (Atlantic Council) Ukraine's coming counteroffensive has a great chance of succeeding due to a number of factors including superior leadership, equipment upgrades, and strong morale, writes Richard D. Hooker, Jr.
Former Russian commander in Ukraine says Putin could be overthrown by the Wagner mercenary army (Business Insider) Vladimir Putin could be ousted by Russia's private military group, the Wagner army, according to Igor Girkin, a former Federal Security Service officer who once led a group of Russian militants in Donetsk.
Russia-Ukraine war at a glance: what we know on day 458 of the invasion (the Guardian) Toll from Russian missile attack on Dnipro rises to two; Medvedev says conflict could last decades; Blinken to visit Finland, Sweden and Norway
Russian attack on outpatient clinic in Dnipro kills two people (the Guardian) Volodymyr Zelenskiy describes missile strike as a crime against humanity after 30 people are injured
Ukraine: The Latest - Clinic destroyed by Russian missile strike in Dnipro 'a blatant war crime' (The Telegraph) Every weekday the Telegraph's top journalists analyse the Russian invasion of Ukraine from all angles and tell you what you need to know
Ukrainians fighting outside Bakhmut see Russian mercenaries withdrawing (Washington Post) The battle of Bakhmut isn’t over. From the edges of Kostyantynivka, about 12 miles west of Bakhmut, which Russia captured a week ago, soldiers from Ukraine’s 24th Separate Assault Battalion pounded enemy trenches on the city’s southern flank with artillery fired from an old Soviet D30 howitzer on Saturday.
Bakhmut and the echoes of Stalingrad (The Telegraph) How Bakhmut compares with Russia's most famous battle of attrition
Russian security services launch chemical weapons provocation in Zaporizhzhia region – intel (Ukrinform) In the Zaporizhzhia region’s temporarily occupied areas, Russian security services have launched a chemical weapons provocation. — Ukrinform.
Russia can fight Ukraine war for ‘decades’, says Putin ally (The Telegraph) Dmitry Medvedev claims there is no room for talks while Volodymyr Zelensky is still in power
Russia-Ukraine war live: ‘We haven’t started yet to act very seriously,’ says Kremlin ambassador – as it happened to UK (the Guardian) Andrei Kelin tells BBC: ‘It is an idealistic mistake to think that Ukraine will prevail’
Investigation Launched After London City Airport Website Hacked (Simple Flying) A pro-Russian hacker group has taken credit for a Sunday morning cyberattack on London City Airport.
EU's Borrell: Russia won't enter negotiations while trying to win war (Reuters) The European Union's top diplomat, Josep Borrell, on Monday said he believed Russia will not be willing to negotiate while it is still trying to win the war in Ukraine, adding that he was "not optimistic" about what could happen in the conflict this summer.
Large delegation of US cyber officials to visit Tallinn for cyber events (Baltic Times) A delegation of more than 30 US cyber officials is to visit Tallinn this week to participate in a series of cyber conferences and...
Russian Media Boss Calls for Lindsey Graham’s Assassination (The Daily Beast) The boss of Russia’s main news channel is among a number of authority figures in the country that have reacted with fury over edited comments made by the South Carolina Senator.
Russian army needs a decade to rebuild – and Nato can take advantage (Telegraph) Video analysis: As Russian equipment losses pile up in Ukraine, older Western kit shipments are proving their worth
Russia ‘poses danger to UK’ if beaten in Ukraine (The Telegraph) Sir Mike Wigston, the outgoing head of the RAF, tells The Telegraph that Vladimir Putin will be 'vindictive' if the war against Kyiv fails
The Russian Red Line Washington Won’t Cross—Yet (The Atlantic) Ukraine wants long-range missiles in order to regain Crimea and end the war. Why won’t Washington supply them?
