Security researchers at Silent Push identified more than 10,000 unique IPs infected with SystemBC, a proxy malware commonly used as an early foothold in ransomware attacks. Using a custom SystemBC tracking fingerprint, analysts mapped a globally distributed botnet that includes compromised systems supporting government infrastructure. “SystemBC proxies traffic through compromised systems and acts as a…
Category: Russia
AI, Breaking News, Cybersecurity, DDoS, Global Security News, Government & Policy, hacking, hacktivism, information security news, Russia
Pro-Russian group Noname057(16) launched DDoS attacks on Milano Cortina 2026 Winter Olympics
Italy stopped Russian-linked cyberattacks targeting Foreign Ministry offices and Winter Olympics websites and hotels, Foreign Minister Tajani said. Italy has thwarted a series of Russian-linked cyberattacks aimed at Foreign Ministry offices, including one in Washington, as well as Winter Olympics websites and hotels in Cortina d’Ampezzo, according to Foreign Minister Antonio Tajani. “We have foiled…
AI, Apps, APT28, Blog, CERT-UA, CVE-2026-21509, CVEs, Cybersecurity, Europe, Exploits, Global Security News, Government & Policy, Network Security, Russia
UAC-0001 (APT28) Attack Detection: russia-Backed Actor Actively Exploits CVE-2026-21509 Targeting Ukraine and the EU
Right after Microsoft disclosed an actively exploited Office zero-day (CVE-2026-21509) on January 26, 2026, CERT-UA reported UAC-0001 (APT28) leveraging the vulnerability in the wild. The russia-backed threat actor targeted organizations in Ukraine and the EU with malicious Office documents, and metadata shows one sample was created on January 27 at 07:43 UTC, illustrating the rapid…
AI, Apps, APT28, Blog, CERT-UA, CVE-2026-21509, CVEs, Cybersecurity, Europe, Exploits, Global Security News, Government & Policy, Network Security, Russia
UAC-0001 (APT28) Attack Detection: russia-Backed Actor Actively Exploits CVE-2026-21509 Targeting Ukraine and the EU
Right after Microsoft disclosed an actively exploited Office zero-day (CVE-2026-21509) on January 26, 2026, CERT-UA reported UAC-0001 (APT28) leveraging the vulnerability in the wild. The russia-backed threat actor targeted organizations in Ukraine and the EU with malicious Office documents, and metadata shows one sample was created on January 27 at 07:43 UTC, illustrating the rapid…
AI, Apps, APT28, Blog, CERT-UA, CVE-2026-21509, CVEs, Cybersecurity, Europe, Exploits, Global Security News, Government & Policy, Network Security, Russia
UAC-0001 (APT28) Attack Detection: russia-Backed Actor Actively Exploits CVE-2026-21509 Targeting Ukraine and the EU
Right after Microsoft disclosed an actively exploited Office zero-day (CVE-2026-21509) on January 26, 2026, CERT-UA reported UAC-0001 (APT28) leveraging the vulnerability in the wild. The russia-backed threat actor targeted organizations in Ukraine and the EU with malicious Office documents, and metadata shows one sample was created on January 27 at 07:43 UTC, illustrating the rapid…
AI, Apps, APT28, Blog, CERT-UA, CVE-2026-21509, CVEs, Cybersecurity, Europe, Exploits, Global Security News, Government & Policy, Network Security, Russia
UAC-0001 (APT28) Attack Detection: russia-Backed Actor Actively Exploits CVE-2026-21509 Targeting Ukraine and the EU
Right after Microsoft disclosed an actively exploited Office zero-day (CVE-2026-21509) on January 26, 2026, CERT-UA reported UAC-0001 (APT28) leveraging the vulnerability in the wild. The russia-backed threat actor targeted organizations in Ukraine and the EU with malicious Office documents, and metadata shows one sample was created on January 27 at 07:43 UTC, illustrating the rapid…
AI, Apps, APT28, Blog, CERT-UA, CVE-2026-21509, CVEs, Cybersecurity, Europe, Exploits, Global Security News, Government & Policy, Network Security, Russia
UAC-0001 (APT28) Attack Detection: russia-Backed Actor Actively Exploits CVE-2026-21509 Targeting Ukraine and the EU
Right after Microsoft disclosed an actively exploited Office zero-day (CVE-2026-21509) on January 26, 2026, CERT-UA reported UAC-0001 (APT28) leveraging the vulnerability in the wild. The russia-backed threat actor targeted organizations in Ukraine and the EU with malicious Office documents, and metadata shows one sample was created on January 27 at 07:43 UTC, illustrating the rapid…
AI, Apps, APT28, Blog, CERT-UA, CVE-2026-21509, CVEs, Cybersecurity, Europe, Exploits, Global Security News, Government & Policy, Network Security, Russia
UAC-0001 (APT28) Attack Detection: russia-Backed Actor Actively Exploits CVE-2026-21509 Targeting Ukraine and the EU
Right after Microsoft disclosed an actively exploited Office zero-day (CVE-2026-21509) on January 26, 2026, CERT-UA reported UAC-0001 (APT28) leveraging the vulnerability in the wild. The russia-backed threat actor targeted organizations in Ukraine and the EU with malicious Office documents, and metadata shows one sample was created on January 27 at 07:43 UTC, illustrating the rapid…
AI, Apps, APT28, Blog, CERT-UA, CVE-2026-21509, CVEs, Cybersecurity, Europe, Exploits, Global Security News, Government & Policy, Network Security, Russia
UAC-0001 (APT28) Attack Detection: russia-Backed Actor Actively Exploits CVE-2026-21509 Targeting Ukraine and the EU
Right after Microsoft disclosed an actively exploited Office zero-day (CVE-2026-21509) on January 26, 2026, CERT-UA reported UAC-0001 (APT28) leveraging the vulnerability in the wild. The russia-backed threat actor targeted organizations in Ukraine and the EU with malicious Office documents, and metadata shows one sample was created on January 27 at 07:43 UTC, illustrating the rapid…
