Chinese cyber attack foiled: Power Ministry (The Hindu) In Mumbai, Anil Deshmukh said a preliminary Cyber Cell report on the power outage had been handed over to the State Energy Ministry.
Power Ministry Confirms Chinese State Sponsored Hackers Targeted Indian Power Centres, All Attacks Thwarted (Swarajyamag) The Union Power Ministry revealed on Monday (2 March) that state-sponsored Chinese hacker groups had targeted several Indian power centres, the Hindu reports.
Timely action avoids cyber attack on TS power systems (Telangana Today) Sources said a few electrical sub-stations were affected because of the hackers’ action.
Chinese hackers tried to block Telangana power supply: Central Electricity Authority (The Times of India) The Chinese hackers’ groups that allegedly targeted the power supply in Mumbai in October last year, also attacked the Telangana State Load Dispatch C
40 Telangana sub-stations attacked by Chinese malware (Business Today) Telangana SLDC, which manages power supply in the state, says state agencies have removed all malware in these substations after alert from central agency. They have strengthened firewall as well
RedEcho, ShadowPad — how Chinese hackers may have accessed critical Indian computer systems (ThePrint) NYT report suggests that last year's Mumbai power outage was caused by hackers linked to China. ThePrint looks at the different players involved & what could have happened.
Chinese cyber attack: Why Maharashtra should worry (India Today) India’s most industrialised state and financial hub is vulnerable to attacks like the one traced to a Chinese state entity
Mumbai Power Outage in October May Have Been Result of 'Cyber Sabotage': Anil Deshmukh (The Wire) The Maharashtra home minister said the the state's Cyber Cell's report found that 14 Trojan horses, a kind of malware, may have been introduced into the electricity board's server.
China rages as US report accuses it of cyber attack on India's power grid; mum on RedEcho (Republic World) China has refuted reports that it had initiated cyber attacks against India's power grid and also claimed that it is 'firmly opposed' to such practices.
Chinese hackers target Indian vaccine makers (Business Insurance) A Chinese state-backed hacking group has in recent weeks targeted the IT systems of two Indian vaccine makers whose coronavirus shots are being used in the country’s immunization campaign, cyber intelligence company Cyfirma told Reuters.
Cybersecurity Firm Claims Chinese Hackers Targeted Serum Institute, Bharat Biotech (The Wire) China's foreign ministry dismissed the allegations, describing Cyfirmia's allegations as "baseless speculation".
Beijing dismisses alleged Chinese hacking of Indian COVID-19 vaccine makers (CNA) China on Tuesday rejected an allegation by a cyber intelligence firm that a state-backed hacking group targeted the IT systems of two Indian ...
HAFNIUM targeting Exchange Servers with 0-day exploits (Microsoft Security) Microsoft has detected multiple 0-day exploits being used to attack on-premises versions of Microsoft Exchange Server in limited and targeted attacks. In the attacks observed, threat actors used this vulnerability to access on-premises Exchange servers, which enabled access to email accounts, and install additional malware to facilitate long-term access to victim environments. Microsoft Threat Intelligence Center (MSTIC) attributes this campaign with high confidence to HAFNIUM.
Operation Exchange Marauder: Active Exploitation of Multiple Zero-Day Microsoft Exchange Vulnerabilities (Volexity) Volexity is seeing active in-the-wild exploitation of multiple Microsoft Exchange vulnerabilities used to steal e-mail and compromise networks. These attacks appear to have started as early as January 6, 2021.
Microsoft issues emergency patches for 4 exploited 0-days in Exchange (Ars Technica) Attacks are limited for now but may ramp up as other hackers learn of them.
Microsoft says China-backed hackers are exploiting Exchange zero-days (TechCrunch) The newly-disclosed threat actor operates out of China, but uses servers located in the U.S. to launch its attacks.
Microsoft: 4 Exchange Server Zero-Days Under Attack by Chinese Hacking Group (SecurityWeek) Microsoft releases emergency patches to provide cover for zero-day flaws in Microsoft Exchange that areunder attack by a Chinese cyber-espionage hacking group.
