Dateline: Russia's hybrid war against Ukraine.
Ukraine at D+529: Ukraine's view of the war's cyber phases. (CyberWire) As Moscow and Kyiv exchange drone strikes, the head of Ukraine's State Special Communications Service assesses the progress of the cyber phases of the war.
Russia-Ukraine war: List of key events, day 530 (Al Jazeera) These are the main developments as the Russian invasion of Ukraine enters its 530th day.
Russia-Ukraine war at a glance: what we know on day 530 of the invasion (the Guardian) 22 Ukrainian prisoners of war released by Russia; three killed in overnight Russian strikes
Russia mounts a massive missile and drone attack against Ukraine (Military Times) The Russian barrage came after a Ukrainian drone attack on a Russian tanker in the Black Sea near Crimea late Friday.
Russia-Ukraine war at a glance: what we know on day 529 of the invasion (the Guardian) Zelenskiy condemns attack on blood transfusion centre as ‘war crime’; Moscow vows retaliation over strike on Russian tanker in Kerch Strait
Ukraine live briefing: Russia strikes Ukrainian air bases; Zelensky condemns attack on blood transfusion center (Washington Post) A barrage of Russian missiles targeted two air bases in western Ukraine at night, Russia’s Defense Ministry said Sunday morning, in Starokonstantinov, in the Khmelnitsky region, and Dubno, in the Rivne region, the ministry said. A spokesman for Ukraine’s Air Force, Yuriy Ignat, said Russia hit Starokonstantinov Air Base, where Kyiv keeps Su-24 bombers that can launch Storm Shadow cruise missiles provided by Britain, but he did not mention another attack.
Russia-Ukraine war live: Ukraine detains informer accused of helping Russia plot attack on Zelenskiy, says security service (the Guardian) SBU security service says detained woman was gathering intelligence on Ukrainian president’s itinerary as he visited Mykolaiv region
Moscow targets Kharkiv region in effort to regain ground from Ukrainians (the Guardian) Russia seeks to exploit situation as Kyiv’s counteroffensive concentrates on south and east of country
Putin’s Forever War (New York Times) Vladimir Putin wants to lead Russians into a civilizational conflict with the West far larger than Ukraine. Will they follow him?
Kremlin Spokesman Calls Presidential Election 'Costly Bureaucracy' In Rare Honest Assessment (RadioFreeEurope/RadioLiberty) Kremlin spokesman Dmitry Peskov appeared to disparage the state of Russian democracy, a rare honest assessment from a man who has spent years spinning truths about elections and freedom at home.
The state of Ukraine's counter-offensive (The Telegraph) Ukrainian planners will need to keep in mind the old military maxim: never forget the enemy gets a vote
Ukrainian Drone Attacks Against Russia Increase As Zelenskiy Hints At Change In Tactics (RadioFreeEurope/RadioLiberty) Ukraine has been stepping up small-scale drone attacks inside Russia recently, raising questions about whether Kyiv has made significant advances in homegrown technology and if it's on the road toward carrying out bigger attacks in the near future, analysts say.
Ukraine Says Its Drones Increasingly Accurate After Second Russian Ship Damaged By Explosion (RadioFreeEurope/RadioLiberty) Ukraine has warned Russia that its drones are becoming increasingly accurate after an oil tanker became the second Russian vessel to be damaged in two days in what Moscow said was a Ukrainian drone attack overnight in the Kerch Strait, close to a bridge that links Moscow-occupied Crimea with Russia.
Russia-Ukraine war live: Moscow promises retaliation over tanker attack (the Guardian) Ukrainian drone said to have struck ship in Kerch Strait just one day after Russian Black Sea fleet vessel hit
Russian troops unable to penetrate Ukraine’s defense lines - Estonian intelligence (Ukrinform) In the near future, the Russian armed forces will not be able to make a decisive breakthrough in the Ukrainian defense so they are trying to exhaust Ukraine’s economy and population by missile and drone strikes. — Ukrinform.
