Dateline: Russia's hybrid war against Ukraine.
Ukraine at D+536: Fighting east of the Dnipro. (CyberWire) Ukrainian forces expand their presence on the eastern bank of the Dnipro. Russian strikes hit more civilian targets.
7 killed in Ukraine’s Kherson region, including a 23-day-old baby girl (Military Times) In Russia, local officials reported that on Sunday air defense systems shot down four drones in regions bordering Ukraine.
Russia-Ukraine war: List of key events, day 537 (Al Jazeera) These are the main developments as the Russian invasion of Ukraine enters its 537th day.
Russia sent a message to Turkey when it bombed Motor Sich, say experts (Defense News) The Turkish company Baykar builds the Akinci and Kizilelma drones, for which Motor Sich provides engines.
Russia launches its offensive with all eyes on Ukraine’s southern push (TheHill) With the world’s attention on Ukraine’s counteroffensive in the south, Russia has quietly launched a new offensive in the eastern Luhansk region, which analysts say is aimed at undermining the Ukrainian operation.
Seven dead and 39 injured as Russian missile strikes hit eastern Ukrainian city centre (TheJournal.ie) The dead were five civilians, one rescuer and one soldier, Donetsk governor Pavlo Kyrylenko said.
Ukraine fires missiles at Kerch Bridge connecting Crimea to Russia (the Guardian) Kyiv takes war to Russia with multiple strikes on Crimean peninsula targets, many of which were shot down
At Least Two Killed In Russian Strikes In Ukraine As Crimean Peninsula, Bridge Reportedly Targeted (RadioFreeEurope/RadioLiberty) At least two people were killed in Russian military strikes in Ukraine on August 12 as Moscow said Ukraine had sent drones to attack Crimea and fired missiles at the bridge connecting the peninsula to Russia.
Ukraine Recap: ‘Tactical Advances’; Russia Fires at Cargo Ship (Bloomberg) Ukraine’s troops made “tactically significant advances” along the administrative border between Zaporizhia and Donetsk oblasts, according to the military analysts at the Institute for the Study of War.
Ukraine desperate for help clearing mines, says defence minister (the Guardian) Exclusive: ‘Most heavily mined country on Earth’ critically short of sappers and equipment to clear frontlines
Russia-Ukraine war at a glance: what we know on day 535 of the invasion (the Guardian) Zelenskiy fires regional military recruitment chiefs in anti-corruption drive; Russia gains ground around north-east town of Kupiansk
Ukraine’s war of attrition draws parallels to World War I (Washington Post) The brutal war raging in Ukraine is a profoundly 21st-century conflict. Drones buzz around its battlefields. Hypersonic missiles plunge into unsuspecting targets. Satellites disperse the fog of war. Algorithms generated by artificial intelligence help guide artillery. Footage captured on mobile phones proliferates on social media, giving the conflict an almost visceral, real-time feel to people thousands of miles away. Online armies of partisans catalogue atrocities and circulate evidence of triumphs.
Ukraine’s Slog Prompts Focus on Next Year’s Fight (Wall Street Journal) With big gains elusive this year, planners are considering how training and new equipment might tip the battlefield balance in the spring.
Would F-16s Have Made the Difference in Ukraine’s Counteroffensive? (New York Times) Most military experts doubt that they would have, and say that Kyiv can still prevail without them.
Explosions Over Kyiv, Air Strikes Elsewhere Keep Alert Level High Across Ukraine (RadioFreeEurope/RadioLiberty) Explosions over Kyiv on August 11 prompted Mayor Vitali Klitschko to urge residents to stay in air raid shelters as Russian air strikes in the west, south, and east of Ukraine killed and injured more civilians.
