Powergrid attacks, DDoS, and doxing in a hybrid war. Notes on botnets, and a threat actor changes its phish hooks. Patch Tuesday. Sentence passed in a sanctions evasion case.
Indestroyer2 and Ukraine's power grid. More on last week's distributed denial-of-service attack against Finland. Anonymous claims to have doxed Russia's Ministry of Culture. Hafnium gets evasive. Enemybot is under development but worth keeping an eye on. Changing the phish hook. Patch Tuesday notes. Tim Eades from Cyber Mentor Fund on digital & security transformations. Our guest is Aaron Shilts from NetSPI onproactive public-private sector security collaboration. Sanctions evasion is serious business.
Why Russia’s Cyber Warriors Haven't Crippled Ukraine (The National Interest)
In Ukraine, a ‘Full-Scale Cyberwar’ Emerges (Wall Street Journal)
Russian hackers tried to bring down Ukraine’s power grid to help the invasion (MIT Technology Review)
Ukraine Thwarts Cyberattack on Electric Grid, Officials Say (Wall Street Journal)
Zhadnost strikes again… this time in Finland. (SecurityScorecard)
Tarrask malware uses scheduled tasks for defense evasion (Microsoft Security Blog)
Enemybot: A Look into Keksec's Latest DDoS Botnet (Fortinet Blog)
Qbot malware switches to new Windows Installer infection vector (BleepingComputer)
Valmet DNA (CISA)
Aethon TUG Home Base Server (CISA)