Dateline: Russia's hybrid war against Ukraine.
Ukraine at D+524: Targeting grain and dissent. (CyberWire) Russian missile strikes against civilian targets remain a defining feature of Moscow's war. New legislation foreshadows a crackdown on domestic dissent in Russia.
Russia-Ukraine war: List of key events, day 525 (Al Jazeera) These are the main developments as the Russian invasion of Ukraine enters its 525th day.
Russia-Ukraine war live: Russian strikes cause fire at grain store in Odesa after drones shot down over Kyiv (the Guardian) Russia attacks port and grain storage facilities in Izmail after drones downed during an overnight attack on Kyiv
Russia accuses Ukraine of a drone attack on Moscow that hit a building already struck just days ago (AP News) Russian authorities have accused Kyiv of yet another attack on Moscow and its surroundings with drones.
Drone hits tower housing Russian ministries for second time in three days (Reuters) A high-rise building in Moscow's business district that houses three Russian government ministries was struck by a drone for the second time in three days on Tuesday, in what Russia called an attempted Ukrainian "terrorist attack".
Drone attacks in Moscow’s glittering business district leave residents on edge (AP News) The glittering towers of the Moscow City business district were once symbols of the Russian capital's economic boom in the early 2000s.
Russia strikes Ukraine's Danube port, sending global grain prices higher (Reuters) Russia attacked Ukraine's main inland port across the Danube River from Romania on Wednesday, sending global food prices higher as it ramps up its use of force to reimpose a blockade.
Russia Strikes Ukrainian Port That’s Been Lifeline for Shipping (New York Times) Moscow hit Izmail, one of the small ports on the Danube River that are the only outlets for exporting grain by sea since Russia pulled out of the Black Sea deal.
'Nowhere to hide': The question troubling Ukrainian troops amid a grinding counteroffensive (CNN) The four roads of Staromaiorske appear almost ground to dust in the drone footage. It’s a tiny village, but as the latest gain of Ukraine’s renewed counteroffensive in the direction of Mariupol, Staromaiorske’s symbolism far outweighs its size.
Arsonists Attack 12 Military Consciption Centers Across Russia In One Day (RadioFreeEurope/RadioLiberty) Twelve arson attacks or attempted arson attacks on military conscription centers were registered across Russia in the last 24 hours, media reports said on August 1.
China restricts civilian drone exports, citing Ukraine and concern about military use (AP News) China has imposed restrictions on exports of long-range civilian drones, citing Russia’s war on Ukraine and concern drones might be converted to military use.
China bans export of drones rated too risky to fly (Register) Some say retaliation for sanctions, but Beijing says it just wants world peace
US Army readies new artillery strategy spurred by war in Ukraine (Defense News) The US Army will deliver a strategy for conventional fires on the battlefield by the end of the year.
()
Putin Outlaws Anonymity: Identity Verification For Online Services, VPN Bypass Advice a Crime (TorrentFreak) Putin has signed new laws that will decimate online anonymity by denying access to online services pending state-approved user ID checks.
Cyberattack on Norway Ministries Lasted at Least Four Months (Bloomberg) A cyberattack on Norway’s government ministries uncovered last week had exploited a vulnerability linked to mobile device management and lasted at least four months, according to Norwegian and US cybersecurity agencies.
Space Pirates Turn Cyber Sabers on Russian, Serbian Organizations (Dark Reading) The attackers have expanded beyond backdoors and recently started using Deed RAT to step up their attacks.
Kazakhstan Refuses To Extradite Russian IT Expert To U.S., Russian Diplomat Says (RadioFreeEurope/RadioLiberty) An official at the Russian General Consulate in Kazakhstan’s largest city, Almaty, said on August 1 that Kazakh authorities have decided not to extradite Russian IT expert Nikita Kislitsin to the United States.
Russia Is Returning to Its Totalitarian Past (Foreign Policy) A forever war in Ukraine comes with almost limitless possibilities to stifle dissent.
