Dateline: Russia's hybrid war against Ukraine.
Ukraine at D+587: Hacktivism and the laws of war. (CyberWire) Russia's Black Sea Fleet finds Crimea increasingly unsuitable for its bases. Penal battalions represent a throwback to Stalin's Red Army. Two ICRC officials offer guidance for hacktivists under international humanitarian law.
Russia-Ukraine war: List of key events, day 588 (Al Jazeera) As the war enters its 588th day, these are the main development.
Russia-Ukraine war at a glance: what we know on day 588 of the invasion (the Guardian) Ukrainian drones attack three Russian regions overnight, Moscow says; UK PM calls on west to help Ukraine ‘finish the job’
Russia says it has foiled a major Ukraine drone attack as concerns grow over Kyiv's weapons supplies (AP News) Russia says its air defenses shot down 31 Ukrainian drones in a nighttime attack on border regions. The Russian Defense Ministry reported the attack Wednesday.
Western ammo stocks at 'bottom of the barrel' as Ukraine war drags on, NATO official warns | CNN (CNN) Western militaries are running out of ammunition to give to Ukraine, NATO and British officials warned Tuesday, as they urged the bloc’s nations to ramp up production to “keep Ukraine in the fight against Russian invaders.”
U.S. and World Leaders Pledge Support for Ukraine ‘for as Long as It Takes’ (New York Times) President Biden, in a conference call with world leaders amid tumult in Congress, insisted that U.S. aid would not be interrupted.
Zelenskiy Vows Ukrainians Will 'Do Everything' To Defeat Russia As U.K. Urges Aid 'To Finish The Job' (RadioFreeEurope/RadioLiberty) President Volodymyr Zelenskiy has said Ukrainians will "do everything" in their power to prevail over invading Russian forces despite all difficulties as Britain urged the West to beef up its military assistance to help Ukraine "finish the job."
Not enough Bears: Russia’s Black Sea Fleet is pulling out of Crimea (The Telegraph) Putin can’t fight Ukraine and the silent struggle against Nato submarines as well
Britain hails 'functional defeat' of Russia in the Black Sea (The Telegraph) UK defence minister James Heappey has hailed the “functional defeat” of Russia in the Black Sea after a series of Ukrainian attacks on naval targets in the region in recent weeks.
'They're just meat': Russia deploys punishment battalions in echo of Stalin (Reuters) Drunk recruits, insubordinate soldiers and convicts are among hundreds of military and civilian offenders pressed into Russian penal units known as "Storm-Z" squads and sent to the frontlines in Ukraine this year. Few live to tell their tale.
Ukraine drone unit tells CBS News it's destroyed $40 million worth of Russian military hardware in a month (CBS News) A Ukrainian drone unit hitting Russian forces behind the front line gives CBS News an inside look at why the devices are vital, cost effective - and in short supply.
What Slovakia's Election Results Mean for Its Political Future and Support for Ukraine (Stratfor | RANE) Upcoming coalition talks will likely yield a more Eurosceptic government that could reduce the country's political and military aid to Kyiv.
Armenia’s parliament defies Russia in vote to join international criminal court (the Guardian) Moscow criticises ‘inappropriate’ decision that would oblige former ally to arrest Putin if he visits
Army Ready to Deliver Long-Range Missiles for Ukraine Once Biden Approves (Bloomberg) Long-range missiles carry from 300 to 950 cluster munitions. Pentagon has been preparing, Army Acquisition chief Bush says.
Continued Support to Ukraine, Replenishing Military Stocks: Priorities for Department (U.S. Department of Defense) Although the U.S. has the funding to continue to support Ukraine's war efforts in the short term, Pentagon officials underscored that more funds will be needed to continue to assist Ukraine in the
Since the beginning of the year, the SSU has neutralized nearly 4,000 cyberattacks on government agencies and critical infrastructure in Ukraine (Odessa Journal) Cybersecurity experts from the Security Service of Ukraine systematically counter information subversion threa ...
Russia Plans To Block VPN In March 2024, Member Of Federation Council Says (RadioFreeEurope/RadioLiberty) Artyom Sheikin, a member of the Russian parliament's Federation Council, said on October 3 that the country’s Roskomnadzor media watchdog plans to block virtual private networks (VPNs) across the country as of March 1, 2024.
Rethinking Security When So Many Threats Are Invisible (New York Times) One U.S. company is helping Ukraine behind the scenes combat not only attacks from traditional weapons but invisible ones, too.
