Dateline: Russia's hybrid war against Ukraine.
Ukraine at D+466: Battle handover. (CyberWire) With continued skirmishing in occupied territories and inside Russia itself, the Wagner Group hands the battle in Bakhmut over to the Russian Army. Moscow moves to secure its IT systems.
Russia-Ukraine war: List of key events, day 467 (Al Jazeera) As the war enters its 467th day, here’s a look at the main developments.
Russian air strikes repelled over Kyiv, but hit regional airfield (Reuters) Russia launched a fresh wave of air strikes against Ukraine early on Sunday, striking an airfield in a central region but failing to hit the capital Kyiv, Ukrainian authorities said.
Two-year-old girl killed in Russian missile attack on Dnipro in Ukraine (the Guardian) Twenty-two people injured including five children, while row continues over closed air raid shelters
Exclusive: Ukraine has cultivated sabotage agents inside Russia and is giving them drones to stage attacks, sources say (CNN Politics) Ukraine has cultivated a network of agents and sympathizers inside Russia working to carry out acts of sabotage against Russian targets and has begun providing them with drones to stage attacks, multiple people familiar with US intelligence on the matter told CNN.
New Skirmishes Break Out Along Ukrainian Border As Anti-Kremlin Forces Capture Russian Soldiers (RadioFreeEurope/RadioLiberty) Fresh battles broke out on the Russian side of the Ukrainian border on June 4, as anti-Kremlin fighters said they had captured several Russian soldiers and turned them over to Kyiv after the governor of the Belgorod region failed to show up for negotiations on a prisoner swap.
Russia claims it thwarted Ukrainian attacks in provinces annexed by Moscow (AP NEWS) Russian officials say their forces thwarted large Ukrainian attacks in two provinces of Ukraine illegally annexed by Moscow. Ukraine didn't confirm the attacks, making it unclear whether they marked the start of an anticipated counteroffensive. Russia’s Defense Ministry said in a rare early morning video released Monday that its forces pushed back a “large scale” assault Sunday at five points in eastern Ukraine’s Donetsk province. A ministry spokesman said 250 Ukrainian personnel were killed. A Moscow-installed official in southeast Ukraine’s Zaporizhzhia province says Kyiv’s forces also attempted to breach Russian defenses there but were repelled after advancing less than a quarter-mile. The Ukrainian military suggested the Russian reports were part of a misinformation campaign.
Russia says it thwarted attack in Donetsk; unclear if this was start of Ukrainian counteroffensive (AP NEWS) Russia says it thwarted a large Ukrainian attack in the eastern province of Donetsk, though it’s unclear if this was the start of a Ukrainian counteroffensive. The Russian Defense Ministry, in a rare early morning video Monday, said its forces pushed back a “large scale” Ukrainian assault on Sunday at five points in Donetsk, one of four Ukrainian regions Russia illegally annexed last fall. The ministry spokesman said the enemy “had no success.” Ukraine didn’t comment, and often waits until the completion of its military operations to confirm its actions, imposing news blackouts in the interim.
A horrifying embarrassment for Putin stands to test Zelensky’s nerves of steel (The Telegraph) Ukraine is waging a shadow war in Russia – and risking its ultimate vengeance
Ukraine repels wave of Russian air attacks on Kyiv after explosion hits Dnipro (the Guardian) Ukrainian officials say air defences shot down all missiles and drones aimed at capital
Two-year-old girl killed in Russian missile attack on Dnipro in Ukraine (the Guardian) Twenty-two people injured including five children, while row continues over closed air raid shelters
The Week In Russia: Drone Wars (RadioFreeEurope/RadioLiberty) An apparent drone attack on Moscow fits President Vladimir Putin’s narrative about Russia’s war on Ukraine. But more than 15 months into what was meant to be a "special operation" to swiftly subjugate the neighboring nation, it’s still another piece of bad news for the Kremlin.