The moment has arrived: Biden must give Ukraine all it needs to win | Simon Tisdall (the Guardian) It’s Zelenskiy who is setting the pace diplomatically and strategically. The US must end the prevaricating that may have needlessly prolonged the war
Russia signs deal to deploy tactical nuclear weapons in Belarus (AP NEWS) Russia and Belarus signed a deal formalizing the deployment of Moscow’s tactical nuclear weapons on the territory of its ally, although control of the weapons remains in the Kremlin. Officials framed Thursday's step as driven by hostility from the West. It wasn't announced when the weapons would be deployed, but Russian President Vladimir Putin has said previously that the construction of storage facilities for the weapons in Belarus would be completed by July 1. Exiled Belarusian opposition leader Sviatlana Tsikhanouskaya condemned the move, saying it would “further jeopardize the security of Ukraine and all of Europe.” Russia used Belarusian territory as a staging ground for invading neighboring Ukraine and has maintained a contingent of troops and weapons there.
Putin and the Psychology of Nuclear Brinksmanship (Foreign Affairs) The war in Ukraine hinges on one man’s thoughts and feelings.
Putin’s mini-Nato is falling apart (The Telegraph) As Moscow's allies turn their backs, now is time for NATO states to expose CSTO as nothing more than an empty shell
The Russian weapon that signals the start of a new stage in warfare (The Telegraph) Blindingly fast and manoeuvrable, new hypersonic missiles pose a tough challenge to defend – and they’re only just getting started
Iran Dismisses Zelenskyy's Drone Criticism Despite Clear Evidence (Iran International) Tehran has accused Ukrainian President Volodymyr Zelenskyy of anti-Iranian propaganda in his call for Iran to halt the supply of kamikaze drones to Russia.
Zelenskyy proposes imposing sectoral sanctions against Iran for 50 years – Ukrinform (Euromaidan) Ukrainian President Volodymyr Zelenskyy has tabled in the Verkhovna Rada a draft resolution approving the National Security and Defense Council (NSDC) ‘s decision on introducing sectoral sanctions against Iran, Ukrinform reports.
Ukrainians have started training on tanks in Germany (Stars and Stripes) About 400 Ukrainian troops are currently getting a variety of training at U.S. military run bases in Germany in preparation of eventually operating Abrams tanks.
Denmark, Netherlands to lead F-16 training coalition for Ukrainian pilots: Austin (Breaking Defense) “F-16s clearly have a role and Ukraine deserves a capable Air Force. It's going to take a considerable length of time to build up an Air Force that's the size and scope and scale that'll be necessary,” said Chairman of the Joint Chiefs of Staff Gen. Mark Milley.
Czechs drop $2.2B on CV90 infantry fighting vehicles; Ukraine 'days' from getting them (Breaking Defense) The Czech Republic recently announced the finalization of a plan to buy 246 MkIV CV90s, while separately sources told Breaking Defense that other CV90s are on their way to the front lines in Ukraine.
Exploring the secrets of Ukraine’s successful wartime diplomacy (Atlantic Council) Over the past 15 months, Ukraine has built an international coalition of partners prepared to arm the country against Russia's invasion. This unprecedented diplomatic success offers important lessons, writes Yuna Potomkina.
India, as largest democracy, must condemn Russia for Ukraine war (Nikkei Asia) Human Rights Watch head also says Tokyo can spur ASEAN to act on Myanmar regime
EU to step up support for Moldova at summit in face of threat from Russia (the Guardian) Meeting of European Political Community in Chișinău will bolster existing aid by opening civilian mission staffed by up to 50 officials
Germany buys 18 Leopard 2A8 main battle tanks to replace those sent to Ukraine (Breaking Defense) The contract includes an option for an addition 105 tanks, in what would reportedly be a $3.2 billion purchase should the government proceed with the whole lot.
French military intelligence office reorganizing post-Ukraine, with ‘360 degree’ threat analysis (Breaking Defense) French Maj. Gen. Cyril Carcy told Breaking Defense that his intelligence office can "no longer focus on a 60-degree angle between Western Africa and the Middle-East dictated by the fight against terrorism."
The Mystique of American Power Erodes as Russia’s War in Ukraine Wears On (Wilson Center) At the end of March, Lu Shaye, China’s ambassador to France, made a remarkable statement about the status of several countries in Central and Eastern Europe. “These ex-Soviet countries don’t have an effective status in international law,” he stated, observing that “there was no international agreement to materialize their status as sovereign countries.” Lu Shaye further claimed that the legitimacy of Crimea’s annexation “depends on one’s perceptions,” suggesting that the region could be considered “the beginning of Russia.”
