Notes on the cyber aspects of the ongoing hybrid war. DDoS in the Marshall Islands. Lapsus$ Group post mortems. US FCC sanctions Kaspersky. CISA adds Known Exploited Vulnerabilities to its Catalog.
Preparing for the spread of cyberattacks. A look at Cyber operations in the hybrid war. C3 and electronic warfare. The Republic of the Marshall Islands suffers rolling DDoS attacks. Okta gives a detailed account of its experience with the Lapsus$ Group. Lapsus$ under the law enforcement microscope. The FCC sanctions Kaspersky. Malek Ben Salem from Accenture on getting full potential from deception systems. Our guest is Greg Scasny of Blueshift Cybersecurity with remote workforce security concerns. And CISA adds to its Known Exploited Vulnerabilities Catalog.
For links to all of today’s stories check out our CyberWire daily news briefing:
‘Preparation, not panic’: Top US cyber official asks Americans to look out for Russian hacking efforts CNN
Russia hacked Ukrainian satellite communications, officials believe BBC News
Chinese cyberattacks on NATO countries increase 116% since Russia’s invasion of Ukraine: study Fox Business
Why hasn’t Russia used its ‘full scope’ of electronic warfare?Breaking Defense
Russian troops’ tendency to talk on unsecured lines is proving costly Washington Post
Marshall Islands telecom service hit by cyber attack RNZ
Okta: “We made a mistake” delaying the Lapsus$ hack disclosure BleepingComputer
Who is LAPSUS$, the Big, Bad Cybercrime Gang Hacking Tech’s Biggest Companies? Gizmodo
FCC puts Kaspersky on security threat list, says it poses “unacceptable risk“ Ars Technica
U.S. FCC adds Russia’s Kaspersky, China telecom firms to national security threat list Reuters
CISA Adds 66 Known Exploited Vulnerabilities to Catalog CISA