cw-briefing-053122.jpg

gangland update. Cyber threats to agriculture. Cyber phases of Russia’s hybrid war.

Dateline Moscow, Kyiv, Brussels, London, and Washington: Force reconstitution, cyber operations, and a stalled prosecution.

Ukraine at D+96: Russia’s slow and firepower-intensive advance. (The CyberWire) Russian forces concentrate on the Donbas, where they’re reported to be making slow progress behind crushing artillery fire in Luhansk. The EU decides to restrict Russian oil imports. Russia’s Black Sea blockade has begun to induce food shortages in Africa and elsewhere. Low-intensity skirmishing continues in cyberspace.

Russia-Ukraine war: List of key events, day 97 (AL Jazeera) As the Russia-Ukraine war enters its 97th day, we take a look at the main developments.

Ukrainian troops hold out as Russia assaults Sievierodonetsk wasteland (Reuters) Ukrainian forces were holding out in Sievierodonetsk on Tuesday, resisting Russia’s all-out assault to capture a bombed-out wasteland that Moscow has made the principal objective of its invasion in recent days.

Russia-Ukraine latest news: Russians now controls half of Severodonetsk after ‘near constant bombardment’ (The Telegraph) Russian troops have taken control of half of the city of Severodonetsk, the city’s mayor Oleksandr Striuk has said.

‘Suicide mission’ for Russian forces ordered to capture Severodonetsk (The Telegraph) Ukraine is battling to defend the last remaining city it holds in Luhansk

Ukraine morning briefing: Complete takeover of Donbas is Russia’s ‘unconditional priority’ (The Telegraph) Plus: Zelensky fires Kharkiv security chief and Russian troops advance on centre of strategic city of Severodonetsk

Ukraine launches counter-offensive against Russian occupiers in Kherson (The Telegraph) Kyiv is seeking to sever Moscow’s supply lines and reclaim the city, which was the first to fall during the war

Russians advance into largest city in Donbas still in Ukrainian hands (the Guardian) Witnesses say tanks moving into Sievierodonetsk amid intense shelling and civilian casualties

Russia claims seizure of key Ukrainian transport hub in boost for Putin (The Telegraph) Russian media believe a victory in the Donbas would galvanise Putin to the point where he may even order another attempt to capture Kyiv

Russia takes small cities, aims to widen east Ukraine battle (AP NEWS) Russia asserted Saturday that its troops and separatist fighters had captured a key railway junction in eastern Ukraine, the second small city to fall to Moscow’s forces this week as they fought to seize all of the country’s contested Donbas region.

Russians, Ukrainians fight block by block in eastern city (AP NEWS) Russian troops pushed deeper into a key eastern Ukrainian city Monday, fighting street by street with Kyiv’s forces in a battle that has left Sievierodonetsk in ruins. In a bid to pressure Moscow to end the war, the European Union agreed to embargo most Russian oil imports by the end of the year .

Car bomb blast signals start of guerilla warfare (The Telegraph) Unidentified man and woman taken to hospital after explosion in the Russian-occupied southern city of Melitopol

Fleeing the Russians: Evacuations are slow, arduous, fraught (AP NEWS) To a threatening soundtrack of air raid sirens and booming artillery, civilians are fleeing towns and cities in eastern Ukraine as Russian forces advance. Negotiating narrow apartment building staircases, volunteers carry the elderly and infirm in their arms, in stretchers or in wheelchairs to waiting minibuses, which then drive them to central staging areas and eventually to evacuation trains in other cities.

Sievierodonetsk bombing so intense, casualties cannot be assessed, officials say (the Guardian) Russian forces are hitting largest city in Donbas still held by Ukraine ‘200 times an hour’

Ukraine destroys Russian ammo depot as battle of Donbas intensifies (Newsweek) Sunday saw intense fighting and fierce close combat clashes in eastern Ukraine as Russia seeks to seize full control of the country’s eastern Donbas region.

Lyman overtaken by Russians; French journalist killed in Severodonetsk area (Washington Post) Russian forces closing in on the city of Severodonetsk killed a French journalist who was covering evacuations in one of the last major Ukrainian-held areas of the country’s eastern Luhansk oblast, officials said Monday.