European Peace Foundation (EPF) opens cyber classroom for Ukrainian Armed Forces - EU NEIGHBOURS east (EU NEIGHBOURS east) In the first days of October, the European Peace Foundation (EPF) opened a cyber classroom for the cyber defence units of the Ukrainian Armed Forces.
Russian Journalist Who Famously Protested Ukraine War On Live TV Sentenced For Second Protest (RadioFreeEurope/RadioLiberty) Former Russian TV journalist Marina Ovsyannikova has been sentenced in absentia to 8 1/2 years in prison for a anti-war demonstration she made in front of the Kremlin last year.
The Ukrainian women left behind by war (The Telegraph) All over Ukraine, couples have been separated by the Russian invasion – but help is on offer for those stuck in limbo
‘Hearing Russian brings me pain’: how war has changed Ukrainian literature (the Guardian) Many writers and publishers have ditched Russian language in favour of Ukrainian in response to invasion
Attacks, Threats, and Vulnerabilities
NATO says it is addressing an apparent cyberattack after strategy documents posted online (CNN) NATO says it is “actively addressing incidents” affecting its unclassified websites after a hacking group claimed to have stolen numerous strategic planning and research documents from the alliance.
Qualcomm says hackers exploit 3 zero-days in its GPU, DSP drivers (BleepingComputer) Qualcomm is warning of three zero-day vulnerabilities in its GPU and Compute DSP drivers that hackers are actively exploiting in attacks.
Critical TorchServe Flaws Could Expose AI Infrastructure of Major Companies (SecurityWeek) ShellTorch attack chains critical TorchServe vulnerabilities and could completely compromise the AI infrastructure of major companies.
Typosquatting campaign delivers r77 rootkit via npm (ReversingLabs) One “s” is all that separates a legitimate npm package from a malicious twin that delivered the r77 rootkit, and was downloaded more than 700 times, ReversingLabs researchers discovered.
New 'Looney Tunables' Linux bug gives root on major distros (BleepingComputer) A new Linux vulnerability known as 'Looney Tunables' enables local attackers to gain root privileges by exploiting a buffer overflow weakness in the GNU C Library's ld.so dynamic loader.
EvilProxy Phishing Attack Strikes Indeed (Menlo Security) Menlo Labs recently identified a phishing campaign targeting executives in senior level roles across various industries, but primarily Banking and Financial services, Insurance providers, Property Management and Real Estate, and Manufacturing.
A Deep Dive into Stream-Jacking Attacks on YouTube and Why They're So Popular (Bitdefender Labs) Stream-jacking attacks have gained significant traction on large streaming
services in recent months, with cybercriminals targeting high-profile accounts
(with a large follower count) to send their fraudulent ‘messages’ across to the
masses.
Two hacker groups are back in the news, LockBit 3.0 Black and BlackCat/AlphV (Security Affairs) Researchers from cybersecurity firm TG Soft are warning Italian entities and companies of LockBit 3.0 Black and BlackCat/AlphV attacks.
Arm, Qualcomm warn GPU drivers are likely being exploited by hackers (Record) The British semiconductor designer Arm and U.S. chip manufacturer Qualcomm issued separate warnings Monday that hackers are likely exploiting multiple vulnerabilities in their graphics processing units (GPUs).
Estes Express says widespread system outage caused by cyberattack (CDLLife) On Tuesday morning, Virginia-headquartered LTL carrier Estes Express Lines confirmed that an ongoing IT system outage was likely caused by a cyberattack.
Motel One says ransomware gang stole customer credit card data (TechCrunch) The European hotelier said its mitigations kept the breach to a "relative minimum." A ransomware gang has claimed credit for the attack.
Flagler School District Loses 'Significant Amount of Money' in Apparent Phishing Scheme Involving Vendor | FlaglerLive (FlaglerLive) The Flagler County Sheriff's Office is investigating a case of fraud, or phishing, targeting the Flagler County school district and one of its vendors. The district may have lost as much as $700,000 intended for one of the contractors building the Matanzas High School addition. If it is a case of phishing, the likelihood of recovering the money is not high, especially since the district may not have been timely either in discovering the fraud or in reporting it.
CISA Adds One Known Exploited Vulnerability to Catalog | CISA (Cybersecurity and Infrastructure Security Agency CISA) CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.
CVE-2023-4211 Arm Mali GPU Kernel Driver Use-After-Free Vulnerability
Trends
WatchGuard Threat Lab Report Finds Endpoint Malware Volumes Decreasing Despite Campaigns Growing More Expansive (GlobeNewswire News Room) Key findings from the research also show a rise in double-extortion attacks, self-managed websites targeted for malware delivery, threat actors continuing...
