Dateline Moscow and Kyiv: Ukraine approaches full membership in NATO's CCDCOE.
Ukraine at D+333: Gerasimov's shake-up. (CyberWire) Leopards remain contentious within NATO, but Germany will not prevent Poland from supplying them to Ukraine. And Ukraine signs an agreement to join NATO's cyber defense center.
Russia-Ukraine war: List of key events, day 334 (Al Jazeera) As the Russia-Ukraine war enters its 334rd day, we take a look at the main developments.
Russia-Ukraine war at a glance: what we know on day 333 of the invasion (the Guardian) Former UK PM Boris Johnson makes surprise visit to Ukraine; Russia claims to have made advances in Zaporizhzhia region
Russian Agents Suspected of Directing Far-Right Group to Mail Bombs in Spain (New York Times) U.S. officials say the operation may be a signal by Russia that the country and its proxies could carry out more terrorist actions in Europe if nations continue supporting Ukraine.
Ukraine's tragic week shows there's no safe place in war (AP NEWS) A small broom and dustpan in hand, Olga Prenzilevich cleans up the debris along the road in a sleepy Kyiv suburb next to a cordoned-off mound of charred vehicles and misshapen wreckage.
Ukraine war latest: Russia prepares for attack on Moscow (The Telegraph) Russia is preparing to defend Moscow against enemy air attacks, its defence ministry has said.
Russia-Ukraine war live: Russian army announces new offensive in Zaporizhzhia (the Guardian) Announcement from Russian army follows heavy shelling in the region overnight
Putin mulls fresh mobilisation of half-a-million conscripts for Ukraine (The Telegraph) While the Kremlin continues to deny speculation, it has quietly dropped a rule exempting fathers of three or more children from mobilisation
Ukraine Contact Group meeting caps off deluge of new arms pledges, but no German Leopards (Breaking Defense) "It is in your power at Ramstein today not to bargain about numbers of tanks but to open a principle supply that will stop Russian evil," said Ukrainian President Volodymyr Zelensky.
Tanks will help Kyiv. But its partners face fork in road (the Guardian) Armour will allow Ukraine to mount a spring offensive – but it will also need support vehicles, and most Nato countries have a bare minimum of them. It’s time to invest
Ukraine-Russia war latest: Germany poised to back down on tank deliveries (The Telegraph) Germany appeared poised to back down in the row over sending Leopard 2 tanks to Ukraine on Monday, signalling its willingness to let Nato allies re-export their own, writes Joe Barnes.
Minister: Germany won't block Poland giving Ukraine tanks (AP NEWS) The German government will not object if Poland decides to send Leopard 2 battle tanks to Ukraine, Germany's top diplomat said Sunday, indicating movement on supplying weapons that Kyiv has described as essential to its ability to fend off an intensified Russian offensive .
Germany would not block Poland from sending tanks to Ukraine, minister says (Reuters) Berlin has so far held back from sending them or allowing other NATO countries to do so.
Poland pushes for more tanks for Kyiv, will seek German OK (AP NEWS) Poland will ask Germany for permission to send some of the Polish army's Leopard tanks to Ukraine, Polish Prime Minister Mateusz Morawiecki said Monday, as he pushes Europe to send more military hardware to Kyiv amid complaints that Germany is being too slow in helping to thwart Russia's invasion .
US reads ‘riot act’ to Germany over refusal to send Leopard tanks to Ukraine (The Telegraph) Poland suggested it and other Nato allies may organise their own ‘tank alliance’ without Germany
Leopard 2: Inside the German beer-balancing tank and why Ukraine desperately wants them (The Telegraph) Kyiv has been urging a reluctant Berlin to donate some of its Cold War-era tanks, which are more than just a one-trick pony
Finland ready to send Leopard tanks to Ukraine: FM (Nikkei Asia) Delivery hinges on German approval, which could take 'more time,' Haavisto says
Germany dashes hopes of breakthrough on tank shipments to Ukraine (The Telegraph) Berlin fails to reach agreement with Western allies on sending Leopard 2 tanks, despite mounting pressure from Nato and Kyiv
Olaf Scholz won't release the Leopards - here's why (The Telegraph) After breaking away from decades of cosy relationships with Moscow, Germany is reluctant to unilaterally escalate for the war in Ukraine
Leopard tank dilemma as Germany tears itself in two over Ukraine (The Telegraph) In the Reichstag and Federal Chancellery, Putin has them quaking in their boots
German caution on Ukraine arms rooted in political culture (AP NEWS) Germany has become one of Ukraine's leading weapons suppliers in the 11 months since Russia's invasion, but Chancellor Olaf Scholz also has gained a reputation for hesitating to take each new step — generating impatience among allies.
