Freejacking, a supply-chain attack against an ML framework, and a campaign against banks. Ransomware overview. Hybrid war.

Freejacking, a supply-chain attack against an ML framework, and a campaign against banks. Ransomware overview. Hybrid war.

0 View

Publish Date:
18 September, 2023
Fox News
Video License
Standard License
Imported From:


Ukraine at D+314: Dispersal, and inward-looking info ops. (CyberWire) Fighting continues around Bakhmut, but a general Russian offensive grows less likely as forces are dispersed out of HIMARS range. “Information security” means something different in Russia from what it means in the West.

Ukraine-Russia war latest: Russians ‘using bodies as shields’ on the battlefield (The Telegraph) Russians are using bodies as "shields" on the battlefield, the chief of the military intelligence of Ukraine has said.

Russia says phone use allowed Ukraine to target its troops (AP NEWS) Unauthorized use of cell phones by Russian soldiers led to a deadly Ukrainian rocket attack on the facility where they were stationed, according to the Russian military, as it raised the death toll from the weekend attack to 89.

For Russian Troops, Cellphone Use Is a Persistent, Lethal Danger (New York Times) Ukrainian artillery targets Russian soldiers by pinpointing their phone signals. Despite the deadly results, Russian troops keep defying a ban on cellphone use near the front.

Kremlin blames own soldiers for Himars barracks strike as official death toll rises (The Telegraph) The New Year’s Eve attack is Russia’s single largest loss of life in the ongoing war in Ukraine

How Ukraine’s Himars barracks strike could shape the war throughout 2023 (The Telegraph) The New Year’s Eve attack at a Russian facility might have ramifications beyond weapons strategy and infighting at Moscow

Ukraine Needs Long-Range Firepower for Victory (Foreign Policy) Kyiv’s allies should give it the ability to shift strategic gears.

Ukraine unleashes ‘Bonus’ weapon that can destroy two tanks in a single shot (The Telegraph) Kyiv’s troops fire new munitions, likely from France, that uses thermal mapping to seek out and strike Russian targets

‘Fear Still Remains’: Ukraine Finds Sexual Crimes Where Russian Troops Ruled (New York Times) Investigators have uncovered widespread evidence of abuse by Moscow’s forces, including rape and forced nudity. Kremlin officials have repeatedly denied accusations of rights violations.

Russia’s ex-deputy PM sends Macron shrapnel embedded in his buttocks (The Telegraph) Dmitry Rogozin claims he was a millimetre from death after his birthday party in occupied Ukraine was hit by a French howitzer

Putin’s Last Stand (Foreign Affairs) The promise and peril of Russian defeat.

Russia’s Wartime Cyber Operations in Ukraine: Military Impacts, Influences, and Implications (Estonian Free Press) This paper examines the military effectiveness of Russia’s wartime cyber operations in Ukraine, the reasons why these operations have not had greater strategic impact, and the lessons applicable to other countries’ military cyber efforts. It builds on previous analyses by taking a more systematic and detailed approach that incorporates a wider range of publicly available

No Water’s Edge: Russia’s Information War and Regime Security (Carnegie Endowment for International Peace) Moscow’s fixation on regime security and the interaction between domestic and foreign policy has been continually highlighted across the past decades and currently continues apace.

How NATO can keep pace with hybrid threats in the Black Sea region and beyond (Atlantic Council) Russia’s targeting of civilian infrastructure in Ukraine reveals the vulnerability of energy systems to hybrid threats, warranting study and research to mitigate the risks.

Ukraine War and Upcoming SEC Rules Push Boards to Sharpen Cyber Oversight (Wall Street Journal) A communications gap between directors and security chiefs hampers corporate governance, experts say.

Attacks, Threats, and Vulnerabilities

Pro-ISIS Outlet Publishes Article On Zero Day Software Vulnerabilities (MEMRI) On December 29, 2022, the pro-Islamic State (ISIS) outlet Qimam Electronic Foundation, which provides information security tips for jihadis, published a link on the ISIS-run Rocket.Chat server to an article titled “What is a Zero Day vulnerability [and] why is it considered one of the most dangerous types of vulnerabilities?”

Hackers abuse Windows error reporting tool to deploy malware (BleepingComputer) Hackers are abusing the Windows Problem Reporting (WerFault.exe) error reporting tool for Windows to load malware into a compromised system’s memory using a DLL sideloading technique.

High-Severity Command Injection Flaws Found in Fortinet’s FortiTester, FortiADC (SecurityWeek) Fortinet has released patches for multiple vulnerabilities across its product portfolio and warned of a high-severity command injection bug in FortiADC.