Zelenskyy advisor: Defeat in Ukraine will spark collapse of Putin regime (Atlantic Council) Ukrainian presidential advisor Mykhailo Podolyak says the Wagner mutiny has exposed Russia's internal weakness and predicts battlefield defeats in Ukraine will spark the collapse of the Putin regime, writes Peter Dickinson.
Ukraine is finally freeing itself from centuries of Russian imperialism (Atlantic Council) Vladimir Putin hoped his full-scale invasion of Ukraine would mark the dawn of a new Russian Empire. Instead, it has strengthened Ukraine's resolve to free itself from centuries of Russian imperialism, writes Taras Kuzio.
Ukraine’s plan if Russia assassinates Zelenskyy (POLITICO) A Russian assassination would deprive Ukraine’s war effort of one of its most valuable assets.
For these young soldiers, Ukraine has been at war for half their lives (Washington Post) The young drone squad barged into the base camp near here, boots thumping across the floor where other Ukrainian soldiers slept, as smartphones sounded a 3 a.m. wake-up call.
Ukraine’s Male-Only Travel Ban Is Also a Women’s Issue (World Politics Review) Ukraine’s martial law restrictions include a travel ban on most men. A new report shows Ukrainian women are most keen to see it lifted.
Danube Ports, a Lifeline for Ukraine, Come Under Russian Threat (New York Times) Since the collapse of the Black Sea grain deal two weeks ago, small ports on the Danube River are the only shipping outlet for millions of tons of grain.
Did Russia commit a war crime in leaving the Ukraine grain deal? (Atlantic Council) Read how Russian officials’ actions in withdrawing and enforcing the withdrawal from the Black Sea Grain Initiative might constitute a war crime or crime against humanity under international criminal law.
Attacks, Threats, and Vulnerabilities
China's APT31 Suspected in Attacks on Air-Gapped Systems in Eastern Europe (The Hacker News) China-linked cyber threat group APT31 strikes again! Last year, they targeted Eastern European industrial organizations to steal data from air-gapped
CISA and International Partner NCSC-NO Release Joint Cybersecurity Advisory on Threat Actors Exploiting Ivanti EPMM Vulnerabilities (Cybersecurity and Infrastructure Security Agency CISA) CISA and NCSC-NO warn organizations of active exploitation of vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM), CVE-2023-35078 and CVE-2023-35081. Read our joint advisory for details on threat and how you can protect your organization.
CISA issues new warning on actively exploited Ivanti MobileIron bugs (BleepingComputer) The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned today of state hackers exploiting two flaws in Ivanti's Endpoint Manager Mobile (EPMM), formerly MobileIron Core, since April.
EyeSpy Proof-of-Concept (HYAS) HYAS Labs releases EyeSpy, a proof-of-concept that introduces an entirely new type of fully autonomous, AI-synthesized, polymorphic malware.
Emerging Attacker Exploit: Microsoft Cross-Tenant Synchronization by Arpan Sarkar (Vectra) Vectra Research recently discovered a method for leveraging functionality newly-released by Microsoft to perform lateral movement to another Microsoft tenant. Vectra Research recently discovered a method for leveraging functionality newly-released by Microsoft to perform lateral movement to another Microsoft tenant.
European Bank Customers Targeted in SpyNote Android Trojan Campaign (The Hacker News) European banks and customers are under attack! The SpyNote Android banking trojan is on the loose, executing aggressive campaigns through phishing.
Researchers claim US-registered cloud host facilitated state-backed cyberattacks (TechCrunch) Researchers say a Tehran-linked cloud host provides service to dozens of state-sponsored hacking groups and commercial spyware operators.
US internet hosting company appears to facilitate global cybercrime, researchers say (CyberScoop) Cloudzy, an internet hosting company with a New York phone number, may aiding hackers from Iran, Russia and North Korea.
New WikiLoader malware targets Italian organizations (Record) Researchers at Proofpoint say the WikiLoader downloader has been aimed at organizations in Italy, to spread Ursnif malware and other malicious code.