Emails hiring boat suspected of Nord Stream attack came from Ukraine, finds German investigation (The Telegraph) Spiegel reports that investigators have found more evidence suggesting pro-Ukrainian group was behind sabotage of gas pipelines
International Investment Arbitration as Weapon Against Russian Aggression (Wilson Center) In 2011, Major General Charles Dunlap Jr. introduced the concept of “lawfare,” defining it as “the strategy of using—or misusing—law as a substitute for traditional military means to achieve a warfighting objective.” This concept was further developed, and in 2017 John Moore said that even though NATO has no formal definition or doctrine of hybrid warfare, it is time to “bring together the abundant experience and wisdom of our officers, civilians, legal experts and Senior Mentors” to design a “definitive, official guidance in order to keep pace with potential adversaries in this field.”
Russia’s ‘data glasnost’ didn’t last long. Here’s how to tell whether sanctions are working. (Atlantic Council) Economic data is still coming out of Russia, and Russian Central Bank Governor Elvira Nabiullina and other financial elites have been pushing for making even more data available. But that's changing.
Russians snitch on Russians who oppose war with Soviet-style denunciations (Washington Post) Parishioners have denounced Russian priests who advocated peace instead of victory in the war on Ukraine. Teachers lost their jobs after children tattled that they opposed the war. Neighbors who bore some trivial grudge for years have snitched on longtime foes. Workers rat on one another to their bosses or directly to the police or the FSB, the Federal Security Service.
‘I was so scared’: the Ukrainian children taken to Russia for financial gain (the Guardian) Ukraine says 16,000 children have been deported from Russian-held territory during the war – many by friends and relatives seeking to make money from fostering
US Software to Evaluate Ukraine War Damage, Optimize Reconstruction (The Defense Post) Ukraine and Palantir Technologies have signed an agreement to support the country’s defense and reconstruction amid Russia’s invasion.
War has shown Ukrainians – and the rest of us – why museums are so important for telling our stories | Charlotte Higgins (the Guardian) Objects from the front line bear bloodstained witness – not just to what happened, but to Ukraine’s very existence, says the Guardian’s chief culture writer, Charlotte Higgins
Attacks, Threats, and Vulnerabilities
Senegalese government websites hit with cyber attack (Reuters) A group of hackers called Mysterious Team made multiple Senegalese government websites go offline overnight on Friday by hitting them with denial-of-service (DDoS) attacks, a government spokesperson said.
Colombian government targeted by suspected cyber partisans (Cybernews) Colombian government websites are under assault by a suspected hacktivist group called SiegedSec, which claims to have leaked 6GB of data, including emails, confidential documents, and ID cards, a threat intelligence analyst says.
Lazarus hackers target Windows IIS web servers for initial access (BleepingComputer) The notorious North Korean state-backed hackers, known as the Lazarus Group, are now targeting vulnerable Windows Internet Information Services (IIS) web servers to gain initial access to corporate networks.
Lazarus Group Targeting Windows IIS Web Servers (ASEC BLOG) AhnLab Security Emergency response Center (ASEC) has recently confirmed the Lazarus group, a group known to receive support on a national scale, carrying out attacks against Windows IIS web servers. Ordinarily, when threat actors perform a scan and find a web server with a vulnerable version, they use the vulnerability suitable for the version to install a web shell or execute malicious commands. The AhnLab Smart Defense (ASD) log displayed below in Figure 1 shows that Windows server systems are...
Coverage Alert for US-CERT (AA23-144A) | SafeBreach (SafeBreach) SafeBreach coverage for US-CERT Alert (AA23-144A) - Volt Typhoon
Chinese Cyberespionage Group BRONZE SILHOUETTE Targets U.S. Government and Defense Organizations (Secureworks) Learn how the U.S. National Security Agency (NSA) issued a joint cybersecurity advisory highlighting a cluster of activity it attributes to a People’s Republic of China (PRC) state-sponsored threat group.
US officials believe Chinese hackers may still have access to key US computer networks (CNN Politics) US officials believe Chinese hackers could still have access to sensitive US computer networks they’ve targeted in recent months as a top American cyber official told CNN he is concerned about the “scope and scale” of the activity.