What happened in the Russia-Ukraine war this week? Catch up with the must-read news and analysis (the Guardian) Meet one of Ukraine’s deadliest kamikaze drone pilots; Russia launches war on a new front – Ukrainian grain exports
Russian missiles hit hotel targeting aid workers and reporters (The Telegraph) One person killed and 16 injured in second strike in two days in city of Zaporizhzhia
How Ukrainian sea drones work - and why they terrify the Russian fleet | Defence in Depth (The Telegraph) Video analysis: As Ukraine proves itself a threat across the Black Sea, Russian sailors will find the water looking a lot darker from now on
Former US Ambassador to Belarus on Ukraine Sea Drone Attack (Bloomberg) Former US Ambassador to Belarus, Kenneth Yalowitz, discusses a Ukrainian sea drone attacking a Russian oil tanker in the Black Sea, and whether or not events like this will further escalate the war between Russia and Ukraine. Ambassador Yalowitz speaks with Kailey Leinz and Joe Mathieu on Bloomberg's "Balance of Power."
Biden Administration Announces Additional Security Assistance for Ukraine (U.S. Department of Defense) The DOD announced additional security assistance to meet Ukraine's critical security and defense needs. This announcement is the Biden Administration's forty-fourth tranche of equipment to be provided
Fact Sheet on U.S. Security Assistance to Ukraine (U.S. Department of Defense) The United States has committed more than $43.7 billion in security assistance to Ukraine since the beginning of the Biden Administration, including more than $43 billion since the beginning of Russia’s unprovoked and brutal invasion on February 24, 2022.
Russian-Occupied Nuclear Plant In Ukraine Reconnected To Main Power Line, Averting Possible Blackout (RadioFreeEurope/RadioLiberty) Ukraine's Russian-occupied Zaporizhzhya nuclear power plant has been reconnected to its main external power line, state-owned power generating company Enerhoatom said on August 11, averting what officials said was a possible blackout.
Kyiv’s drone strikes on Moscow mean Kremlin’s war can’t be ignored by Russians (the Guardian) Attacks keep up pressure on Vladimir Putin, although have become ‘not a big deal’ for many unmoved Russians
Ukraine could be about to experience its own Monte Cassino (The Telegraph) If Ukraine breaks through the Surovikin line it could quickly take Crimea, triggering the collapse of Putin's 'special military operation'
Hacking insecure process sensor systems may have affected the Chernobyl nuclear plant site (Control Global) The compromise of Chernobyl’s process sensor readings reinforces the immediate need for the government and industry cybersecurity communities to address the cybersecurity gaps in control system field device
Russian spy agencies targeting Starlink with custom malware, Ukraine warns (The Telegraph) Ukrainian intelligence report reveals satellite hacking attempts to spy on troop movements
NSA, Viasat say 2022 hack was two incidents; Russian sanctions resulted from investigation (Record) Officials from the National Security Agency (NSA) and satellite internet provider Viasat provided new details on the headline-grabbing cyberattack on the company at the onset of Russia’s invasion of Ukraine.
Ukrainian official touts country’s wartime cyber intelligence efforts (Record) Illia Vitiuk, head of cybersecurity at the Security Service of Ukraine (SBU), said that hackers have been getting into Russian systems to find out the Kremlin’s targets, how the enemy’s troops move, and more.
Russia Bans iPhones And iPads For Official Use: Report (BW Businessworld) The ban came following assertions made by Russia's primary domestic security agency, the FSB, , apple iphone, apple ipad, Restrictions, russia
Microsoft Suspends Extending Licenses For Companies in Russia (RadioFreeEurope/RadioLiberty) U.S. software giant Microsoft will not renew licenses for Russian companies from September 30, the U.S. company said in a letter sent to Telecom Daily Agency in Russia on August 11.
Ukraine war driving US Army electronic warfare development, Bush says (C4ISRNet) The Terrestrial Layer System-Brigade Combat Team and -Echelons Above Brigade are both “on track, and I feel good about them,” said Doug Bush.
Ukraine and the Rise of the Middle Powers (Wilson Center) The current situation in Europe has been called a new Cold War. Indeed, after Russia’s attack on Ukraine, the common European space was divided between antagonistic blocs, which see each other as an increasingly existential threat. NATO’s ranks are growing, as is solidarity among NATO countries.