The state of Ukraine's counter-offensive (The Telegraph) Ukrainian planners will need to keep in mind the old military maxim: never forget the enemy gets a vote
Ukraine-Russia war latest: Kremlin 'plotting false flag attack at Belarus refinery' (The Telegraph) Ukraine’s security service accused Russia of preparing to stage a “false flag” attack at an oil refinery in Belarus as part of an effort to draw Minsk into the war.
UN nuclear watchdog finds no explosives at Zaporizhzhia plant (the Guardian) Experts given access to two units at Russian-held site month after Ukraine claimed there were devices on roofs
Ukraine’s elite forces rely on technology to strike behind enemy lines (Washington Post) Some of Ukraine’s most elite special forces are now operating slightly back from the front line — with virtual-reality glasses that give a drone’s-eye view.
Member Of German Ruling Party Calls For Giving Ukraine Long-Range Missiles (RadioFreeEurope/RadioLiberty) A member of German Chancellor Olaf Sholtz's ruling party has for the first time called for Berlin to supply Ukraine with long-range cruise missiles.
Russia Is Now Arming Citizen Militias Along Ukraine Border (The New York Sun) Regional governors are handing over machine guns and SUVs to Russian volunteers as cross-border attacks multiply.
An Enduring Coalition to Protect Ukraine (Foreign Affairs) How to keep the country safe without NATO membership.
Zelenskiy Urges Saudi Summit Attendees To Ensure 'Rules-Based' International Order (RadioFreeEurope/RadioLiberty) From afar, Ukrainian President Volodymyr Zelenskiy in his nightly video address called on global representatives gathered in Saudi Araba for a summit on the Ukraine war to ensure that rules-based international order be maintained, even in the face of disagreements over other world affairs.
China ‘backs further Ukraine peace talks’ after Saudi Arabia summit (the Guardian) Senior officials from about 40 countries met in Jeddah in attempt to draft key principles on ending war
Cracks in the BRICS as Putin’s Legal Exposure Grows (Wilson Center) President Putin’s decision to skip the annual BRICS meeting in South Africa last week was greeted with resignation in Moscow and seeming relief in Johannesburg. Putin delayed this decision to the last minute; Russia is a founding member and one of the organization’s strongest supporters, so it was quite clear that Putin wanted to go. There was only one hitch: if Putin went to South Africa, he would have to be arrested.
Japan, on Hiroshima bombing anniversary, decries Russia’s ‘nuclear threat’ (Washington Post) On Aug. 6, 1945, the United States dropped an atomic bomb on the Japanese city of Hiroshima, followed three days later by another one on Nagasaki. The world’s first — and so far only — wartime atomic bombings remain seared in the minds of all those alive at the time and are often invoked as reminders of the disastrous consequences of nuclear armament.
Putin Signs Decree Criminalizing Working With Unregistered NGOs (RadioFreeEurope/RadioLiberty) Russian President Vladimir Putin signed a decree on August 4 that introduces penalties for people who work with unregistered international or nongovernmental organizations.
Ukraine may be winning ‘world’s first cyberwar’ (The Kyiv Independent) For Ukraine's main cybersecurity agency, Russia's full-scale war began over a month before Russian tanks rolled into Ukraine from all directions – with a large cyber attack on Jan. 14, 2022.
"It all started with an attack on state authorities, it was the largest attack in 17 years," says Yurii Shchyhol,
UK spy chief says Putin is losing information war in Ukraine — The Economist (Arab News) Get the latest breaking news and headlines from the largest Arab News website. Get world news, sport news, business news, entertainment, lifestyle, video and photos.
Mercenaries prowl cyber grey zone as new dimension emerges in espionage (South China Morning Post) Cyber mercenaries have been expanding their footprint to take advantage of a larger market for spyware and cyber-offensive operations.