US military intelligence also targeted by Chinese hackers behind critical infrastructure compromise (SC Media) Several U.S. defense and government organizations have been targeted by state-backed Chinese hacking group Bronze Silhouette, also known as Volt Typhoon, for military intelligence over a period of at least two years, according to The Record, a news site by cybersecurity firm Recorded Future.
What we know about China's hacking of Navy systems (Task & Purpose) Chinese-backed hackers gained access to several systems, including U.S. Navy infrastructure on Guam, that could impact communications.
New Russian-Linked Malware Poses “Immediate Threat” to Energy Grids (Infosecurity Magazine) Researchers say the specialized OT malware has similarities with Industroyer, which was used to take down power in Kiev, Ukraine, in 2016
Russia-linked CosmicEnergy malware could disrupt energy grids (Computing) Its capabilities closely resemble those observed in malware such as Industroyer and Industroyer2
CosmicEnergy malware poses ‘plausible threat’ to electric grids, researchers warn (SC Media) Researchers say the newly discovered malware targeting electric utilities is becoming easier for threat groups to leverage against OT and ICS systems.
New Stealthy Bandit Stealer Targeting Web Browsers and Cryptocurrency Wallets (The Hacker News) Beware of the relentless Bandit Stealer info-stealer malware, wreaking havoc on web browsers & crypto wallets worldwide.
New ‘Bandit Stealer’ malware siphons data from browsers, crypto wallets (Record) Cybersecurity researchers identified a new information-stealing malware that targets browsers and cryptocurrency wallets.
Zyxel Firewalls Hacked by Mirai Botnet (SecurityWeek) A Mirai botnet has been exploiting a recently patched vulnerability tracked as CVE-2023-28771 to hack many Zyxel firewalls.
Mirai Botnet is back with a new version IZ1H9 (Information Security Newspaper | Hacking News) Researchers from Unit 42 discovered a Mirai version known as IZ1H9 that exploited many vulnerabilities in order to propagate itself. The following vulnerabilities are exploited by the threat actors to attack unprotected Linux servers and networking devices running the operating system:
New Mirai Variant Campaigns are Targeting IoT Devices (Infosecurity Magazine) Unit 42 researchers observed that a wave of malicious campaigns, all deployed by the same threat actor, have been using IZ1H9 since November 2021
Old Wine in the New Bottle: Mirai Variant Targets Multiple IoT Devices (Unit 42) We analyze Mirai variant IZ1H9, which targets IoT devices. Our overview includes campaigns observed, botnet configuration and vulnerabilities exploited.
Exploring Three Remote Code Execution Vulnerabilities in RPC Runtime (Akamai) Akamai researcher Ben Barnea found three important vulnerabilities in Microsoft Windows RPC runtime that were assigned CVE-2023-24869, CVE-2023-24908, and CVE-2023-23405, all with a base score of 8.1.
Critical OAuth Vulnerability in Expo Framework Allows Account Hijacking (The Hacker News) A critical vulnerability in Expo.io's OAuth implementation puts user accounts at risk of hijacking and data theft on popular platforms.
AceCryptor: Cybercriminals' Powerful Weapon, Detected in 240K+ Attacks (The Hacker News) AceCryptor: the crypter malware that packs a punch! Since 2016, it's been hiding numerous strains of malware under its cloak
ESET Research reveals new analysis of AceCryptor: used by crimeware, it hits computers 10,000 times every month (eSeT) ESET researchers revealed today details about a prevalent cryptor malware, AceCryptor, which operates as a cryptor-as-a-service used by tens of malware families. This threat has been around since 2016, and has been distributed worldwide, with multiple threat actors actively using it to spread packed malware in their campaigns. During 2021 and 2022, ESET telemetry detected over 240,000 detection hits of this malware, which amounts to over 10,000 hits every month. It is likely sold on dark web or underground forums, and tens of different malware families have used the services of this malware. Many rely on this cryptor as their main protection against static detections.
GobRAT Malware Attacking Linux Routers to Deploy Backdoor (Cyber Security News) After an internet-exposed router is compromised, a loader script is deployed to deliver GobRAT, which disguises itself as the Apache daemon process (apached) to avoid being detected.
