Dateline: Russia's hybrid war against Ukraine.
Ukraine at D+516: Attacks on food, accompanied by disinformation. (CyberWire) Missile strikes and Russia's war for famine.
Russia-Ukraine war: List of key events, day 517 (Al Jazeera) These are the main developments as the Russian invasion of Ukraine enters its 517th day.
Russia-Ukraine war at a glance: what we know on day 517 of the invasion (the Guardian) Russia says it repelled drone attack on patrol boat in Black Sea; Ukraine claims small advance in the Bakhmut area
Russia Strikes Danube Port, Escalating Attacks on Ukraine Grain Routes (New York Times) The assault, across the river from Romania, heightened the risk of a more direct confrontation with a NATO member and came on the same day that drones struck buildings in Moscow.
Russia-Ukraine war live: Ukraine claims small gains in south; Russia says it repelled attack on Black Sea fleet (the Guardian) Ukraine’s armed forces claim advance near Staromayorske; Russia says two drone boats failed in attack on patrol ship
Two drones downed over Moscow, says Russian defence ministry (the Guardian) Officials blame Ukraine for drones that hit non-residential buildings in Russian capital and say there were no casualties
Ukraine-Russia war: Ukraine vows further drone strikes on Moscow and Crimea (The Telegraph) A Ukrainian drone attack on Moscow hit several targets including a Russian defence ministry building that is believed to be the headquarters of the country’s notorious cyber forces.
Ukraine's defense minister says attacks on Crimea will continue, predicts possible NATO entry next year (CNN) Ukraine’s Defense Minister Oleksii Reznikov says that Ukraine will continue carrying out attacks on Russian-occupied Crimea and the Kerch Bridge that connects it to the Russian mainland, while also admitting that Ukraine’s plan for its sluggish counteroffensive is behind schedule.
UN watchdog says landmines are placed around Ukrainian nuke plant occupied by Russia (Washington Post) The U.N. atomic watchdog says its staff at Ukraine’s Russian-occupied Zaporizhzhia Nuclear Power Plant report seeing anti-personnel mines around the site as Kyiv pursues a counteroffensive against the Kremlin’s entrenched forces after 17 months of war.
Putin Signs Law Raising Age Of People In Military Reserve By Five Years (RadioFreeEurope/RadioLiberty) Russian President Vladimir Putin has signed a law raising the maximum age of people in the military reserves by five years.
Thousands Of Wagner Mercenaries In Belarus, Says Monitoring Group (RadioFreeEurope/RadioLiberty) Thousands of Russia-linked Wagner group mercenaries have arrived in Belarus since the group’s short-lived rebellion, a military monitoring group said on July 24.
Everyone Wants Ukraine’s Battlefield Data (WIRED) Global companies are offering free products to get access to live combat data. The Ukrainian government wants to keep this resource for its own emerging defense industry.
The moral dilemma of sending cluster munitions to Ukraine (Washington Post) For the past week, Ukraine has fired U.S.-provided cluster munitions at Russian targets. The bombs are banned in 123 countries, including the bulk of NATO members, but the United States, Russia and Ukraine aren’t signatories to the 2008 U.N.-backed convention prohibiting the use, production, stockpiling or transfer of cluster munitions.
Putin Is Running Out of Options in Ukraine (Foreign Affairs) Russia edges closer to a reckoning.
Supporting Ukraine Provides a Lesson in Grand Strategy (Defense Opinion) Ukraine with Western support is winning, and it is only a matter of time before the Russian military is driven back into Russia. There are powerful signs of pending Russian defeat and the success of U.S. grand strategy.
Putin ally accuses US of planning cyberattacks on Russian critical infrastructure (Al Arabiya English) Russian Security Council Secretary Nikolai Patrushev accused the United States on Monday of planning cyberattacks against Russia’s “critical information
Pro-Russian Lawmaker In Ukraine Accused Of High Treason (RadioFreeEurope/RadioLiberty) A Ukrainian lawmaker for the pro-Russian Opposition Platform -- For Life party has been officially notified that he is suspected of high treason, Ukraine's Security Service (SBU) said on July 24, without identifying the suspect.
Former Military Commissioner Of Ukraine's Odesa Region Detained (RadioFreeEurope/RadioLiberty) Ukrainian investigators have detained Yevhen Borisov, the former military commissioner of the Odesa region, on charges of illegal enrichment, deriliction of duty, and evading military service.