Ukraine: The Latest - “Show the world what those b------s are doing here” (The Telegraph) Every weekday the Telegraph's top journalists analyse the Russian invasion of Ukraine from all angles and tell you what you need to know
Russian-occupied port hit by British Storm Shadow missiles (The Telegraph) Ukraine has fired British Storm Shadow missiles at an occupied port used by the Kremlin to export stolen grain, according to Russian officials, writes James Kilner.
‘We will succeed’: Zelenskiy says Ukraine ready to launch counteroffensive (the Guardian) Ukraine’s president hints at concern over a possible Trump return in 2024 in Wall Street Journal interview
Zelenskiy Says Ukraine Ready To Launch Its Long-Awaited Counteroffensive (RadioFreeEurope/RadioLiberty) Ukrainian President Volodymyr Zelenskiy says his country is ready to launch its much-anticipated counteroffensive to liberate territory occupied by Russian forces while warning that it could take some time and be costly.
NATO-trained units will serve as tip of spear in Ukraine’s counteroffensive (Washington Post) When Ukraine’s long-awaited counteroffensive finally begins, the fight will be led by brigades armed not only with Western weapons but also Western know-how, gleaned from months of training aimed at transforming Ukraine’s military into a modern force skilled in NATO’s most advanced warfare tactics.
To liberate territory, Ukraine must smash fortified Russian defenses (Washington Post) As Ukraine prepares to launch a long-trumpeted counterattack, the first obstacle its soldiers must push through isn’t Russia’s defenses. It’s their own.
Milley: tanks, F-16s coming, but not in time for Ukraine offensive (Military Times) Joint Chiefs Chairman Gen. Mark Milley says Ukrainian forces are training on Abrams tanks and US is working on agreements to train them on F-16s.
MWI Podcast: How Is Russia Adapting Its Tactics in Ukraine? (Modern War Institute) In a number of clear and obvious ways, the war in Ukraine has not gone well for the Russian military. That has forced it to adapt many of its tactics. […]
Russia's Wagner Group chief threatens to pull his mercenary army from fighting in Ukraine if war efforts continue to be 'led by clowns who turn people into meat' (Business Insider) Yevgeny Prigozhin, a longtime ally of Vladimir Putin, has continued to criticize the Kremlin and threaten to pull out the Wagner Group mercenaries.
Russian forces tried to blow up my men, says mercenary boss Prigozhin (Reuters) Russian mercenary boss Yevgeny Prigozhin, who has been arguing with top military brass for months, on Friday escalated the feud by accusing pro-Moscow forces of trying to blow up his men.
Wagner captures Russian commander as Prigozhin feud with army escalates (the Guardian) Lt Col Roman Venevitin seen telling interrogator he ordered troops to shoot at convoy of mercenaries
Drones and the Value of a Russian Citizen’s Life (Wilson Center) The war has come to Russia. The Russian city of Shebekino, a stone’s throw from the border with Ukraine, has been under massive Ukrainian shelling for the past days. The residents are fleeing and being evacuated.
‘Spymania’ grips Russian security services amid sharp rise in treason cases (the Guardian) The recent arrest of a number of high-profile scientists has led the scientific community to fear they are being targeted by the Kremlin
Why are people leaving Russia, who are they, and where are they going? (BBC) Hundreds of thousands of Russians are estimated to have left their country since the start of the full-scale invasion of Ukraine. We look at who they are, where they are going, and why they are leaving.
The spectre of Stalin still haunts Europe – Ukraine is fighting to exorcise it (The Telegraph) Putin is the heir to Soviet tyranny, and Ukrainians understand from bitter experience the nature of their enemy
Fixed-price satellite contracts earn high grades in Space Force report card (SpaceNews) Fixed-price satellite contracts earn high grades in Space Force report card
Defend ‘every inch’ of NATO territory? New strategy is a work in progress. (Washington Post) They left France in the early hours, flying north and east over sleeping cities until they were less than 100 miles from the Russian border. Then, they jumped.