New Go-written GobRAT RAT targets Linux Routers in Japan (IT Security News) A new Golang remote access trojan (RAT), tracked as GobRAT, is targeting Linux routers in Japan, the JPCERT Coordination Center warns. JPCERT/CC is warning of cyberattacks against Linux routers in Japan that have been infected with a new Golang remote access trojan (RAT) called GobRAT. Threat actors are targeting Linux routers with publicly exposed WEBUI to execute
New BrutePrint Attack Lets Attackers Unlock Smartphones with Fingerprint Brute-Force (The Hacker News) BrutePrint: A new attack technique targeting smartphone fingerprint authentication.
New hacking forum leaks data of 478,000 RaidForums members (BleepingComputer) A database for the notorious RaidForums hacking forums has been leaked online, allowing threat actors and security researchers insight into the people who frequented the forum.
Mercenary mayhem: A technical analysis of Intellexa's PREDATOR spyware (Cisco Talos Blog) Commercial spyware use is on the rise, with actors leveraging these sophisticated tools to conduct surveillance operations against a growing number of targets. Cisco Talos has new details of a commercial spyware product sold by the spyware firm Intellexa (formerly known as Cytrox).
Barracuda Networks issue added to CISA vulnerability list (Record) A vulnerability patched recently in email security hardware from Barracuda Networks was added Friday to the federal catalog of exploited vulnerabilities.
Avast: New Investment Scams Lure Victims On The Use Of Artificial Intelligence (Scoop News) Avast researchers have discovered a new type of scam that exploits the names and reputations of celebrities like entrepreneur Elon Musk to lure people into investing through a fake investment platform. The scammers lure their victims on the use of ...
Ahead of summer holiday weekends, IT security leaders brace for deliberate cyber mischief (Cybersecurity Dive) Recent history shows holiday weekends and vacations provide an attack surface bonanza for threat actors.
'I was shocked': How a job application exposed Anna's personal information to hackers (ABC) A cyber attack at Fire Rescue Victoria in 2022 potentially exposed the personal data of thousands of people. Some victims and cyber experts say the organisation's response has been less than perfect.
Mass Scanning of Popular GitHub Repos for CI Misconfiguration (Medium) As part of the Checkmarx Supply Chain Security research team’s mission to secure the software supply chain ecosystem, one of our proactive…
NHS sent Facebook private patient information (Computing) Computing is the leading information resource for UK technology decision makers, providing the latest market news and hard-hitting opinion.
NHS data breach: trusts shared patient details with Facebook without consent (the Guardian) Observer investigation reveals Meta Pixel tool passed on private details of web browsing on medical sites
Data Breach at MCNA Dental Insurer Impacts 9 Million Users (HackRead) The hackers managed to steal highly sensitive data in the data breach, including Social Security numbers, names, addresses, phone numbers, email addresses, and more.
New York county still dealing with ransomware 8 months later (Register) Also: iSpoof no more, Edmodo fined more than it can pay, UK is #1 (in CC theft), and the week's critical vulns
City of Dallas statement on network outage (Dallas City News) 12:50 update, Monday, May 22 There remains no established evidence of a data leak. Municipal Court is undergoing a previously planned upgrade and anticipates reopening Tuesday, May 30. While Court has been closed since May 3 due to the network outage, City of Dallas residents have been able to mail payments, requests, or documents to court. All cases will be ...
BlackByte lists city of Augusta after cyber 'incident' (Register) Mayor promises to comment on Friday
Cyber attack crashes school exam platform (kathimerini.gr) The Greek Research and Technology Network (GRNET) is strengthening its systems to prevent new cyber attacks like the one that caused chaos during Monday’s school exams, a spokesperson announced.
Maryland high school listed on Zillow for $42K in ‘creative’ senior prank (New York Post) Meade Senior High School was listed on Zillow for $42,069 in a suspected senior prank that officials took in stride.
Security Patches, Mitigations, and Software Updates
D-Link fixes serious security flaws that could have left your business wide open to attack (Yahoo Life) Two severe flaws in D-View network management suite allowed for remote code execution..
