White House adds its voice to CISA’s Shields Up, warning of the possibility of Russian cyberattacks. New malware strains described, new criminal attack techniques observed.

White House warns of large-scale Russian cyberattacks. Browser-in-the-Browser attacks. New Conti affiliate described. Android malware “Facestealer” described. Android malware “Facestealer” described. Microsoft and Okta investigate possible Lapsus$ attacks. Arid Gopher is out in the wild. Our guest is Swathi West of Barr Advisory on opportunities for the underrepresented in cybersecurity. Joe Carrigan wonders if we can’t just get rid of passwords once and for all. And advancing censorship by finding “extremism” and “Russophobia” in Meta’s platforms.

Selected reading.

Russia's hybrid war with Ukraine: strategy, norms, and alliances (The CyberWire)

Statement by President Biden on our Nation’s Cybersecurity (The White House) 

FACT SHEET: Act Now to Protect Against Potential Cyberattacks (The White House) 

Statement from CISA Director Easterly on Potential Russian Cyberattacks Against the United States (CISA) 

Press Briefing by Press Secretary Jen Psaki and Deputy NSA for Cyber and Emerging Technologies Anne Neuberger, March 21, 2022 (The White House) 

Statement from Secretary Mayorkas on Cybersecurity Preparedness (US Department of Homeland Security) 

Conti Affiliate Exposed: New Domain Names, IP Addresses and Email… (eSentire) 

New Phishing toolkit lets anyone create fake Chrome browser windows (BleepingComputer).

New Browser-in-the Browser (BITB) Attack Makes Phishing Nearly Undetectable (The Hacker News)

Arid Gopher: Newest Micropsia Malware Variant (Deep Instinct) 

Spyware dubbed Facestealer infects 100,000+ Google Play users (Pradeo) 

Okta confirms investigation into potential breach (The Record by Recorded Future) 

Microsoft investigating alleged Lapsus$ hack of Azure DevOps source code repositories (Computing) 

Russian War Report: Meta officially declared “extremist organization” in Russia (Atlantic Council)