Rackspace: Ransomware Attack Bypassed ProxyNotShell Mitigations (Dark Reading) The hosting provider had not applied Microsoft’s new patch due to publicly reported issues with the update.

Rackspace confirms Play ransomware was behind recent cyberattack (BleepingComputer) Texas-based cloud computing provider Rackspace has confirmed that the Play ransomware operation was behind a recent cyberattack that took down the company’s hosted Microsoft Exchange environments.

PyTorch dependency poisoned with malicious code (Register) System data was exfiltrated during attack, but an anonymous person says it was a research project gone wrong

Compromised PyTorch-nightly dependency chain between December 25th and December 30th, 2022. (PyTorch) An open source machine learning framework that accelerates the path from research prototyping to production deployment.

Hacker Selling Data Allegedly Stolen From Volvo Cars Following Ransomware Attack (SecurityWeek) A hacker is offering to sell data allegedly stolen from Volvo Cars following an Endurance ransomware attack.

Critical flaws found in Ferrari, Mercedes, BMW, Porsche, and other carmakers (Security Affairs) BMW, Mercedes, Toyota, and other popular carmakers use vulnerable APIs that could have allowed attackers to perform malicious activities. Cybersecurity researcher Sam Curry and his colleagues discovered many vulnerabilities in the vehicles manufactured by tens of carmakers and services implemented by vehicle solutions providers. The vulnerabilities could have been exploited by threat actors to perform […]

Toyota, Mercedes, BMW API flaws exposed owners’ personal info (BleepingComputer) Security analysts disclosed severe API security flaws impacting numerous car makers, enabling them to access vehicle owner information, take over accounts, access internal systems, modify records, and track their position.

Hackers leak email addresses tied to 235 million Twitter accounts (Washington Post) The records, probably compiled in late 2021, were published on a popular underground marketplace, researchers said

200 million hacked Twitter accounts data published for free (Computing) Data dump includes details of celebrities’ accounts and could be used for extortion, phishing and scamming

Twitter’s latest hack is a big one (Washington Post) Twitter can’t stay out of regulators’ crosshairs

Cyberattack against records vendor Cott Systems interrupts counties nationwide (StateScoop) An apparent cyberattack against an IT vendor has left many local governments cut off from their records management systems.

Wabtec Says Personal Information Compromised in Ransomware Attack (SecurityWeek) Rail company Wabtec has confirmed that personal information was stolen in a ransomware attack last year.

Billion-dollar rail firm confirms data breach after suspected ransomware attack (The Record by Recorded Future) One of the world’s largest rail and locomotive companies announced a data breach that leaked troves of personal employee information.

Five Guys Data Breach Puts HR Data Under a Heat Lamp (Dark Reading) Job applicants could face a raft of follow-on attacks after cyber intruders accessed their data in an opportunistic attack.

RI housing and mortgage finance agency hit by data breach (The Providence Journal) Information such as customers names, addresses and last four digits of their Social Security number were compromised,

Massachusetts school district, community college dealing with fallout from ransomware attacks (The Record by Recorded Future) A school district and community college in Massachusets are struggling to recover from ransomware attacks that crippled digital systems. 

EA says it can’t recover 60% of players’ corrupted Madden franchise save files (Ars Technica) Issue came after EA said players “should now be able to play… without issue.”

Recorder’s office vendor hit by cyber attack (The Tribune) No access to records at this time, FBI investigating The Lawrence County Recorder’s Office has been dealing with one of its vendors getting hit with  a cyber attack. On Saturday, Lawrence County Recorder Sharon Gossett Hager posted to Facebook that the FBI and Homeland Security were investigating a cyber attack aimed at Cott Systems, a […]

Vulnerability Summary for the Week of December 26, 2022 (CISA) The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. NVD is sponsored by CISA. In some cases, the vulnerabilities in the bulletin may not yet have assigned CVSS scores. Please visit NVD for updated vulnerability entries, which include CVSS scores once they are available.

Security Patches, Mitigations, and Software Updates

Android’s First Security Updates for 2023 Patch 60 Vulnerabilities (SecurityWeek) Google this week announced the first security updates for Android for 2023, which resolve a total of 60 vulnerabilities.

Fortinet Releases Security Updates for FortiADC (CISA) Fortinet has released a security advisory to address a vulnerability in multiple versions of FortiADC. This vulnerability may allow a remote attacker “to execute unauthorized code or commands via specifically crafted HTTP requests.” CISA encourages users and administrators to review Fortinet security advisory FG-IR-22-061 and apply the recommended updates.

