At a glance.
- LockBit counts coup against an aerospace supply chain.
- SVB's collapse and its effects on the cybersecurity sector.
- Patch Tuesday notes.
- SVR's APT29 used Polish state visit to the US as phishbait.
- Ukraine's SSSCIP reports on trends in Russian cyber activity.
- Regularizing hacktivist auxiliaries.
LockBit counts coup against an aerospace supply chain.
The LockBit ransomware gang claims to have compromised Maximum Industries, a supplier of components to SpaceX, SecurityWeek reports. The prize LockBit claims to have obtained includes some three-thousand engineering drawings, said to be "certified by SpaceX engineers." The text of LockBit's communique makes it clear that the target is SpaceX, not its supplier. The gang posted an announcement on its dark web page: "I would say we were lucky if SpaceX contractors were more talkative. But I think this material will find its buyer as soon as possible. Elon Musk we will help you sell your drawings to other manufacturers - build the ship faster and fly away. and now about the numbers: about 3,000 drawings certified by space-x engineers We will launch the auction in a week. ALL AVAILABLE DATA WILL BE PUBLISHED !" (Sic, we need hardly add.) SecurityWeek observes sensibly that ransomware gangs are known to include some whoppers in their claims, and that LockBit's announcement should be regarded with cautious skepticism. LockBit has given the victims a deadline of March 20th to pay.