Adam Janofsky reports: Leading U.S. cybersecurity agencies on Tuesday said that Chinese hackers likely still have access to critical telecommunications systems, and published guidance to help engineers and network defenders identify and remove the threat actors. In a call with reporters, senior officials at the Cybersecurity and Infrastructure Security Agency (CISA) and the FBI said…
Category: cyberwar
Hackers breach US firm over Wi-Fi from Russia in ‘Nearest Neighbor Attack’
Bill Toulas reports: Russian state hackers APT28 (Fancy Bear/Forest Blizzard/Sofacy) breached a U.S. company through its enterprise WiFi network while being thousands of miles away, by leveraging a novel technique called “nearest neighbor attack.” The threat actor pivoted to the target after first compromising an organization in a nearby building within the WiFi range. The attack…
Top White House cyber official urges Trump to focus on ransomware, China
Jonathan Grieg reports: Anne Neuberger, the U.S. deputy national security adviser for cyber and emerging technologies, spoke at Columbia University on Wednesday and was asked about what pressing cyber challenges the new administration should tackle in its first 100 days. “I’m going to put them into three bins. China, criminal groups like ransomware actors, and…
Russia Tied to Ukrainian Military Recruit Malware Targeting
Mathew J. Schwartz reports: Potential Ukrainian military recruits are being targeted with malware and anti-mobilization messaging through legitimate Telegram channels. A report from Google’s Threat Intelligence Group attributes the “hybrid espionage and information operation” to a suspected Russian group, codenamed UNC5812, whose Telegram persona goes by the handle “Civil Defense.” Telegram remains a vital source of information…
Pro-Palestinian hacktivists attack infrastructure in Cyprus
Yemen News Agency (SABA) reports that infrastructure attacks by a number of pro-Palestinian groups has caused temporary disruption to banks, airports and government websites in Cyprus: The first warnings about a possible cyber operation against Cyprus appeared last week, following statements on Telegram and dark web forums from groups such as “Lulzsic Black” (sic), “Moroccan…
Justice Department Issues Comprehensive Proposed Rule Addressing National Security Risks Posed to U.S. Sensitive Data
From the U.S. Department of Justice, October 21: Proposed Rule Would Establish New Program to Implement Executive Order to Prevent Access to Americans’ Sensitive Personal Data by Russia, Iran, China, and Other Countries of Concern Note: Read the Department’s fact sheet on this matter here. The Justice Department today issued a Notice of Proposed Rulemaking (NPRM) to implement…