Dateline Moscow and Kyiv
Ukraine at D+435: Drones, hacktivists, and Mr. Prigozhin's discontents. (CyberWire) The Kremlin drone incident this week looks more like a Russian provocation, but the jury's still out. The Wagner Group may withdraw from Bakhmut. KillNet publishes its (ambitious) hack-for-hire menu.
Russia-Ukraine war: List of key events, day 436 (Al Jazeera) As the war enters its 436th day, we take a look at the main developments.
Zelenskyy wants Putin trial; Russia accuses US on drones (AP NEWS) Ukraine and Russia have pressed their wartime rhetoric as both their countries reported new drone attacks. During a visit to the Netherlands, Ukrainian President Volodymyr Zelenskyy expressed confidence Thursday that Russian counterpart Vladimir Putin would be convicted at the international war crimes court based there. Putin's spokesman alleged the U.S. was behind what Russia claimed was a Ukrainian attack on the Kremlin a day earlier. A U.S. National Security spokesman called the allegation “ludicrous.” Ukraine’s military said that three Russian drones that hit the southern city of Odesa had “for Moscow” and “for the Kremlin” written on them, seemingly implying they were sent in retaliation. Russian media said drones hit oil facilities in southern Russia.
Pictured: Russia strikes Ukraine with ‘for Moscow’ attack drones (Telegraph) Kremlin retaliates a day after Vladimir Putin's residence was hit in what it called an 'assassination attempt' by Kyiv
Russia behind purported drone 'attack' on Kremlin, Lithuanian defense minister says (Breaking Defense) “I believe … that it's a Russian job,” Arvydas Anušauskas told Breaking Defense in an interview in Washington.
There are big problems with the way the Kremlin drone incident went down, and war experts say Russia 'likely staged' it (Business Insider) Moscow would have needed a serious hole in its tough air defenses for drones to get through. That's why a think tank says it's likely a false flag.
Ukraine-Russia war live: White House says Kremlin is lying about drone attack (The Telegraph) Washington has issued a swift denial in response to Russia’s accusations that the US masterminded the drone attack on the Kremlin, which Moscow has claimed was carried out by Ukraine.
Kremlin accuses US of drone strike as Russian TV blackout remains (The Telegraph) White House denies ‘ludicrous’ claims by Moscow while state-run channels refuse to show footage of attack
Verified Twitter Accounts Spread Misinfo About Imminent Nuclear Strike (Vice) YouTube and Twitter accounts spread rumors about nuclear war after two drones struck the Kremlin.
Yevgeny Prigozhin: Wagner Group boss says he will pull troops out of Bakhmut (BBC News) His statement came after he posted a video among dead fighters, asking Russia for more ammunition.
Wagner chief rages at Russia’s generals and threatens Bakhmut pullout (the Guardian) In extraordinary video tirade, Yevgeny Prigozhin attacks defence minister and chief of armed forces
Russia’s ‘divisive terrain’ in Bakhmut (The Hill) The Battle for Bakhmut and control of its 16 square miles is now 10 months old, and Putin has little to show for it except the town’s complete annihilation
In Ukraine’s forests, fighters race to prepare for next push (AP NEWS) The fighters depart at dawn, single-file, rifles slung, compasses in hand, and disappear like chameleons into the lush greenery of central Ukraine’s dense forests.
Russia may soon come under merciless attack (The Telegraph) Ukraine’s advantages are only growing, as it designs its own weapons and takes the war to Vladimir Putin
Belarus’s beleaguered opposition is flirting with violence (The Economist) Is a liberation army forming?
Ukraine seeks more German support on Russia’s invasion and EU accession (Atlantic Council) Many Ukrainians have been disappointed by Germany's cautious approach to countering Russian aggression against Ukraine and Berlin's preoccupation with avoiding anything that might provoke Putin, writes Alyona Getmanchuk.
Doubt cast on Zelensky Germany visit after trip details leaked (The Telegraph) Kyiv threatens to call off Berlin meetings after road closures and even the Ukrainian president's potential hotel are revealed
Russia’s ‘guardian of traditional values’ How the Kremlin plans to sell Putin to voters in his fifth presidential campaign (Meduza) In 2024, barring any unforeseen circumstances, Vladimir Putin will run for his fifth term as Russia’s president. According to Meduza’s sources, Kremlin political strategists have started briefing officials from around the country on the rhetoric they should use to convince voters that even after nearly two and a half decades, Putin’s still the best man for the job. Here’s what we know about the messages they’ve chosen.
