Skip to main content

CyberScoop.com

"Russian spies use ISPs to target embassies."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 01 August 2025, 2108 UTC.

Content and Source:  "CyberScoop.com."

 https://mail.google.com/mail/u/0/?ogbl#inbox/FMfcgzQbgcNCgKflXTgdqrbcVpZxcsNt

URL--https://cyberscoop.com.

Please check email link, URL, or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

CyberScooplinkedin facebook X


FRIDAY, AUG. 1, 2025
Russian spies are cracking embassies through the country's ISPs. Some government officials are still trying to figure out what was Volt Typhoon's end game. And what does success look like for the AI Action Plan? This is CyberScoop for Friday, August 1.
feature image

Anton Petrus, via Getty Images

Russian spies leveraging their ISPs

Microsoft Threat Intelligence has revealed that Russia's Secret Blizzard (also known as Turla) has been persistently spying on foreign diplomats in Moscow since at least 2024 by exploiting Russian internet service providers and deploying custom malware. The group leverages advanced techniques—such as adversary-in-the-middle attacks and convincing embassy employees to install fraudulent security certificates—to gain ongoing access to diplomatic communications and sensitive data. This campaign marks the first time Microsoft has confirmed Secret Blizzard’s high-confidence ISP-level access, underscoring a significant escalation in the group's ability to actively manipulate network traffic and maintain surveillance over targets in Russia. Matt Kapko has more.


CyberTalks | Oct. 21, 2025

CyberTalks presents a powerful opportunity to hear from the leading voices at the intersection of government and the technology industry on the latest tactics to combat these new risks. CyberTalks also provides an invaluable forum for exchanging ideas and best practices on ways to bolster digital defenses and promote cyber resiliency. Register Today!



Feds still undecided on Volt Typhoon's intentions

Federal officials are still assessing the intentions and potential impacts of the Chinese hacking group Volt Typhoon, which has gained access to U.S. critical infrastructure networks, including those in Guam. CISA’s acting chief strategy officer, Steve Casapulla, emphasized uncertainty about whether the hackers aim for limited disruption or something far more significant, such as crippling entire cargo management and transportation systems. The persistent presence of Volt Typhoon in sensitive networks has raised alarm among U.S. security leaders across multiple administrations, who warn these infiltrations could have severe, even life-and-death, consequences if leveraged during a future conflict. Tim Starks has more.


What will make the AI Action Plan a success?

On this episode of Safe Mode, Greg Otto sits down with Daria Bahrami, Head of Policy at Dreadnode, for an in-depth exploration of the new AI Action Plan and its sweeping implications for critical infrastructure security. From the technical hurdles in securing vital systems to the growing need for “secure-by-design” technology standards, Daria breaks down what’s at stake as artificial intelligence becomes both a linchpin and a potential liability in our national cyber defenses. Listen here.


FedTalks | Sep 18, 2025

FedTalks is the largest annual gathering of C-level executives, leaders and innovators from the government and tech communities. Now in its 15th year, FedTalks brings together more than 1,000 of the country’s most influential leaders for one day of discussion, exploring ways technology and people can transform government and our nation. Register today!



Comments

Popular posts from this blog

Cyber War News Today.

"International Defence Cooperation:  A key to regional stability." Views expressed in this cybersecurity, cyber espionage, and cyber crime update are those of the reporters and correspondents.  Accessed on 15 December 2024, 0134 UTC. Content and Source:   https://cyberwar.einnews.com/news/cyber-war-news?n=2&code=FA9GNesSTpp2rjO1&utm_source=NewsletterNews&utm_medium=email&utm_campaign=Cyber+War+News&utm_content=navig Please check link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). Cyber War News Monitoring Get by    Email    •     RSS Published on  Dec 13, 2024 The Cyber Warfare Market Size Reach USD 127.1 Billion by 2032 Exhibiting CAGR at 13.3% WILMINGTON, DE, UNITED STATES, December 13, 2024 /⁨EINPresswire.com⁩/ -- According to the report, The Cyber Warfare Market Size Reach USD 127.1 Billion by 2032 Exhibiting CAGR at 1...

Cyber War News Today.

"ADP investing in cyber warfare workforce." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 28 May 2025, 1940 UTC. Content and Source:  "Cyber War News Today."  https://cyberwar.einnews.com/news/cyber-war-news?n=2&code=FA9GNesSTpp2rjO1&utm_source=NewsletterNews&utm_medium=email&utm_campaign=Cyber+War+News&utm_content=navig Please click email link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). Cyber War News Monitoring Get by    Email    •     RSS Published on  06:47 GMT पहलगामनंतर पाकिस्तानने भारतावर कशाप्रकारे Cyber War लादले? पहलगाम हत्याकांडानंतरच्या दोन आठवड्यांनंतर, भारतीय सायबर स्पेसवर पाकिस्तानकडून मोठ्या प्रमाणात हल्ले सुरु झाले. काही दिवशी तर, दर तासाला तब्बल 90 कोटी DDoS (डिस्ट्रिब्युटेड डिनायल ऑफ सर्व्हिस) हल्ले झाले, अशी माहिती सायबर सुरक्षेत कार्...

SecurityWeek Briefing

"New RAMBO attack allows air-gapped data theft." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 10 September 2024, 0035 UTC. Content and Source:  https://www.securityweek.com Please check link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net).   Monday, September 9 , 2024 Are you worried about unmanaged devices and apps? LATEST CYBERSECURITY HEADLINES New RAMBO Attack Allows Air-Gapped Data Theft Predator Spyware Resurfaces With Fresh Infrastructure Google Pushes Rust in Legacy Firmware to Tackle Memory Safety Flaws 300,000 Impacted by Data Breach at Car Rental Firm Avis One Million US Kaspersky Customers Transferred to Pango’s UltraAV Two Indicted in US for Running Dark Web Marketplaces Offering Stolen Information Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks CISA Breaks Silence on Controvers...