The number of ransomware attacks targeting Finland increased fourfold since it started the process to join NATO (Security Affairs) Senior official reports a quadruple increase in ransomware attacks against Finland since it started the process to join NATO. The number of ransomware attacks targeting Finland has increased fourfold since the country began the process of joining NATO in 2023. The news was reported by Recorded Future News which interviewed Sauli Pahlman, the deputy director […]
Russia spreading false claims about Qur’an burnings to harm Nato bid, says Sweden (the Guardian) Defence agency says Moscow is using the protests in Stockholm to stir tensions between Arab countries and the west
Apple has removed Meduza’s flagship news podcast ‘What Happened’ from Apple Podcasts, without explaining the reason (Meduza) Meduza has received a notice from Apple, informing our media that our flagship podcast “What Happened” has been removed from the Apple Podcasts streaming platform.
Rights Watchdog Calls For Probe Of Deadly Attack On Ukrainian Town Citing Evidence Of Cluster Munitions (RadioFreeEurope/RadioLiberty) Human Rights Watch (HRW) has called for an investigation into an attack last month on the Ukrainian town of Lyman that killed nine people and injured a dozen others, saying the apparent use of cluster munitions in the attack make it a possible war crime.
Ukraine replaces Soviet symbol on Motherland monument in Kyiv (the Guardian) National trident has replaced the Soviet Union’s hammer and sickle on the shield of 62-metre tall monument
In war against its Soviet past, Ukraine refaces towering Kyiv monument (Washington Post) A Kyiv monument traded a 42-year-old Soviet coat of arms for a modern trident Sunday, a swap that exemplifies the war-torn country’s fight against the 21st-century Russian army and the vestiges of Ukraine’s Soviet past.
Attacks, Threats, and Vulnerabilities
Exclusive: North Korean hackers breached top Russian missile maker (Reuters) An elite group of North Korean hackers secretly breached computer networks at a major Russian missile developer for at least five months last year, according to technical evidence reviewed by Reuters and analysis by security researchers.
North Korean hackers stole secrets of Russian hypersonic missile maker (Euractiv) An elite group of North Korean hackers secretly breached computer networks at a major Russian missile developer for at least five months last year, according to technical evidence reviewed by Reuters and analysis by security researchers.
Comrades in Arms? | North Korea Compromises Sanctioned Russian Missile Engineering Company (SentinelOne) North Korean threat actors attempt to further missile program by compromising sanctioned Russian defense company with OpenCarrot backdoor.
Bangladesh hacktivists focus DDoS attacks and data breaches on India: Report (India TV News) The hacktivist group known as Mysterious Team Bangladesh has been revealed as responsible for more than 750 distributed denial-of-service (DDoS) attacks and 78 website defacements since June 2022. The group primarily targets government, financial, and transportation sector entities.
Hackers out to hit BD, Pak cyberspace (The Financial Express) A cybersecurity alert was issued on Friday after a group of hackers, calling themselves hacktivists from India, threatened to attack the cyberspace of Bangladesh and Pakistan in mid-August.
The hacktivists cited August 15, the National Mourning Day, as the date for their possible attack, according
Researchers Uncover a New Sophisticated Malware Attacking Air-Gapped ICS Systems (Cyber Security News) ICS security teams are actively fighting against a worm that is breaching and compromising the defense mechanisms of the air-gapped systems.
UPDATE: Cloudzy Command and Control Provider Report (Halcyon) Halcyon Blog Post: Response to the Cloudzy C2P report from the security community has been tremendous with more intelligence coming in daily - here’s a few items of particular interest...
Researchers Uncover New High-Severity Vulnerability in PaperCut Software (The Hacker News) High-severity security flaw in PaperCut print management software for Windows! CVE-2023-39143 enables remote code execution.
Reptile Rootkit: Advanced Linux Malware Targeting South Korean Systems (The Hacker News) Threat actors are targeting Linux systems in South Korea using the open-source rootkit Reptile.