AI, Apps, APT28, Blog, CERT-UA, CVE-2026-21509, CVEs, Cybersecurity, Europe, Exploits, Global Security News, Government & Policy, Network Security, Russia
UAC-0001 (APT28) Attack Detection: russia-Backed Actor Actively Exploits CVE-2026-21509 Targeting Ukraine and the EU
Right after Microsoft disclosed an actively exploited Office zero-day (CVE-2026-21509) on January 26, 2026, CERT-UA reported UAC-0001 (APT28) leveraging the vulnerability in the wild. The russia-backed threat actor targeted organizations in Ukraine and the EU with malicious Office documents, and metadata shows one sample was created on January 27 at 07:43 UTC, illustrating the rapid…
AI, Apps, APT28, Blog, CERT-UA, CVE-2026-21509, CVEs, Cybersecurity, Europe, Exploits, Global Security News, Government & Policy, Network Security, Russia
UAC-0001 (APT28) Attack Detection: russia-Backed Actor Actively Exploits CVE-2026-21509 Targeting Ukraine and the EU
Right after Microsoft disclosed an actively exploited Office zero-day (CVE-2026-21509) on January 26, 2026, CERT-UA reported UAC-0001 (APT28) leveraging the vulnerability in the wild. The russia-backed threat actor targeted organizations in Ukraine and the EU with malicious Office documents, and metadata shows one sample was created on January 27 at 07:43 UTC, illustrating the rapid…
AI, Apps, APT28, Blog, CERT-UA, CVE-2026-21509, CVEs, Cybersecurity, Europe, Exploits, Global Security News, Government & Policy, Network Security, Russia
UAC-0001 (APT28) Attack Detection: russia-Backed Actor Actively Exploits CVE-2026-21509 Targeting Ukraine and the EU
Right after Microsoft disclosed an actively exploited Office zero-day (CVE-2026-21509) on January 26, 2026, CERT-UA reported UAC-0001 (APT28) leveraging the vulnerability in the wild. The russia-backed threat actor targeted organizations in Ukraine and the EU with malicious Office documents, and metadata shows one sample was created on January 27 at 07:43 UTC, illustrating the rapid…
AI, Apps, APT28, Blog, CERT-UA, CVE-2026-21509, CVEs, Cybersecurity, Europe, Exploits, Global Security News, Government & Policy, Network Security, Russia
UAC-0001 (APT28) Attack Detection: russia-Backed Actor Actively Exploits CVE-2026-21509 Targeting Ukraine and the EU
Right after Microsoft disclosed an actively exploited Office zero-day (CVE-2026-21509) on January 26, 2026, CERT-UA reported UAC-0001 (APT28) leveraging the vulnerability in the wild. The russia-backed threat actor targeted organizations in Ukraine and the EU with malicious Office documents, and metadata shows one sample was created on January 27 at 07:43 UTC, illustrating the rapid…
AI, Apps, APT28, Blog, CERT-UA, CVE-2026-21509, CVEs, Cybersecurity, Europe, Exploits, Global Security News, Government & Policy, Network Security, Russia
UAC-0001 (APT28) Attack Detection: russia-Backed Actor Actively Exploits CVE-2026-21509 Targeting Ukraine and the EU
Right after Microsoft disclosed an actively exploited Office zero-day (CVE-2026-21509) on January 26, 2026, CERT-UA reported UAC-0001 (APT28) leveraging the vulnerability in the wild. The russia-backed threat actor targeted organizations in Ukraine and the EU with malicious Office documents, and metadata shows one sample was created on January 27 at 07:43 UTC, illustrating the rapid…
Global Security News, Russia, Security threats
Hacking attack leaves Russian car owners locked out of their vehicles
Imagine the scene. It’s a cold Monday morning in Moscow. You walk out to your car, coffee in hand, ready to face the day. You press the button to unlock your car, and … nothing happens. You try again. Still nothing. The alarm starts blaring. You can’t turn it off. Read more in my article…
AI, Compliance, Cybersecurity, Global Security News, malware, privacy, Russia
The dark web’s worst assassins, and Pegasus in the dock
In episode 452, a London-based YouTuber wins a landmark court case against Saudi Arabia after his phone was hacked with Pegasus spyware — exposing how a single, seemingly harmless text message can turn a smartphone into a round-the-clock surveillance device. Plus, we go looking for professional hitmen online – only to uncover uncomfortable questions about…
AI, Apps, APT, Blog, CERT-UA, CVEs, Cybersecurity, Exploits, Global Security News, Government & Policy, malware, Network Security, Pluggyape, Risk Management, Russia
UAC-0190 Attack Detection: Fake Charity Lures Used to Deploy the PLUGGYAPE Backdoor Against the Ukrainian Armed Forces
On January 12, 2026, the CERT-UA team disclosed a targeted cyber-espionage campaign against the Ukrainian Armed Forces that abused charity-themed social engineering to deliver the PLUGGYAPE backdoor. The activity, observed between October and December 2025, is attributed with medium confidence to the russia-aligned threat actor known as Void Blizzard (Laundry Bear), tracked by CERT-UA as…
AI, Apps, APT, Blog, CERT-UA, CVEs, Cybersecurity, Exploits, Global Security News, Government & Policy, malware, Network Security, Pluggyape, Risk Management, Russia
UAC-0190 Attack Detection: Fake Charity Lures Used to Deploy the PLUGGYAPE Backdoor Against the Ukrainian Armed Forces
On January 12, 2026, the CERT-UA team disclosed a targeted cyber-espionage campaign against the Ukrainian Armed Forces that abused charity-themed social engineering to deliver the PLUGGYAPE backdoor. The activity, observed between October and December 2025, is attributed with medium confidence to the russia-aligned threat actor known as Void Blizzard (Laundry Bear), tracked by CERT-UA as…
AI, Apps, APT, Blog, CERT-UA, CVEs, Cybersecurity, Exploits, Global Security News, Government & Policy, malware, Network Security, Pluggyape, Risk Management, Russia