Small Biz Survey: Automation for Productivity (airSlate) Discover how SMBs are leveraging automation to boost productivity in our latest airSlate Small Biz Survey. Gain key insights to help your business thrive. Click here!
BlackFog State of Ransomware Report (BlackFog) With seventy publicly disclosed attacks, September set a new record since starting our State of Ransomware blog back in January 2020. Healthcare and government were the highest targeted sectors, with twelve attacks each, closely followed by education with eleven.
STUDY: 37% Intimidated, 39% Frustrated with Online Security Highlighting Digital Anxiety (GlobeNewswire News Room) New Cybersecurity Attitudes and Behaviors Report Highlights Promising Trends in the Cybersecurity Landscape...
A C-Suite united for a cyber-ready future (PwC) Future-ready businesses need senior leaders to be united on cybersecurity at all times. Check the 2023 PwC global survey of 3,500 executives.
2024 Global Digital Trust Insights Survey (PwC) Explore the spotlight feature on GenAI from the 2024 Global Digital Trust Insights survey, reflecting the views of over 3,800 senior security, technology and business executives.
Financial data breaches accounted for 232 million leaked records from January 2018 to September 2023 (Comparitech) Since January 2018, financial companies have suffered 2,260 data breaches, affecting over 232 million records. Our team of researchers analyzed data from 2018 to September 2023 to find out the biggest cause of these breaches, how many records have been affected each month and year, the most affected financial organizations, and which US states see […]
TCS announces multi-year tech support deal with British retail firm Asda (Business Standard) Indian firm will build a new digital core to streamline Asda's supply chain forecasting, merchandising processes
Marketplace
Acquisitions for Security Vendors, Funding For Startups | Q3 2023 (Pinpoint Search Group) A look the cyber security vendor transactions in Q3, 2023. Stay tuned into infosec funding and acquisitions news with our quarterly report.
Mitiga Secures Strategic Investment from Cisco Investments as Demand for CIRA Soars (Mitiga) The new financing will help support rapid customer adoption of Mitiga’s IR2 platform, at the forefront of a new wave in cloud investigation and response capabilities.
The reason why the Air Force pulled the plug on a huge cyber contract may surprise you (Federal News Network) Cyber companies were left holding the bag of bid and proposals costs to the tune of hundreds of thousands of dollars when the Air Force abruptly cancelled a huge multiple award contract.
SecureAuth Joins IDPro to Help Strengthen Identity and Access Management Community (SecureAuth) SecureAuth CMO Mandeep Khera Appointed to IDPro’s Board of Directors
Outpost24 Expands Leadership Team by Appointing Allan Robertson as Chief Revenue Officer (Outpost24) Outpost24, a leading innovator in cyber risk management, today announced the appointment of Allan Robertson as Chief Revenue Officer (CRO).
HUB Security appoints key executives to leadership team (Seeking Alpha) HUB Cyber Security (HUBC) has announced the strategic appointment of Mr.Noah Hershcoviz as Chief Strategy Officer and a member of the Co.’s Board ofDirectors, e
FTI Consulting Further Expands EMEA Cybersecurity Practice with Two Senior Hires in Germany (GlobeNewswire News Room) FRANKFURT, Germany, Oct. 04, 2023 (GLOBE NEWSWIRE) -- FTI Consulting, Inc. (NYSE: FCN) today announced the appointments of Hans-Peter Fischer as a Senior...
Products, Services, and Solutions
Eliminate Hours of AppSec Triage with Mayhem’s Dynamic SBOM Generation and SCA Validation (Mayhem) Shift-left and DevSecOps practices have many advantages, but they also present challenges for development teams. Shift left has placed the responsibility of triaging and remediating security issues onto developers, who struggle with a false positive rate of over 50% and spend over a third of their time on testing and triage.
Stack Identity Announces Industry’s Only Shadow Access Risk Assessment to Prioritize Cloud and Data Security Risks (Business Wire) Free daily scan and report of Shadow Access risks in your cloud environment
HYPR Expands on Authentication Leadership With First Identity Assurance Solution Addressing Major Identity Security Gaps (GlobeNewswire News Room) HYPR Expands on Authentication Leadership With First Identity Assurance Solution Addressing Major Identity Security Gaps ...