China has its own reasons for being at Ukraine peace talks in Saudi Arabia (the Guardian) Gathering in Jeddah offers Beijing chance to placate global south and limit damage with west over Russia relations
Ukraine To Dismiss All Heads Of Regional Military Recruitment Offices Amid Corruption Concerns (RadioFreeEurope/RadioLiberty) All the heads of Ukraine's regional military recruitment centers will be dismissed, President Volodymyr Zelenskiy announced on August 11, amid concerns about corruption.
The Ends-Justifies-the-Means Logic Led Russia to War and Repression (Wilson Center) “Do you hate the judge? Do you hate Putin even more now than before, they keep asking me now, after my new sentence,” Russia’s central opposition figure Alexei Navalny writes in his new letter from prison. He calls this letter a “confession,” but it can be viewed as his political manifesto just as well.
Putin’s crimes are extraordinary but not inexplicable. We must learn from them (The Telegraph) A new book by Daniel Finkelstein shows the fearful symmetry of the Nazi and Communist regimes. Its lessons are urgent
Russia’s Wagner Group leader will be killed by Putin or lead another coup within 6 months, expert says (South China Morning Post) ‘Everyone knows what they [the Russians] do with ‘traitors,’ Christo Grozev, a journalist with the highly respected investigative outlet Bellingcat, said
In His First Public Statement After Latest Conviction, Navalny Slams 'Those Who Lost Russia's Historic Chance' (RadioFreeEurope/RadioLiberty) In his first public statement after his latest trial that ended with a conviction and a 19-year sentence on extremism charges last week, Russian opposition politician Aleksei Navalny lashed out at Russia's post-Soviet ruling class.
Cain and Abel in Dnipro (Wilson Center) Performances of Soviet dissident playwright Julius Edlis’s Where Is Thy Brother, Abel? stands out in the wartime repertoire at Dnipro’s top-tier Shevchenko Theater. Written during the Brezhnev era, it tells the story of two former prisoners at a German concentration camp in Ukraine encountering one another 23 years later in a resort town café.
Reconciliation but No Resolution to Poland’s and Ukraine’s Memory War (Wilson Center) On the eve of last month’s NATO summit in Vilnius, the presidents of Poland and Ukraine came together to try to resolve a long-simmering dispute: how to countenance and characterize the Volhynia massacres of 1943 to 1945, which Poland regards as genocide and Ukraine regards as the unfortunate actions of partisan groups against the Poles, with subsequent retaliatory killings of Ukrainian citizens.
Central Asia Comes Out of the Russian Shadow (Diplomat) The region’s search for language, historic memory, cultural heritage and – above all – dignity received a new impetus from Russia’s invasion of Ukraine.
Russian Courts Write Off Debts Of Prisoners Recruited To Fight In Ukraine (RadioFreeEurope/RadioLiberty) Russia’s bailiff service has issued data on debt-relief granted to former Russian inmates who served in the Storm Z unit in the war in Ukraine.
Northern Russian Village Shaken After Discharged Wagner Fighter Accused Of Killing Six People
(RadioFreeEurope/RadioLiberty) One morning this month, six people were found stabbed to death in a tiny settlement in northern Russia. One of the two arrested suspects is a former convict who had served with the Wagner mercenary group in Ukraine. “I can’t make sense of it,” his sister told RFE/RL.
Russia’s kleptocratic elite must be stopped (The Telegraph) As the threat of corruption to the UK’s national security grows, so too must our ambition to end it
Yandex co-founder denounces illegal Ukraine invasion (Register) Arkady Volozh is working with refugee engineers, of which there are plenty
Journalist Aleksandr Nevzorov Fined In Russia Over RFE/RL Interview (RadioFreeEurope/RadioLiberty) A court has ordered one of Russia's most prominent TV journalists, Aleksandr Nevzorov, who fled Russia in March 2022, to pay 20,000 rubles ($205) for "extremist" thoughts he expressed in his interview with RFE/RL's Belarus Service and on his YouTube channel about Russia's invasion of Ukraine.