Trends
New North America Fraud Statistics: Forced Verification and AI/Deepfake Cases Multiply at Alarming Rates (Business Wire) Full-cycle verification platform, Sumsub, revisits fraud data statistics from 2022 after Q1 2023 reports come in
2023 Trends in Securing Digital Identities | Identity Defined Security Alliance (Identity Defined Security Alliance) Protecting digital identities has never been more crucial as cyber attacks rapidly increase in sophistication and volume. View the 2023 Trends In Securing Digital Identities Report and Infographic to learn more.
Marketplace
Interest in cybersecurity and career opportunities surge in May 2023 (Upper Cumberland Business Journal) People are becoming increasingly aware of the potential consequences of cyber threats
ChatGPT-maker OpenAI says has no plans to leave Europe (Reuters) OpenAI has no plans to leave Europe, CEO Sam Altman said on Friday, reversing a threat made earlier this week to leave the region if it becomes too hard to comply with upcoming laws on artificial intelligence.
Bytes thrives from demand for security and cloud with double-digit growth (CRN) The reseller’s FY23 results were propelled by both public sector and corporate clients
WSJ News Exclusive | Israeli Cyber Company NSO Group Has New Ownership After U.S. Blacklist (Wall Street Journal) The Israeli maker of the controversial Pegasus software used to target government officials and activists has been pushed into a restructuring by its lenders.
Castellum, Inc. Set to Join Russell Microcap® Index (GlobeNewswire News Room) BETHESDA, Md., May 30, 2023 (GLOBE NEWSWIRE) -- Castellum, Inc. (the “Company”) (NYSE-American: CTM), a cybersecurity and electronic warfare services...
Why Palantir's Latest AI Initiatives Make It a Screaming Buy (The Motley Fool) Management says it has already seen "unprecedented demand" for its latest product.
Loews Corp Invests $10.53 Million in CrowdStrike Holdings, Inc. (NASDAQ:CRWD) (MarketBeat) Loews Corp purchased a new position in shares of CrowdStrike Holdings, Inc. (NASDAQ:CRWD - Get Rating) during the fourth quarter, according to its most recent disclosure with the Securities & Exchange Commission. The institutional investor purchased 100,000 shares of the company's stock, value
Thales wins cyber security deal with Indonesia’s Cyber and Crypto Agency (APDR) In the first quarter of 2023, Indonesia’s Cyber and Crypto Agency (BSSN) took a major step in this direction with the signing of a Memorandum-of-Understanding (MoU) with Thales,
Lowell to Spend $1M on LifeLock After Cyber Attack (GovTech) The city and school district of Lowell, Mass. have allocated more than $1 million combined to purchase LifeLock protection for all city and school employees impacted by a ransomware attack earlier this month.
Q&A with ReversingLabs COO Peter Doggart: With software supply chain security, 'your brand is at stake' (ReversingLabs) The new Chief Operating Officer at ReversingLabs, Peter Doggart, talks about the challenge of securing software supply chains — and the promise ReversingLabs offers.
Darktrace appoints Chris Kozup as CMO (Security Systems) Cybersecurity AI provider Darktrace has announced the appointment of Chris Kozup as their Chief Marketing Officer, effective June 6, 2023.
OdysseyRe names Shafer head of North American cyber (Insurance Day) Global reinsurer hires <span>Christopher Shafer from Guy Carpenter to provide facultative and treaty cyber coverage </span>
Products, Services, and Solutions
New infosec products of the week: May 26, 2023 (Help Net Security) The featured infosec products this week are from: Axiado, Delinea, Netscout, Radware, and Veriff.
Datacipher Announces New Service Offering, Security Audit, Which Will Keep Track of Organisation's Cyber Security Health (Yahoo Finance) Mumbai, India--(Newsfile Corp. - May 26, 2023) - Datacipher, a leading provider of cybersecurity solutions, is proud to announce the launch of its newest service offering, "Security Audit". The program helps organizations maintain and enhance cybersecurity by proactively identifying vulnerabilities and ensuring robust protection against evolving threats.Developed to address cyber threats at their earliest stages, Datacipher's Security Audit assists businesses in assessing their cybersecurity hea
ClassNK endorses fleet cyber security solution (Riviera) Fleet Secure Endpoint provides cyber security and threat detection for IT networks on ships
Infinite Blue Improves Cybersecurity Solution Providing Users... (Enterprise Security) One of the leaders in total enterprise resilience, Infinite Blue, revealed that it had enhanced the real-time threat intelligence feature in Cenari....