Putin’s ‘Eurasian’ fixation reveals ambitions beyond Ukraine (Atlantic Council) To explain the reasons for the fall of the Soviet Union and chart a course for his country's redemption, the Russian president espouses an ideology offering a fundamental break with the past.
For Money and Attention: Killnet Apparently Reorganizes Again (Flashpoint) Killnet’s recent moves—which include a consolidation of power of its umbrella—signal a continued dedication to strategic gains through cyber attacks
Ukrainian CERT uncovers new cyber infiltration using WinRAR (Cybersecurity Connect) The Ukrainian Computer Emergency Response Team was alerted to a breach in the information and communications systems within a government agency, determining that computers had been “impaired” by t
Russians weaponise WinRAR to attack Ukraine (Computing) Computing is the leading information resource for UK technology decision makers, providing the latest market news and hard-hitting opinion.
Discord leaks ‘demoralizing’ for US intelligence agencies, DNI Haines says (Record) The leaks of classified documents online by a Massachusetts Air National Guard member have had an emotional impact on the government agencies that produce those products, the director of national intelligence told Congress on Thursday.
In The Hague, Zelensky Renews Call to Prosecute Russian War Crimes (New York Times) As international support for an independent tribunal appears to be growing, the Ukrainian leader called for “true justice” for crimes in the war.
Pushkin must fall: monuments to Russia’s national poet under threat in Ukraine (the Guardian) Since last February’s invasion more than 30 statues of the 19th-century poet seen as a symbol for tsarist imperialism have been dismantled
Attacks, Threats, and Vulnerabilities
Kimsuky Evolves Reconnaissance Capabilities in New Global Campaign (SentinelOne) DPRK-linked threat actor deploys previously unseen reconnaissance tool 'ReconShark' in wave of ongoing attacks.
Kimsuky hackers use new recon tool to find security gaps (BleepingComputer) The North Korean Kimsuky hacking group has been observed employing a new version of its reconnaissance malware, now called 'ReconShark,' in a cyberespionage campaign with a global reach.
Ransomware cyberattack continues at Bluefield University (WVVA) There are new developments on the cybersecurity attack that has crippled internet services at Bluefield University.
OpenAI Allowed “Unlimited” Credit on New Accounts (Checkmarx.com) Checkmarx security researchers discover vulnerability in OpenAI's ChatGPT
Data Breach Concerns Arise Amid Montana State University Cyberattack (JD Supra) On April 28, 2023, Montana State University posted a notice informing students and employees of a system outage. While MSU’s notice was vague, since...
Hacked university warns of campus text alerts sent by ransomware group (Record) A university in Virginia is warning students to be wary of texts being sent through the school’s mass alert system after a ransomware group messaged the entire campus about an ongoing cyberattack.
Capita warns some pensions data likely taken in cyber attack -FT (Reuters) British outsourcing company Capita has confirmed to pension clients that some data it processed was likely to have been hacked during a recent cyber incident, the Financial Times reported on Thursday.
Cyberattack shuts down Raleigh Housing Authority computer systems (ABC11 Raleigh-Durham) The National Guard cyber security team is investigating after a cyberattack shut down computer systems and business operations at the Raleigh Housing Authority.
NSW cancer treatment centre targeted by Medusa hackers (Cybersecurity Connect) A major NSW cancer treatment centre is believed to have been targeted by a cyber-attack, with a malicious hacking group claiming responsibility. NSW Health has announced that it has begun an investi
Ransomware group behind Oakland attack targets city in Massachusetts (Record) Lowell, home to more than 111,000 people and about a half hour drive from Boston, announced a “cyber-related incident” April 24. The Play cybercrime group took credit this week.