Why the West should never let its guard down against Russia (Nikkei Asia) Putin will remain a serious threat no matter the outcome of the Ukraine war
Putin's political centre of gravity is crumbling (The Telegraph) Video analysis: Dominic Nicholls explains how the Russian leader's relationships are deteriorating - and how it could lead to his downfall
The Curious Case of Yevgeny Prigozhin (The Messenger) The players in and around the Kremlin appear to be developing contingency plans to survive the power vacuum in a post-Putin Russia.
What is the Wagner Group? (WBUR) We look into the origins of the Wagner Group mercenaries and their growing role in Ukraine and around the world.
Moldova Needs More From Europe Than a Symbolic Summit (Wilson Center) On June 1st, the second summit of the European Political Community (EPC) will take place in Chisinau. The decision to hold this gathering of 47 heads of state and government in Moldova is an important signal of the country’s advancement toward European integration—a goal which has only become more urgent in the context of Russia’s war against Ukraine.
Russia's Invasion Of Ukraine 'Petrifies' Another European Country; Here Is Why Moldova Could Be Next In The Firing Line (Eurasian Times) Russia’s belligerence continues to wreak havoc in Ukraine. The spillover from the war is already threatening the peace in Moldova. The eastern European country is increasingly worried that once it prevails in Ukraine, Moscow will turn its rage towards Moldova. Patriot Missiles: Like The Gulf War, Are America’s ‘Much Touted’ Defense Systems […]
An Unwinnable War (Foreign Affairs) Washington needs an endgame in Ukraine.
All Quiet on the Cyber Front? Explaining Russia’s Limited Cyber Effects (RUSI) On 25 April, senior Ukrainian cyber official Victor Zhora joined RUSI for a conversation on Ukraine’s cyber defence, explaining why Russian cyber operations have achieved limited effect and what Ukraine needs to continue its success in cyberspace.
Still standing after 260m attacks: inside Ukraine’s cyber warfare squad (Sunday Times) Experts thought Putin’s hackers would overwhelm the country at speed. They were wrong, Kyiv’s chief cyberwarrior tells Maxim Tucker
Das sagt der ukrainische Cybersicherheits-Chef über russische Hackerangriffe (watson.de) Der ukrainische Cybersicherheits-Chef warnt in einem Interview vor der sich verändernden Bedrohungslage. Und plaudert aus dem Nähkästchen.
Killnet hacktivists say they’re disbanding (Cyberews) Killnet, the pro-Russian hacktivist group turned military corporation, said it had “completely disbanded.”
Why Putin’s Secret Weapon Failed (The Atlantic) Russia’s gambit to deter support for Ukraine by restricting energy supplies flopped—thanks to concerted action by European countries.
Russia wants 2 million phones with home-grown Aurora OS for use by officials (Record) Russia’s telecom giant Rostelecom is planning to provide government officials with mobile phones running on the Aurora operating system — a domestic alternative to Western software.
Russia accuses U.S. of hacking thousands of iPhones (Axios) Russia's top security agency is accusing the U.S. of hacking thousands of iPhones as part of an espionage campaign.
Operation Triangulation: Mysteriöser Angriff auf iPhones
(Computerbild) Kaspersky hat eine neue Malware entdeckt, die iPhones infiziert, ohne dass der Nutzer dafür etwas tun muss. Was genau hinter "Operation Triangulation" steckt, ist noch unklar.
Report: Secretive Real Estate Holdings On Moscow's Outskirts Linked To Putin Family (RadioFreeEurope/RadioLiberty) Family members of Russian President Vladimir Putin quietly acquired several plots of real estate in Moscow’s tony western suburbs near his residence, where a series of luxury homes have been built, a new investigation found.
Russia 'buying back' arms parts exported to Myanmar and India (Nikkei Asia) Reimports appear aimed at improving weapons for use in Ukraine war
Papal Peace Envoy To Visit Kyiv On June 5-6, Vatican Says (RadioFreeEurope/RadioLiberty) Italian Cardinal Matteo Zuppi, tasked by Pope Francis to carry out a peace mission to try to help end the war in Ukraine, will visit Kyiv on June 5-6, the Vatican said in a statement.
