The CyberWire Daily Podcast 5.11.22
Ep 1576 | 5.11.22

Consensus on the Viasat hack: Russia did it. Kaspersky remains under investigation. The Nerbian RAT is out. NPM dependencies exploited, but to what end? Advisories from CISA and its partners.

Show Notes

There’s international consensus on the cyberattack against Viasat. Kaspersky remains under investigation. The Nerbian RAT is out. NPM dependencies are exploited, but to what end? Caleb Barlow examines Russia’s future on the internet. Our guest is Deepen Desai from Zscaler with the latest phishing research. And new advisories from CISA and its partners.

For links to all of today's stories check out our CyberWire daily news briefing:

https://thecyberwire.com/newsletters/daily-briefing/11/91

Selected reading.

Nerbian RAT Using COVID-19 Themes Features Sophisticated Evasion Techniques (Proofpoint)

NPM dependency confusion hacks target German firms (ReversingLabs)

npm Supply Chain Attack Targeting Germany-Based Companies (JFrog)

Adminer in Industrial Products (CISA)

Eaton Intelligent Power Protector (CISA) 

Eaton Intelligent Power Manager Infrastructure (CISA) 

Eaton Intelligent Power Manager (CISA)

AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere (CISA) 

Mitsubishi Electric MELSOFT GT OPC UA (CISA) 

CISA Adds One Known Exploited Vulnerability to Catalog (CISA) 

Alert (AA22-131A) Protecting Against Cyber Threats to Managed Service Providers and their Customers (CISA)

Protecting Against Cyber Threats to Managed Service Providers and their Customers (CISA)

Russia downed satellite internet in Ukraine -Western officials (Reuters) 

US and its allies say Russia waged cyberattack that took out satellite network (Ars Technica) 

Western powers blame Russia for Ukraine satellite hack (The Record by Recorded Future) 

Russian cyber operations against Ukraine: Declaration by the High Representative on behalf of the European Union (European Council) 

Attribution of Russia’s Malicious Cyber Activity Against Ukraine - United States Department of State (United States Department of State) 

U.S. Government Attributes Cyberattacks on SATCOM Networks to Russian State-Sponsored Malicious Cyber Actors (CISA)

Russia behind cyber-attack with Europe-wide impact an hour before Ukraine invasion (GOV.UK)

Estonia joins the statement of attribution on cyberattacks against Ukraine (Ministry of Foreign Affairs, Republic of Estonia) 

Statement on Russia’s malicious cyber activity affecting Europe and Ukraine (Canada.ca) 

Attribution to Russia for malicious cyber activity against European networks (Australian Government Department of Foreign Affairs and Trade) 

Russia hacked an American satellite company one hour before the Ukraine invasion (MIT Technology Review) 

NSA Probing Reach of Software From Russia’s Kaspersky in US Systems (Bloomberg)