The CyberWire Daily Briefing.
- Get link
- X
- Other Apps
"Electronic warfare and electronic countermeasures."
Views expressed in this cybersecurity, cyber espionage update are those of the reporters and correspondents. Accessed on 25 November 2023, 2051 UTC.
Content and Source: https://thecyberwire.com/newsletters/daily-briefing ("The CyberWire Daily Briefing").
Please click link or scroll down to read your selections. Thanks for joining us today.
Russ Roberts (https://www.hawaiicybersecurityjournal.net).
ISSUESV12 | Issue 223 | 11.22.23Electronic warfare and electronic countermeasures.
CISA issues joint Cybersecurity Advisory on Citrix Bleed. Countering web shell threats. Law enforcement takes down "pig butchering" operations. Altman will return to OpenAI. Israeli honeypots deployed during the war. A renaissance in electronic warfare. And a response in the form of countermeasures. Online security during the holidays.
V12 | Issue 222 | 11.21.23A shakeup in Ukraine's SSSCIP, and turmoil at OpenAI.
OpenAI's continuuing turmoil. Konni campaign phishes with a Russian document as bait. LockBit's third-party compromise of Canadian government personnel data. Crypto firm sustains API attack. Ukraine removes senior security officials under suspicion of graft.
V12 | Issue 221 | 11.20.23Natural intelligence (sort of) still runs artificial intelligence (business-wise, anyway).
Leadership turmoil at OpenAI. Citrix Bleed vulnerability implicated in ransomware attacks. QakBot seems to have a successor. The FSB deploys LitterDrifter in cyberespionage against Ukraine. Russian security firm says China and North Korea are the source of most cyberattacks against Russia. Privateers and auxiliaries engage targets of opportunity. Alleged war crimes include cybercrimes.
V12 | Issue 220 | 11.17.23Grey market and criminal-to-criminal offerings.
CISA and FBI warn of Scattered Spider. Phobos ransomware: an affiliate crimeware-as-a-service program. A "hack-for-hire" contractor. “Scama” in the C2C market. The tempo of cyber operations in Russia's hybrid war.
V12 | Issue 219 | 11.16.23Lawfare, warfare, and old-fashioned crime in the hybrid battlespace.
Rhysida malware: a warning and a description. Extending local breaches in Google Workspace. Protestware in open-source products. Donation scam: exploiting sympathy. Cyber safety for the holidays. Allocating resources for security. Using regulatory risk to pressure a ransomware victim. A call for regulatory action against a supply chain threat. GRU's Sandworm implicated in campaign against Danish electrical power providers.
V12 | Issue 218 | 11.15.23Cyberespionage services sort themselves out during a time of hybrid war.
The Molerats have some new tools. Israel turns to NSO Group's Pegasus to search for hostages taken by Hamas. BlackCat uses malicious Google ads. Social engineering in Q3 2023. Are small businesses in denial about ransomware? A look back at Patch Tuesday. Cyberespionage campaign attributed to Russia's SVR.
V12 | Issue 217 | 11.14.23Vulnerabilities and the cyber gangs who exploit them.
CISA and FBI issue an update on Royal Ransomware. A pre-Black Friday look at card skimmers. Smash-and-grab ransomware attacks. Cloud vulnerabilities: current trends and risks. Fences, and their place in organized cybercrime. Application vulnerabilities show a decline. Botnet activity surges. DP World Australia restores port operations. LockBit may be drawing unwelcome attention to itself. ENISA and Ukraine formalize cybersecurity cooperation.
V12 | Issue 216 | 11.13.23A variety of threats to critical infrastructure.
Australian ports recovering from cyberattack. SysAid exploitation by Cl0p user Lace Tempest. LockBit doxes Boeing as Boeing hangs tough on paying ransom. Ransomware attack against China's largest bank. Docker Engine for DDoS. Anonymous Sudan claims attacks on ChatGPT and Cloudflare.
V12 | Issue 215 | 11.9.23Shields Ready, as infrastructure operators look to threats and vulnerabilities.
CISA, FEMA, and Shields Ready. Ransomware operators exploit 3rd-party tools. Bittrex bankruptcy phishing campaign. Spammers abuse Google Forms quizzes. Imperial Kitten in action against Israeli targets. Iranian cyberattacks against Israel have been "reactive and opportunistic." Sandworm and Ukraine's power grid: 2022 attacks.