2023 Not (Cyber) Safe For Work Report (Agency | Executive Cybersecurity) Learn How Executives’ Personal Devices Are Leaving Businesses Open to Cyber Attack. Agency has conducted a nationwide survey of executives about their experiences using personal devices for work and how their digital lives affect their company’s cybersecurity.
Threat actors abuse Google AMP for evasive phishing attacks (BleepingComputer) Security researchers are warning of increased phishing activity that abuses Google Accelerated Mobile Pages (AMP) to bypass email security measures and get to inboxes of enterprise employees.
Cybercriminals train AI chatbots for phishing, malware attacks (BleepingComputer) In the wake of WormGPT, a ChatGPT clone trained on malware-focused data, a new generative artificial intelligence hacking tool called FraudGPT has emerged, and at least another one is under development that is allegedly based on Google's AI experiment, Bard.
'DarkBERT' GPT-Based Malware Trains Up on the Entire Dark Web (Dark Reading) The DarkBART and DarkBERT cybercriminal chatbots, based on Google Bard, represent a major leap ahead for adversarial AI, including Google Lens integration for images and instant access to the whole of the cyber-underground knowledge base.
Amazon employees leak secret info that marketplace sellers can buy on Telegram (CNBC) Third-party merchants who have been suspended by Amazon can pay for confidential data to potentially help them get their accounts back up and running.
Thousands of B.C. health-care workers’ information exposed in data breach (Global News) Health officials say hackers accessed a server hosting thousands of people's sensitive data from several programs operated by the Health Employers Association of B.C. this month.
Cyberattack on B.C. health employer websites may have taken personal information (CBC News) Cyberattack targeted three websites recruiting health professionals to B.C.: Health Match B.C., Locums for Rural B.C. and the B.C. Care Aide & Community Health Worker Registry.
A bankrupt crypto firm tried to return funds — but customer data might’ve been stolen instead (The Verge) Voyager Digital may have suffered a hack.
Security Patches, Mitigations, and Software Updates
CISA Releases One Industrial Control Systems Advisory (Cybersecurity and Infrastructure Security Agency CISA) CISA released one Industrial Control Systems (ICS) advisory on August 1, 2023. This advisory provides timely information about current security issues, vulnerabilities, and exploits surrounding ICS.
ICSA-23-213-01 APSystems Altenergy Power Control
Trends
Quantum Tech Will Transform National Security. It’s Testing U.S. Alliances Now. (New York Times) A global race to harness the power of atoms for navigation, computing and encryption is pitting concerns over protectionism against the spirit of cooperation.
BlackBerry Global Threat Intelligence Report — August 2023 Edition (BlackBerry) This report by the BlackBerry Threat Research and Intelligence team provides the latest actionable and contextualized cyber intelligence to increase cyber resilience.
2023 TotalCloud Security Insights (Qualys) Download the 2023 TotalCloud Security Insights to better understand your organization’s needs for cloud security.
6th State of CCPA and CPRA Data Privacy Compliance Report Shows Companies’ Slow Positive Movement toward Compliance (CYTRIO) Only 13% of non-compliant companies in Q1 2022 moved to manual compliance status by Q2 2023 despite stringent CPRA enforcement beginning on July 1, 2023 BOSTON — Aug. 2, 2023 — CYTRIO, a next-generation data privacy compliance company, released its 6th State of CCPA & CPRA Privacy Rights Compliance report to understand how well U.S. […]
Cado Security Labs 2023 Threat Findings Report (Cado Security) The cloud has become an integral part of modern business, but with its increased adoption comes an increased risk of cyber attacks and breaches. Cado experts continuously track emerging cloud trends and this report delves deep into the noteworthy discoveries unveiled during the past year. The report covers:
Cyber Workforce Benchmark Report (Immersive Labs) Thank you for downloading the Cyber Workforce Benchmark Report! Download
New Abnormal Research Shows Increase in Apps Integrated with Email (Abnormal) Average organization integrates 379 third-party applications into email environment, while social engineering attacks like BEC also continue to grow
Sonar’s New Powerful Deep-Analysis Capability Finds Hidden Code Level Security Issues (Sonar) New innovation discovers vulnerabilities created by the interaction of source code with third-party libraries
Marketplace
DataTribe Insights - Q2 2023: Every Cyber Maverick Will Have Their Very Own Cyber Goose (DataTribe) It was quite an interesting quarter as the gloom wasn't as gloomy as many feared, but headwinds and disruption continue to test business models and entrepreneurial agility. The economy showed signs of inflation cooling, continued strong labor markets, and other positive trends.
