Moscow poorly served by its intelligence services, say London and Washington. Cyber phases of the hybrid war. A new zero-day, and some resurgent criminal activity.
Russian cyber operators collect against domestic targets. More details on the Viasat hack. Ukrainian hacktivists say they can interfere with Russian geolocation. Spring4shell is another remote-code-execution problem. The Remcos Trojan is seeing a resurgence. Malicious links distributed via Calendly. Johannes Ullrich from SANS on attack surface detection. Our guest is Fleming Shi from Barracuda on cybersecurity champions. Phishing with “emergency data requests.” Lapsus$ may be back from vacation.
Vladimir Putin is being lied to by his advisers, says GCHQ (The Telegraph)
Phishing campaign targets Russian govt dissidents with Cobalt Strike (BleepingComputer)
KA-SAT Network cyber attack overview (Viasat.com)
Spring4Shell: No need to panic, but mitigations are advised (Help Net Security)
Remcos Trojan: Analyzing the Attack Chain (Morphisec)
Lapsus$ claims Globant as its latest breach victim (TechCrunch)