Three Russians Get Prison Terms For Planning To Set Military Conscription Center On Fire (RadioFreeEurope/RadioLiberty) A Moscow court sentenced three men to lengthy prison terms on July 24 for "plotting an arson attack on a local military conscription center" in the northwestern city of Vyborg last year.
Belarusian Singer Who Refused Lukashenka Scholarship Faces Trial (RadioFreeEurope/RadioLiberty) Belarusian singer Patrytsia Svitsina, who in 2020 refused to accept a scholarship from authoritarian ruler Alyaksandr Lukashenka citing her "moral principles," will face trial on August 1 on a charge of "actively participating in actions that blatantly disrupt social order."
Attacks, Threats, and Vulnerabilities
Karakurt vs. Conti Compare and Contrast (Nisos) Discover the critical impact of Conti and Karakurt's cyber ties on insurance and policyholders, delving into 'double extortion' tactics in our latest analysis.
Norway says Ivanti zero-day was used to hack govt IT systems (BleepingComputer) The Norwegian National Security Authority (NSM) has confirmed that attackers used a zero-day vulnerability in Ivanti's Endpoint Manager Mobile (EPMM) solution to breach a software platform used by 12 ministries in the country.
Norway investigates cyberattack affecting 12 government ministries (Record) The Norwegian police are investigating a cyberattack uncovered earlier this month that affected the IT systems used by a dozen government ministries.
Norwegian government IT systems hacked using zero-day flaw (BleepingComputer) The Norwegian government is warning that its ICT platform used by 12 ministries has suffered a cyberattack after hackers exploited a zero-day vulnerability in third-party software.
Cyber-Attack Strikes Norwegian Government Ministries (Infosecurity Magazine) Erik Hope revealed the attack was traced back to a vulnerability in a government supplier
Norway government hit by cyberattack (Cyber News) A dozen Norwegian government ministries have been hit by a cyberattack, the latest to strike the public sector of Europe's largest gas supplier and NATO's northernmost member. The authorities there appear to be playing a cool hand, and are showing no signs of panic.
Norway Probes Major Cyberattack on 12 Government Ministries (HackRead) The cyberattack was discovered earlier this month.
FortiGuard Labs Discovers Multiple Vulnerabilities in Microsoft Message Queuing Service (Fortinet Blog) Get an overview of the attack surfaces of MSMQ, the approaches taken to tackle the challenges encountered during fuzzing, and additional details of the vulnerabilities. Learn more.…
Two new vulnerabilities found in popular baseboard software (Record) Two new vulnerabilities have been found in a popular brand of baseboard software used in millions of devices worldwide.
Cl0p Ransomware Gang Leaks MOVEit Data on Clearweb Sites (HackRead) The Cl0p Ransomware Gang has begun its clearweb journey by leaking data stolen from PWC.com.
MOVEit Vulnerability Investigations Uncover Additional Exfiltration Method (Kroll) Analysis of two new data exfiltration methods used by threat actors in the MOVEIt vulnerability exploitation campaign, including log details and IOCs. Read more.
MOVEit Hack Could Earn Cybercriminals $100M as Number of Confirmed Victims Grows (SecurityWeek) Experts believe the Cl0p ransomware gang could earn as much as $100 million from the MOVEit hack, with hundreds of confirmed victims
Has the MOVEit hack paid off for Cl0p? (Help Net Security) The number of Cl0p victims resulting from its attack on vulnerable internet-facing MOVEit Transfer installations has surpassed 420.
Zenbleed attack leaks sensitive data from AMD Zen2 processors (BleepingComputer) Google's security researcher Tavis Ormandy discovered a new vulnerability impacting AMD Zen2 CPUs that could allow a malicious actor to steal sensitive data, such as passwords and encryption keys, at a rate of 30KB/sec from each CPU core.
PokerStars Confirms MOVEit Data Breach Leaked Up to 110k Social Security Numbers (JD Supra) On July 20, 2023, PokerStars filed a notice of data breach with the Attorney General of Maine after discovering that an application the company used...
Hacking police radios: 30-year-old crypto flaws in the spotlight (Naked Security) “Three may keep a secret, if two of them are dead.”
Code Kept Secret for Years Reveals Its Flaw—a Backdoor (WIRED) A secret encryption cipher baked into radio systems used by critical infrastructure workers, police, and others around the world is finally seeing sunlight. Researchers say it isn’t pretty.
TETRA comms used by emergency workers 'easily cracked' (Register) If it looks like a backdoor, walks like a backdoor, maybe it's a ...