T-Rex Acquires Cyber Cloud Technologies (Washington Executive) T-Rex Solutions announced its acquisition of Cyber Cloud Technologies, an IT services firm that provides enterprise IT services to the federal government.
Billionaire CEO of military technology supplier Palantir advocates for AI weapons: 'We must not grow complacent' (Business Insider) Alex Karp, the billionaire CEO of Palantir, wrote a New York Times op-ed advocating for deeper integration between AI and military systems.
Coalition hires Kyle Bryant from Resilience as head of international (The Insurer) Coalition has hired cyber executive Kyle Bryant from rival insurtech MGA Resilience as its new head of international, as the Joshua Motta-led firm plots further inte...
Cybersecurity Expert Jason Keirstead Joins Cyware as Vice President of Collective Threat Defense (Business Wire) Cyware, the leading provider of threat intelligence management, security collaboration, and cyber fusion solutions, is pleased to welcome security expert and industry leader Jason Keirstead as its new Vice President of Collective Threat Defense.
Products, Services, and Solutions
Infosec products of the month: July 2023 (Help Net Security) The featured infosec products this month are from: BreachRx, Code42, ComplyAdvantage, Darktrace, Dig Security, Diligent, and more.
DroneShield Launches Area-Specific Satellite Denial Systems (ASX release via Motley Fool Australia) DroneShield Ltd (ASX:DRO) (DroneShield or the Company) is pleased to announce launch and initial order from a Defence customer for its target area-specific Satellite Denial Systems.
Xtract One Technologies Selected by U.S. Department of Veteran Affairs to Secure All Entrances at Richmond VA Medical Center (GlobeNewswire News Room) Xtract One’s SmartGateway Solution Seeks to Optimize Security and Efficiency for Select VA Hospitals...
SSH Communications Security and Beyond Identity Announce Partnership to Improve Endpoint and Session Control Security (GlobeNewswire News Room) Helsinki, Finland – August 2, 2023 – SSH Communications Security and Beyond Identity have partnered to significantly enhance the security of the new...
Veridas Facial Biometrics Receives LenelS2 Factory Certification under the LenelS2 OpenAccess Alliance Program • Veridas (Veridas) Veridas Facial Biometrics Access Control interfaces with LenelS2’s OnGuard access control security system
ReliaQuest Advances Cybersecurity Capabilities for Global Enterprises through partnership with Google Cloud (Business Wire) ReliaQuest, the force multiplier for security operations, today announced it is partnering with Google Cloud to enhance cybersecurity for global enterprises.
Torq Hyperautomation Platform Transforms SecOps
With Torq Socrates, the Generative AI Agent
Designed to Close 90% of Tier-1 Tickets Autonomously (Torq) Torq Socrates delivers automated contextual alert triaging, incident investigation, and response, enabling security staff to focus on urgent matters and mitigating burnout New York, NY, August 2, 2023—Torq today announced...
Tanium Selected by DHS CISA to Join the Joint Cyber Defense Collaborative (Business Wire) Converged Endpoint Management leader joins technology collective in fight against national cybersecurity threats
Traceable AI Introduces Revolutionary Digital Fraud Prevention (Business Wire) Advanced API Security Solution Pioneers an Adaptive Approach to Combat Digital Fraud and API Abuse
The first risk-ranking solution to meet OWASP standards for API security (Wib) Wib announce launch of its a high-definition API risk management module that enables organizations to manage API risks with greater certainty
Technologies, Techniques, and Standards
US military targets deepfakes, misinformation with AI-powered tool (C4ISRNet) Discerning fact from fiction is vital to military operations. The task is increasingly complex as bad information floods social media and other channels.