CIA director holds secret meeting with Zelensky on Russia’s next steps (Washington Post) High-level visit by Burns comes at critical juncture in war and as government in Kyiv airs concern about durability of U.S. support
Defense Leaders Pledge New Ukraine Support (U.S. Department of Defense) Following the Ukraine Defense Contact Group meeting, Secretary of Defense Lloyd J. Austin III said the nations are working together very smoothly to deliver to Ukraine the equipment it needs to defend
Secretary of Defense Lloyd J. Austin III and General Mark A. Milley Press Conference Follo (U.S. Department of Defense) STAFF: Good evening, everyone, and thank you for being here today.It's my pleasure to introduce Secretary of Defense Lloyd Austin, III and Chairman of the Joint Chiefs of Staff General Mark Milley.
Former UK PM Boris Johnson makes trip to Ukraine (BBC News) The former prime minister says it is a "privilege" to visit the country once more.
Ukraine Quarterly Digest: October–December 2022 (Wilson Center) The government of Ukraine continued its effective counteroffensive operations in the fourth quarter of 2022. President Zelensky conducted his first international visit since the invasion, meeting his U.S. counterpart and delivering a stirring address to Congress.
Long Read: Zelensky’s Visit to Washington Marked a Strategic Inflection Point (Wilson Center) President Zelensky’s risky trip to Washington, D.C., on December 21, 2022, was made possible by warming relations with the United States during the year. It also reflected Zelensky's keen awareness of American political fissures at a time when Ukraine's survivability relied in large part on the West’s sustained supply of weapons, munitions, and other types of aid, all spearheaded by the United States.
Russia expected to increase cyberattacks in Ukraine war — to little effect (The Hill) Nearly a year into its war with Ukraine, Russia has had little success on the cyber battlefield — and that doesn’t look like it will change moving forward. In the coming months, the…
Ukraine blames Russia for most of over 2,000 cyberattacks in 2022 (Reuters) A senior Ukrainian official blamed Russia on Tuesday for carrying out the bulk of more than 2,000 cyberattacks on Ukraine in 2022, speaking at a news conference that he said was itself delayed because of a cyberattack.
Україна підписала угоду про приєднання до Об’єднаного центру передових технологій з кібероборони НАТО (SSSCIP) Секретар Ради національної безпеки і оборони України Олексій Данілов підписав Технічну угоду про приєднання України до Об’єднаного центру передових технологій з кібероборони НАТО (CCDCOE).
Ukraine signs agreement to join NATO cyber defense center (The Record from Recorded Future News) Ukraine has signed an agreement to join the Estonia-based NATO Cooperative Cyber Defence Centre of Excellence (CCDCOE).
'No Big Bang': Cyber successes in Ukraine are no cause for complacency in US (Breaking Defense) Russian hackers haven’t crippled Ukrainian networks, but it’s not for lack of trying. With Western help, Ukraine had spent eight years building its cyber defenses – ironically, in a way most US agencies and companies have not.
Can Russia Develop a New State Ideology? (RUSI) Three decades after the demise of Marxism-Leninism, Russia is attempting to revive a state ideology. Many of its ideas appear esoteric and marginal. But they should not be dismissed lightly. The new Cold War – just like the old one – will also be a battle of ideas.
Putin Henchmen Threaten ‘Tens of Thousands’ of Dead U.S. Troops (The Daily Beast) Some of Putin’s top propaganda merchants realize nuclear threats are starting to ring hollow so they recommend slaughtering American servicemen in vast numbers instead.
Months after Russian invasion, Meta is tweaking its content policies (Washington Post) Meta is taking Azov Regiment off its dangerous organizations list
Europe Needs a Strategy for Russia After Putin (Foreign Policy) Competing ideas about the end state of the war are striving for dominance.
Ukraine is fighting for all of us. Now Europe must fight too | Simon Tisdall (the Guardian) As Russia threatens another offensive, this is the moment of maximum danger. Ukraine’s allies must move fast and decisively
The War in Ukraine Will End With a Deal, Not a White Flag (World Politics Review) As the US and NATO continue to send aid to Ukraine, it’s clear that Putin’s war there will not end anytime soon. But it will end. So how?