From Power Grids to Airports: TETRA Radio Hacking Risks Global Infrastructure (HackRead) These vulnerabilities have been dubbed TETRA:BURST by researchers.
Yamaha confirms cyberattack after multiple ransomware gangs claim attacks (Record) Yamaha’s Canadian music division confirmed that it recently dealt with a cyberattack after two different ransomware groups claimed to have attacked the company.
Italian asset manager Azimut targeted by BlackCat hackers (Reuters) Italian asset manager Azimut said on Monday it had suffered a cyberattack that did not harm its customers' sensitive data, and had received a ransom request which it rebuffed.
Quinn Emanuel reports cyber attack involving 'limited' client data (Reuters) An electronic discovery vendor for U.S. law firm Quinn Emanuel Urquhart & Sullivan suffered a cybersecurity attack that may have exposed client information, the firm disclosed to California authorities on Friday.
Michigan State vendors affected by data breach; personal data possibly compromised (Lansing State Journal) No MSU-owned or operated systems were known to have been affected by the breach. It was unclear if MSU community members were affected.
MSU students, employees exposed to data breach (WLNS 6 News) Michigan State University students and employees could be affected by an international data breach, the university said Monday.
1st Source says 450,000 records affected in client data breach (Reuters) Commercial and Consumer bank 1st Source Corp said on Monday a security breach that involved a popular file transfer tool, MOVEit, has impacted about 450,000 records.
Roblox security breach: what it means, scams and everyone affected (Meristation) This security issue will affect approximately 4,000 users and developers who attended the Roblox Developer Conference between 2017 and 2020.
Security Patches, Mitigations, and Software Updates
Ivanti patches MobileIron zero-day bug exploited in attacks (BleepingComputer) US-based IT software company Ivanti has patched an actively exploited zero-day authentication bypass vulnerability impacting its Endpoint Manager Mobile (EPMM) mobile device management software (formerly MobileIron Core).
Ivanti Releases Security Updates for Endpoint Manager Mobile (EPMM) CVE-2023-35078 (Cybersecurity and Infrastructure Security Agency CISA) A vulnerability discovered in Ivanti Endpoint Manager Mobile (EPMM, previously branded MobileIron Core) allows unauthenticated access to specific API paths. An attacker with access to these API paths can access personally identifiable information (PII) such as names, phone numbers, and other mobile device details for users on a vulnerable system. An attacker can also make other configuration changes, including creating an EPMM administrative account that can make further changes to a vulnerable system.
Apple Releases Security Updates for Multiple Products (Cybersecurity and Infrastructure Security Agency CISA) Apple has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected device.
Apple fixes 16 security flaws with iOS 16.6, two actively exploited (9to5Mac) Apple has released iOS 16.6 today for everyone and while the update doesn’t come with new user-facing features, it has...
Apple Rolls Out Urgent Patches for Zero-Day Flaws Impacting iPhones, iPads and Macs (The Hacker News) Apple Rolls Out Urgent Patches for Zero-Day Flaws Impacting iOS, iPadOS, macOS, tvOS, watchOS, and Safari
Apple fixes new zero-day used in attacks against iPhones, Macs (BleepingComputer) Apple has released security updates to address zero-day vulnerabilities exploited in attacks targeting iPhones, Macs, and iPads.
iOS 16.6: Apple Suddenly Releases Key iPhone Update With Urgent Fixes (Forbes) In what could be the last major update for iOS 16, Apple has released a slew of bug fixes for iPhone users.
Google Messages Getting Cross-Platform End-to-End Encryption with MLS Protocol (The Hacker News) Google is adding support for Message Layer Security (MLS) to its Messages service for Android.
Microsoft shares fix for some Outlook hyperlinks not opening (BleepingComputer) Microsoft shared a workaround for Outlook Desktop blocking attempts to open IP address or fully qualified domain name (FQDN) hyperlinks after installing this month's security updates.
Trends
KnowBe4 Phishing Test Results Reveal Half of Top Malicious Email Subjects Are HR Related (KnowBe4) KnowBe4 Phishing Test Results Reveal Half of Top Malicious Email Subjects Are HR Related
2023 Cyber Threat Readiness Report (Swimlane) Swimlane and Dimensional Research conduct a global study of 1,000 security practitioners that reveals executive insights, misalignment and the key to cyber-threat readiness.