Putin has regained the military initiative in Ukraine (The Telegraph) Strengthened by Western complacency, the Russian president has successfully launched his fight-back

Fighting focuses on Donbas, but Putin has not given up on Kharkiv – or Kyiv (the Guardian) The outcome of Russia’s attacks on the Donetsk and Luhansk areas will determine the fate of the rest of Ukraine

Zelensky reports “barbaric strikes” as Putin removes military age limit (Newsweek) The Ukrainian president said shelling hit a residential area on Saturday and called the situation in Eastern Ukraine “indescribably difficult.”

Putin’s Hard Choices (Foreign Affairs) Why the Russian despot can neither mobilize nor retreat.

Vladimir Putin’s forces are running out of tanks (The Telegraph) Moscow is pulling 60-year-old equipment out of deep storage as Ukrainian forces decimate its arsenal of armoured vehicles

War in Ukraine, Day 96 Update: Russia’s Military Losses are ‘Unsustainable’ (19FortyFive) The Russian military continues to suffer heavy and unsustainable casualties and could hinder greatly its ability to fight in Ukraine.

Terrified Chechens flee to avoid Ukraine call-up as casualties mount (The Telegraph) Men turn against the war as growing number of Ramzan Kadyrov’s forces killed and badly injured

Putin’s “private army” troops fired for “refusing” to fight in Ukraine (Newsweek) A Russian military court assessed Wednesday that the sacking of 115 servicemembers was justified after troops decided to return to their base instead.

Zelenskyy says top Kharkiv official fired over city’s defense (Al Arabiya English) Ukrainian President Volodymyr Zelenskyy said Sunday he had fired Kharkiv’s security services chief for “not working on the defense of the city” since the

Ukrainians forced into enemy hands are fleeing … and Russians are helping them (The Telegraph) Refugees face ‘filtration camps’ and four-hour long interrogations on a difficult route to freedom in Estonia

Ukrainian MP urges west to supply long-range rockets or risk Russian victory (the Guardian) Kira Rudik says on visit to UK that without further military help Ukraine will fail to push back invaders

Boris Johnson calls for ‘vital’ long-range weapons to be sent to Ukraine (The Telegraph) The Prime Minister says Kyiv must have the kit to defend itself as fighting in Donbas intensifies

Johnson Urges Missiles for Ukraine to Hit ‘Crocodile’ Putin (Bloomberg) UK prime minister speaks in Bloomberg Television interview. Pushes back at calls for negotiations with Russian leader.

Russia’s War in Ukraine Could Become Genocide (Foreign Policy) Moscow is already carrying out ethnic cleansing.

Biden says Putin trying to ‘wipe out’ Ukrainian culture, as prospect of retreat looms in east (the Guardian) US president says Putin trying to eliminate people’s identity, as governor of Luhansk says retreat in Sievierodonetsk may be needed to avoid becoming surrounded.

Ukraine jails two Russian soldiers for 11-1/2 years for shelling civilians (Reuters) A Ukrainian court sentenced two captured Russian soldiers to 11 and a half years in jail on Tuesday for shelling a town in eastern Ukraine, the second war crimes verdict since the start of Russia’s invasion in February.

Mass civil legal action to seek compensation for Ukrainian war victims (the Guardian) Exclusive: Lawyers to target assets of Russian state, military contractors and affiliated business figures across globe

“No restrictions”: NATO to take more aggressive stance against Russia (Newsweek) Mircea Geoană did not provide any details of a planned deployment, but said there would be “a robust, flexible and sustainable presence” in eastern Europe.

Biden will not supply Ukraine with long-range rockets that can hit Russia (the Guardian) Moscow has threatened retaliation if missiles are used against its territory but US plans to ship shorter range systems

Russia warns long-range U.S. missiles at Ukraine border “intolerable” (Newsweek) Russian ambassador to the U.S. Anatoly Antonov said Saturday that Russia hopes “common sense will prevail and Washington will not take such a provocative step.”

Lithuanian citizens pool $4.7M to buy advanced drone for Ukraine’s military (Newsweek) Lithuania has strongly condemned Russia’s invasion and has expressed fears that the war could soon expand into its own country.