Hackers Deliver Updated STRRAT Malware Using Weaponized PDF Files (Hacker News) A versatile Java-based RAT that is capable of keylogging and credential theft from browsers and email clients emerged in 2020 that is dubbed "STRRAT."
FBI warns of scammers posing as NFT devs to steal your crypto (BleepingComputer) The FBI warned today of fraudsters posing as Non-Fungible Token (NFT) developers to prey upon NFT enthusiasts and steal their cryptocurrency and NFT assets.
Clop ransomware now uses torrents to leak data and evade takedowns (BleepingComputer) The Clop ransomware gang has once again altered extortion tactics and is now using torrents to leak data stolen in MOVEit attacks.
Criminals Have Created Their Own ChatGPT Clones (WIRED) Cybercriminals are touting large language models that could help them with phishing or creating malware. But the AI chatbots could just be their own kind of scam.
Tesla infotainment jailbreak unlocks paid features, extracts secrets (BleepingComputer) Researchers from the Technical University of Berlin have developed a method to hack the AMD-based infotainment systems used in all recent Tesla car models and make it run any software they choose, aka achieve 'jailbreak.'
CISA Calls Urgent Attention to UEFI Attack Surfaces (SecurityWeek) The US government's cybersecurity agency describes UEFI as "critical attack surface" that requires urgent security attention.
New acoustic attack steals data from keystrokes with 95% accuracy (BleepingComputer) A team of researchers from British universities has trained a deep learning model that can steal data from keyboard keystrokes recorded using a microphone with an accuracy of 95%.
Colorado Department of Higher Education warns of massive data breach (BleepingComputer) The Colorado Department of Higher Education (CDHE) discloses a massive data breach impacting students, past students, and teachers after suffering a ransomware attack in June.
Cyberattack may have compromised data of students who attended Colorado’s public high schools, colleges (The Denver Post) The Colorado Department of Higher Education announced Friday that a cybersecurity breach may have resulted in the theft of personal information from anyone who attended a public high school, colleg…
Massive data breach could impact many who attended or worked for public schools in Colorado (KKTV) A news release issued by the Colorado Department of Higher Education is notifying the public of a “data incident.”
A cyberattack has disrupted hospitals and health care in several states (AP News) A cyberattack has affected computers at hospitals in multiple states, forcing some emergency rooms to close and ambulances to be diverted.
Dallas Ransomware Attack May Have Compromised Names, SSNs (GovTech) The city issued a formal notice for the first time about potential data being exposed since detecting the ransomware attack by hacking group Royal. Officials say the data of “certain individuals” was accessed by the group.
Aristocrat confirms employee data stolen in recent cyber attack (IAG) Global gaming giant Aristocrat has revealed it was the victim of a cyber attack earlier this year by which the
Cyber-attack to cost outsourcing firm Capita up to £25m (the Guardian) Group, which runs services for NHS, councils and military, reports loss of almost £68m for first half of year
Security Patches, Mitigations, and Software Updates
TikTok unveils new measures ahead of EU Digital Services Act (Reuters) Chinese-owned social media platform TikTok has announced a raft of new features for European users aimed at improving compliance with incoming European Union regulations.
Microsoft fixed a flaw in Power Platform after being criticized (Security Affairs) Microsoft announced it has addressed a critical flaw in its Power Platform after it was criticized for the delay in fixing the issue. Microsoft this week addressed a critical vulnerability in its Power Platform, after it was criticized for the delay in acting to secure its platform. On 30 March 2023, the vulnerability was reported to Microsoft […]
Google makes removal of personal user info from Search easier (Help Net Security) Google has improvemed its feature in Google Search that allows users to remove personal contact information from search results.
Trends
National Risk Register 2023 edition (HM Government) The UK is facing an ever-changing and growing set of risks. Even in the 3 years since we published our last National Risk Register in 2020, we have seen the barbaric invasion of Ukraine by Russia, the wide-ranging and long-lasting effects of the COVID-19 pandemic, and the increasing impact of climate change on our day-to-day lives. Technologies such as artificial intelligence (AI) are transforming our world – bringing with them opportunities, but also a number of risks.