Don’t Fear Putin’s Demise (Foreign Affairs) Victory for Ukraine, democracy for Russia.
Russia’s state nuclear company aids war effort, leading to calls for sanctions (Washington Post) Russia’s state nuclear power conglomerate has been working to supply the Russian arms industry with components, technology and raw materials for missile fuel, documents show, aiding Moscow’s deadly onslaught on Ukraine and leading to calls for the company, Rosatom, to be put under sanctions.
Russia borrows record $56bn in a month as sanctions batter Putin (The Telegraph) Spending for the year was up more than 30pc compared to pre-war forecasts
Putin’s War Costs: Changing Russia’s Economy (Wilson Center) A warm winter and a looming recession in some Western countries have helped make sanctions against Russian exports work. Spending on the war has increased significantly, and the government has had to cut nonmilitary expenses and to finance the deficit through money emission. Sanctions cannot stop the war, but they are making it harder to fund. Putin is ready to spend, but his war chest is running thin.
Russia faces ‘incredible poverty’, warns ex-IMF chief (The Telegraph) Putin's country risks becoming 'a giant Iran' as sanctions bite
Treasury designates Wagner Group a transnational criminal organization (Military Times) The U.S. believes the Russian private military company has 50,000 personnel fighting in Ukraine, including 10,000 contractors and 40,000 convicts.
‘We do our work because we are angry’: Navalny’s colleague Maria Pevchikh on taking on Putin (the Guardian) It’s two years since the arrest and imprisonment of Russian opposition leader Alexei Navalny. Here his deputy talks about continuing his fearless anti-corruption work – and why she won’t give up hope of his release
After classmates snitch, Russia charges 19-year-old war critic as terrorist (Washington Post) Soon after the explosion on the Crimean Bridge in October, a 19-year-old Russian student, Olesya Krivtsova, posted an Instagram story criticizing Russia’s war in Ukraine.
Attacks, Threats, and Vulnerabilities
Click Fraud Protection Firm Polygraph Identifies Fake Leads Scam Affecting ‘Performance Max’ Advertising Campaigns (GlobeNewswire News Room) Advertisers are losing money due to scam websites generating fake clicks on adverts and submitting spam leads to trick conversion tracking...
The latest cyberattack on health care shows how vulnerable the sector is (Washington Post) Apparent BlackCat ransomware attack demonstrates risks to health-care sector, vendors
Hackers now use Microsoft OneNote attachments to spread malware (BleepingComputer) Threat actors now use OneNote attachments in phishing emails that infect victims with remote access malware which can be used to install further malware, steal passwords, or even cryptocurrency wallets.
Dissecting and Exploiting TCP/IP RCE Vulnerability “EvilESP” (Security Intelligence) See how one IBM X-Force researcher reverse engineered the patch for CVE-2022-34718, and unpack the affected protocols, how the bug was identified, and how it was reproduced.
Compromised Zendesk Employee Credentials Lead to Breach (Dark Reading) Zendesk has alerted customers to a successful SMS phishing campaign that has exposed "service data," but details remain scarce.
Samsung investigating claims of hack on South Korea systems, internal employee platform (The Record from Recorded Future News) Samsung said it is investigating a potential cyberattack and data breach on several systems in South Korea and an internal employee platform.
Around 19,500 end-of-life Cisco routers are exposed to hack (Security Affairs) Researchers warn of about 19,500 end-of-life Cisco VPN routers on the Internet that are exposed to the recently disclosed RCE exploit chain. Cisco recently warned of a critical vulnerability, tracked as CVE-2023-20025 (CVSS score of 9.0), that impacts small business RV016, RV042, RV042G, and RV082 routers. The IT giant announced that these devices will receive no security […]
Global cricket governing body ICC loses USD 2.5 million in phishing scam: Report (Republic World) The cricket governing body lost about USD 2.5 million to an alleged phishing scam that is said to have originated in the USA.
ICC loses around $2.5 million in phishing scam (ESPNcricinfo) The governing body reported the matter to law-enforcement agencies in the USA and an investigation is underway
Popular password managers auto-filled credentials on untrusted websites (The Daily Swig) Dashlane, Bitwarden, and Safari all cited by Google researchers
T-Mobile Breach Highlights Common Corporate Security Weakness (Wall Street Journal) Many companies don’t properly secure APIs, the ubiquitous interface that lets technology programs communicate.