Zoho urges admins to patch critical ManageEngine bug immediately (BleepingComputer) Business software provider Zoho has urged customers to patch a critical security flaw affecting multiple ManageEngine products.

Aussie businesses up cyber spending, call for cooperation against rising threat (Cybersecurity Connect) Investment in cybersecurity by business leaders has seen a meteoric rise over the past year and shows no sign of slowing down. Now are calling for companies to work together against the greater cyber

Cyberattacks against governments jumped 95% in last half of 2022, CloudSek says (CSO Online) India, the US, Indonesia, and China accounted for 40% of the total reported cyberattacks in the government sector.

BlackFog Global Ransomware Report (BlackFog) We finish the year with 35 reported ransomware attacks, the busiest December recorded in three years. December saw some interesting twists, including an apology and a free decryptor from the LockBit criminal gang after a ‘partner’ launched an attack on the the Toronto Hospital for Sick Children.

Ransomware hit US schools at steady rate in 2022 (Cybersecurity Dive) The true numbers are likely much greater. Not all incidents are publicly disclosed or claimed as such by threat actors on the dark web.

These grim figures show that the ransomware problem isn’t going away (ZDNET) There’s still huge disruption from ransomware attacks – and there’s no sign that criminals intend to give up.


Management of five firms linked to Pegasus maker NSO is moved to London (the Guardian) Change could stoke controversy for spyware company amid calls for UK sanctions

WSJ News Exclusive | Amazon to Lay Off Over 17,000 Workers, More Than First Planned (Wall Street Journal) The new figure would be the largest number of cuts revealed so far at a major tech company.

Amazon to cut more than 18,000 jobs (Computing) Amazon is to eliminate more than 18,000 positions from its workforce, citing the uncertain economic situation and the over-recruitment during the pandemic.

Salesforce cuts 10% of its workforce: ‘We hired too many people’ (Yahoo Finance) Salesforce becomes the latest tech giant to trim its workforce.

Musk’s Server Cuts at Twitter Could Inspire Other CEOs (The Information) Elon Musk has won plaudits in some quarters of Silicon Valley for slashing Twitter’s headcount and ending its remote-work policy. Now Musk’s latest target for cost cutting is drawing fresh attention from cost-conscious CEOs at companies across the globe. Since taking over Twitter just over two …

More skilled talent needed to repel 5G cyber threats (Financial Express) While 5G creates new use cases, it also ups the attack surface

Darktrace announces new customers in the US transport and logistics sector (Intelligent CIO North America) Darktrace, a global leader in cybersecurity Artificial Intelligence, has announced that several companies in the US transport and logistics sector have adopted Darktrace’s AI technology to protect against sophisticated cyberattacks. US transport and logistics organizations to have recently chosen Darktrace include: ·      A leading railway company operating across 10 plus states ·      A warehousing and logistics provider […]

Products, Services, and Solutions

IronNet’s latest NDR updates provide broader visibility of cyber threats (Help Net Security) IronNet enhances its network detection and response (NDR) solution, IronDefense, enabling early visibility of unknown cyber threats.

Amazon to shut down its encrypted messaging app Wickr Me (Android Headlines) Amazon is shutting down its encrypted messaging app Wickr Me. The app will stop working at the end of this year.

F5 Delivers on Cybersecurity Integration Promise (Security Boulevard) F5 has extended the reach of its cloud security platform to include the infrastructure that applications are deployed on using technology it gained with

Technologies, Techniques, and Standards

NIST Finalizes Cybersecurity Guidance for Ground Segment of Space Operations (SecurityWeek) NIST has released the final version of its guidance on applying the Cybersecurity Framework to the ground segment of space operations, specifically satellite command and control.

An Action Plan for Cyber Resilience (MIT Sloan Management Review) Organizations can apply biology-inspired adaptive design principles to become more resilient against cyberattacks.

Another case where process sensor monitoring could have prevented a facility shutdown (Control Global) Canadian Copper Mountain Mining (CMMC) shut down their mill after a December 27th ransomware attack “as a preventative measure to determine the status of its control system, while other processes switched to manual operations.”

Design and Innovation

Looking Glass Labs creates special committee to explore the opportunity in advances in artificial intelligence technologies (Proactiveinvestors NA) Looking Glass Labs Ltd (LGL) has said that based on the recent advances in artificial intelligence (AI) technologies including the…

Research and Development

IARPA aims to thwart cyberattacks with psychology (FCW) The intelligence research agency is looking to deploy and automate hackers’ cognitive biases to help defend potential cyberattacks.

Chinese researchers claim to have broken RSA with a quantum computer. Experts aren’t so sure. (The Record by Recorded Future) Researchers in China are claiming a breakthrough in quantum computing, figuring out how to break the RSA public-key encryption system.