UAC-0190 Attack Detection: Fake Charity Lures Used to Deploy the PLUGGYAPE Backdoor Against the Ukrainian Armed Forces
On January 12, 2026, the CERT-UA team disclosed a targeted cyber-espionage campaign against the Ukrainian Armed Forces that abused charity-themed social engineering to deliver the PLUGGYAPE backdoor. The activity, observed between October and December 2025, is attributed with medium confidence to the russia-aligned threat actor known as Void Blizzard (Laundry Bear), tracked by CERT-UA as…
AI, Compliance, Data Breaches, Europe, Exploits, Global Security News, privacy, Russia
The Kindle that got pwned
Think your Kindle is harmless? Think again! In this episode, Graham and special guest Danny Palmer unpack a Black Hat Europe talk revealing how a boobytrapped audiobook could exploit the Amazon eBook reader – potentially letting an attacker break into your account and seize control of your credit card. Plus a blast from 2021’s “summer…
AI, Apps, Best Practices, Endpoint, Europe, Exploits, Global Security News, Network Security, Risk Management, Russia, Security Blog, Security, Identity, & Compliance, Technical How-to, Thought Leadership
Amazon Threat Intelligence identifies Russian cyber threat group targeting Western critical infrastructure
As we conclude 2025, Amazon Threat Intelligence is sharing insights about a years-long Russian state-sponsored campaign that represents a significant evolution in critical infrastructure targeting: a tactical pivot where what appear to be misconfigured customer network edge devices became the primary initial access vector, while vulnerability exploitation activity declined. This tactical adaptation enables the same…
Asia Pacific, china, Federal Communications Commission, Global Security News, Russia, Securities and Exchange Commission (SEC), Uncategorized
SEC drops case against SolarWinds tied to monumental breach
The Securities and Exchange Commission on Thursday dropped its case against SolarWinds and its chief information security officer over its handling of an alleged Russian cyberespionage campaign uncovered in 2020, an incident that penetrated at least nine federal agencies and hundreds of companies. The SEC’s decision brings to a halt one of the more divisive…
AI, china, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, malware, privacy, Risk Management, Russia
The hack that messed with time, and rogue ransomware negotiators
Time itself comes under attack as a state-backed hacking gang spends two years tunnelling toward a nation’s master clock — with chaos potentially only a tick away. Plus when ransomware negotiators turn to the dark side, what could possibly go wrong? All this and more is discussed in episode 442 of the “Smashing Security” podcast…
AI, Compliance, Cybersecurity, Endpoint, Global Security News, malware, Network Security, privacy, Russia
Inside the mob’s million-dollar poker hack, and a Formula 1 fumble
Basketball stars have allegedly joined forces with the mafia to fleece high-rollers in a poker scam involving hacked shufflers, covert cameras, and an X-ray card table. Meanwhile, researchers have found they could poke around an FIA driver portal to pull up the personal details of Formula 1 megastars. Plus: Graham’s “Pick of the Week” turns…
Cybersecurity, Department of Justice (DOJ), Exploits, Global Security News, L3Harris, Russia, Trade Secrets
Ex-L3Harris executive accused of selling trade secrets to Russia
Federal prosecutors have accused a former executive at L3Harris Technologies’ cyber division of stealing trade secrets and selling them to an undisclosed buyer in Russia, according to court documents obtained by CyberScoop. The Department of Justice filed charges against Peter Williams, an Australian national who served as general manager of Trenchant, a specialized cybersecurity division…
AI, Compliance, Cybersecurity, Global Security News, privacy, Russia
A breach, a burnout, and a bit of Fleetwood Mac
A critical infrastructure hack hits the headlines – involving default passwords, boasts on Telegram, and a finale that will make a few cyber-crooks wish the ground would swallow them whole. Meanwhile we dig into the bit we don’t talk about enough: the human cost of defending companies from hackers – stress, burnout, and how better…
Android, Geopolitics, Global Security News, Russia, Spyware, Threats
Russian spyware ClayRat is spreading, evolving quickly, according to Zimperium
A fast-spreading Android spyware is mushrooming across Russia, camouflaging itself as popular apps like TikTok or YouTube, researchers at Zimperium have revealed in a blog post. The company told CyberScoop they expect the campaign is likely to expand beyond Russian borders, too. In three months, Zimperium zLabs researchers observed more than 600 samples, the company…
Global Security News, Guest blog, Law & order, Netherlands, Russia, Telegram
Dutch teens recruited on Telegram, accused of Russia-backed hacking plot
Two 17-year-olds have been arrested by Dutch authorities on suspicion of spying for pro-Russian hackers. The teenagers, who are said to have been recruited as “disposable agents” via Telegram, were reportedly arrested last week “on suspicion that are linked to government-sponsored interference.” Read more in my article on the Hot for Security blog.
data breach, Data loss, Global Security News, Guest blog, Russia, submarine
Ukraine claims to have hacked secrets from Russia’s newest nuclear submarine
Ukraine’s Defence Intelligence agency (HUR) claims that its hackers have successfully stolen secret files and classified data on a state-of-the-art Russian nuclear submarine, the “Knyaz Pozharsky.” Read more in my article on the Hot for Security blog.