Sensible Daten in Gefahr: Polizei warnt vor Fake-Nachrichten vom Internet-Provider (CHIP 365) Kunden von einem Internet-Provider sind derzeit im Visier von Kriminellen. Die Polizei warnt vor einer gefährlichen Phishing-Masche. Hier erfahren Sie, wie Sie sich schützen können.
ChatGPT's Dark Side: An Endless Supply of Polymorphic Malware (eSecurityPlanet) Security researchers have bypassed ChatGPT's security protections to create sophisticated malware. Here's what that means for end users.
OpenAI's ChatGPT Can Create Polymorphic Malware (HackRead) Follow us on Twitter @HackRead - Facebook @ /HackRead
Contractors' Social Security numbers were exposed in L.A. schools ransomware attack (StateScoop) Last year's ransomware attack against the Los Angeles Unified School District exposed contract workers' personal information, the district said.
Cyberattack on Nunavut energy supplier limits company operations (The Record from Recorded Future News) A cyberattack on the Qulliq Energy Corporation (QEC) in Canada’s Nunavut territory has crippled the company’s administrative offices.
Electronic health record giant NextGen dealing with cyberattack (The Record from Recorded Future News) Hospital technology giant NextGen Healthcare said it is responding to a ransomware attack.
Ransomware attack against Yum! Brands follows several incidents targeting restaurant industry (Cybersecurity Dive) Criminals see restaurants and mobile ordering apps as ripe targets for credential stuffing and financial fraud.
KFC and Pizza Hut owner hit by UK cyber attack (The Caterer) Yum Brands the owner of KFC Pizza Hut and Taco Bell has said less than 300 of its UK restaurants were closed following a ransomware attack
Cyber Attack Targets 37M T-Mobile Customer Accounts (GovTech) T-Mobile announced that it suffered a cyber attack that compromised 37 million customer accounts. The company says there is currently no evidence of breach or compromise to its systems or network.
T-Mobile Gets Hacked Again: Is the Un-Carrier Un-Safe? (CNET) Five breaches in five years isn't a record to be proud of.
T-Mobile’s $150 Million Security Plan Isn’t Cutting It (WIRED) The mobile operator just suffered at least its fifth data breach since 2018, despite promising to spend a fortune shoring up its systems.
Riot hit by 'social engineering attack' that will affect patch cadence for multiple titles (Dot Esports) The attack may affect delivery dates for patches, new content, and more.
Riot Games Target of Cyber Attack, League of Legends Updates Delayed (Game Rant) Business as unusual as Riot battles with the consequences of a cyber attack while fans are concerned about the delays this event will cause.
You might not want to play GTA Online right now due to security vulnerabilities (Rock Paper Shotgun) Grand Theft Auto Online players on PC are reporting corrupted accounts and being locked out of their games due to remote code exploits being abused by modders.
Video Game-Playing Fish Commit Credit Card Fraud In the Ultimate Phishing Scam (Gizmodo) A good reminder to maybe not have your login and credit card info saved everywhere.
Security Patches, Mitigations, and Software Updates
Cisco Releases Security Advisory for Unified CM and Unified CM SME (CISA) Cisco released a security advisory for a vulnerability affecting Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME). A remote attacker could exploit this vulnerability to cause a denial-of-service condition. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page. CISA encourages users and administrators to review the advisories and apply the necessary updates.
Trends
Ransomware Revenue Down As More Victims Refuse to Pay (Chainalysis) 2022 was an impactful year in the fight against ransomware. Ransomware attackers extorted at least $456.8 million from victims in 2022, down from $765.6 million the
Welcome to the Era of Internet Blackouts (WIRED) New research from Cloudflare shows that connectivity disruptions are becoming a problem around the globe, pointing toward a troubling new normal.
Global cyberattacks increased 38% in 2022 (Security Magazine) Check Point Research data on worldwide cyberattacks reveals a 38% increase globally as hackers target remote workers, learners and healthcare.
Marketplace
Thoma Bravo expands cybersecurity reach with $1.34 bln Magnet Forensics deal (Reuters) Thoma Bravo will buy Canadian software firm Magnet Forensics Inc in a C$1.8 billion ($1.34 billion) deal, the company said on Friday, as the private equity firm bolsters its cybersecurity portfolio to tap into rising demand.