Our cyberspace invaders: Why nobody can seem to solve Canada’s massive hacking problem (The Globe and Mail) Hackers today are one step ahead of everyone else – large firms with big budgets, the brightest minds in cybersecurity, government bodies and police. Fighting back is one thing, but do we even know who these criminals are, or how they operate?
2023 Ransomware Flashcard Black Hat Edition (Lumu Technologies) The 2023 Ransomware Flashcard Black Hat Edition brings you an infographic snapshot of how Ransomware is becoming bolder in 2023
Cybersecurity A Major Vulnerability In The Not For Profit Sector (Scoop News) Grant Thornton New Zealand’s latest Not for Profit report reveals some alarming statistics about cybersecurity practices in the sector. As phishing attempts and ransomware attacks show no signs of abating in all sectors of the economy, Grant ...
FortiGuard Labs: Organizations Detecting Ransomware Decline as the Volume and Impact of Targeted Attacks Continue to Rise (Fortinet) Top-ranked vulnerabilities are 327x more likely to be attacked within one week of being published compared to all other Common Vulnerabilities and Exposures
Marketplace
Polish spyware maker closes doors after being hacked (Computing) Computing is the leading information resource for UK technology decision makers, providing the latest market news and hard-hitting opinion.
Endor Labs raises $70M in series A funding to reform application security (Endor Labs) Endor Labs raises a total of $70M to achieve application security without the developer productivity tax. Here's what we're doing, and where we're going.
Tromzo Raises $8M to Bring Deep Environmental Context to Application Security Posture Management (Newswire) Leading Security and Development Teams Use Tromzo to Prioritize and Remediate the Risks That Truly Matter From Code to Cloud
Resilience Raises $100MM Series D Round, Led by Intact Ventures with Participation from Lightspeed Venture Partners (GlobeNewswire News Room) New funding will accelerate adoption of new Resilience Solution and expansion across Europe...
WSJ News Exclusive | Cyber Insurer Resilience Secures $100 Million in Funding (Wall Street Journal) Resilience Cyber Insurance Solutions has completed a Series D funding round, raising $100 million as startup cyber insurance companies continue to attract investment.
Centric Consulting Acquires Cyber Risk Management Firm The Mako Group (GlobeNewswire News Room) The cybersecurity expertise of The Mako Group deepens Centric Consulting’s capabilities and enhances its ability to deliver comprehensive solutions....
T-Rex Solutions Acquires Government IT Provider Cyber Cloud Technologies - ChannelE2E: Technology News for MSPs & Channel Partners (ChannelE2E) T-Rex Solutions has acquired Cyber Cloud Technologies, an IT services firm that provides enterprise IT services to the federal government.
ParaFlare joins Deloitte Australia to fight cyber threats (Paypers) Deloitte has joined forces with cybersecurity company ParaFlare to fight against the growing cyber threat faced by Australia.
Cequence Security Achieves 555% Growth in Customer Expansion in Second Half of FY23 (Business Wire) Strategic investments, product innovations and geographic expansion strengthen company’s position in API security market
Next-gen weapons, cyber contract for U.S. Air Force won by IERUS Technologies (Military Embedded Systems) IERUS Technologies has won a contract under the TETRAS II program from the Air Force Test Center that involves advancing weapons and cyber systems, the company announced in a statement.
Tysons tech startup Qomplx lays off 60 employees (Washington Business Journal) The company founded by two military veterans had planned to go public via a SPAC merger, but that deal fell through.
Why French Defense Giant Thales is Betting Big on Cybersecurity (Infosecurity Magazine) Thales explains why it has dropped $3.6 billion on a deal to acquire Imperva and expand its cybersecurity offering
Fortinet leads cybersecurity stocks sharply lower after warning of deal delays (MarketWatch) Fortinet saw an "unusually large volume of deals" pushed out beyond the June quarter, its chief financial officer said Thursday.
