The CyberWire Daily Podcast 3.28.22
Ep 1544 | 3.28.22

Notes on the cyber aspects of the ongoing hybrid war. DDoS in the Marshall Islands. Lapsus$ Group post mortems. US FCC sanctions Kaspersky. CISA adds Known Exploited Vulnerabilities to its Catalog.

Show Notes

Preparing for the spread of cyberattacks. A look at Cyber operations in the hybrid war. C3 and electronic warfare. The Republic of the Marshall Islands suffers rolling DDoS attacks. Okta gives a detailed account of its experience with the Lapsus$ Group. Lapsus$ under the law enforcement microscope. The FCC sanctions Kaspersky. Malek Ben Salem from Accenture on getting full potential from deception systems. Our guest is Greg Scasny of Blueshift Cybersecurity with remote workforce security concerns. And CISA adds to its Known Exploited Vulnerabilities Catalog.

Selected reading.

‘Preparation, not panic’: Top US cyber official asks Americans to look out for Russian hacking efforts CNN

Russia hacked Ukrainian satellite communications, officials believe BBC News

Chinese cyberattacks on NATO countries increase 116% since Russia's invasion of Ukraine: study Fox Business

Why hasn't Russia used its 'full scope' of electronic warfare?Breaking Defense

Russian troops’ tendency to talk on unsecured lines is proving costly Washington Post

Marshall Islands telecom service hit by cyber attack RNZ

Okta: "We made a mistake" delaying the Lapsus$ hack disclosure BleepingComputer

Who is LAPSUS$, the Big, Bad Cybercrime Gang Hacking Tech's Biggest Companies? Gizmodo

FCC puts Kaspersky on security threat list, says it poses “unacceptable risk“ Ars Technica

U.S. FCC adds Russia's Kaspersky, China telecom firms to national security threat list Reuters

CISA Adds 66 Known Exploited Vulnerabilities to Catalog CISA