Thoma Bravo agrees to acquire digital forensics firm Magnet Forensics for over $1B (TechCrunch) Investment firm Thoma Bravo has agreed to acquire digital forensics firm Magnet Forensics, based in Waterloo, for over $1 billion.
CompTIA Acquisition Will Accelerate Training, Certification Offerings (Channel Futures) CompTIA has acquired online training provider TestOut. The move enables CompTIA to help expand opportunity and diversity in the tech workforce.
Vanta acquires Trustpage to accelerate its product innovation (Help Net Security) Vanta has acquired Trustpage to transform trust into a marketable advantage for companies around the world.
Cemtrex Postpones Reverse Split to January 25th, 2023 (GlobeNewswire News Room) Cemtrex Inc. (NASDAQ: CETX, CETXP), an advanced security technology and industrial services company,...
Torq Achieves 800% Revenue Growth and 10x Customer Growth Across 2022, and 1,000,000+ Daily Security Automations (Torq) Torq, the security automation leader, today announced 800% revenue growth and 10X customer growth in its second year of operation in 2022, and hitting the milestone of 1,000,000+ daily security automations.
Boulder cybersecurity startup looks to add 491 workers (The Denver Post) A small Boulder cybersecurity firm looking at a major expansion that could bring nearly 500 jobs to Boulder County has received approval for $2.42 million in state tax incentives on Thursday mornin…
Tech Layoffs Unwind Recent Head-Count Growth, Torpedo Long-Shot Projects (Wall Street Journal) The cuts that altogether number in the tens of thousands have made only a dent in the jobs that were added amid the pandemic.
Google Laid Off High Performers and Earners While Largely Sparing ‘Brain’ AI Lab (The Information) Google's move to lay off 6.4% of staff on Fridaydidn’t come as a shock to most employees, but it stunned some of the individuals who were cut. Laid-off employees included those who had previously received high performance reviews or held managerial positions with annual compensation packages of ...
Intel's California job cuts will be more than twice as big as expected (Silicon Valley Business Journal) After forecasting last month it would let go 201 total workers in the Golden State, Intel now says it's cutting more than twice that many.
Microsoft has laid off entire teams behind Virtual, Mixed Reality, and HoloLens (Windows Central) HoloLens, Virtual Reality, and Mixed Reality are all but dead at Microsoft.
Spotify to Cut 6% of Workforce in Latest Tech Layoffs (Wall Street Journal) The streaming company’s move is the latest in a wave of tech layoffs, as the industry recalibrates after growing rapidly at the start of the pandemic.
How Apple Has So Far Avoided Layoffs: Lean Hiring, No Free Lunches (Wall Street Journal) The iPhone maker’s workforce grew 20% in the past three years, a far slower pace than rivals.
Big tech is crowing about A.I. as it lays off tens of thousands of workers (Fortune) Microsoft is letting go of 10,000 workers while CEO Satya Nadella tells Davos, "A golden age of A.I. is underway."
Before Bankruptcy, Genesis Won Rich Clients With Blue-Chip Reputation (The Information) Of all the crypto lenders to spring up in the past couple of years, Genesis had won over rich individuals—such as former SoftBank executive Marcelo Claure—and families with its Wall Street approach to doing business. That makes Thursday’s late-night bankruptcy filing by Genesis’ lending unit one ...
Vectra Announces New VP of Sales for Americas to Drive Growth and Customer Success (Vectra news release) Vectra Announces New VP of Sales for Americas to Drive Growth and Customer Success. Visit our news releases page to read more!
Products, Services, and Solutions
New infosec products of the week: January 20, 2023 (Help Net Security) The featured infosec products this week are from: CloudSEK, Devo Technology, Immuta, Varonis, and Zyxel Networks.
New infosec products of the week: January 20, 2023 (Help Net Security) The featured infosec products this week are from: CloudSEK, Devo Technology, Immuta, Varonis, and Zyxel Networks.
Top 9 NGFW Solutions For 2023 (TechGenix) Next-generation firewalls (NGFW) are the wave of the future for small businesses to large enterprises. So far, in 2023, they represent a 20% market share! These advanced firewalls improve the existing technology, enabling more security features than traditional ones.