Design and Innovation
Hacking group plans system to encrypt social media and other apps (Washington Post) Cult of the Dead Cow is a hacker collective whose members at one time included Texas politician Beto O’Rourke
The Ugly Honesty of Elon Musk’s Twitter Rebrand (The Atlantic) The platform’s new logo seems a little juvenile. So does the internet.
Academia
Pearson Offers New AI Study Tools in Time for Back-to-School (Bloomberg) ChatGPT-style features will be added to Pearson+ and Mastering. New AI tools will not give students a ‘shortcut to an answer’.
Legislation, Policy, and Regulation
Senegal shuts off mobile internet after arrest of opposition leader (Record) The government of Senegal shut off mobile internet across the country on Monday following the arrest of opposition leader Ousmane Sonko.
UK intelligence agencies lobbying the government to weaken surveillance laws for AI, report (Computing) UK intelligence agencies, including GCHQ, MI5 and MI6, are seeking changes to surveillance laws that they feel restrict their ability to train AI models using extensive sets of personal data.
Australian Senate committee recommends government ban on TikTok be extended to WeChat (AP News) An Australian Senate committee has recommended a ban on the Chinese-owned video-sharing app TikTok from federal government devices be extended to China’s most popular social media platform, WeChat.
White House Cyber Workforce Strategy: No Quick Fix for Skills Shortage (Dark Reading) A lot of what the strategy proposes is well-intentioned but somewhat aspirational at the moment, industry experts say.
Cyber workforce strategy requires buy-in across sectors, experts say (Nextgov.com) The new strategy released this week looks to address longstanding challenges in the cyber workforce – but it will require extensive cooperation from the private sector and academia to be successful, experts told Nextgov/FCW.
Biden Cracks Down on the Spyware Scourge (Foreign Policy) But Europe and Israel have yet to take surveillance abuses seriously.
Materiality Definition Seen as Tough Task in New SEC Cyber Rules (Wall Street Journal) Companies must have clearly defined processes for evaluating the impact of a cyberattack.
Why the California Delete Act Matters (Dark Reading) Bill 362 is a perfect template for a nationwide win against data brokers and the privacy infringements they cause.
Coast Guard 2003 Cyber Protection Team establishes new command (United States Coast Guard News) The 2003 Cyber Protection Team (CPT) was established, Tuesday, at Coast Guard Island as the third CPT command and unit in an ceremony held by Coast Guard Cyber Command (CGCYBER). Vice
Litigation, Investigation, and Law Enforcement
Meta starts blocking news in Canada over law on paying publishers (Reuters) Meta Platforms has begun the process to end access to news on Facebook and Instagram for all users in Canada, it said on Tuesday, in response to law requiring internet giants to pay news publishers.
WSJ News Exclusive | Meta Offers to Seek Consent for Highly Personalized Ads in Europe (Wall Street Journal) Under pressure from privacy regulators, Meta Platforms has proposed asking all users in Europe to decide whether they would like to see ads targeted based on how they interact with its apps.
Data breach at Department of Education traced back to now-resigned employee - The Daily Independent at YourValley.net (The Daily Independent at YourValley.net) A data breach that allowed a parent to see information about other parents getting vouchers can be traced back to the actions of a now-resigned employee of the state Department of Education, according to a new report.
SolarWinds’ $26 Million Deal in Russian-Hack Suit Gets Final Nod (Bloomberg Law) SolarWinds Corp. will pay $26 million to settle an investor suit alleging it failed to disclose security vulnerabilities before a massive cyberattack, under an agreement given final approval by a federal court.
Lawsuit: ByteDance’s CapCut app secretly reaps massive amounts of user data (Record) CapCut, a sister app of TikTok, does not properly notify its users of its data practices and does not ask them for consent, according to a class action lawsuit filed under Illinois' BIPA law.