DDoS, Denial of Service, Europe, Global Security News, Guest blog, Law & order, Russia
Europol targets Kremlin-backed cybercrime gang NoName057(16)
The hacking group NoName057(16) has been operating since 2022, launching cyber attacks on government organisations, media bodies, critical infrastructure, and private companies in Ukraine, America, Canada, and across Europe in a seeming attempt to silence voices that the group considers anti-Russian. Read more in my article on the Hot for Security blog.
Andrew Garbarino, Asia Pacific, china, Congress, critical infrastructure, Cybersecurity and Infrastructure Security Agency (CISA), deepseek, Department of Homeland Security (DHS), Global Security News, Government, House Homeland Security Committee, ICE, Mobile App Vetting, Mobile Security, Money, Policy, Russia, Salt Typhoon, sector risk management agencies, TikTok
Rep. Garbarino: Ending CISA mobile app security program for feds sends ‘wrong signal’
The chairman of the House Homeland Security subcommittee on cybersecurity is apprehensive about the Department of Homeland Security’s plans to end a program that vets mobile apps for federal agencies. Rep. Andrew Garbarino, R-N.Y., sent a letter to DHS Secretary Kristi Noem on Thursday saying that especially in light of the massive Salt Typhoon telecommunications…
Global Security News, Guest blog, malware, MOD, Russia
Damascened Peacock: Russian hackers targeted UK Ministry of Defence
The UK’s Ministry of Defence has revealed that it was the target of a sophisticated cyber attack that saw Russia-linked hackers pose as journalists. Read more in my article on the Hot for Security blog.
Botnet, Cloud Security, Cybersecurity, Data Privacy, Data Security, Endpoint, Featured, Global Security News, Identity & Access, malware, Network Security, News, Operation Endgame Cybercrime, Russia, Security Boulevard (Original), Spotlight, Threats & Breaches
U.S. Authorities Seize DanaBot Malware Operation, Indict 16
U.S. authorities seized the infrastructure of the DanaBot malware and charged 16 people in an action that is part of the larger Operation Endgame, a multinational initiative launched last year to disrupt and take apart global cybercriminals operations. The post U.S. Authorities Seize DanaBot Malware Operation, Indict 16 appeared first on Security Boulevard.
Cybercrime, Cybersecurity, Department of Justice (DOJ), espionage, Global Security News, Government, indictment, Information stealing malware, infostealers, malware, Russia, Threats
DanaBot malware operation seized in global takedown
A global collection of private defenders and law enforcement agencies notched another win against a core facilitator for cybercrime, initiating coordinated seizures and takedowns of DanaBot’s command and control servers, disrupting the malware-as-a-service’s operations, the Justice Department said Thursday. Federal officials also unsealed a grand jury indictment and criminal complaint charging 16 individuals for their…
Cybersecurity, eset, Fancy Bear, Global Security News, Government, GRU, nato, North America, phishing, powershell, PsExec, Russia, Threats, Transportation, Ukraine
Multi-national warning issued over Russia’s targeting of logistics, tech firms
A joint advisory from intelligence and cybersecurity agencies in the United States, United Kingdom, Canada, Australia and multiple European countries has detailed an ongoing Russian state-sponsored campaign targeting Western logistics organizations and technology companies, especially those supporting aid to Ukraine. The campaign, orchestrated by the group known as APT28 or Fancy Bear, has relied heavily…
Europe, Fancy Bear, Geopolitics, Global Security News, Government, Russia, Ukraine
Fancy Bear campaign sought emails of high-level Ukrainians and their military suppliers
Fancy Bear, the hacking group linked to Russia’s Main Intelligence Directorate (GRU), has been targeting the email accounts of high-ranking Ukrainian officials as well as executives at defense contractors located in other countries who sell weapons and equipment to Kyiv, according to new research from ESET. The campaign, ongoing since at least 2023, has taken…
china, critical infrastructure, FireEye, Global Security News, North Korea, North Korean IT workers, Ransomware, Research, Russia, SentinelOne, SolarWinds, telecommunications, Threats, Workforce
Cybersecurity vendors are themselves under attack by hackers, SentinelOne says
Cybersecurity companies don’t just defend their customers against cyberattacks — they also have to defend themselves, and a SentinelOne report published Monday examines some of the biggest threats they’re facing. Those include ransomware, Chinese government-sponsored hackers and North Korean IT workers posing as job applicants, according to the report from SentinelOne’s SentinelLabs. “In recent months,…
AI, Artificial Intelligence (AI), Asia Pacific, china, cloud computing, Cybercrime, Cybersecurity, Global Security News, North Korea, Russia, SentinelOne, wiz
AI can help defenders stop nation-state threat actors at machine speed
Last year, the escalating concerns about Chinese threat actors breaching U.S. organizations reached a crescendo as federal authorities issued increasingly urgent advisories about China’s “Typhoon” groups infiltrating U.S. networks, pressing organizations to take immediate action. The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) warned that these groups were engaged…
Asia Pacific, china, CISA, critical infrastructure, Cybersecurity and Infrastructure Security Agency, Cybersecurity and Infrastructure Security Agency (CISA), Cybersecurity Information Sharing Act, Department of Homeland Security (DHS), disinformation, Exclusive, Gary Peters, Global Security News, Government, information sharing, information sharing and analysis centers (ISACs), Joint Cyber Defense Collaborative, Local Government, Mike Rounds, misinformation, North Carolina, Policy, privacy, Russia, Salt Typhoon, Senate Armed Services Committee, Senate Homeland Security and Governmental Affairs Committee, SolarWinds, State Government, Volt Typhoon
Exclusive: Peters, Rounds tee up bill to renew expiring cyber threat information sharing law
A bipartisan pair of senators are kicking off the race Wednesday to reauthorize a 2015 cyber threat information sharing law, a move that industry groups and cyber experts are eager to see happen before it’s set to expire in September. Advocates say the 10-year-old Cybersecurity Information Sharing Act has been vital to sharing threat information…
Cybersecurity, Exploits, Global Security News, Russia, Security, Telegram, zero days
Russian zero-day seller is offering up to $4 million for Telegram exploits
Two sources in the zero-day industry say Operation Zero’s prices for exploits against the popular messaging app Telegram will depend on different factors.