Fingerprint partners with Ping Identity to help customers prevent fraud (Help Net Security) Fingerprint and Ping Identity partnership helps customers to accurately identify devices throughout user journeys, which helps prevent fraud.
VIPRE Security Group’s New Endpoint Detection and Response (EDR) Technology Powerfully Built for Small and Mid-sized Enterprises (VIPRE) VIPRE Endpoint Detection & Response (EDR) delivers streamlined, sophisticated, high-performing cloud-based EDR management in a single, easy-to-navigate console.
University of Georgia’s Abraham Baldwin Agricultural College Selects BIO-key's Cloud-Hosted PortalGuard® Platform for Secure, Flexible Access to Critical Applications (GlobeNewswire News Room) BIO-key International, Inc. (NASDAQ: BKYI), an innovative provider of workforce and...
Arctic Wolf Further Advances Incident Response Offerings with IR JumpStart Retainer (Arctic Wolf) Subscription-Based Approach Makes World-Class Incident Response and Recovery Accessible to All, Delivering Remediation Capabilities in Under One Hour
ZeroEyes Achieves ISO/IEC 27001:2013 Certification, Confirming Integrity of Information Security Management System (PR Newswire) ZeroEyes, creators of the only A.I.-based gun detection video analytics platform that holds the U.S. Department of Homeland Security SAFETY Act...
Technologies, Techniques, and Standards
Amazon, other Pentagon cloud service providers face zero-trust test (Defense News) Amazon, Google, Microsoft and Oracle each told the Pentagon they could instate at least basic levels of zero trust, a cybersecurity official said.
How Army Software Factory Manages Open-Source Code Security Risks (Government CIO) Securing open-source software is a unique challenge, and the federal government is just starting to develop ways to evaluate and minimize security risks associated with its use.
Booz Allen Hamilton urges supply chain cyberattacks rethink (SupplyChain) Booz Allen Hamilton bot expert Dr Sean Guillory says firms must sharpen thinking on social engineering supply chain attacks that put staff in firing line
How the NSA’s Commercial Solutions for Classified Program Continues to Evolve (FedTech) The program is expanding its scope and capabilities, offering defense and intelligence agencies more flexibility and security.
A Change in Mindset: From a Threat-based to Risk-based Approach to Security (SecurityWeek) A threat-based approach to security often focuses on a checklist of tasks to meet unique industry requirements but overlooked the key component of security: reducing risk.
How CISOs can manage the cybersecurity of high-level executives (CSO Online) C-suite executives and board members are targeted through their personal devices as cybercriminals look to penetrate corporate systems and access sensitive and proprietary information. Protecting them requires a holistic approach.
6 cybersecurity buzzwords to know in 2023 (TechTarget Security) Check out emerging 2023 cybersecurity buzzwords and understand how they may apply to security spending plans. From cyber resilience to *DR, it's all here.
Maryland First in the Air National Guard to Certify a Cyber Protection Team on Live Networ (175th Wing) Members of the Maryland Air National Guard’s 275th Cyberspace Operations Squadron recently became the first cyber operators in the Air National Guard to certify a Cyber Protection Team using their
Research and Development
The Future of Quantum Security Will Be Encoded in Light, Researchers Hope (Nextgov.com) Swiss researchers, funded in part by the U.S., are developing a stronger network security countermeasure to combat the potential of a viable quantum computing system.
Academia
Five Days in Class with ChatGPT (Alperovitch Institute) This past week we had an intense educational experience here at the Alperovitch Institute: 5 hours of Malware Analysis and Reverse Engineering with Juan Andres Guerrero-Saade, every day, all week, including Saturday (Monday was a holiday).
The new frontier in the US war on TikTok: university campuses (the Guardian) Experts say banning the app over college networks will not stop students from accessing it over cellular data
Marshall Team Places in the Top 1% at Cyber Competition (The Parthenon) A team of cyber students found themselves finishing in the top 0.71% of the National Cyber League’s fall 2022 competition in November. They placed 28th out of the 3,926 teams who competed. The competition was based on many categories, including cyber forensics, cryptography, log analysis and password cracking. Marshall placed in the 100th percentile for...
Legislation, Policy, and Regulation
As Deepfakes Flourish, Countries Struggle With Response (New York Times) Few governments have approved regulations, often because of free-speech concerns. New mandates from China could change the tone of the debate on digital forgeries.