‘Tidal Wave’ of Down Rounds Hits Startups (The Information) Turntide Technologies, a maker of electric motor systems backed by Bill Gates–founded Breakthrough Energy Ventures, was one of the more than 300 private companies that passed the $1 billion valuation threshold last year, putting it firmly into unicorn status. It’s not worth close to that ...
Why cybersecurity vendors are selling tech stack consolidation with Zero Trust Edge (VentureBeat) Organizations have become too complacent with legacy IAM, VPN, and perimeter-based network security systems. Zero trust edge (ZTE) can help.
ZeroFox Announces New Appointments to its Board of Directors (GlobeNewswire News Room) Technology veterans Paul Hooper, Barbara Stewart, and Teresa Shea bring extensive technology and business expertise to ZeroFox’s Board of Directors...
RedSeal Appoints Gregory Enriquez as CEO (CIOReview) RedSeal Appoints Gregory Enriquez as CEO By Cio Review - RedSeal CEO Enriquez will lead the company's on-premises and cloud network security offerings for government agencies and...
Securonix Appoints Paul Gregory as Chief People and Culture Officer (Business Wire) Global HR Executive Brings Three Decades of Talent Acquisition and Team Building Success at High-Growth Enterprise Software Organizations to Unified Defense SIEM Leader
National Cybersecurity Center Announces New Chief Operations Officer (COO) Scott Sage (National Cybersecurity Center) Colorado Springs, CO – August 7th, 2023 The National Cybersecurity Center (NCC) welcomes Scott Sage as the new Chief Operations Officer (COO). As a visionary cyber and space professional with a passion for solving complex problems, Scott Sage will help propel the NCC forward as it builds a collaborative, operational and interdisciplinary model for cybersecurity […]
Products, Services, and Solutions
Building With Endor Labs—Application Security For All - Lightspeed Venture Partners (Lightspeed Venture Partners)
Deepfence ThreatStryker offers runtime protection and inline threat neutralization (Help Net Security) Deepfence extended the feature set of ThreatStryker with eBPFGuard technology to offer runtime protection and inline threat neutralization.
Adlumin Makes Cybersecurity Incident Response Attainable and Affordable for Small and Mid-Sized Organizations with Launch of New Service (Adlumin SaaS Security) Learn how Adlumin makes cybersecurity Incident Response attainable and affordable for small and mid-sized organizations.
Lumu Launches New Threat Hunting Capabilities to Help Cybersecurity Teams Defend Their Organizations (ACCESSWIRE News Room) Lumu for Threat Hunting will enhance threat hunting efficiencies and practices for cybersecurity professionals
Silobreaker Introduces Innovative Risk Scoring Features to Help Threat Intel Teams Assess and Prioritise Threats Faster (Business Wire) Silobreaker, a leading security and threat intelligence technology company, today announced innovative new risk scoring capabilities to help threat intel teams better understand, categorise and prioritise the cybersecurity risks facing their organisations.
Netography to Showcase Cloud-Native Network Defense Platform at Black Hat USA (Netography) As network security shifts to the cloud, Netography delivers first platform to address the entire network – cloud, on-prem, and the apps and data that reside on both
Technologies, Techniques, and Standards
US ‘lagging behind’ on Border Gateway Protocol security practices, CISA and FCC chiefs say (Record) The U.S. government is lagging behind other countries in instituting more stringent cybersecurity measures governing Border Gateway Protocol (BGP) – a set of technical rules responsible for routing data efficiently.
Council Post: Addressing Cyberthreats Starts By Looking Inward (Forbes) The threat landscape is evolving into a shared responsibility between information security and human resources.
Council Post: How SMBs Can Navigate The Data Security And Privacy Implications Of Generative AI (Forbes) Maintaining compliance with data privacy requirements is an area of concern when it comes to generative AI.