Women In Russian-Occupied Crimea Fined For Dancing To Ukrainian Song (RadioFreeEurope/RadioLiberty) A court in occupied Crimea has imposed a 15,000-ruble ($152) fine on three young women for dancing to a song by a Ukrainian singer.
Odesa Officially Opens Six Beaches For First Time Since Russia's Full-Scale Invasion (RadioFreeEurope/RadioLiberty) Authorities in Ukraine’s Black Sea port city of Odesa have announced that they are opening six beaches for swimming for the first time since the start of Russia’s full-scale invasion in February 2022.
Attacks, Threats, and Vulnerabilities
Mitigating Remote Access Trojan Infection Risk: Telegram/Qwixx RAT (Uptycs) Read about QwixxRAT, a new Remote Access Trojan infiltrating devices via Telegram & Discord: technical analysis & protective measures
DroxiDat-Cobalt Strike Duo Targets Power Generator Network (Infosecurity Magazine) Kaspersky said the attackers deployed the payload to collect valuable system information
New SystemBC Malware Variant Targets Southern African Power Company (The Hacker News) Russian threat actors suspected in cyber attack on South African power company using a new variant of the SystemBC malware called DroxiDat
Power Generator in South Africa hit with DroxiDat and Cobalt Strike (Security Affairs) Threat actors employed a new variant of the SystemBC malware, named DroxiDat, in attacks aimed at African critical infrastructure. Researchers from Kaspersky’s Global Research and Analysis Team (GReAT) reported that an unknown threat actor used a new variant of the SystemBC proxy malware, named DroxiDat, in an attack against a power generation company in southern Africa. SystemBC was […]
Southern African power generator targeted with DroxiDat malware (Record) Researchers have uncovered a suspected cyberattack targeting a power generator in southern Africa with a new variant of the SystemBC malware.
Common TTPs of attacks against industrial organizations. Implants for uploading data (Kaspersky ICS CERT) In this part we present information on the four types of implants and two tools used during the last (third) stage of the attacks discovered.
APT31 Linked to Recent Industrial Attacks in Eastern Europe (Infosecurity Magazine) Kaspersky published the third installment of their investigation on this campaign earlier today
Researchers Shed Light on APT31's Advanced Backdoors and Data Exfiltration Tactics (The Hacker News) APT31 has been tied to a series of sophisticated backdoors capable of exfiltrating sensitive data.
Investigating New INC Ransom Group Activity (Huntress) The Huntress team investigated a ransomware attack of a new INC Ransom threat actor group. Here is the activity we observed.
Iagona ScrutisWeb Vulnerabilities Could Expose ATMs to Remote Hacking (SecurityWeek) Several vulnerabilities discovered in Iagona ScrutisWeb ATM fleet monitoring software could be exploited to remotely hack ATMs.
Researchers uncover infostealing malware Statc Stealer (SC Media) Security researchers at Zscaler ThreatLabz have released a technical report on a newly discovered information malware strain dubbed Statc Stealer, which targets the sensitive payment and personal information of Microsoft Windows users, reports The Hacker News.
Resurgent Hacktivist Group Executes Over 750 DDoS Attacks Targeting India, Israel, the Netherlands, and Others (CPO Magazine) Group-IB Threat Intelligence unit has highlighted the activities of a resurgent hacktivist group responsible for over 750 distributed denial of service (DDoS) attacks and 78 website defacements in a year.
New Python URL Parsing Flaw Could Enable Command Execution Attacks (The Hacker News) Critical Python URL parsing flaw (CVE-2023-24329) discovered! Allows domain filter bypass, enabling file reads & command execution.