Ireland will give 'deep consideration' to joining NATO, says Taoiseach (Buzz.ie) Varadkar said that the security threats facing Ireland 'are now hybrid'
Attacks, Threats, and Vulnerabilities
New Security Warning Issued For Google's 1.8 Billion Gmail Users (Forbes) Google has confirmed a dangerous new Gmail problem that affects all users...
He’s leading Mexico’s probe of the Dirty War. Who’s spying on him? (Washington Post) President Andrés Manuel López Obrador took office vowing to investigate Mexico’s worst human rights scandals. And none was graver than the Dirty War waged by security forces from the 1960s to the 1980s, in which hundreds of suspected leftist guerrillas were tortured and disappeared, some tossed off planes into the Pacific Ocean.
U.S., ROK Agencies Alert: DPRK Cyber Actors Impersonating Targets to Collect Intelligence (National Security Agency/Central Security Service) The National Security Agency (NSA) is partnering with several organizations to highlight the Democratic People’s Republic of Korea’s (DPRK) use of social engineering and malware to target think tanks,
NSA and FBI: Kimsuky hackers pose as journalists to steal intel (BleepingComputer) State-sponsored North Korean hacker group Kimsuky (a.ka. APT43) has been impersonating journalists and academics for spear-phishing campaigns to collect intelligence from think tanks, research centers, academic institutions, and various media organizations.
North Korea’s Kimsuky cyber-spies earn an alert from Washington, Seoul (Record) The North Korean hacking group prefers to spearphish its targets while impersonating real people or organizations. Intelligence agencies and cybersecurity researchers have been tracking it for about a decade.
North Korea's Kimsuky Group Mimics Key Figures in Targeted Cyber Attacks (The Hacker News) North Korea's Kimsuky group, a.k.a APT43, wields spear-phishing campaigns and is leveraging social engineering to compromise high-value targets.
US and Korean Agencies Issue Warning on North Korean Cyber-Attacks (Infosecurity Magazine) The advisory identifies several actors: Kimsuky, Thallium, APT43, Velvet Chollima and Black Banshee
Chinese Phishing Gang (Infosecurity Magazine) Latest victims of smishing attacks are UAE residents
Scammers publish ads for hacking services on government websites (TechCrunch) Unknown scammers exploited vulnerabilities in U.S. government websites to upload PDFs advertising hacking services.
Qakbot: The trojan that just won't go away (Help Net Security) Qakbot/Qbot – a banking trojan-turned-malware/ransomware distribution network – is still active, thanks to its neverending adaptability.
Brazil-based botnet targets Spanish-speakers across Americas, Cisco says (Record) The attackers are mainly interested in using the tool to steal victim credentials and financial data, as well as to send phishing emails to all of the validated email IDs in a victim’s mailbox, Cisco's Talos team says.
Swiss Administration Hit By Cyber Attack (Barron's) Swiss authorities are investigating a cyber attack on the IT company Xplain, whose clients include many federal and cantonal government departments, including the army and customs.
Legal services platform used by SEC, Pentagon investigating ransomware attack claims (Record) A legal document platform used by several arms of the U.S. government is investigating claims by a ransomware group that it has been attacked.
Zyxel security advisory for post-authentication command injection vulnerability in NAS products (Zyxel Community) CVE: CVE-2023-27988 SummaryZyxel has released patches addressing a post-authentication command injection vulnerability in some NAS versions.
Major firewall maker alerts customers to vulnerabilities (Computing) Taiwan's Zyxel is alerting customers about multiple buffer overflow vulnerabilities found in its firewall and VPN devices.
Warning issued over ‘widespread’ exploitation of Zyxel NAS devices (Cloud Pro) Zyxel has been forced to issue patches for several vulnerabilities affecting NAS devices
Textbook ‘NTP Textbox’ Vulnerability in Zyxel’s NAS326, NAS540, and NAS542 Devices (Sternum) In the corner of our R&D office space, you’ll find racks full of devices, routers, switches, boards, and all sorts of gadgets, all stacked next to each other on long bare metal shelves. From afar, this may look just like a typical case of not-so-well-organized R&D storage. When you move in closer, however, you`ll notice […]
New Linux Ransomware Strain BlackSuit Shows Striking Similarities to Royal (The Hacker News) An analysis reveals striking similarities between the BlackSuit and Royal ransomware strains.