Security Patches, Mitigations, and Software Updates
Apple Releases First-Ever Security Updates for Beats, AirPods Headphones (SecurityWeek) Apple releases firmware updates for Beats and AirPods to patch a vulnerability that can be exploited to gain access to headphones
Trends
79% of Cyber Pros Make Decisions Without Threat Intelligence (Security Intelligence) Heads up, C-Suite! Most cyber pros admit to making decisions without using threat intelligence. Why are experts disregarding useful intelligence?
Think your data has no value? Scammers disagree (Help Net Security) The share of global phishing attempts among all threats blocked in Q1 2023 was up 40% compared to the same quarter in 2022.
J&J’s latest vision campaign offers clear-eyed advice for Gen Z: Take a social media break (Endpoints News) Johnson & Johnson wants Gen Z to take a break from social media. Its new campaign from J&J Vision for contact lens brand Acuvue, “Where Vision Meets Sight,” asks young people to put down their phones and take a break. The goal is not only to give their eyes a
Marketplace
Databricks Ventures Invests in Data Security Leader Immuta (Immuta) “Immuta is a trusted data security partner,” said Ali Ghodsi, CEO and Co-founder of Databricks.
BioCatch, the Leading Online Fraud Detection Platform, welcomes Permira Growth Opportunities as a significant shareholder (Permira) Secondary investment positions Permira Growth Opportunities (PGO) as 3rd largest BioCatch shareholder; creates opportunities for accelerated geographical expansion, product innovation, and M&A
CACI acquires Bitweave to upweight national security intelligence services (Yahoo Life) CACI Limited, a leading data and technology solutions company, has acquired Bitweave Limited.
Spielworks Co-launches Its Wombat X Accelerator With Cronos, Newcoin, and More, Fostering Robust Web3 Game Development (AiThority) Spielworks, a leading blockchain startup specializing in gaming and decentralized finance (DeFi) solutions, launches its Web3 gaming .
First ‘secret’ task orders received for Pentagon’s $9B cloud contract (C4ISRNet) Pentagon CIO John Sherman likened the $9 billion Joint Warfighting Cloud Capability to a U.S. Navy carrier strike group — powerful and versatile.
Sophos Appoints Pat Sheridan as Senior Vice President of Americas Sales (GlobeNewswire News Room) Sophos, a global leader in innovating and delivering cybersecurity as a service, today announced...
Check Point Software Technologies Reinforces Leadership with Sherif Seddik as New President of EMEA Sales (MarketScreener) IT Industry Expert to Accelerate Regional Business Growth and Market Expansion. Check Point Software Technologies Ltd. , a leading provider of cyber security solutions globally, today announced the... | May 5, 2023
Products, Services, and Solutions
Pindrop Delivers Voice Authentication Solutions Through Google Cloud Marketplace (Business Wire) Partnership expands deployment options for advanced voice authentication solutions
Cybrary for Teams Now Available on Google Cloud Marketplace (Business Wire) Google Cloud Marketplace users now have access to critical cybersecurity skill development and training resources.
Google Cybersecurity Certificate - Grow with Google (Google) Explore Google's online cybersecurity certificate program. Learn the foundations of cybersecurity and prepare for a career as a cybersecurity analyst.
Digital Element Partners with Pangea to Bring Robust Security Intelligence and IP Geolocation to Developers (GlobeNewswire News Room) New Partnership Empowers Developers to Leverage Global IP Geolocation and Intelligence Services for Optimal Security...
Orca Security is First CNAPP to Integrate with Microsoft Azure OpenAI GPT-4 (Business Wire) Integration Builds on Orca’s Use of ChatGPT to Greatly Accelerate Mean-Time-to-Remediation Through Instantly Generated Instructions
AvePoint Advances SaaS Management Capabilities to Help Organizations Thrive in the Digital Workplace (Yahoo Finance) As multi-SaaS operations expand, the AvePoint Confidence Platform empowers organizations to improve operational efficiency, increase visibility, and enable security and compliance
Enveil and Exovera Announce New Collaboration Enabling Secure Data Usage to Unlock Global Intelligence (Business Wire) Integration delivers value by expanding secure and private data usage across extensive data holdings
UberEther Announces IAM Advantage, a First-to-Market DoD IL5 ICAM Package Offering (GlobeNewswire News Room) Best-in-class identity providers UberEther, Ping Identity, SailPoint, Nok Nok, Radiant Logic, Appgate and Carahsoft join forces to modernize identity...