SentinelOne® Extends Power of the Singularity™ DataLake to Federal Agencies (Business Wire) Company makes industry’s most performant security data solution available through FedRAMP Authorized platform, enabling government entities to detect and respond to cyberthreats in real time
Veridas Digital Authentication Solution Receives ACCS Accreditation (Veridas) Veridas Digital Authentication Solution Receives ACCS Accreditation Veridas Meets Technical Requirements for Age Estimation Technologies in the UK Veridas, the Spanish technology company specializing in digital identity and biometrics, has received accreditation for its Age Estimation Technology from the UK’s Age Check Certification Scheme (ACCS) for Evaluation Assurance Level 2. The Age Check Certification Scheme […]
Cybersixgill Reinforces Its Channel-Forward Approach with Launch of New VAR Partner Program (Yahoo Finance) Threat Intelligence Leader's AI-Powered CTI Solutions Help Expand Resellers' Business Opportunities and Strengthen Their Customers' Security PostureKey Takeaways:Leading cyber threat intelligence (CTI) provider's new VAR Partner Program offers every ...
Deutsche Telekom expands SASE portfolio powered by Fortinet | Fortinet (Fortinet) Latest expansion of Deutsche Telekom’s Magenta Security SASE offering was built leveraging Fortinet’s AI-enhanced, cloud-delivered FortiSASE solution to ensure a consistent security posture and optimal user experience
Veeam Announces Backup-as-a-Service for Microsoft 365 and Microsoft Azure (Veeam Software) New offerings bring the power and reliability of Veeam for backup and recovery with increased management and deployment flexibility
Traliant Adds New Intellectual Property Course to Cybersecurity & Data Privacy Suite (PR Newswire) Traliant, an innovator in online compliance training, today announced a new course, Protecting Intellectual Property (IP), designed to...
Nutanix Strengthens Cyber Resilience with Accelerated Ransomware Detection and Recovery (Nutanix) Nutanix Data Lens can detect threats within 20 minutes and delivers 1-click recovery, adds support for Nutanix Objects, increases visibility of data across the hybrid multicloud
Symmetry Systems Achieves AWS Security Competency Partner Status for Data Protection (PR Newswire) Symmetry Systems, a modern data security company and 2022 Gartner Cool Vendor in Data Security1 has achieved Amazon Web Services (AWS) Security...
Bluefin and Invenco by GVR to Deliver PCI Validated P2PE Solutions to the North America Petroleum Forecourt (GlobeNewswire News Room) Atlanta, GA, Oct. 04, 2023 (GLOBE NEWSWIRE) -- Bluefin, the integrated payments pioneer in PCI-validated encryption and tokenization technologies that...
INE Introduces Skill Dive – 2,400+ On-Demand Labs for Applied Learning in Cybersecurity, Networking, and Cloud Computing (GlobeNewswire News Room) Skill Dive Equips Teams with Real-World Experience In a Secure Virtual Machine Environment...
Technologies, Techniques, and Standards
ZDI Discusses First Automotive Pwn2Own (SecurityWeek) The Zero Day Initiative (ZDI) will host a new Automotive Pwn2Own at the Automotive World Conference in Tokyo, January 24 to 26, 2024.
Zero trust and why it matters to the Apple enterprise (Computerworld) For Apple admins, zero trust is a chance to deliver highly secure computing environments and industry-leading ease of use, within budgets, at a lower TCO.
Cequence execs on the rise in API protection in the channel (CRN) Andy Mills and Bruce Hockin discuss the expansion of API protection and why the company’s going 100 per cent channel-focused
Escape from the rabbit hole: the conspiracy theorist who abandoned his dangerous beliefs (the Guardian) For 15 years, Brent Lee spent hours each day consuming ‘truther’ content online. Then he logged off. Can he convince his former friends to question their worldview?
Design and Innovation
Researchers Tested AI Watermarks—and Broke All of Them (WIRED) A research team found it's easy to evade current methods of watermarking—and even add fake watermarks to real images.
Linux Foundation, BastionZero and Docker Announce the Launch of the OpenPubkey Project (PR Newswire) The Linux Foundation, BastionZero and Docker are excited to announce the launch of OpenPubkey as a Linux Foundation open source project. To...
Academia
UC San Diego awarded $9.5 million to enhance cybersecurity in health care (EurekAlert!) <p>Researchers at University of California San Diego have been awarded $9.5 million from the Advanced Research Projects Agency for Health to develop better ways to prevent and mitigate ransomware attacks, a type of cyberattack in which hackers attempt to extort money from organizations by blocking access to essential computer systems.</p>
Virginia Tech spotlights online safety, cyber careers during 20th Cybersecurity Awareness Month (Virginia Tech) As Cybersecurity Awareness Month celebrates its 20th year, Virginia Tech’s Division of Information Technology, the Virginia Cyber Range, and the Commonwealth Cyber Initiative offer the community ways to learn, engage, and stay safe online.