NIELIT and Microsoft team up to prepare youth for cybersecurity careers (The Times of India) National Institute of Electronics & Information Technology (NIELIT) and Microsoft have announced a collaboration to increase access to cybersecurity s

Legislation, Policy, and Regulation

Europe’s Battle To Rein In Big Tech (Barron’s) The European Union is on a mission to get US tech giants to stop avoiding tax, stifling competition, profiting from news content without paying and serving as platforms for disinformation and hate.

Federal Reserve, FDIC and OCC Warn Banks About Cryptocurrency Risks (Wall Street Journal) The Federal Reserve, FDIC and OCC said holding cryptocurrencies is likely inconsistent with safe banking practices.

Behind the scenes of Trump’s firing of the CISA director in 2020 (Washington Post) Krebs testified to the Jan. 6 committee about his firing. Here’s what he said.

Cyber expert calls on local governments across Australia to improve security (Insurance Business Magazine) Review identifies weaknesses around access control

Litigation, Investigation, and Law Enforcement

Bitdefender Partnership with Law Enforcement Yields MegaCortex Decryptor (Bitdefender Labs) We have just released a decryptor for the MegaCortex ransomware family.

Tracked, detained, vilified: How China throttled anti-covid protests (Washington Post) After widespread demonstrations, China relaxed its strict covid controls. But on the protesters themselves, the government unleashed a police state brimming with new surveillance technology.

Cops Hacked Thousands of Phones. Was It Legal? (WIRED) When police infiltrated the EncroChat phone system in 2020, they hit an intelligence gold mine. But subsequent legal challenges have spread across Europe.

Blow for Meta: must stop serving personalised ads until it’s GDPR compliant (Computing) Meta fined $400m by European regulators and told to stop serving ads based on personal data until it’s properly compliant with GDPR’s consent requirements, including opt-in

Meta Fined Over $400 Million in EU for Serving Ads Based on Online Activity (Wall Street Journal) An Irish regulator’s action against the Facebook owner delivered a punch to the digital-advertising industry.

Irish privacy watchdog fines Meta $400 million amid disagreement among European authorities (The Record by Recorded Future) Ireland’s data privacy watchdog has given a €390 million fine to Meta for GDPR violations related to Facebook and Instagram.

U.S. Moves to Seize Robinhood Shares, Silvergate Accounts Tied to FTX (Wall Street Journal) Federal authorities’ seizure of funds comes as the prospect of customers recovering some billions in cash and crypto assets remains in limbo.

Docket for Doe, Individually and on behalf of all others similarly situated v. LastPass US LP, 1:23-cv-10004 (CourtListener) COMPLAINT CLASS ACTION COMPLAINT against All Defendants Filing fee: $ 402, receipt number AMADC-9650097 (Fee Status: Filing Fee paid), filed by John Doe, Individually and on behalf of all others similarly situated. (Attachments: # 1 Civil Cover Sheet, # 2 Category Form)(Pastor, David) (Entered: 01/03/2023)

Coinbase Reaches $100 Million Settlement With New York Regulators (New York Times) The U.S. crypto exchange will pay a $50 million fine for letting customers open accounts with few background checks and spend $50 million to improve compliance.

JPMorgan Must Face Suit by Ray-Ban Maker Unit Over Cyber Theft (Bloomberg) Judge dismisses breach of contract, negligence claims. Essilor can proceed with contract law provision claim.

Bankruptcy judge rules that Earn account assets belong to Celsius (Axios) The crypto lender’s bankruptcy might have just set a precedent in determining what crypto assets belong to whom when stored on a centralized platform.

Crypto Manipulation Has Consequences (Bloomberg) Also Gemini Earn, index funds and bored traders quitting.

Innocent Black Man Jailed After Facial Recognition Went Wrong: Lawyer (Gizmodo) An algorithm sent a Black man to jail in Louisiana, a state he’d never visited, according to his lawyer. Experts say he won’t be the last.

JPSO used facial recognition technology to arrest a man. The tech was wrong. ( Technology has given police vast reach to compare the faces of criminal suspects against a trove of mug shots, driver’s licenses, and even selfies plucked from social media.

New Year’s Resolution for Lawyers: Learn More About Cyber Risk (JD Supra) Lawyers throughout the nation are gearing up to polish and execute their visions for the new year. Talks of strategy, budgets, goals, and professional…

The post Freejacking, a supply-chain attack against an ML framework, and a campaign against banks. Ransomware overview. Hybrid war. first appeared on DAILY POLITICAL PRESS.