china, Cybercrime, Cybersecurity, Evil Corp, Exploits, Global Security News, Government, India, Microsoft, nation state threats, nation-state hackers, North Korea, pakistan, Ransomware, Research, Russia, Stanford University, Threats, trend micro, vulnerability, Windows, Zero Day Initiative, zero days
Nation-state groups hit hundreds of organizations with Microsoft Windows zero-day
Cybercriminals working on behalf of at least six nation-states are actively exploiting a zero-day vulnerability in Microsoft Windows to commit espionage, steal data and cryptocurrency, according to Trend Micro researchers. The vulnerability, which Trend Micro tracks as ZDI-CAN-25373, allows attackers to execute hidden malicious commands due to the way Windows displays the contents of shortcut…
cyberattacks, Cybersecurity, Global Security News, Ransomware, Russia, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Threats & Breaches
“My vas pokhoronim!”
CISA, in collaboration with the FBI and NSA, identified and attributed multiple attacks to Russian entities, emphasizing the risks posed by state-backed Advanced Persistent Threats (APTs). The post “My vas pokhoronim!” appeared first on Security Boulevard.
Cybercrime, Cybersecurity, Global IT News, Global Security News, hacking, In Brief, LockBit, Ransomware, Russia, Security
Accused LockBit ransomware developer extradited to the US
The U.S. Department of Justice announced that Rostislav Panev, who developed code and maintained infrastructure for LockBit, is now in U.S. custody. © 2024 TechCrunch. All rights reserved. For personal use only.
Application Security, Cloud Security, Cybersecurity, DDoS, Denial of Service, DevOps, DevSecOps, Editorial Calendar, Elon Musk, elon musk twitter, Featured, Global Security News, Governance, Risk & Compliance, hacktivism ukraine cyber-attacks, Humor, Incident Response, Industry Spotlight, IoT, IoT & ICS Security, malware, Most Read This Week, Network Security, News, Popular Post, Russia, Russia-Ukraine, russia-ukraine conflict, Russia's War on Ukraine, SB Blogwatch, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, social media, Social Media Attack, social media attacks, social media cyber attacks, Social Media Cybercrime, Social Media Exploits, Spotlight, Threats & Breaches, Ukraine, ukraine conflict, Ukraine Cyber War, Ukraine-Russia War, Ukraine/European Security, vulnerabilities, X
No, Elon — X DDoS was NOT by Ukraine
X marks the botnet: Outage outrage was a Ukrainian cyberattack, implies our favorite African billionaire comedy villain. The post No, Elon — X DDoS was NOT by Ukraine appeared first on Security Boulevard.
Bitcoin, Crypto, Cybercrime, Exclusive, Garantex, Global IT News, Global Security News, India, money laundering, Russia, Security, tether
Garantex administrator arrested in India under extradition law
Garantex co-founder Aleksej Besciokov was arrested in India’s Kerala on Tuesday under the country’s extradition law. © 2024 TechCrunch. All rights reserved. For personal use only.
Crypto, CryptoCurrency, Garantex, Global IT News, Global Security News, money laundering, Russia, Secret Service, Security
Following takedown operation, Garantex invites customers to ‘face-to-face’ Moscow meeting
Russian crypto exchange Garantex has yet to directly address the international law enforcement operation that resulted in the seizure of its domains, and criminal charges against two of its administrators. © 2024 TechCrunch. All rights reserved. For personal use only.
CISA, cyber security, cyber threat, Cybersecurity, Data Privacy, Data Security, Digital Privacy, Episodes, Firefox Privacy, Global Security News, Government & Policy, Information Security, infosec, internet privacy, mozilla, online security, Podcast, Podcasts, privacy, privacy rights, Putin, Russia, Russian Cyber Threat, Security, Security Bloggers Network, Tech Talk, Technology, Technology News, Trump, Trump Administration, US Cyber Command, Weekly Edition
Trump Administration and the Russian Cyber Threat, Firefox Privacy Changes
In this episode, we discuss whether the Trump administration ordered the U.S. Cyber Command and CISA to stand down on the Russian cyber threat. We also touch on the Canadian tariff situation with insights from Scott Wright. Additionally, we discuss the recent changes to Firefox’s privacy policy and what it means for user data. **…
Crypto, Garantex, Global IT News, Global Security News, money laundering, Ransomware, Russia, sanctions, Security, US Department of Justice
US charges admins of Garantex for allegedly facilitating crypto money laundering for terrorists and hackers
The administrators of Garantex, Aleksej Besciokov and Aleksandr Mira Serda, allegedly knew their crypto exchange was used to launder money, according to U.S. prosecutors. © 2024 TechCrunch. All rights reserved. For personal use only.
CryptoCurrency, Cybercrime, Cybersecurity, Department of Justice (DOJ), Elliptic, Europe, Europol, Garantex, Geopolitics, Global Security News, Ransomware, Russia, sanctions, Secret Service, Technology, Telegram
Russian crypto exchange Garantex seized in international law enforcement operation
U.S. and European law enforcement agencies have seized the infrastructure of Garantex, a cryptocurrency exchange accused of laundering billions in criminal proceeds, in a sweeping international operation that signals heightened focus on illicit financial flows in cryptocurrency markets. According to Justice Department documents unsealed Friday, the Moscow-based exchange processed approximately $96 billion in cryptocurrency transactions…
Crypto, fbi, Garantex, Global IT News, Global Security News, Russia, sanctions, Secret Service, Security
Russian crypto exchange Garantex seized by law enforcement operation
An international coalition of law enforcement agencies seized the official website of Garantex, which has previously been sanctioned by the U.S. and E.U. governments. © 2024 TechCrunch. All rights reserved. For personal use only.