Legislation, Policy, and Regulation
8 rules for “civilian hackers” during war, and 4 obligations for states to restrain them (EJIL: Talk!) As digital technology is changing how militaries conduct war, a worrying trend has emerged in which a growing number of civilians become involved in armed conflicts through digital means. Sitting at some distance from physical hostilities, including outside the countries at war, civilians – including hacktivists, to cyber security professionals, ‘white hat’, ‘black hat’ and […]
Red Cross Releases Wartime Hacktivist Rules (Infosecurity Magazine) Non-profit warns of blurring between military and civilian attacks
EU to assess risks posed by four key technologies and consider export controls (Record) The European Commission has established a list of four key technologies that may pose a risk to the bloc’s economic security, and is set to assess whether it will impose export controls on them.
Joint Letter of Experts on CRA and Vulnerability DisclosureJoint Letter of Experts on CRA and Vulnerability Disclosure (Center for Cybersecurity Policy and Law) As concerned cybersecurity experts who have dedicated our lives to improving the security of the online environment, we urge you to reconsider the vulnerability disclosure requirements under the proposed EU Cyber Resilience Act (CRA).
New EU cybersecurity rules ensure more secure hardware and software products (European Commission) The Commission presented yesterday a proposal for a new Cyber Resilience Act to protect consumers and businesses from products with inadequate security features.
EU Parliament wants journalists to have better protections from spyware (Record) The European Parliament agreed on Tuesday to strengthen protections for journalists from government surveillance as part of the proposed European Media Freedoms Act.
Congressional U.S.-China Commissioner Warns of Global Tech Supply Chain Risk (Wall Street Journal) Odds of a hot conflict between the U.S. and China are rising, said Jacob Helberg, of the U.S.-China Economic and Security Review Commission. Companies must act now to diversify their tech supply chains.
Critical Infrastructure Protection: National Cybersecurity Strategy Needs to Address Information Sharing Performance Measures and Methods (US Government Accountability Office) Protecting critical infrastructure—like water and electricity—from cyberattacks is a national priority. Federal agencies and critical infrastructure...
Federal Agency Critical of White House Cyber Strategy (MSSP Alert) A new report from the Government Accountability Office (GAO) is critical of White House's National Cybersecurity Strategy.
House passes bill to relax educational requirements for federal cyber workers (FedScoop) The bipartisan legislation aimed at expanding eligibility for the federal cybersecurity workforce passed the House 394-1.
The FCC says net neutrality would be a boon for national security. Some disagree. (Washington Post) When Federal Communications Commission Chairwoman Jessica Rosenworcel unveiled plans to restore net neutrality last week, she said reinstating the rule would “give the FCC and its national security partners the tools needed to defend our networks from potential security threats.”
Four Recommendations for State and Tribal Governments Formulating Their Cybersecurity Plans (Information Technology Industry Council) In 2021, the U.S. Congress passed a landmark piece of legislation, the Infrastructure Investment and Jobs Act (IIJA), which took a critical step towards modernizing state, local, tribal, and territorial governments’ information technology (IT) systems.
Cyber Threat Alliance Announces Partnership with North Dakota Information Technology (Cyber Threat Alliance) The Cyber Threat Alliance (CTA), a nonprofit organization working to improve the cybersecurity of the global digital ecosystem, today announced that North Dakota Information Technology is joining the alliance as a Contributing Ally partner. As part of its mission to support the disruption of malicious cyber activity and to raise the level … Continued
Litigation, Investigation, and Law Enforcement
Federal appeals court extends limits on Biden administration communications with social media companies to top US cybersecurity agency (CNN) A federal appeals court has expanded the scope of a ruling that limits the Biden administration’s communications with social media companies, saying it now also applies to a top US cybersecurity agency.
Appeals court limits cyberdefense agency’s contacts with tech companies (Washington Post) The 5th Circuit order could have sweeping implications for government efforts to protect elections from disinformation campaigns
A preview of the Sam Bankman-Fried trial (Molly White) Key witnesses and the likely legal strategies about to unfold in the historic case ahead.
Takeaways From a New Book on Sam Bankman-Fried (New York Times) “Going Infinite,” by Michael Lewis, offers a behind-the-scenes account of Mr. Bankman-Fried’s rise and fall.
FBI most-wanted Russian hacker reveals why he burned his passport (TechCrunch) “We sometimes throw memes at each other,” said Mikhail Matveev, speaking of others involved in ransomware attacks.