HYAS, RSM Partner to Preemptively Protect Clients Via Protective DNS (Business Wire) HYAS Advanced Threat Intelligence, Detection and Response Lets RSM Identify and Neutralize Adversary Infrastructures Before Attacks Can Strike
Prove Identity to Offer Seamless and Secure Gaming Experiences to FanDuel Customers (Business Wire) Prove’s Pre-Fill solution to streamline and increase FanDuel user signups
ThrottleNet Reveals The Importance of Cyber Liability Insurance (openPR.com) ThrottleNet named the 1 Cybersecurity Firm in St Louis by Small Business Monthly says with the recent rise in ransomware attacks cyber liability insurance is a must for nearly every size business yet it ...
Thales teams with Nozomi Networks to expand cyber incident detection capabilities on industrial infrastructure (Thales Group) Thales, in partnership with Nozomi Networks, is already helping a number of global players to enhance their industrial cybersecurity and improve their incident detection and response capabilities by installing network sensors at their sites around the world and providing day-to-day network supervision via Security Operation Centres (SOCs). These solutions enable Thales to analyse suspicious behaviour and unexpected traffic to and from the external network and to detect malicious activity targeting industrial information systems.
News | Radware Protects Native Android and iOS Mobile Applications from Bad Bots (Pipeline Publishing) Radware Bot Manager’s market-leading advancements offer first-to-market integrated authentication for both iOS and Android devices and new identity algorithms so organizations can defend themselves against distributed and targeted bot attacks with the highest accuracy and performance.
Trustwave’s behaviour-based threat hunting (iTWire) Trustwave is promoting behaviour-based threat hunting as it is a more human-centric approach to cybersecurity. According to the 2022 Data Breach Investigations Report, 82 per cent of breaches start with phishing or other social engineering schemes that do not raise alarms from traditional automated...
Menlo Security has developed a platform that isolates all users’ web browsing on a remote server (Express Computer) Menlo Security has taken a ‘Zero-Trust’ approach to web security and has built a platform that aims to eliminate 100 percent of web and email threats.
Technologies, Techniques, and Standards
Taking the Fight to the Enemy With Offensive Cybersecurity (Gov Info Security) Offensive security is transitioning from traditional penetration testing to a more continuous, technology-led approach, says Aaron Shilts, president and CEO at
Embedding Cybersecurity Into Your Culture (CompTIA) Is your culture inadvertently undermining your security? Or does it encourage a “security first” mindset?
Target Senior Director of Cyber Security provides tips to promote cyber security culture. (CyberWire) Cybersecurity training: one company's perspective.
Design and Innovation
An Inflection Point in the Journey to Passwordless (FIDO Alliance) Andrew Shikiar, FIDO Alliance Executive Director & CMO Yesterday, Google announced support for simple and secure sign-ins with passkeys for all Google Account users. This is a huge milestone in […]
Consumers are ready to embrace new authentication methods (FIDO Alliance) It’s been a year since Apple, Google and Microsoft announced their commitment to passkeys with plans to expand support for a common passwordless sign-in standard created by the FIDO Alliance and the World Wide Web Consortium. Early adopters have enabled passkeys for user sign-ins – where do consumers stand on passkeys today?
These researchers are terrified of A.I. They’re counting on cryptography to keep our future robot overlords in check (Fortune Crypto) The more A.I. becomes enmeshed in our day-to-day, the more we need to know that we’re interacting with the right A.I., say researchers and entrepreneurs.
Research and Development
NSF Announces $140 Million Investment In Seven Artificial Intelligence Research Institutes (Forbes) The U.S. National Science Foundation (NSF), along with several other federal agencies and higher education institutions, has announced a $140 million investment to establish seven new National Artificial Intelligence Research Institutes (AI Institutes).
Academia
More Canadian universities now say they’ll steer clear of Chinese telecom Huawei (Toronto Star) Their statements follow the University of Waterloo’s ending of all existing partnerships with the company.
