Tata Power sustains cyberattack. Influence operations and battlespace prep. Ransom Cartel looks a lot like REvil. Notes from Russia’s hybrid war.
There’s been a Cyberattack against Tata Power. The FBI warns US state political parties of Chinese scanning. Russian influence ops play defense; China’s are on the offense. Ransom Cartel and a possible connection to REvil. "Prestige" ransomware is sighted in attacks on Polish and Ukrainian targets. Distributed denial-of-service attacks interfere with Bulgarian websites. Grayson Milbourne of OpenText Security Solutions on SBOMS. Our own Rick Howard checks in with Bryan Willett of Lexmark on implementation of Zero Trust. And Mr. Musk tweets his intention to continue to subsidize Starlink for Ukraine (probably).
Selected reading.
Hackers Attack Tata Power IT Systems: All You Need To Know (IndiaTimes)
Chinese hackers are scanning state political party headquarters, FBI says (Washington Post)
The Defender's Advantage Cyber Snapshot Issue 2 — More Insights From the Frontlines (Mandiant)
Ransom Cartel Ransomware: A Possible Connection With REvil (Unit 42)
New “Prestige” ransomware impacts organizations in Ukraine and Poland (Microsoft Security Threat Intelligence)
Bulgarian Government Hit By Cyberattack Blamed On Russian Hacking Group (RadioFreeEurope/RadioLiberty)
Starlink isn't a charity, but the Ukraine war isn't a business opportunity (TechCrunch)