Automation Readiness & Maturity of Orchestrated Resources (Swimlane) Global cyber-threat readiness report reveals alarming misalignment between execs and security analysts.
Developer-Led Landscape: Software Supply Chain Security (Tyler's Musings) The software supply chain contains anything that — if disrupted — impacts business continuity. Securing it will be a top 3 CISO concern and $7B ARR market by 2030.
Cost of a Data Breach Report 2023 (IBM Security) The Cost of a Data Breach Report equips IT, risk management and security leaders with quantifiable evidence to help them better manage their security investments, risk profile and strategic decision-making processes. The 2023 edition represents this report’s 18th consecutive year.
What’s new in the 2023 Cost of a Data Breach report (Security Intelligence) IBM Security and the Ponemon Institute teamed up once again to put together the 18th annual Cost of a Data Breach report. Read through the latest findings.
IBM Report: Half of Breached Organizations Unwilling to Increase Security Spend Despite Soaring Breach Costs (IBM Newsroom) IBM Security released its annual Cost of a Data Breach Report, showing the global average cost of a data breach reached $4.45 million in 2023 – an all-time high for the report and a 15% increase over the last 3 years.
Ransom Monetization Rates Fall to Record Low Despite Jump In Average Ransom Payments (Coveware) As ransomware affiliates are paid less frequently, they have adapted their strategies to compensate for the shifting dynamics of cyber extortion.
Crypto Scams Plummet While Ransomware Payments Approach Record Levels in 2023 (CPO Magazine) Ransomware payments are on track to record levels in 2023 despite cryptocurrency-related crimes, including traditional crypto scams, declining significantly.
Cohesity Research Shows Businesses Are Open to Paying Ransoms Due to Cyber Resilience and Data Recovery Gaps (Business Wire) Over 90% believe the threat of ransomware to their industry has increased in 2023, and close to 3 in 4 (74%) respondents say their company will pay a ransom to recover data and restore business processes.
50% of Zero Trust Programs Risk Failure According to PlainID Survey (PR Newswire) PlainID, the Authorization Company™, today announced the findings of its CISO Zero Trust Insight survey. The study, which questioned 200 CISOs...
Marketplace
Thales to create a world-class global cybersecurity leader, acquiring US-based cyber champion Imperva from Thoma Bravo (Thales Group) Thales (Euronext Paris: HO) announces today that it has reached an agreement with Thoma Bravo, a major software investment firm, for the acquisition of 100% of Imperva, a leading US-based data and application cybersecurity company, for an enterprise value of $3.6 billion1.
Thales acquiring cybersecurity company Imperva for $3.6 billion (CTech) The French giant is purchasing the Israeli-founded company from private equity firm Thoma Bravo, which paid $2.1 billion for Imperva five years ago
Thoma Bravo to sell data and application cybersecurity firm Imperva to Thales for $3.6bn (PE Hub) Thales is a French multinational company.
OneTrust Raises $150 Million at $4.5 Billion Valuation (SecurityWeek) Privacy management solutions provider OneTrust raises $150 million at a $4.5 billion valuation.
Earlyworks Co., Ltd. Announces Pricing of Initial Public Offering (Globe Newswire) Earlyworks Co., Ltd. (the “Company” or “Earlyworks”), a Japanese company operating its proprietary private blockchain technology, Grid Ledger System (“GLS”), today announced the pricing of its initial public offering (the “Offering”) of 1,200,000 American Depositary Shares (“ADSs”) at a public offering price of US$5.00 per ADS.
Cybersecurity leader Visium Technologies lands $2.5m credit agreement (FinTech Global) Visium Technologies, a leading global cyber security and analytics company, has announced the signing of a 3-year $2.5m revolving credit line agreement.
Adaptive Shield Secures Strategic Investment from Blackstone (Business Wire) As an existing F500 Adaptive Shield customer, Blackstone's investment furthers the mission of securing the SaaS ecosystem
Raytheon announces mentorship agreement with Node.Digital under Homeland Security Mentor-Protégé Program (PR Newswire) Raytheon, an RTX business (NYSE: RTX), announced today a new mentorship agreement with Node.Digital, a company specializing in digital...
Former EverWatch President Robert Miller Joins FTI as CEO (GlobeNewswire News Room) Founder Ram Gupta assumes executive chairman role...
Veridas reinforces its presence in North America (Veridas) With the United States as a target market, Veridas announced the appointment of Kevin Vreeland as General Manager for the United States and Canada.
