The terrorist strike against the Brussels airport had its expected effect on cyber attacks worldwide, with researchers noting attack activity spikes in both Western Europe and North America. Much of the activity appears ISIS-inspired, but most if not all of it failed to rise above the familiar nuisance level Islamist hacktivists have achieved in the past. (In fact, the annual #OpIsrael action by Anonymous factions, according to Cytegic’s March intelligence report, even showed declining levels of efficacy.)
Governments and electrical power utilities in the US and UK continue to look to ways of shoring up their grids’ defenses. The attacker-induced rolling blackouts in Ukraine are widely regarded as having crossed a significant line in cyber conflict.
SurfWatch says it’s detected and stopped an attempt on websites and fora hosted by Invision Power Services. The threat actor, identified as “AlphaLeon,” began leasing a Trojan, “Thanatos,” in a malware-as-a-service offering in March. He gained access to Invision Power Services (which hosts fully functional e-commerce sites, some of them for large companies) in an effort to increase the size of his botnet. SurfWatch detected his activity and notified Invision Power Services, which then closed off AlphaLeon’s access point.
In industry news, SecureWorks IPO, expected to price tomorrow, is receiving some favorable advance previews from analysts.
In comments prompted by its running dispute with Apple, the US FBI says there’s no “one-size-fits-all” approach to gathering evidence. Apple, for its part, says it’s received requests for source code from China’s government (it refused to comply).