CISA, Global Security News, Guest blog, Law & order, malware, Russia, Security threats, united states
CISA refutes claims it has been ordered to stop monitoring Russian cyber threats
It’s been a confusing few days in the world of American cybersecurity… Read more in my article on the Hot for Security blog.
CISA, Cloud Security, Cybersecurity, Data Privacy, Data Security, Featured, Global Security News, Governance, Risk & Compliance, Industry Spotlight, malware, Network Security, News, North America, Russia, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, Threats & Breaches, Trump, US DOD
Security Pros Push Back as Trump Orders Halt to Cyber Ops vs. Russia
The Trump Administration’s orders to the DoD and CISA to halt cyber operations and investigations against Russia is a gift to the United States’ longtime foreign adversary and makes the country less safe, according to cybersecurity professionals. The post Security Pros Push Back as Trump Orders Halt to Cyber Ops vs. Russia appeared first on…
CISA, Cloud Security, Cybersecurity, Data Privacy, Data Security, Featured, Global Security News, Governance, Risk & Compliance, Industry Spotlight, malware, Network Security, News, North America, Russia, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, Threats & Breaches, Trump, US DOD
Security Pros Push Back as Trump Orders Halt to Cyber Ops vs. Russia
The Trump Administration’s orders to the DoD and CISA to halt cyber operations and investigations against Russia is a gift to the United States’ longtime foreign adversary and makes the country less safe, according to cybersecurity professionals. The post Security Pros Push Back as Trump Orders Halt to Cyber Ops vs. Russia first appeared on…
Bennie Thompson, CISA, Cybersecurity, Cybersecurity and Infrastructure Security Agency, Cybersecurity and Infrastructure Security Agency (CISA), Department of Homeland Security (DHS), Global Security News, House Homeland Security Committee, Jake Williams, Russia, Threats
DHS says CISA won’t stop looking at Russian cyber threats
The Department of Homeland Security said that its Cybersecurity and Infrastructure Security Agency will continue to pay attention to Russian cyber threats, contrary to media reports suggesting the opposite. The Guardian reported last week that a recent CISA memo setting out priorities for the agency didn’t list Russia among them, while including Chinese threats and…
Cybersecurity, Global IT News, Global Security News, hacking, Russia, Security, us government
US said to halt offensive cyber operations against Russia
The reported policy shift comes as the U.S. government signals a change in its threat assessment of Russia © 2024 TechCrunch. All rights reserved. For personal use only.
CISA, Donald Trump, Global Security News, Guest blog, Law & order, malware, Ransomware, Russia, Security threats, Ukraine, united states
Stop targeting Russian hackers, Trump administration orders US Cyber Command
The Trump administration has told US cyber command and CISA to stop following or reporting on Russian cyber threats. Yes, Russia! That country everyone used to agree was home to lots of ransomware gangs and hackers. Hmmm… Read more in my article on the Hot for Security blog.
CISO, Cybersecurity, Geopolitics, Global Security News, Government, liability, Policy, Russia, SolarWinds
SolarWinds CISO says security execs are ‘nervous’ about individual liability for data breaches
SolarWinds’ top cybersecurity executive said chief information security officers are increasingly grappling with how to do their jobs while avoiding individual legal liability for breaches that happen on their watch. Tim Brown, now CISO at SolarWinds, was a vice president and the highest-ranking security official at the company when hackers working on behalf of the…
Cybercrime, Cybersecurity, Department of Justice (DOJ), Global Security News, Google Threat Intelligence Group, North America, Ransomware, Research, Russia, Snowflake, Threats, Unit 221B
Army soldier linked to Snowflake attack spree allegedly tried to sell data to foreign spies
U.S. authorities say a 21-year-old U.S. Army soldier attempted to sell stolen sensitive information to a foreign intelligence service as part of a broader effort to extort victims and leak call records of high-ranking public officials. In November while on active duty, Cameron Wagenius made multiple attempts to extort $500,000 from a major telecommunications company…
Artificial Intelligence, Artificial Intelligence (AI), china, Gen. Paul Nakasone, Geopolitics, Global Security News, hunt forward operations, Joint Chiefs of Staff, National Security Agency, North America, openai, Paul Nakasone, Pete Hegseth, Ransomware, Russia, Salt Typhoon, telecommunications, telecoms, Threats, Vanderbilt University, Workforce
Former NSA, Cyber Command chief Paul Nakasone says U.S. falling behind its enemies in cyberspace
The United States is falling “increasingly behind” its adversaries in cyberspace, a former Cyber Command and National Security Agency boss said Saturday. Speaking at the DistrictCon cybersecurity conference in Washington, D.C., retired Gen. Paul Nakasone said that “our adversaries are continuing to be able to broaden the spectrum of what they’re able to do to…
Cybercrime, Cybersecurity, Global Security News, Google Threat Intelligence Group, GRU, messaging apps, phishing, Research, Russia, Sandworm, signal, Threats, Uncategorized
Russia-aligned threat groups dupe Ukrainian targets via Signal
Russian state threat groups have compromised Signal accounts used by Ukrainian military and government personnel to eavesdrop on real-time communications, Google Threat Intelligence Group said in a report released Wednesday. “This is a persistent, ongoing campaign being carried out by multiple different Russia-aligned threat actors,” Dan Black, principal analyst at Google Threat Intelligence Group, said…
Cybersecurity, Exploits, Global Security News, Microsoft, phishing, Research, Russia, Threat Intelligence, Threats, Volexity
Threat researchers spot ‘device code’ phishing attacks targeting Microsoft accounts
Microsoft threat researchers discovered a series of what they are calling “device code” phishing attacks that allowed a suspected Russia-aligned threat group to gain access to and steal data from critical infrastructure organizations, the company said in research released Thursday. The group, which Microsoft tracks as Storm-2372, has targeted governments, IT services and organizations operating…