Myanmar’s Military Deploys Digital Arsenal of Repression in Crackdown (New York Times) The generals who staged a coup last month use surveillance drones, iPhone cracking devices and hacking software, some of it from Western countries that bar sales of such technology to Myanmar.
More Zero-Days Have Been Linked to Private Companies Than Any Nation State (The Record by Recorded Future) The cybersecurity community has raised the alarm about the ever-increasing number of private companies selling offensive cyber capabilities
()
The Cybersecurity 202: A new government watchdog report highlights urgent federal cybersecurity risks (Washington Post) Government agencies could have caught a massive Russian hacking campaign sooner if they had implemented urgent cybersecurity recommendations from the federal government's top watchdog.
Cybersecurity Failings Get Top Billing Among Lawmakers and Federal Watchdogs (The Record by Recorded Future) Federal cybersecurity is in a worse place than it was two years ago, with agencies failing to implement more than 750 recommended changes.
SolarWinds hack may lead to notification law, stronger cyber agency (Roll Call) Lawmakers from both parties, and tech companies, see a need for mandatory notification of government about data breaches and criminal hacks.
Recovering from SolarWinds Hacking takes 18 or More Months (Tech Times) Protection against cyberattacks is emphasized as a priority. US CISA worked through the holidays to help agencies hunt SolarWinds hackers out of their systems and salvage the data.
Wray hints at federal response to SolarWinds hack (TheHill) FBI Director Christopher Wray on Tuesday hinted at the planned federal response to what has become known as the SolarWinds hack, stressing that confronting foreign attacks in cyberspace would be “a long, hard s
The Cybersecurity 202: Extremists flocking to encrypted apps could restart debate over law enforcement access (Washington Post) The recent shutdown of conservative-favored app Parler has sent throngs of President Trump's supporters to encrypted messaging apps – where some extremists are already organizing and calling for more violence to overturn the election results.
Senate to get on the IT modernization bandwagon? (Federal News Network) The Senate Homeland Security and Governmental Affairs Committee also included $650 million for CISA and $200 million for the USDS.
The Senate has never truly supported IT modernization and here’s what has to change (Federal News Network) New Senate leadership for Financial Services and Governmental Affairs could help break the 20-year IT modernization blockade.
FireEye's Mandia Sees Private Sector as Resource for CISA's New Threat Hunting Authority (Defense Daily) The private sector has a pool of resources, talent and experience that the Cybersecurity and Infrastructure Security Agency (CISA) will be able to tap into
Bringing New Money-Laundering Law Into Force Falls to Tiny Treasury Unit (Wall Street Journal) Among other things, FinCEN will have to create a registry of owners of anonymous shell companies, a task that will require a revamp of its creaky technology.
Empire State of Privacy: Recent Developments in New York’s Privacy and Cybersecurity Laws (New York Law Journal) This article outlines new rules that companies of all stripes will need to follow in the coming years in New York; discusses some of the privacy bills that may become law in 2021; and describes steps that companies can take now to respond to—and prepare for—these changes.
UPDATED: Va. becomes 2nd state with consumer data protection law (Virginia Business) Updated March 2: Gov. Ralph Northam signed the Consumer Data Protection Act on Tuesday. In a statement, sponsor Sen. David Marsden, D-Fairfax, said, “This is a huge step forward. By creating this omnibus bill, we take the lead in data privacy in the United States. This omnibus bill is clear, concise and holds companies accountable for…
Florida Aims To Mirror California’s CCPA With Proposed Data Privacy Legislation (JD Supra) Florida is currently considering data privacy legislation that would require covered businesses to implement comprehensive policies and procedures to...
U.S. Senate Intelligence Committee approves Burns to lead CIA (Reuters) The U.S. Senate Intelligence Committee by a unanimous voice vote on Tuesday backed veteran diplomat William Burns to become President Joe Biden's Central Intelligence Agency director, Senator Mark Warner, the Democratic committee chair, said.
DoJ Steps Up Investigation into NSO Group – Report (Infosecurity Magazine) DoJ Steps Up Investigation into NSO Group – Report. Lawyers probe WhatsApp for more technical details