Investigating BlackSuit Ransomware’s Similarities to Royal (Trend Micro) In this blog entry, we analyze BlackSuit ransomware and how it compares to Royal Ransomware.
Burton Snowboards discloses data breach after February attack (BleepingComputer) Leading snowboard maker Burton Snowboards confirmed notified customers of a data breach after some of their sensitive information was "potentially" accessed or stolen during what the company described in February as a "cyber incident."
San Diego Unified cybersecurity breach affected more people and more sensitive data than known (San Diego Union-Tribune) Breach also compromised current and former employees’ bank accounts and Social Security numbers, the district said Friday evening
Diamond Lakes Federal Credit Union Notifies Over 22k Individuals of Recent Data Breach | JD Supra (JD Supra) On May 31, 2023, Diamond Lakes Federal Credit Union (“Diamond Lakes”) filed a notice of data breach with the Attorney General of Maine after learning...
Canadian university dealing with ransomware attack on email system (Record) Canada’s University of Waterloo is dealing with a ransomware attack on its email system, the school confirmed this week.
Spanish bank Globalcaja confirms Play ransomware attack (Security Affairs) Play ransomware group claims responsibility for a ransomware attack that hit Globalcaja, one of the major banks in Spain. Globalcaja is a financial institution in the autonomous community of Castilla-La Mancha, it has more than 300 offices across Spain and provides banking services to more than half a million clients. Globalcaja was the victim of […]
Globalcaja confirms ransomware attack (Computing) A prominent Spanish bank has confirmed that it is dealing with a ransomware attack that has impacted multiple branches.
Large Spanish bank confirms ransomware attack (Record) One of the largest banks in Spain said it is dealing with a ransomware attack affecting several offices.
U of R investigating data breach (WHAM) The University of Rochester has reported that they are currently investigating a cybersecurity attack in a statement.They say the data breach was caused by a s
Superintendent confirms Virginia school system hit with ransomware attack: Daily operations impact 'minimal' (CBS 6 News Richmond WTVR) The FBI and Department of Homeland Security are working with a Middle Peninsula school district to investigate a ransomware cyberattack.
Admin Credentials of VPN Service Provider Exposed by Hackers in Telegram Group (SafetyDetectives) Hackers claimed to have cracked i2VPN’s admin credentials, accessing its main admin dashboard with information from hundreds of thousands of users.
The cybersec
Cyber Attack Hits Atomic Wallet, Users Report Loss of Digital Assets (TokenPost) The globally recognized crypto platform Atomic Wallet has fallen victim to a cyber attack, with clients reporting a sudden disappearance of their digital assets. As a non-custodial decentralized purse, the responsibility...
Capita Cyber Attack: A Wake-Up Call for the Pensions industry (IFA Magazine) The pensions industry is built on a foundation of trust and security. It has to be. Every stakeholder in the pensions arena deals with highly sensitive data – be that personally sensitive or commercially sensitive, or both
CISA Adds One Known Exploited Vulnerability to Catalog (CISA) CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.
CISA orders govt agencies to patch MOVEit bug used for data theft (BleepingComputer) CISA has added an actively exploited security bug in the Progress MOVEit Transfer managed file transfer (MFT) solution to its list of known exploited vulnerabilities, warning U.S. federal agencies to patch their systems by June 23.
Zero-Day Vulnerability in MOVEit Transfer Exploited for Data Theft (Mandiant) Analysis of a zero-day vulnerability in MOVEit Transfer, and containment and hardening guidance.
Security Patches, Mitigations, and Software Updates
Google Workspace brings a major security innovation to customers with passkeys (Google Workspace Blog) More than 9 million organizations can allow their users to sign in to Google Workspace and Google Cloud accounts using passkeys instead of passwords.
Microsoft is killing Cortana on Windows starting late 2023 (BleepingComputer) After introducing a string of AI-powered assistants for its products, Microsoft has now announced that it will soon end support for the Windows standalone Cortana app.