Honeypot Research: A Data Breach Analysis (vpnMentor) Over the course of a year, vpnMentor deployed a honeypot of open servers containing fake personal data to lure outside actors, analyze their behavior, and record what happens once
AI ‘looks like Barbie but may be Oppenheimer’ warns expert (Express.co.uk) EXCLUSIVE: Research published this week suggests AI is able to work out passwords simply from the sound of keystrokes.
UK govt contractor MPD FM leaks employee passport data (Security Affairs) UK govt contractor MPD FM left an open instance that exposed employee passports, visas, and other sensitive data MPD FM, a facility management and security company providing services to various UK government departments, left an open instance that exposed employee passports, visas, and other sensitive data. MPD FM boasts of being the UK’s leading “facility […]
Bay Area realty agents frustrated after cyber attack hobbles MLS (Marin Independent Journal) A cyber attack on Wednesday took down a nationwide system used by Realtors.
Data breach may have affected almost 4,000 University of Utah Health Plan members (KSLTV.com) An unauthorized user accessed a file transfer server and downloaded files that may have contained information of some University of Utah Health Plan members.
Cumbria police admit huge breach of data of officers and staff (the Guardian) Exclusive: Accidental publishing of names and salaries happened in March and follows scandal over PSNI leak
LetMeSpy Android Spyware app permanently shuts down after data breach (Deccan Herald) The existing clients who wish to log in to their account to delete their details voluntarily can request access via email to ibd@radeal.pl. This will remain open till September 30, 2023.
Vecino Health Centers mitigates impact of MOVEit cyber attack (CIO News) HOUSTON, TX, US, August 11, 2023: Vecino Health Centers announced today that it was affected by the recent MOVEit cyber attack, which affected several
'You are going to be attacked' | Expert weighs in on recent cybersecurity thefts in Connecticut (fox61.com) On Thursday, New Haven officials announced an investigation into a cyber attack that resulted in hackers stealing $6 million from the city's school district.
APTs use of lesser-known TTPs are no less of a headache (Help Net Security) Understanding APTs' technical intricacies and TTPs is vital to enhance defense strategies and safeguard organizations.
Trends
Threat Intelligence Efforts, Investment Lagging, Says Opswat (Dark Reading) In an annual survey, 62% of respondents admited their threat intel efforts need stepping up.
Marketplace
What happens if cyber insurance becomes unviable? (Raconteur) Although insurers are innovating furiously to keep cover against attacks affordable, they’re running short of options
Tysons cybersecurity firm Qomplx appears to have quietly ceased operations (Washington Business Journal) The company laid off dozens of employees on Aug. 1, according to state filings.
Nimbus announces cyber security investment of £250,000 (Belfast Telegraph) IT managed services provider Nimbus has announced an investment of £250,000 in cyber security products and services — including a new security operations centre.
Parsons Secures $109M CYBERCOM Contract for C4, Capabilities Development; Mike Kushin Quoted (GovCon Wire) Looking for the latest GovCon News? Check out our story: Parsons Secures $109M CYBERCOM Contract for C4, Capabilities Development. Click to read more!
Air Force awards $100M cyber, ISR advisory contract (Washington Technology) Companies will compete for task orders and work with the Air Force to maintain business systems applications.
Fortinet's Stock Crashed -- Is This Leading Cybersecurity Provider Done For? (Motley Fool) Fortinet stock got clobbered following management's downgrade of full-year guidance. The situation needs to be monitored, but it appears Fortinet will still grow well over 20% this year. This leader in cybersecurity has dealt with turbulence before and is still well positioned for the long term.
Zscaler (ZS) Gains As Market Dips: What You Should Know (Yahoo Finance) Zscaler (ZS) closed at $142.95 in the latest trading session, marking a +1.89% move from the prior day.
Dynamic Security Announces Name Change to Secuni to Reflect Broadened Focus (Security Sales) The new identity incorporates managed services and the unification of systems that solve security, safety, and operational requirements.
