Cyber war: a continuing threat, a blurry line between combatants and noncombatants. Chinese cyberespionage and its “plumbing.” CISA adds Known Exploited Vulnerabilities. News from Jersey.
US officials continue to rate the threat of Russian cyberattack as high. Civilians in cyber war. Broadcast interference and propaganda. A Joint CISA/FBI warning of Chinese cyberespionage. What gets a vulnerability into the Known Exploited Vulnerabilities Catalog? Andrea Little Limbago from Interos and Mike Sentonas from CrowdStrike join us with previews of their RSA conference presentations. And, finally, some Jersey-based cyber campaigns (that’s the Bailiwick, not the Garden State).
Selected reading.
Russian Cyber Threat Remains High, U.S. Officials Say (Wall Street Journal)
Shields Up: The New Normal (CyberScoop)
Russian Government, Cybercriminal Cooperation a 'Force Multiplier' (Decipher)
Opinion The U.S.-Russia conflict is heating up — in cyberspace (Washington Post)
Smartphones Blur the Line Between Civilian and Combatant (Wired)
Russian Cyberattack Hits Wales-Ukraine Football Broadcast (Gov Info Security)
People’s Republic of China State-Sponsored Cyber Actors Exploit Network Providers and Devices (CISA)
US agencies detail the digital ‘plumbing’ used by Chinese state-sponsored hackers (The Record by Recorded Future)
CISA Provides Criteria and Process for Updates to the KEV Catalog (CISA)
Reducing the Significant Risk of Known Exploited Vulnerabilities (CISA)
Jersey computers used in international cyber-attacks (Jersey Evening Post)