Jordan Burris Joins the Identity Theft Resource Center’s Board of Dire (PRWeb) Jordan Burris of Socure, the leading provider of digital identity verification and fraud solutions, has joined the Board of Directors of the Identity Theft Resourc
Products, Services, and Solutions
Nubeva’s Ransomware Key Interception and Decryption Technology Validated in Third-Party Lab (SecurityWeek) By intercepting ransomware keys, any successful encryption can be rapidly decrypted without paying a ransom.
Mimecast Announces Protection for Microsoft Teams to Strengthen Essential Collaboration Tools (GlobeNewswire News Room) New product offering supported by first-of-its-kind research highlighting a looming disconnect between collaboration security posture and organizational...
Netskope Introduces SkopeAI: Revolutionary AI-Driven Security for the Future of Data Protection and Cyber Threat Defense (PRNewswire) Overcoming complexity and the limitations of legacy tools unable to keep pace at the speed of AI, SkopeAI democratizes advanced data protection for every user
Acalvio Announces Integration with CrowdStrike to Enhance Identity Protection (Acalvio) Partnership offers automation to CrowdStrike’s honeytokens capabilities to further help customers effectively and securely lure adversaries from critical resources
Javelin Strategy & Research Releases 2023 Know Your Customer Solution Scorecard (GlobeNewswire News Room) Names LexisNexis Risk Solutions as Best in Class KYC Vendor...
AvePoint Announces Confidence Platform Updates to Enhance Digital Workplace Capabilities (GlobeNewswire News Room) New AvePoint Confidence Platform updates power digital transformation in the workplace, from data migration to cloud adoption...
Coalfire Collaborates with MITRE Engenuity on Threat-Informed Defense (PR Newswire) Global cybersecurity leader Coalfire today became a benefactor of MITRE Engenuity Center for Threat-Informed Defense, supporting MITRE Caldera™...
Exterro and ModeOne Announce Global Strategic Partnership (GlobeNewswire News Room) Agreement Enables Exterro’s Customers Immediate Access to ModeOne’s Patented SaaS Framework, the Only Solution to Deliver Truly Remote, Targeted, Same-Day...
Personal Data Removal Startup Optery Achieves SOC 2 Type II Security Certification (GlobeNewswire News Room) Audit demonstrates that Optery manages customer data with the highest standard of security and compliance...
Prove Identity and LexisNexis Risk Solutions Form Strategic Partnership to Mitigate Identity Fraud (Business Wire) The new partnership will give European companies one-stop-shop access to both Prove and LexisNexis Risk Solutions best-in-class digital identity and authentication technology to make customer experiences safer, easier and faster.
NETSCOUT Releases Next Generation Omnis Cyber Intelligence for Advanced Network Detection and Response (Business Wire) Hierarchical ML-based Threat Analytics at Source Optimizes Threat Detection and Matures Zero Trust Security Architecture
Embroker Partners with Dashlane and Cowbell to Continue Building Single-Destination Risk Mitigation Solution (Business Wire) Dashlane, Cowbell partnering with Embroker, bringing more security protection and cyber coverage options to startup customers
What’s New with GoTo: Security Enhancements, AI Updates, and New Integrations to Meet Growing IT Business Demands (Business Wire) GoTo announces dozens of new features in the latest product innovation release, including powerful upgrades and smarter experiences that deliver simpler ways to manage, support, and connect businesses
Appdome Upgrades its New Build2Secure Plugins for CI/CD Pipelines to Improve DevSecOps (PR Newswire) Appdome, the mobile app economy's one-stop shop for mobile app defense, today announced the release of enhanced continuous integration and...
Technologies, Techniques, and Standards
The U.S. Is Falling Behind on Encryption Standards - And That's a Global Problem (eSecurityPlanet) NIST is falling behind on FIPS 140-3 certifications and post-quantum cryptography, and the results could be disastrous for cybersecurity.
NIST Standards for Post-Quantum Cryptography are Coming Soon. What does this mean for Enterprises? (Entrust Blog) With many countries all over the world launching strategic funding programs and the largest technology companies leading development efforts, the threat
Network Resilience Coalition launches to address threats to outdated network infrastructure Network Resilience Coalition launches to address threats to outdated network infrastructure (Center for Cybersecurity Policy and Law) Many organizations have robust programs in place to make sure that systems at the end of their life or warranty are decommissioned and that patching and vulnerability management programs are in place and active. But for as many that do have those programs in place there are just as many – if not more – that are not retiring devices and staying up to date with the latest system patches.