McGuireWoods Names Peter Geovanes Chief Innovation, AI Officer (Bloomberg Law) Peter Geovanes has joined McGuireWoods as chief innovation and AI officer while based in Chicago, the firm said Monday.
Products, Services, and Solutions
Detectify Improves Attack Surface Risk Visibility With New IP Addresses View (Business Wire) Best-in-Class EASM Player Launches Platform Enhancements for Asset Discovery and Regulatory Compliance
Exabeam and Cribl partnership helps enterprises accelerate SIEM deployments (Help Net Security) Exabeam and Cribl partnership gives enterprises more control over their data, accelerates SIEM deployments, and mitigates risk.
Fortra Introduces New Integrations for Offensive Security (Fortra) Fortra today announced new integrations for its offensive security solutions that streamline capabilities for vulnerability management, penetration testing, and red teaming. Working together, the solutions apply the same techniques used by threat actors to identify and exploit gaps in an organizations’ security. With this proactive security approach, customers can find and fix weaknesses in their security posture before they are exploited.
St. Luke’s University Health Network Safeguards Millions of Patient Records; Boosts Cyber Resilience with Rubrik and Microsoft Sentinel (Yahoo Finance) Healthcare services non-profit achieves over 73 percent cost savings using Rubrik data security solutions alongside Microsoft Azure and SentinelPALO ALTO, Calif., Aug. 14, 2023 (GLOBE NEWSWIRE) -- Rubrik, the Zero Trust Data Security™ Company, today announced that St. Luke’s University Health Network (St. Luke’s) replaced its legacy backup vendor with Rubrik to support its shift to the cloud and achieve cyber resilience. Relying on Rubrik Security Cloud, St. Luke’s can now recover from cyberatta
Incode Technologies and Carahsoft Partner to Provide World Class Identity Verification Solutions to the Public Sector (PR Newswire) Incode Technologies Inc., the leading identity verification and authentication platform for global enterprises and Carahsoft Technology Corp.,...
Technologies, Techniques, and Standards
U.S. Issues Draft Cybersecurity Guidelines for EV Charging Networks (Wall Street Journal) The guidance for the electric-vehicle industry aims to protect charging payment systems and links to the wider grid.
Threat intelligence's key role in mitigating malware threats (Help Net Security) 62% of organizations recognize the need for additional investments in tools and processes to enhance their threat intelligence capabilities.
UK gov keeps repeating its voter registration website is NOT a scam (BleepingComputer) Every year local government bodies or councils across Britain contact residents, asking them to update their voter details on the electoral register if these have changed. To do so, residents are asked to visit HouseholdResponse.com, a domain that looks anything but official and has often confused people, who mistake it for a scam.
Design and Innovation
Hackers Trick AI With ‘Bad Math’ to Expose Flaws and Biases (Bloomberg) At DEF CON conference, hacker gets model to say 9 + 10 = 21. AI has chance to transform everything from finance to hiring.
Google adds post-quantum encryption key protection to Chrome (Register) QC crypto-cracking coming in 5, 10, maybe 50 years, so act … now?
How to Prevent an AI Catastrophe (Foreign Affairs) Society must get ready for very powerful artificial intelligence.
Research and Development
For the first time, U.S. government lets hackers break into satellite in space (POLITICO) Hacker groups are on a military-endorsed mission to infiltrate an orbiting U.S. satellite.
Academia
Stanford University just schooled Congress on AI (Washington Post) The elite Silicon Valley university coaches Hill staffers on the benefits of artificial intelligence
Internship opportunities at Cyber Command (U.S. Cyber Command) The growth of U.S. Cyber Command over the last 12 years and the Cyber National Mission Force’s elevation to a sub-unified command last year has created a demand for more talent in both commands. Staffing with a unique group of highly-skilled military members, government employees, and contractors is how CYBERCOM wins with people. They also make room to invite the younger generation to experience what working with our organizations is like.
