The CyberWire Daily Podcast 3.3.22
Ep 1527 | 3.3.22

Russia and Belarus exchange cyber operations with Ukraine. The US announces Task Force KleptoCapture. Vulnerable infusion pumps. TCP middlebox reflection. Notes on sanctions.

Show Notes

The UN condemns Russia’s war in Ukraine. Ukraine’s cyber volunteers appear to be operating under the direction of Kyiv’s Ministry of Defense, and may be targeting Russian infrastructure. Belarusian cyber operators are phishing with stolen Ukrainian credentials in a cyberespionage campaign. Task Force KleptoCapture. Infusion pumps found vulnerable to cyberattack. TeaBot is found in the Play Store. TCP middlebox reflection. Dan Prince from Lancaster University on trustworthy autonomous systems. Our guest is John Shegerian from ERI on the security angle of e-recycling. And no more Harleys for Mr. Putin.

Selected reading.

Cyber Realism in a Time of War

Russian Hybrid War Report: Social platforms crack down on Kremlin media as Kremlin demands compliance

Russia's war spurs corporate exodus, exposes business risks

Using DDoS, DanaBot targets Ukrainian Ministry of Defense

Asylum Ambuscade: State Actor Uses Compromised Private Ukrainian Military Emails to Target European Governments and Refugee Movement

Phishing campaign targets European officials assisting in refugee operations

Anonymous vs. Russia: Hackers Say Space Agency Breached, More Than 1,500 Websites Hit

Conti Ransomware Source Code Leaked

Hacker Group Anonymous Vows to Disrupt Russia's Internet — RT Websites Become 'Subject of Massive DDoS Attacks'

Ukrainian cyber resistance group targets Russian power grid, railways

Army of Cyber Hackers Rise Up to Back Ukraine

U.S. Officials Detail Efforts to Enforce Raft of New Russia Rules

TCP Middlebox Reflection: Coming to a DDoS Near You

TeaBot Android Banking Malware Spreads Again Through Google Play Store Apps

Infusion Pump Vulnerabilities: Common Security Gaps