The CyberWire Daily Podcast 6.3.22
Ep 1592 | 6.3.22

Managing messaging in a hybrid war.Anti-Tehran hacktivism and Tehran-sponsored cyber ops. Rebranding as sanctions evasion. A threat to firmware. CISA warns of Confluence exploits.

Show Notes

Moscow wants attention to be paid to its messengers. Western support for Ukraine in cyberspace. US remains on alert for Russian cyberattacks. Iran: anti-government hacktivism and Tehran-sponsored cyber ops. Rebranding as sanctions evasion. A gangland threat to firmware. Johannes Ullrich from SANS on security of browsers caching passwords. Dave Bittner sits down with Perry Carpenter to discuss his new book, "The Security Culture Playbook: An Executive Guide To Reducing Risk and Developing Your Human Defense Layer,''co-author was Kai Roer.. And CISA adds an Atlassian issue to its Known Exploited Vulnerabilities Catalog.

Selected reading.

Russia summons heads of U.S. media outlets, warns of 'stringent measures' (Reuters)

US confirms military hackers have conducted cyber operations in support of Ukraine (CNN) 

Advancing security across Central and Eastern Europe (Google) 

US Justice Department Braces for More Russian Cyberattacks (VOA)

Russia, backed by ransomware gangs, actively targeting US, FBI director says (Cybersecurity Dive) 

Exiled Iran Group Claims Tehran Hacking Attack (SecurityWeek)

Exposing POLONIUM activity and infrastructure targeting Israeli organizations (Microsoft Security) 

To HADES and Back: UNC2165 Shifts to LOCKBIT to Evade Sanctions (Mandiant)

Russia-Linked Ransomware Groups Are Changing Tactics to Dodge Crackdowns (Wall Street Journal) 

Conti Targets Critical Firmware (Eclypsium)

Atlassian: Unpatched critical Confluence flaw under attack (Register) 

CISA Adds One Known Exploited Vulnerability (CVE-2022-26134) to Catalog (CISA)