University of Newcastle hosts a Cyber Industry Experience event (India Education) In partnership with the NSW Government and industry partner GuardWare, the University of Newcastle is hosting a Cyber Industry Experience event to inspire up-and-coming talent to consider a job in the industry.Global Innovation Chair in Cybersecurity
Fortinet Announces Free Security Awareness Curriculum for K-12 Students Tied to White House's Cyber Initiatives (Dark Reading) "Expanding the cybersecurity knowledge and skill sets of our global community, including people of all ages, backgrounds, and life experiences, is essential to help close the cybersecurity talent shortage..."
Legislation, Policy, and Regulation
Top cyber official offers 'stark warning' of attacks by China on U.S. infrastructure (Yahoo News) China’s hackers have been positioning themselves to conduct destructive cyberattacks on U.S. critical infrastructure, a top U.S. cyber official warned Saturday.
Russian and Chinese cyber attacks on Foreign Office risked national security, says ex-GCHQ boss (inews.co.uk) Sir David Omand says the attacks, which were kept secret from the public, would have given the hackers useful information
Who do cybersecurity laws actually protect? (The Business Standard) Across the world, these legislations often evolved from mere tools to combat cyber threats in the form of computer viruses to much more – blurring the lines between protecting individuals from malicious cyber activities to governments using the same laws to infringe on freedom of speech and expression
Specialised unit within NIA to lead probes into cyberattacks (Hindustan Times) The ACTU, sanctioned by the home ministry last year and currently in the process of being finalised, will be given all such cases to investigate the role of terrorists or state actors behind the attacks
White House is fast-tracking executive order on artificial intelligence (CyberScoop) President Biden's top science advisor says a realization about the risks posed by AI is fueling an urgent effort to put up guardrails.
A new White House order is taking aim at investment in Chinese tech. How will it actually work? (Atlantic Council) President Biden has signed an executive order restricting certain outbound investment in an effort to address national security threats that China may pose to the United States.
Does the White House’s National Cyber Workforce and Education Strategy Go Far Enough? (Infosecurity Magazine) Mike Britton argues that the new strategy is welcome, but could go further
FAQs on the New SEC Rules on Public Company Cybersecurity Disclosures (Barnes & Thornburg) On July 26, 2023, the Securities and Exchange Commission (SEC) in a 3-to-2 vote, adopted final rules requiring the disclosure of material cybersecurity
Maryland Receives $6.5M to Boost Cybersecurity Infrastructure (The Southern Maryland Chronicle) WASHINGTON, DC – To fortify Maryland’s cybersecurity defenses, key politicians today disclosed that the state will be granted $6,514,533 from the U.S. Department of Homeland Security’s Federal Emergency Management Agency (FEMA). The prominent figures behind this announcement included Congressman Steny H. Hoyer (MD-05), U.S. Senators Ben Cardin (D-MD) and Chris Van Hollen (D-MD), alongside Congressmen […]
Litigation, Investigation, and Law Enforcement
Department of Homeland Security’s Cyber Safety Review Board to Conduct Review on Cloud Security (US Department of Homeland Security) Secretary of Homeland Security Alejandro N. Mayorkas announced that the Cyber Safety Review Board (CSRB) will conduct its next review on the malicious targeting of cloud computing environments.
Microsoft Exchange hack is focus of cyber board’s next review (Record) The China-linked attack on Microsoft email services will get a full review by the Cyber Safety Review Board, the Department of Homeland Security announced.
Microsoft is under scrutiny after a recent attack by suspected Chinese hackers (Windows Central) A U.S. Cybersecurity inquiry will look into Microsoft's role in an attack that saw government emails hacked.