Asia Pacific, china espionage, Cloud Security, Cyberlaw, Cybersecurity, Data Security, Featured, Global Security News, Google, Incident Response, malware, Mobile Security, nation-state attacks, national security risk, Network Security, News, Russia, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, Threats & Breaches
Lines Between Nation-State and Cybercrime Groups Disappearing: Google
Threat researchers with Google are saying that the lines between nation-state actors and cybercrime groups are blurring, noting that gangs backed by China, Russia, and others are using financially motivated hackers and their tools while attacks by cybercriminals should be seen as national security threats. The post Lines Between Nation-State and Cybercrime Groups Disappearing: Google…
CVE, Cybersecurity, Exploits, Global Security News, Microsoft, Microsoft Threat Intelligence Center, Research, Russia, Seashell Blizzard, Threats, Uncategorized, vulnerabilities
Russian state threat group shifts focus to US, UK targets
A subgroup of Seashell Blizzard has shifted its focus to targets in the U.S., Canada, Australia and the U.K. within the past year, expanding the scope of its malicious activity, Microsoft’s threat intelligence team said in a report released Wednesday. The initial-access operation, which Microsoft tracks as the “BadPilot campaign,” has allowed the Russian state…
Asia Pacific, china, Cybercrime, Global Security News, Google, North Korea, Russia, Sandworm, Trellix, Ukraine
U.S. adversaries increasingly turning to cybercriminals and their malware for help
Governments of the United States’ chief adversaries in cyberspace, especially Russia, have increasingly been relying on cybercriminals and their tools to advance their goals, according to a Google report published Tuesday. There’s long been overlap between government and criminal cyber operators, but governments are now enjoying the benefits of collaboration and borrowing more — both…
Cybersecurity, data breach, Global IT News, Global Security News, Microsoft, Russia, Security
HPE begins notifying data breach victims after Russian government hack
Hackers with Russian foreign intelligence were blamed for the breach, which also targeted Microsoft. © 2024 TechCrunch. All rights reserved. For personal use only.
disinformation, Election Security, Emerging Tech, Foreign Agents Registration Act (FARA), Global Security News, Government, Policy, Russia, Trump Administration
DOJ disbands foreign influence task force, limits scope of FARA prosecutions
One of the first acts taken by Pam Bondi after being sworn in as attorney general was to disband an FBI task force that countered the influence of adversarial foreign governments on American politics. In a memo issued Wednesday, Bondi wrote that the Department of Justice would be shifting resources in its National Security Division,…
Department of Justice (DOJ), FSB, Geopolitics, Global Security News, Government, Microsoft, phishing, Russia, Star Blizzard, Threats, WhatsApp
Microsoft catches Russian state-sponsored hackers shifting tactics to WhatsApp
The cat-and-mouse game between state-sponsored Russian hackers and one of the world’s biggest technology companies has continued into 2025. Microsoft’s threat intelligence team published research Thursday examining how a state-sponsored Russian threat actor group, known as Star Blizzard, has altered its longstanding attack strategies to target WhatsApp accounts. This attack vector is a significant change…
Citizen Lab, Cybersecurity, Global IT News, Global Security News, Greece, infosec, poland, Russia, Security, Spyware, UN, United Nations, united states
Governments call for spyware regulations in UN Security Council meeting
Several governments participated in a meeting on the proliferation of commercial spyware at the United Nations Security Council. © 2024 TechCrunch. All rights reserved. For personal use only.
APT28, Europe, Fancy Bear, Global Security News, GRU, Kazakhstan, Russia, Sekoia, Threats
Fancy Bear spotted using real Kazak government documents in spearpishing campaign
A hacking group linked to Russian intelligence has been observed leveraging seemingly legitimate documents from the Kazakhstan government as phishing lures to infect and spy on government officials in Central Asia, according to researchers at Sekoia. The files, laced with malware, include draft versions of diplomatic statements, correspondence letters, internal administrative notes and other documents…
Cybercrime, Department of Justice (DOJ), Federal Bureau of Investigation (FBI), Global Security News, money laundering, Russia
Russian nationals charged with operating crypto mixers that masked cybercrime funds
Three Russian nationals were indicted this week for their roles in managing a pair of cryptocurrency mixing services, operations that were funded in part by money gained through ransomware attacks. The indictment from a federal grand jury in the Northern District of Georgia alleges that Roman Vitalyevich Ostapenko, 55, Alexander Evgenievich Oleynik, 44, and Anton…
disinformation, election hacking, Geopolitics, Global Security News, Government, Russia, sanctions, Technology, Threats
US sanctions Russian, Iranian groups for election interference
The U.S. State Department has sanctioned two foreign organizations and one individual who it alleges worked on behalf of Russian and Iranian intelligence agencies to interfere in the 2024 U.S. general election. “These actors sought to stoke sociopolitical tensions and undermine our election institutions during the 2024 U.S. general election,” said State Department Press Secretary…
Cybercrime, Electronic Frontier Foundation, Geopolitics, Global Forum on Cyber Expertise, Global Security News, human rights, North America, Policy, privacy, Russia, State Department, treaties, United Nations
After UN adoption, controversial cybercrime treaty’s next steps could prove vital
A divisive United Nations cybercrime treaty — one that critics say is a huge danger to human rights and that the United States cautiously agreed to advance — is now in the hands of member nations. The U.N. General Assembly adopted the treaty without a vote last week, leaving ratification to individual states. If the…