Ripjar Research Shows Majority of Organisations Are Embracing the Power of AI In Adverse Media Screening (Ripjar) Ripjar’s first survey report on adverse media screening highlights the role of advanced technology in revolutionising risk detection and enhancing anti-money laundering efforts.
'Evolving' CISA program helped agencies quickly respond to recent cyber incidents (Nextgov.com) CISA’s Continuous Diagnostics and Mitigation program uses close collaboration with federal agencies to identify and respond to cyber threats, including last month’s MOVEit breach.
Cyber Certifications Have Failed. There Is A Better Way To Build And Prove Cyber Skills. (Forbes) How do we know our teams are prepared for the next attack? Organizations have poured thousands of dollars into traditional training techniques – is it working?
Design and Innovation
AI business impact report (GoTo) How AI could change companies worldwide
Academia
LSUS offers cybersecurity certificates through online boot camps (Bossier Press) Are you interested in starting a cybersecurity career but don’t have the time or money to pursue a college degree?
Legislation, Policy, and Regulation
EU governments reject requiring manufacturers to report vulnerabilities to central cyber agency (Record) European Union governments have pushed back on the central role initially suggested for the bloc’s cybersecurity agency, rejecting a proposal requiring manufacturers to report actively exploited vulnerabilities to the European Union Agency for Cybersecurity (ENISA).
Senate Begins NDAA Debate, Cyber Amendments Await Possible Votes (MeriTalk) Senate Armed Services Committee Chairman Jack Reed, D-R.I., and Ranking Member Roger Wicker, R-Miss., opened Senate floor deliberation last week on the National Defense Authorization Act (NDAA) for fiscal year (FY) 2024.
Cyber Command nominee sets sights on powerful new budget authority (Federal News Network) The nominee to lead Cyber Command says the new authorities will put CYBERCOM on par with the likes of U.S. Special Operations Command.
White House Releases National Cybersecurity Strategy Implementation Plan (cyber/data/privacy insights) On July 13, 2023, the White House unveiled its National Cybersecurity Strategy Implementation Plan (NCSIP or implementation plan), following the release of the National Cybersecurity Strategy.The implementation plan identifies five pillars that align with the strategy:
Defending critical infrast
National Security Agency Director Appoints Nisha Morris as Chief, Strategic Communications (National Security Agency/Central Security Service) General Paul M. Nakasone, Director of the National Security Agency, announced today that Nisha Morris has been appointed as the NSA's Chief of Strategic Communications and Senior Executive Advisor to
Litigation, Investigation, and Law Enforcement
Defense Lawyers Push Judge to Reveal Secret Country that Helped FBI Wiretap the World (Vice) For the worldwide Operation Trojan Shield, the FBI secretly ran an encrypted phone company. Now defense teams are demanding the FBI reveal which unnamed third country helped intercept messages of their clients.
'Operation Cookie Monster': Dutch arrest their most-wanted suspect in cyber case (Reuters) Dutch police have arrested a man they described as their most wanted suspect in the investigation into the Genesis Market, a dark web marketplace for stolen computer credentials, shut down in a multi-national crackdown dubbed Operation Cookie Monster.
IRS needs better documentation for its cyber threat hunts, watchdog says (Nextgov.com) A new report noted that a lack of “established policies and procedures” could prevent the tax agency from meeting federal requirements.
Publishers want billions, not millions, from AI (Semafor) Barry Diller fired publishers’ opening shot at artificial intelligence platforms in a Semafor interview this April, suggesting they sue the companies that have trained models on their data.
U.S. intelligence agencies reviewing evidence in Discord leak case (Washington Post) The volume of classified material Jack Teixeira is alleged to have disclosed means he is unlikely to stand trial for many months
Mass. Air National Guard member expected to return to court in leaked document case (WCVB) His attorneys recently sought to have him released in an argument that includes comparing the case to that of former President Donald Trump.
US court orders law firm Covington to name some clients for SEC probe (Reuters) Covington & Burling must identify some clients caught up in a 2020 hack on the law firm to the U.S. Securities and Exchange Commission, a federal judge in Washington ruled on Monday in a case that could impact future cyberattack investigations.
Students were charged $10,000 to take the Caltech cybersecurity bootcamp. But the top-ranked school did not run the course, suit claims (Morningstar, Inc.) Caltech's program is one of many online partnerships between non-profit universities and for-profit companies that have come under scrutiny.