Cyber startup Onwardly builds consortium to bolster cyber resilience (Reseller News) Auckland Cybersecurity SaaS startup Onwardly is partnering with Brightly, SafeAdvisory and Theta to "democratise" security and privacy.
Centripetal Expands Internationally with the Launch of its European Cyber Intelligence Centre of Excellence (Business Wire) Intelligence cybersecurity leader to create 50 Irish jobs, brings innovative technology to the cloud
CyberArk bolsters its identity security platform with automation and AI innovations (CRN - India) CyberArk announced new products and features across the CyberArk Identity Security Platform, making it the most powerful platform of its kind. Investments to enhance cloud security and deliver automation and artificial […]
F-Secure and la Mobilière elevate cyber insurance for private individuals with enhanced protection (APN) F-Secure and la Mobilière, Switzerland’s oldest private insurance company, are elevating the cyber insurance offering of la Mobilière for private individuals with enhanced identity protection and online security services.
Bitdefender Unveils GravityZone Security for Mobile, Delivering Superior Mobile Threat Detection to Enterprises (Bitdefender) Bitdefender Unveils GravityZone Security for Mobile, Delivering Superior Mobile Threat Detection to Enterprises
Exabeam and Google Cloud Partner to Launch Cloud-Native New-Scale SIEM in Qatar (Business Wire) A testament to Exabeam’s commitment to the region, Qatar organizations can now benefit from in-country data residency to power their security operations centers
Aware, Inc. Announces AwareID Customer, “A Safer Walk,” to Implement Company’s “Game Changing” Technology to provide Women with more Secure Connections (GlobeNewswire News Room) AwareID® enables A Safer Walk to provide an important level of onboarding verification to its members...
Technologies, Techniques, and Standards
Attributes of a mature cyber-threat intelligence program (CSO Online) Mature cyber-threat intelligence programs follow a lifecycle and provide tactical, operational, and strategic value. Many enterprise organizations aren't even close.
Live | The Ransomware Hostage Rescue Checklist: Your Step-by-Step Guide to Preventing and Surviving a Ransomware Attack (Bank Information Security) Cyber-criminals have become thoughtful about ransomware attacks; taking time to maximize your organization’s potential damage and their payoff. Protecting your network from this growing threat is more important than ever. And nobody knows this more than Roger Grimes, Data-Driven Defense Evangelist at KnowBe4.
Upskilling the non-technical: finding cyber certification and training for internal hires (CSO Online) A shortage of cybersecurity talent in the market? The solution could be close to home — upskilling and re-skilling non-technical employees. Here are some programs to help make them job-ready.
Design and Innovation
How to Grease a Chatbot: E-Commerce Companies Seek a Backdoor Into AI Responses (The Information) When Andy Wilson’s company received its first successful client referral through ChatGPT, he was shaken to his core. The founder and CEO of Logikcull, a San Francisco–based legal technology company, Wilson “had the exact same reaction to ChatGPT as I had to the internet browser in the early ’ ...
World is at a ‘tipping point’ thanks to AI, says Nvidia boss (euronews) Nvidia’s president and CEO Jensen Huang said the company’s Grace Hopper Superchips, which should help tech companies create more AI-related projects, are now in full production.
The Godfather of A.I. Has Some Regrets - The Daily (Pocket Casts) As the world begins to experiment with the power of artificial intelligence, a debate has begun about how to contain its risks. One of the sharpest and most urgent warnings has come from a man who helped invent the technology.
Cade Metz, a technology correspondent for The New York Times, speaks to Geoffrey Hinton, who many consider to be the godfather of A.I.
Guest: Cade Metz, a technology correspondent for The New York Times.
Research and Development
What are the long-term effects of quitting social media? Almost nobody can log off long enough to find out (The Conversation) It’s a surprisingly difficult question to answer – which makes sense when you consider what this long-term research would involve.