china, Congress, disinformation, Global Security News, Government, NDAA, Russia, State Department
State Department’s disinformation office to close after funding nixed in NDAA
The State Department’s center for fighting global disinformation received a lump of coal in its Christmas stocking this week as congressional lawmakers excluded new funding and authorization for the office beyond this year. The Global Engagement Center, which tracks foreign disinformation, will lose its authority on Dec. 24. Despite a concerted push by State officials…
Asia Pacific, china, future union, Global Security News, humba ventures, Russia, Venture
Over 20 venture firms pledge to not take money from China, Russia
Founders now have a way to ensure that their investors haven’t taken money from countries like China, Russia, Iran or Cuba. Over 20 venture firms have signed the Clean Capital Certification, attesting that they have not and will not take money from foreign adversaries. Some of the firms that have signed include Marlinspike Partners, Humba…
Geopolitics, Global Security News, Google, Kaspersky, Mastercard, Money, North America, Recorded Future, Russia, Ukraine
Russia bans cybersecurity company Recorded Future
Russia banned the cybersecurity company Recorded Future on Wednesday, labeling it an “undesirable” organization — much to its CEO’s delight. The company stands accused of collaborating with the Central Intelligence Agency, Ukraine and other countries. “They provide information and technical support for the propaganda campaign launched by the West against Russia,” Russia’s Office of Prosecutor…
china, Cybercrime, Department of Justice, Department of Justice (DOJ), Geopolitics, Global Security News, Justice Department, Mandiant, North America, North Korea, North Korean IT workers, Russia, State Department, U.S. courts, U.S. Department of Justice
Court indicts 14 North Korean IT workers tied to $88 million in illicit gains
A federal court has indicted 14 more North Korean IT workers as part of an ongoing U.S. government campaign to crack down on Pyongyang’s use of tech professionals to swindle American companies and nonprofits. The Justice Department said the 14 indicted workers generated at least $88 million throughout a conspiracy that stretched over approximately six…
Global Security News, Guest blog, malware, North America, Ransomware, Russia
Ransomware-hit vodka maker Stoli files for bankruptcy in the United States
Stoli Group USA, the US subsidiary of vodka maker Stoli, has filed for bankruptcy – and a ransomware attack is at least partly to blame. The American branch of Stoli, which imports and distributes Stoli brands in the United States, as well as the Kentucky Owl bourbon brand it purchased in 2017, was hit by…
AI, Exploits, Global Security News, Government & Policy, Network Security, privacy, Risk Management, Russia, trending topics
Understanding Signaling System 7 (SS7)
The Signaling System 7 (SS7) is a set of protocol suite telecommunication networks used to share information across the global public switched telephone network (PSTN). It was developed in the 1980s and has been used ever since. The SS7 protocol is crucial to the functioning of telecom networks, as it helps to set up and…
AI, china, Enterprise, free trade, Funding, Global Security News, Government & Policy, Innovation, IT Management, News, Risk Management, Russia
U.S. Needs to Protect Tech Leadership: Qualcomm
This week, Qualcomm held an event in Washington, D.C. to raise concerns about intellectual property creation, control and protection – and specifically against the rise of China as a technological powerhouse that could displace U.S. leadership. The opening keynote by Susan C. Schwab, an expert in negotiating trade disputes at the University of Maryland’s School…
AI, china, Funding, Global Security News, Government & Policy, Risk Management, Russia
U.S. Needs to Protect Tech Leadership: Qualcomm
This week, Qualcomm held an event in Washington, D.C. to raise concerns about intellectual property creation, control and protection – and specifically against the rise of China as a technological powerhouse that could displace U.S. leadership. The opening keynote by Susan C. Schwab, an expert in negotiating trade disputes at the University of Maryland’s School…
AI, Apps, Compliance, Cybersecurity, Data Breaches, Endpoint, Global Security News, malware, Network Security, News, Reviews, Risk Management, Russia, Security, Software
Best Internet Security Software
After more than a year of high-profile cyber attacks and now the threat of cyber war, businesses and even consumers are taking cybersecurity seriously. Regardless of size or sector, every company is a potential target, and cybercrime will only grow as data becomes more valuable. In light of these risks, organizations need to reevaluate their…
AI, Apps, Compliance, Cybersecurity, Data Breaches, Endpoint, Global Security News, malware, Network Security, Risk Management, Russia
Best Internet Security Software
After more than a year of high-profile cyber attacks and now the threat of cyber war, businesses and even consumers are taking cybersecurity seriously. Regardless of size or sector, every company is a potential target, and cybercrime will only grow as data becomes more valuable. In light of these risks, organizations need to reevaluate their…
AI, APAC, china, chips, Cybersecurity, Enterprise, Europe, Funding, Global Security News, Government & Policy, Intel, Russia
Intel’s Fab Moves in Europe Could Change Chip Industry
For much of the last two decades, the microprocessor market has been defined by companies divorcing themselves from manufacturing to focus solely on design and sales. But since the pandemic, and now the war in Ukraine, it has become clear that this business model puts too much manufacturing capacity in Asia and creates huge supply…
AI, APAC, china, Cybersecurity, Europe, Funding, Global Security News, Government & Policy, Russia
Intel’s Fab Moves in Europe Could Change Chip Industry
For much of the last two decades, the microprocessor market has been defined by companies divorcing themselves from manufacturing to focus solely on design and sales. But since the pandemic, and now the war in Ukraine, it has become clear that this business model puts too much manufacturing capacity in Asia and creates huge supply…