V12 | Issue 214 | 11.8.23"No credible threats" to yesterday's US elections.
"No credible threats" to yesterday's US elections: CISA. An Azure cryptominer proof-of-concept. Criminals seek to profit from the .ai TLD. Singapore resort sustains cyberattack. A look ahead at holiday cyber threats. A major Chinese cyberespionage effort against Cambodia. Four cyber phases of a hybrid war. Cyber and electronic threats to space systems.
Electronic warfare and electronic countermeasures.
CISA issues joint Cybersecurity Advisory on Citrix Bleed. Countering web shell threats. Law enforcement takes down "pig butchering" operations. Altman will return to OpenAI. Israeli honeypots deployed during the war. A renaissance in electronic warfare. And a response in the form of countermeasures. Online security during the holidays.
A shakeup in Ukraine's SSSCIP, and turmoil at OpenAI.
OpenAI's continuuing turmoil. Konni campaign phishes with a Russian document as bait. LockBit's third-party compromise of Canadian government personnel data. Crypto firm sustains API attack. Ukraine removes senior security officials under suspicion of graft.
Natural intelligence (sort of) still runs artificial intelligence (business-wise, anyway).
Leadership turmoil at OpenAI. Citrix Bleed vulnerability implicated in ransomware attacks. QakBot seems to have a successor. The FSB deploys LitterDrifter in cyberespionage against Ukraine. Russian security firm says China and North Korea are the source of most cyberattacks against Russia. Privateers and auxiliaries engage targets of opportunity. Alleged war crimes include cybercrimes.
Grey market and criminal-to-criminal offerings.
CISA and FBI warn of Scattered Spider. Phobos ransomware: an affiliate crimeware-as-a-service program. A "hack-for-hire" contractor. “Scama” in the C2C market. The tempo of cyber operations in Russia's hybrid war.
Lawfare, warfare, and old-fashioned crime in the hybrid battlespace.
Rhysida malware: a warning and a description. Extending local breaches in Google Workspace. Protestware in open-source products. Donation scam: exploiting sympathy. Cyber safety for the holidays. Allocating resources for security. Using regulatory risk to pressure a ransomware victim. A call for regulatory action against a supply chain threat. GRU's Sandworm implicated in campaign against Danish electrical power providers.
Cyberespionage services sort themselves out during a time of hybrid war.
The Molerats have some new tools. Israel turns to NSO Group's Pegasus to search for hostages taken by Hamas. BlackCat uses malicious Google ads. Social engineering in Q3 2023. Are small businesses in denial about ransomware? A look back at Patch Tuesday. Cyberespionage campaign attributed to Russia's SVR.
Vulnerabilities and the cyber gangs who exploit them.
CISA and FBI issue an update on Royal Ransomware. A pre-Black Friday look at card skimmers. Smash-and-grab ransomware attacks. Cloud vulnerabilities: current trends and risks. Fences, and their place in organized cybercrime. Application vulnerabilities show a decline. Botnet activity surges. DP World Australia restores port operations. LockBit may be drawing unwelcome attention to itself. ENISA and Ukraine formalize cybersecurity cooperation.
A variety of threats to critical infrastructure.
Australian ports recovering from cyberattack. SysAid exploitation by Cl0p user Lace Tempest. LockBit doxes Boeing as Boeing hangs tough on paying ransom. Ransomware attack against China's largest bank. Docker Engine for DDoS. Anonymous Sudan claims attacks on ChatGPT and Cloudflare.
Shields Ready, as infrastructure operators look to threats and vulnerabilities.
CISA, FEMA, and Shields Ready. Ransomware operators exploit 3rd-party tools. Bittrex bankruptcy phishing campaign. Spammers abuse Google Forms quizzes. Imperial Kitten in action against Israeli targets. Iranian cyberattacks against Israel have been "reactive and opportunistic." Sandworm and Ukraine's power grid: 2022 attacks.
"No credible threats" to yesterday's US elections.
"No credible threats" to yesterday's US elections: CISA. An Azure cryptominer proof-of-concept. Criminals seek to profit from the .ai TLD. Singapore resort sustains cyberattack. A look ahead at holiday cyber threats. A major Chinese cyberespionage effort against Cambodia. Four cyber phases of a hybrid war. Cyber and electronic threats to space systems.
- Get link
- X
- Other Apps
Comments
Post a Comment
Please leave a comment about our recent post.