Legislation, Policy, and Regulation
Portugal has blocked Chinese tech giant Huawei from 5G network (Interesting Engineering) Portugal joins the ranks of Western nations as it effectively blocks Chinese tech giant Huawei from its 5G network.
Portugal considers banning Huawei from national 5G networks (Engadget) Portugal could become the latest country to effectively ban Huawei and other Chinese firms from participating in its 5G buildouts..
DOD Transmits 2023 Cyber Strategy (U.S. Department of Defense) The Defense Department transmitted the classified 2023 DoD Cyber Strategy to Congress.
Fact Sheet: 2023 DoD Cyber Strategy (U.S. Department of Defense) This week, the Department of Defense (DoD) transmitted to Congress the classified 2023 DoD Cyber Strategy. The 2023 DoD Cyber Strategy establishes how the Department will operate in and through cyberspace to protect the American people and advance the defense priorities of the United States.
'Real-world experience' informs new Pentagon cyber strategy (Record) The document, sent to Congress this week, reflects lessons learned from the conflict in Ukraine and builds on the “Defend Forward” policy established in the previous 2018 version, the Defense Department said.
DOD Submits Classified Cyber Strategy to Congress (Nextgov.com) An unclassified fact sheet released by the Pentagon said the new strategy will continue efforts to conduct “hunt forward operations”’ with U.S. allies and “defend forward” activities meant to disrupt threat actors on their own turf.
DoD Transmits Classified 2023 Cyber Strategy to Congress (Homeland Security Today) It builds upon the direction set by the 2018 DoD Cyber Strategy and is informed by years of real-world experience of significant DoD cyberspace operations.
Microsoft seeks US agency for AI governance, lays out strategy (Computerworld) In a blog post, Microsoft laid out a five-step blueprint for public governance of AI that includes implementing government-led AI safety frameworks at the inception level and identifying content generated by AI.
Brad Smith, Microsoft president, says he believes A.I. regulation will happen in the coming year (CBS News) "The world is moving forward. Let's make sure that the United States at least keeps pace with the rest of the world," Smith told "Face the Nation."
Army reorganizing program offices for network and cyber ops, UAVs may be next: Officials (Breaking Defense) The way the historic PEO organizations were initially set up was “for a reason,” but now the Army is modernizing, and the shift is needed to support its unified network, Young Bang said.
Now is the Time to Split NSA and CYBERCOM (The Cipher Brief) Amid reports of new Chinese hackers and the nomination of a new CYBERCOM chief, Javed Ali argues it is now time to split NSA and CYBERCOM.
Even If Social Media Is Hurting Kids, Regulating It Won’t Be Easy (Washington Post) Warning: The surgeon general has determined that social media is harmful to your mental health, at least if you’re a teen.
State lawmakers find bipartisan support for stronger privacy protections (Record) State efforts to pass privacy legislation are heating up in the absence of federal progress on the issue.
Litigation, Investigation, and Law Enforcement
Capita hack: 90 organisations report data breaches to watchdog (BBC News) The privacy watchdog is urging groups using the outsourcing giant to check if data has been exposed.
Despite warnings, N.L. health officials didn't bolster cyberdefences before ransomware attack (CBC) Health officials didn't act on a series of warnings and failed to adequately protect sensitive health information of hundreds of thousands of people before a devastating cyberattack in 2021, says a new report from the information and privacy commissioner's office.
Lender OneMain fined $4.25 million for cybersecurity lapses (Record) Lender One Main Financial was fined $4.5 million by a New York state agency for cybersecurity shortcomings on Thursday.
Former Stamford CEO who impersonated his dead uncle gets 3 years for defrauding company (Stamford Advocate) The former CEO of a local data security firm has been sentenced to 3 ½ years in prison for a scheme that defrauding his company of millions of dollars, officials said.
Phishing Domains Tanked After Meta Sued Freenom (KrebsOnSecurity) The number of phishing websites tied to domain name registrar Freenom dropped precipitously in the months surrounding a recent lawsuit from social networking giant Meta, which alleged the free domain name provider has a long history of ignoring abuse complaints…