Microsoft's New Authentication Strength Feature Provides More Control Over CA Policies (Petri) Microsoft has announced the general availability of Conditional Access authentication strength policies for Azure Active Directory (Azure AD). The new feature allows IT admins to choose which multifactor authentication (MFA) methods can be used while accessing network resources.
Trends
We've created a monster, as predicted (Inside Cyber Warfare) Information security is an industry that grows fat on eating itself
Runaway AI Is an Extinction Risk, Experts Warn (WIRED) A new statement from industry leaders cautions that artificial intelligence poses a threat to humanity on par with nuclear war or a pandemic.
AI Won’t Wipe Out Humanity (Yet) (WIRED) This week, we discuss the real and imagined dangers of generative artificial intelligence, which experts are eager to see regulated and contained.
Breakthrough Study Reveals Executives Are Not Adequately Protected Fro (PRWeb) BlackCloak, the pioneer in Digital Executive Protection for executives, board members, and senior leaders, today, in collaboration with Ponemon Institute, pu
Marketplace
Galvanick raises $10 million for its industrial cybersecurity platform (Help Net Security) Galvanick announced its $10 million seed round and plans to use the capital to expand its Industrial cybersecurity platform.
Ex-Microsoft Industry Veteran Joins Resecurity as COO (PR Newswire) Resecurity, Inc. (USA), a Los Angeles-based cybersecurity company protecting Fortune 500 companies, is pleased to announce the appointment of...
Products, Services, and Solutions
New infosec products of the week: June 2, 2023 (Help Net Security) The featured infosec products this week are from: Bitdefender, ConnectSecure, CYTRACOM, Permit.io, and PingSafe.
Red Sift Launches Relevance Detection as the First GPT-4-Powered Asset Discovery and Classification Solution (Business Wire) New AI Feature Enhances OnDOMAIN’s Capabilities To Secure Unknown Vulnerabilities And Strengthen Network Security Posture
Data-Driven Goals and Science-Based Strategy (Palo Alto Networks Blog) Palo Alto Networks is committed to protecting everyone’s digital way of life. We are proud to be added to the EPA's Green Power Partnership.
Sevco Security Launches New CAASM Platform Capabilities to Enable Organizations to Adopt Full-Scale Vulnerability Hunting Programs (Business Wire) Cloud-native Asset Intelligence Platform Automatically Creates a Map of an Organization’s Attack Surface Vulnerability Risks to Rapidly Prioritize and Address Issues as They Arise
New Wiz Runtime Sensor Pioneers a Unified Approach to Cloud Security (GlobeNewswire News Room) First-of-its-kind Sensor adds real-time threat detection to Wiz agentless visibility and risk assessment capabilities...
Technologies, Techniques, and Standards
Introducing the book: Cybersecurity First Principles (Help Net Security) In this Help Net Security video, Rick Howard discusses his book - Cybersecurity First Principles: A Reboot of Strategy and Tactics.
How defense contractors can move from cybersecurity to cyber resilience (Help Net Security) The methods by which defense contractors have attempted to achieve effectiveness differ from the requirements they may need to meet.
Zero trust in an app centric world with Okta. (CyberWire) Rick Howard, the CSO, Chief Analyst, and Senior Fellow at N2K Cyber, formerly the CyberWire, discusses how to use the cybersecurity first principle strategy of zero trust with commercial applications and in-house software development. Chris Niggel, Okta Field CSO, joins him for the discussion.
The Cybersecurity Implications of IMO 2023 (The Maritime Executive) What is IMO 2023?In 2011, the International Maritime Organization (IMO) established rules for new-build vessels to reduce the amount of CO2 generated...
Poor Communication During a Data Breach Can Cost You — Here’s How to Avoid It (Security Intelligence) Data breaches are costly, and poor communication only adds to that cost. Learn how to build a robust cyber crisis communication plan.