Premier Ford supports UW cutting ties with Huawei: ‘It concerns me sometimes, some of the things we’re dealing with the communist Chinese government’ (Waterloo Region Record) Severing ties with Chinese tech firm affects research deals worth millions at the University of Waterloo
NSF funds institute to research AI-powered cybersecurity (Purdue University) Malware. Ransomware. Zero-day exploits. There’s no rest when it comes to protection from cyberattacks. And in an increasingly connected world, with expanding cyber and cyber-physical spaces and access to tools like artificial intelligence, attacks are likely going to become more diverse and sophisticated.
Legislation, Policy, and Regulation
FACT SHEET: Biden-Harris Administration Announces New Actions to Promote Responsible AI Innovation that Protects Americans’ Rights and Safety (The White House) Today, the Biden-Harris Administration is announcing new actions that will further promote responsible American innovation in artificial intelligence (AI) and protect people’s rights and safety. These steps build on the Administration’s strong record of leadership to ensure technology improves the lives of the American people, and break new ground in the federal government’s ongoing effort…
National Standards Strategy for Critical and Emerging Technology (Record) The Biden administration's National Standards Strategy for Critical and Emerging Technology is intended to help set global rules to ensure tech is "universally safe and interoperable."
White House Pushes Tech C.E.O.s to Limit Risks of A.I. (New York Times) In the White House’s first gathering of A.I. companies, Vice President Kamala Harris told the leaders of major tech companies they had a “moral” obligation to keep products safe.
Biden Administration Warns of AI’s Dangers. There’s a Limit to What White House Can Do. (Wall Street Journal) The Biden administration is confronting the rapidly expanding use of artificial intelligence, warning of the dangers the technology poses to public safety, privacy and democracy while having limited authority to regulate it.
Joe Biden Wants Hackers’ Help to Keep AI Chatbots in Check (WIRED) The White House will support an event at the Defcon security conference this summer that challenges experts to uncover flaws in generative AI systems.
For Democracies, Banning TikTok Would Do More Harm Than Good (World Politics Review) Liberal democracies like the US and UK are considering bans on TikTok over national security and data collection concerns.
New EARN IT Act Has Old Issues (Decipher) The newest version of the EARNT IT Act still has language that would force platform providers to weaken or abandon encrypted services.
Current Cyberspace Demands Compete With Old Processes (AFCEA International) U.S. Cyber Command will build the world’s prime digital military acquisition force from the ground up.
Federal Information Security Management Act of 2014: Annual Report, Fiscal Year 2022 (Office of Management and Budget (OMB)) The Office of Management and Budget (OMB) is publishing this report in accordance with the Federal Information Security Modernization Act of 2014 (FISMA), Pub. L. No. 113-283, sec. 2(a), § 3553(c) (codified at 44 U.S.C. § 3553(c)). This report also incorporates OMB’s analysis of agency application of intrusion detection and prevention capabilities, as required by the Cybersecurity Act of 2015, Pub. L. No. 114-113, § 226(c)(1)(B), and agency reporting on compliance with privacy requirements and management of privacy risks.
Principal Associate Deputy Attorney General Marshall Miller Delivers Remarks at the Ethics and Compliance Initiative IMPACT Conference (US Department of Justice) Good morning. Thank you for that warm welcome and kind introduction. It’s great to be with you today to discuss the Justice Department’s corporate criminal enforcement priorities. I bring with me
Influential task force takes stock of progress against ransomware (Washington Post) The Ransomware Task Force looks back on the two-year anniversary of its report
Biden is expected to tap Air Force chief to be nation’s next top military officer (POLITICO) If confirmed, Gen. C.Q. Brown would succeed Gen. Mark Milley as Joint Chiefs chair
Litigation, Investigation, and Law Enforcement
Who’s your fed buddy? | Don’t delay in reporting cybersecurity incidents and attacks to law enforcement (Contrast Security) Get valuable advice from Contrast’s RSA 2023 Modern Bank Heists panel about reporting financial cyberattacks to law enforcement.
Former Uber CSO Joe Sullivan Avoids Prison Time Over Data Breach Cover-Up (SecurityWeek) Former Uber CSO Joe Sullivan was sentenced to three years probation for covering up a data breach suffered by the ride-sharing giant in 2016.
Former Uber security chief Sullivan avoids prison in data breach case (Washington Post) The first corporate executive convicted of a crime related to a data breach by outsiders is sentenced to probation and fined