The Lingering Power of Cyber Brandishing (Lawfare) Though many are quick to oversimplify cyber brandishing as counterproductive, the power of cyber brandishing is much more nuanced and useful.
Jim Langevin on how Congress has come 'a long way from where we first started' on cyber (The Record from Recorded Future News) Former congressman Jim Langevin spoke to the record about his cybersecurity efforts and where he thinks the new Congress will move on the issue.
As states ban TikTok on government devices, evidence of harm is thin (Washington Post) Some states’ have copied others’ wording, including mistakes, as some professors complain the bans rob them of a teaching tool.
Mississippi Announces New Cybersecurity Unit and Leadership (GovTech) The newly created Cyber Unit falls under the state’s Office of Homeland Security and will act as a centralized cybersecurity information and response center. The unit will be led by the state’s first Cyber Director Bobby Freeman.
CISA hires Navy cyber expert to help oversee vulnerability management (FCW) The cybersecurity agency selected U.S. Fleet Cyber Command veteran Sandy Radesky to serve as its associate director of vulnerability management Wednesday.
Litigation, Investigation, and Law Enforcement
Europe’s got a big, creepy spyware problem – and it’s going unchecked (Courthouse News Service) Journalists and digital experts are uncovering large-scale domestic spying in European Union countries with hackers targeting the smartphones of journalists, lawyers, politicians and activists. It's been dubbed “Europe's Watergate,” but the EU's response has been to look the other way.
Feds confirm National Research Council was hit by cyber attack (Western Standard) 'Due to a cyber incident some applications on our website were taken offline and may be unavailable,' managers wrote in a notice at the time. 'We are working to bring
Massive ad-fraud op dismantled after hitting millions of iOS devices (BleepingComputer) A massive ad fraud operation dubbed 'Vastflux' that spoofed more than 1,700 applications from 120 publishers, mostly for iOS, has been disrupted by security researchers at cybersecurity company HUMAN.
Ireland’s data protection watchdog fines WhatsApp €5.5m (Register) You’ve got 6 months to get into compliance, it tells yak-yak app
GOP senator's campaign says cybercriminals stole $690,000 (Axios) Brandt said the campaign is “pursuing all avenues available to recover the money” and that the FBI has opened an investigation.
FAA Says Contractor Unintentionally Caused Outage That Disrupted Flights (Wall Street Journal) The federal air-safety regulator said it has found no evidence of cyberattack or malicious intent, and has made repairs to the system.
Feds seized nearly $700 million from FTX founder Bankman-Fried (Reuters) Federal prosecutors have seized nearly $700 million in assets from FTX founder Sam Bankman-Fried in January, largely in the form of Robinhood stock, according to a Friday court filing.
Justice Dept. search of Biden home in Wilmington turns up more documents (Washington Post) The Justice Department on Friday completed an extensive search of President Biden’s home in Wilmington and turned up additional classified documents, some of which date to his time in the United States Senate and others from his eight-year tenure as vice president, the president’s personal attorney announced Saturday night.
FBI searched Biden home, found items marked classified (AP NEWS) WASHINGTON (AP) — The FBI searched President Joe Biden’s home in Wilmington, Delaware, on Friday and located additional documents with classified markings and also took possession of some of his handwritten notes, the president’s lawyer said Saturday.
FBI finds more classified files in President Joe Biden's home (The Telegraph) Investigators also seize Mr Biden's notes, as discoveries become a political liability for the president
Dems: Biden should be 'embarrassed' by classified docs case (AP NEWS) Senior Democrats, dismayed by a steady stream of startling disclosures , expressed criticism Sunday of how President Joe Biden handled classified material after leaving office as vice president and disappointment that the White House has not been more forthcoming with the public.
Most voters think Biden’s handling of documents is a serious breach: poll (The Hill) A majority of voters say they believe President Biden’s handling of classified documents found at his home and his former office is a serious breach of national security, according to a new Harvard…
US Intel Silent on Biden Classified Information's National Security Risk (The Daily Signal) Rep. Mike Turner requested a review of Biden documents, but the ODNI has not responded, even though it's investigating the Trump docs.
ICE Releases Immigrants After Accidentally Publishing Data (Governing) Immigration and Customs Enforcement officials released 3,000 immigrants after accidentally posting personal data of more than 6,000 immigrants onto the agency’s website last November. Those still in custody will have their cases reviewed.