A Brief Overview of U.S Cyber Command's Global Cyberspace Operations Synchronization (GCOS) Concept - Or Can We Make The Difference Between Real-Time and Synchronization in Cyberspace? (Dancho Danchev's Blog) It should be clearly said that the current state of the U.S Cyber Command's overall Global Cyberspace Operations Synchronization (GCOS) Concept is fairly naïve and a bit childish in the context of what I can best describe as real-time cyberspace operations...
In the heat of battle, IS militants' phones were hijacked thanks to Australians inspired by Rick Astley (ABC) Defeating Islamic State militants required disabling their significant cyber capabilities — and pop star Rick Astley unwittingly played a hand in doing so.
These Activists Distrust Voting Machines. Just Don’t Call Them Election Deniers. (New York Times) As election activists rally against new voting machines, they are drifting into territory now dominated by conspiracy theorists.
Surface transportation is cyber vulnerable (Control Global) Few engineers seem to have a seat at the table when cyber vulnerabilities or related control system issues are discussed.
Design and Innovation
How to Grease a Chatbot: E-Commerce Companies Seek a Backdoor Into AI Responses (The Information) When Andy Wilson’s company received its first successful client referral through ChatGPT, he was shaken to his core. The founder and CEO of Logikcull, a San Francisco–based legal technology company, Wilson “had the exact same reaction to ChatGPT as I had to the internet browser in the early ’ ...
How to survive AI? Microsoft publishes a list of skills needed by human employees in 2023 (Vulcan Post) Execution of any task may soon become near-instantaneous - humans will be evaluated on the idea and results they produce for the business. Hiding behind daily grind and pretending to work will no longer be an option, since there soon might be no grind left in the office.
If Pinocchio Doesn't Freak You Out, Sydney Shouldn't Either (WIRED) Why do people panic when an AI chatbot tells us it “wants to be human," but not when inanimate object says it wants to be a “real boy"?
Quantum Cryptography: A Paradigm Shift in Information Security (CityLife) Quantum Cryptography: A Paradigm Shift in Information Security - CityLife
Research and Development
Moonlighter space-hacking satellite readies for launch (Register) 'World's first and only' orbiting infosec playpen due to blast off Sunday
Live coverage: SpaceX delays space station cargo launch until Monday (Spaceflight) Watch our live coverage of the countdown and launch of a SpaceX Falcon 9 rocket from Launch Complex 39A at NASA’s Kennedy Space Center in Florida. The Falcon 9 rocket will launched SpaceX’s 28th resupply mission to the International Space Station. Follow us on Twitter.
Moonlighter Fact Sheet | The Aerospace Corporation (Aerospace Corporation) To maintain and strengthen domain supremacy for the nation, The Aerospace Corporation (Aerospace) actively supports our government partners to identify collaborative strategies and tools to bolster resiliency and responsiveness. Moonlighter is a cyber test platform developed in partnership with Space Systems Command (SSC) and the Air Force Research Laboratory (AFRL).
Cybersecurity Gaps Could Put Astronauts at Grave Risk (IEEE Spectrum) Houston, we may have a malware problem
OpenAI announces $1M grant to boost and quantify AI-powered cybersecurity (Neowin) OpenAI has announced a new grant to fund projects focusing on AI-based cybersecurity solutions and tools. It will be offered in increments of $10,000 from a $1M fund as API credits and direct funds.
Academia
How university cybersecurity clinics can help cities fight ransomware (CyberScoop) Cybersecurity faculty and students can be a valuable resource to help local governments and business build cyber capacity.
Legislation, Policy, and Regulation
China Cracks Down on Surge in AI-Driven Fraud (Wall Street Journal) Authorities warn of swindlers using hyper-realistic content generated by artificial intelligence.
Kuwait-US boost cooperation to enhance cybersecurity (ACE Times) The US continues to seek international partnerships to promote a global cyberspace, where countries are expected to be rewarded for their responsible behavior
Canada facing rising threat from cyberattacks, defence minister says (Reuters) Canadian Defence Minister Anita Anand said on Saturday that the country's critical infrastructure was increasingly being targeted by cyberattacks, posing a significant threat to the economy of the world's fourth-largest crude oil producer.
