Cybersecurity

US Cyber Command team helps Lithuania protect its networks

The Pentagon's cyber arm says a team spent months working with officials in Lithuania to help protect government networks there from cyberattacks. The U.S. Cyber Command mission, known as a hunt forward operation, involved a specialized team that worked…

NSA cyber boss seeks to discourage vigilante hacking against Russia

Vigilante hacking, the sort seen as Ukraine confronts another Russian invasion, is inadvisable and raises broader questions of ethics and consequences in the digital domain, according to the National Security Agency’s director of cybersecurity. “I will tell you that the idea of the…

New Raspberry Robin worm uses Windows Installer to drop malware

Red Canary intelligence analysts have discovered a new Windows malware with worm capabilities that spreads using external USB drives. This malware is linked to a cluster of malicious activity dubbed Raspberry Robin and was first observed in September 2021…

Researchers uncover years-long espionage campaign targeting dozens of global companies

Researchers with cybersecurity firm Cybereason briefed the FBI and Justice Department recently about Operation CuckooBees, an alleged espionage effort by Chinese state-sponsored hackers to steal proprietary information from dozens of global defense, energy, biotech…

NIST Releases Updated Cybersecurity Guidance for Managing Supply Chain Risks

The National Institute of Standards and Technology (NIST) on Thursday released an updated cybersecurity guidance for managing risks in the supply chain, as it increasingly emerges as a lucrative attack vector. "It encourages organizations to consider the vulnerabilities not only…

VHD Ransomware Linked to North Korea’s Lazarus Group

Source code and Bitcoin transactions point to the malware, which emerged in March 2020, being the work of APT38, researchers at Trellix said. Cryptocurrency thief Lazarus Group appears to be widening its scope into using ransomware as a way to rip off financial…

South Korea Admitted to NATO Cyber Defense Center

South Korea has become the first Asian nation to join NATO’s Cooperative Cyber Defense Centre of Excellence (CCDCOE), in a move that will likely further stoke tensions with Moscow. The country’s National Intelligence Service (NIS) made the announcement today…

Ukraine’s IT Army is disrupting Russia's alcohol distribution

Hacktivists operating on the side of Ukraine have focused their DDoS attacks on a portal that is considered crucial for the distribution of alcoholic beverages in Russia. DDoS (distributed denial of service) attacks are collective efforts to overwhelm servers with large volumes of…

Google fixes actively exploited Android kernel vulnerability

Google has released the second part of the May security patch for Android, including a fix for an actively exploited Linux kernel vulnerability. The flaw, tracked as CVE-2021-22600, is a privilege escalation bug in the Linux kernel that threat actors can exploit via local access…

NHS Inboxes Hijacked to Send 1000+ Malicious Emails

More than 1000 phishing emails were sent from compromised National Health Service (NHS) inboxes over a six-month period ending this year, according to new research from Inky. The email security firm claimed the campaign started around October 2021 and escalated…