Design and Innovation
‘Not Everyone Is Trying to Build God’: Runway CEO Cristóbal Valenzuela Tries to Dampen the Doomerism (The Information) It might have been a moment lost in translation, or perhaps a willful reinterpretation, but when I asked Cristóbal Valenzuela who in the tech world inspires him most, he named a Chilean poet. “Nicanor Parra came up with this idea of ‘anti-poetry,’” explained Valenzuela, co-founder and CEO of ...
Research and Development
Department of Energy Announces $40 Million for Research on Distributed Resilient Systems for Science (Newswire) Today, the U.S. Department of Energy (DOE) announced $40 million in funding for five collaborative projects in distributed resilient systems for science.
Academia
$2.2M Grant to UC Berkeley Will Help Drive Google.org’s $20M+ Investment in Consortium of Cybersecurity Clinics (CLTC UC Berkeley Center for Long-Term Cybersecurity) The Center for Long-Term Cybersecurity (CLTC) has received a $2.2 million grant as part of the Google Cybersecurity Clinics Fund, a multi-million dollar initiative launched by Google.org to expand…
Researcher Explores Effect of Hospital Mergers on Data Breaches (University of Texas at Dallas News Center) The period during and after hospital mergers and acquisitions is an especially vulnerable time for patient data when the chance of a cybersecurity breach more than doubles, according to research by a University of Texas at Dallas doctoral student. Just the announcement of a merger is enough to trigger increased data breaches, said Nan Clement, [...]Read More...
JCSU earns $1 million grant from US Homeland Security (Charlotte Post) Funds for development of cybersecurity and disaster management
Law students rise to Legal Eagle cybersecurity challenge (Law.asia) Young talent rose to the Singapore Corporate Counsel Association (SCCA) Legal Eagle Challenge on 29 July for the fourth year
Legislation, Policy, and Regulation
Election Interference Demands a Collective Defense (Foreign Affairs) How Democracies Can Fight Back Against Foreign Meddling.
Germany’s spy agencies need to be more like the US and UK (The Telegraph) EU superpower’s inefficient intelligence community is a ‘sprawling bureaucracy of control’, two former chiefs insist
Don’t ban paying cyber ransoms, ex-US spy chief warns Australia (Australian Financial Review) Former US National Security Agency director and cyber chief Michael Rogers has called for a shift in thinking on cyberattacks.
UK calls artificial intelligence a “chronic risk” to its national security (CSO Online) The National Risk Register officially classes AI as a long-term security threat to the UK’s safety and critical systems.
China Issues Measures on Generative Artificial Intelligence Services (cyber/data/privacy insights) On July 13, 2023, the Cyberspace Administration of China (CAC) and six other Chinese government agencies jointly released the final version of the Interim Administrative Measures for Generative Artificial Intelligence Services (see the Chinese version here). These measures will enter into force on A
CISA Releases its Cybersecurity Strategic Plan (Cybersecurity and Infrastructure Security Agency CISA) Today, CISA released a strategic plan to lay out how we will fulfill our cybersecurity mission over the next three years. The CISA Cybersecurity Strategic Plan aligns the following nine objectives to specific enabling measures and measures of effectiveness to drive accountability...
CISA Cybersecurity Strategic Plan (Cybersecurity and Infrastructure Security Agency CISA) The FY2024-2026 Cybersecurity Strategic Plan guides CISA’s efforts in pursuit of a new vision for cybersecurity: a vision grounded in collaboration, in innovation, and in accountability.
The next step in CISA’s maturity is its new cyber strategic plan (Federal News Network) Eric Goldstein, CISA’s executive assistant director for cybersecurity, said the agency’s first-ever cybersecurity strategic plan features three main goals and 30 measures of effectiveness.