Twenty-Five Years of White House Cyber Policies (Lawfare) The new National Cybersecurity Strategy builds on a long consensus but differs in important and long-overdue ways.
Federal cyber incidents reveal challenges of implementing US National Cybersecurity Strategy (CSO Online) As federal government cybersecurity incidents continue to mount, the Biden administration's National Cybersecurity Strategy should help, although experts say implementing it won't be easy.
The White House says Section 702 is critical for cybersecurity, yet public evidence is sparse (CyberScoop) An FBI official told CyberScoop that a "plurality" of Section 702 searches pertain to investigations into nation-state cyberattacks.
The Surgeon General Is Pushing for a Misguided Social Media Policy (WIRED) Recommendations from the new report on youth mental health won’t protect kids—but they’ll destroy the privacy of everyone who uses the internet.
Maj. Gen. William Hartman Is White House's Pick for CYBERCOM Deputy Role, Sources Say (Executive Gov) Looking for the latest Government Contracting News? Read about Maj. Gen. William Hartman Is White House's Pick for CYBERCOM Deputy Role, Sources Say.
Montana banned TikTok. Now these Montanans are fighting back. (Washington Post) How a highly politicized social media ban in Big Sky Country sparked a nationwide debate over freedom of speech
Litigation, Investigation, and Law Enforcement
This ‘zombie case’ could have big ramifications for cybersecurity firms (Washington Post) New court ruling sends a ‘chilling’ message to cyber companies, judge argues
ENIGMA SOFTWARE GROUP USA, LLC, Plaintiff-Appellant, v. MALWAREBYTES, INC., Defendant-Appellee. (US Court of Appeals for the 9th Circuit) The panel affirmed in part and reversed in part the district court’s judgment dismissing a lawsuit brought by Enigma Software Group USA LLC, a computer security software provider, against its competitor Malwarebytes, Inc. for designating its products as “malicious,” “threats,” and “potentially unwanted programs”; and remanded for further proceedings.
US Treasury sanctions Iranian cloud provider ‘facilitating’ Tehran censorship (Record) The company ArvanCloud is “a key partner” in the Iranian regime’s effort to set up a parallel intranet within the country that allows the government to more easily control access to online information, the U.S. government said.
Second Commission Statement Relating to Certain Administrative Adjudications The Commission June 2, 2023 (US Securities and Exchange Commission) On April 5, 2022, the Commission issued a Statement Relating to Certain Administrative Adjudications (the “April 5 Statement”) describing a control deficiency related to the separation of enforcement and adjudicatory functions within the agency’s system for administrative adjudication.
SEC Drops 42 Enforcement Cases After Employees Accessed Restricted Records (Wall Street Journal) The dismissals involve cases pending in the SEC’s in-house courts, which have been a source of controversy for years.
Microsoft Sets Aside $425M For Anticipated GDPR Fine (Gov Info Security) Microsoft is warning investors it may receive a fine from European privacy regulators adding up to at least hundreds of millions of dollars over targeted
Culture Re-View: 10 years since Edward Snowden leaked the NSA secrets (euronews) 5 June 2013: Edward Snowden blows the whistle on the NSA
A decade on, Edward Snowden remains in Russia, though U.S. laws have changed (NPR) A decade ago, we were still exploring the technological wonders of cellphones and other electronic devices. Few were thinking about how they could be used to monitor us. Then came Edward Snowden.
Life and times of an intelligence leaker (China Daily) 2006: Snowden is hired by the Central Intelligence Agency as a technical expert. He is given top-secret clearance.
ICO reprimands Thames Valley Police for releasing witness details to suspected criminals (ICO) The Information Commissioner’s Office (ICO) has issued a reprimand to Thames Valley Police (TVP) after details were released which led to suspected criminals learning the address of a witness.
Oakland hit with class-action lawsuit over ransomware attack (The Mercury News) The massive ransomware attack that exposed reams of sensitive personal data stored by the city is now the subject of a class-action lawsuit by city employees who say their information wasn’t proper…