Russian information operations continue as Western nations brace for a round of hacking expected to emerge from Russian battlespace preparation and staging in cyberspace. Russia plans to allege, before the UN, that victims of a Sarin nerve agent in Syria were bribed to falsely report the attack.
The battlespace preparation consists (at least in part) of exploitation of vulnerabilities in the Smart Install tool found in widely used Cisco routers. The FBI's preliminary assessment of the risk focuses on the likelihood of espionage as the initial stage of any Russian operation, with the possibility of other offensive operations to follow. Cisco's Talos research unit estimates that some 168,000 systems could be affected.
ISIS and its splinter groups appear to be resuming activities in cyberspace as the terrorist groups enter their diaspora phase. Their activities appear to be renewed marketing: inspiration and recruitment.
Secureworks has described a Nigerian criminal operation, "Gold Galleon," that concentrates on stealing from maritime shipping firms and their customers. Their customary approach is business email compromise.
The US city of Atlanta continues its slow recovery from a crippling attack that hit municipal systems with SamSam ransomware on March 22nd. Direct costs of remediation are said to have amounted to $2.7 million so far.
ZTE is being effectively excluded from the US market as the US Government imposes penalties for the company's circumvention of sanctions against North Korea, Iran, Sudan, and Cuba. Sanctions against Huawei have moved the Chinese company toward a complete exit from the US market.