Biden-Harris Administration Launches New Efforts to Strengthen America’s K-12 Schools’ Cybersecurity (The White House) Biden-Harris Administration is announcing new actions and private commitments to bolster the nation’s cyber defense at schools and protect hard-working American families Administration leaders, school administrators, educators, and education technology providers will convene at the White House to discuss how to strengthen the nation’s schools’ cybersecurity amidst growing ransomware attacks The United States has experienced…
White House to roll out array of cyber initiatives to bolster K-12 defenses (Record) The Biden administration on Monday will announce a host of federal and private industry initiatives to strengthen the digital defenses of K-12 schools as educators across the country scramble for resources to fight a rising tide of cyberattacks.
Biden Administration Looks At Harmonizing Cyber Regulations Amidst Flurry Of New Activity - Security - United States (Mondaq) Cybersecurity continues to be top of mind for federal and state policymakers. This advisory identifies and analyzes some major recent developments that present opportunities and challenges...
The Ghost of Privacy Past Haunts the Senate’s AI Future (WIRED) The US Congress is trying to tame the rapid rise of artificial intelligence. But senators’ failure to tackle privacy reform is making the task a nightmare.
Key House Republican Wants to Split Leadership of NSA, Military Cyber Force (The Messenger) House Intelligence Committee Chairman Mike Turner also says the Biden administration is leaving the country vulnerable by shying away from more aggressive hacking operations
Space Force intel focus: 50% on China; 25% on Russia (Breaking Defense) China's "space weaponry" arsenal "includes missiles that launch from the Earth that go up and destroy satellites, it includes lasers, it includes jammers, it includes a whole magazine of diversity for that," a top Space Force officer said.
FCC Starts Inquiry Into Spectrum Usage and Data (Via Satellite) The FCC is kicking off an inquiry into non-federal spectrum usage, particularly how new data sources and technologies like AI can aid with spectrum
Dr. Daniel J. “Rags” Ragsdale Tapped for Senior Role in White House Office of the National Cyber Director (GlobeNewswire News Room) 40-year DOD, DARPA, and Military Veteran Returns to Government Service as Deputy Assistant Director...
Litigation, Investigation, and Law Enforcement
WSJ News Exclusive | Crypto Heists Funneling Billions to North Korea’s Nuclear Program Attract Senate Scrutiny (Wall Street Journal) Three Democratic senators are pressing the Biden administration for more information about its efforts to counteract Pyongyang’s reliance on stolen cryptocurrency to fund its nuclear program.
Lina vs. the Dark Arts: The FTC Wants Big Tech to Know It’s Watching (The Information) Lina Khan was hauled before the House Judiciary Committee one morning in mid-July to discuss a favorite Republican topic of the moment: the 34-year-old chair’s supposed mishandling of the Federal Trade Commission and its $430 million budget. Seated at the sprawling witness table next to a bevy ...
FBI investigating ransomware attack crippling hospitals across 4 states (Record) Services at hospitals in Connecticut, California, Pennsylvania and Rhode Island have been disrupted in the cyberattack.
Worldcoin just officially launched. Here’s why it’s already being investigated. (MIT Technology Review) The project is backed by some of tech's biggest stars, but four countries are probing its privacy practices.
I-Team: Feds investigating Johns Hopkins Health System data breach (WBAL) Federal officials are now investigating a data breach in which personal information was compromised in Baltimore.
Teen Gamers Swiped $24 Million in Crypto, Then Turned on Each Other (Bloomberg) Michael Terpin lost a fortune to a phone “SIM swap.” When he went to war to get it back, he found some surprising allies.
Crypto scheme bilks Eden Prairie couple out of $9 million in unprecedented Minnesota fraud case (Star Tribune) Police say the 21 transactions the man believed would yield big returns went from routinely topping $100,000 to $2.1 million in a single transaction.
Love Hurts: Minnesota Man Loses Over $9 Million in a Crypto Romance Scam: Report (CryptoPotato) Instead of leaving his wife and getting rich overnight via investing in a suspicious crypto project, the victim ended up losing $9.2 million.