The DHS’s CSRB to review cloud security practices following the hack of Microsoft Exchange govt email accounts (Security Affairs) The DHS’s CSRB will review cloud security practices following recent hacks of Microsoft Exchange accounts used by US govt agencies. The US DHS announced that the Cyber Safety Review Board (CSRB) will review the security measure to protect cloud computing environments following the recent compromise of Microsoft Exchange accounts used by US govt agencies. “The […]
Microsoft's role in data breach by Chinese hackers to be part of US cyber inquiry (Firstpost) A cybersecurity advisory panel in the US will investigate the risks involved in cloud computing and whether Microsoft had a role to play in the recent breach of government email systems by Chinese hackers
Dissidents claim to have PSNI data, chief says (RTE.ie) Dissident republicans claim to be in possession of some of the information leaked in the recent PSNI data breach, Chief Constable Simon Byrne said, after facing questions at a meeting of the Northern Ireland Policing Board.
PSNI data breach: 200 officers and staff not informed about theft for month (the Guardian) Police-issued laptop, radio and documents stolen from car in Northern Ireland on 6 July
PSNI data breach: Top officer was at shops when sensitive documents stolen Police are investigating the Newtownabbey theft (Independent) A top police officer was at the shops when a work laptop and a spreadsheet on more than 200 personnel was stolen from his car in Co Antrim.
Thousands of Northern Irish officers could sue force over data breach (Mail Online) The Police Service of Northern Ireland is bracing itself for a multi-million-pound class action lawsuit after a data breach involving its entire force.
Data theft: Police officers and staff not informed for month (BBC News) Some 200 people have been affected by the theft of documents and a laptop from a car last month.
PSNI data breach: Civilian worker 'no longer feels safe in home' (BBC News) The man's name was on a document mistakenly shared by the PSNI that gave details of about 10,000 employees.
Data leaks have given Irish republican groups ‘upper hand’ against police, analysts warn (the Guardian) Breaches hurt police morale and may help republican paramilitaries intimidate officers and their families
LOLEKHosted admin arrested for aiding Netwalker ransomware gang (BleepingComputer) Police have taken down the Lolek bulletproof hosting provider, arresting five individuals and seizing servers for allegedly facilitating Netwalker ransomware attacks and other malicious activities.
Takedown of Lolek bulletproof hosting service includes arrests, NetWalker indictment (Record) Five people have been arrested in Poland as part of an operation that dismantled LolekHosted.net, a web hosting service facilitating cybercrime. U.S. prosecutors announced a related indictment in a ransomware case.
Likely client of use of Predator spyware is from Armenia, Meta researchers say (News.am) Recently, it became known that two other spyware companies, including Intellexa, were blacklisted by the US government…
Exclusive: Georgia prosecutors have messages showing Trump's team is behind voting system breach (CNN Politics) Atlanta-area prosecutors investigating efforts to overturn the 2020 election results in Georgia are in possession of text messages and emails directly connecting members of Donald Trump’s legal team to the early January 2021 voting system breach in Coffee County, sources tell CNN.
Will Hurd: Trump's team couldn't get data 'so they tried to take it' (CNN Politics) Republican presidential nominee Will Hurd talks with Jake Tapper about CNN’s reporting that former President Donald Trump’s team breached voting systems in January, 2021.
Former FTX CEO Sam Bankman-Fried sent to jail (Register) Feds argue leaks to press amount to witness tampering
How the FBI goes after DDoS cyberattackers (TechCrunch) In an interview at the Black Hat cybersecurity conference, the FBI explained how it targets and takes down DDoS attackers and booter sites.
Houston Jury Awards $1.2B In 'Revenge Porn' Suit (Law360) A Harris County, Texas, jury awarded $1.2 billion in damages to a Houston woman whose ex-boyfriend was accused of breaching her computer accounts, impersonating her and maliciously spreading intimate images and videos of her online after a breakup.
Connecticut school district lost more than $6 million in cyber attack, so far gotten about half back (New Britain Herald) The city of New Haven lost more than $6 million in multiple cyberattacks on its public school district earlier this summer and has so far managed to
Fast Living and Foreign Dealings: An F.B.I. Spy Hunter’s Rise and Fall (New York Times) Charles McGonigal had a family, a house in the suburbs and an influential job as a counterintelligence leader in New York. Federal prosecutors suggest it wasn’t enough for him.