Germany has not sent promised large arms to Ukraine, leaked documents show (The Telegraph) German broadsheet Welt says it has seen official papers that show Germany has not supplied any significant weapons to Ukraine for weeks

In big bid to punish Moscow, EU bans most Russia oil imports (AP NEWS) In the most significant effort yet to punish Russia for its war in Ukraine, the European Union agreed to ban the overwhelming majority of Russian oil imports after tense negotiations that tested how far the bloc is willing to go to ostracize Moscow.

EU, resolving a deadlock, in deal to cut most Russia oil imports (Reuters) European Union leaders agreed in principle on Monday to cut 90% of oil imports from Russia by the end of this year, resolving adeadlock with Hungary over the bloc’s toughest sanction yet on Moscow since the invasion of Ukraine three months ago.

What Happened on Day 96 of the War in Ukraine (New York Times) A draft of the agreement allows pipeline imports, in a nod to Hungary’s complaints. Even still, it would be the toughest action yet over Russia’s invasion of Ukraine. The E.U. also pledged 9 billion euros to help Ukraine, and the Eurovision winners auctioned off their trophy to support Ukraine’s army.

EU leaders agree to partial embargo of Russian oil imports (the Guardian) Some 75% of imports will be banned and Sberbank ejected from Swift but Hungary, Czech Republic and Slovakia to keep supplies

The E.U.’s embargo will bruise Russia’s oil industry, but for now it is doing fine. (New York Times) The European Union reached an agreement to ban most Russian oil imports, which may cause Russian production to drop about 10 percent, analysts say.

After Orbán pipes up, Hungary skips Russian oil ban (POLITICO) To win approval of new sanctions, EU leaders give Budapest a pass.

Germany ‘deliberately watering down’ EU embargo on Russian oil (The Telegraph) Diplomats accuse Berlin of hijacking talks in order to secure wider concessions that would benefit its own economy

EU fails to agree on Russia oil embargo, to try again Monday before summit (Reuters) The EU failed on Sunday to agree on an embargo of Russian oil, but diplomats but will still try to make progress ahead of a Monday-Tuesday summit on an exemption for pipeline deliveries to landlocked Central European countries, officials said.

Macron is wrong. The EU has been proved to be brain-dead, not Nato (The Telegraph) Putin’s invasion of Ukraine has shown Brussels to be slow and ineffective

The EU will never recover from its Ukraine shame (The Telegraph) It was easy to forget Germany and France’s behaviour when Putin was losing. Now he may be winning, it is a total outrage

Azerbaijan Stands to Win Big in Europe’s Energy Crisis (Foreign Policy) That spells trouble in Nagorno-Karabakh.

Ukraine’s territorial integrity must not be sacrificed (The Telegraph) There is a risk that Mr Macron and Mr Scholz will undermine the notion of Western solidarity by embarking on their own initiatives

Snake Island: Why Ukraine just won’t let it go (The Telegraph) The rocky Black Sea outcrop where 13 Ukrainian border guards famously refused to surrender has taken on a new significance

Russia dumps bodies in supermarket to try and restart Mariupol water supply (The Telegraph) Pictures that are too graphic to publish show decomposed bodies littered across the floor that have been washed above ground and left to rot

Desperate Putin is deluded to think he can win (The Telegraph) Insulated in his circle of yes-men, desperate to salvage his legacy, the Russian president is not ready to back down in Ukraine

Ukraine war is Putin’s death warrant, says wife of jailed politician (the Guardian) Vladimir Kara-Murza’s wife Evgenia says Russian president will fall over war in Ukraine

Negative views of Russia mainly limited to western liberal democracies, poll shows (the Guardian) Annual global survey of attitudes to democracy finds many countries maintain positive views of Russia

How Russia quietly built its allies since the Cold War (Big News Network) Despite widespread sanctions over the invasion of Ukraine Russia still has many allies This is how Russia built relationships from the ashes of the Cold War Two weeks after invading Ukraine Russia expanded its list of unfriendly countries to include 48 nations that had imposed sanctions against it for actions in Ukraine The initial list [] The post How Russia quietly built its allies since the Cold War appeared first on 360

Is Vladimir Putin sick? What we know about the Russian president’s health (Newsweek) An analysis into what we know about the Russian President’s health, including what’s been said by close sources to Putin, as well as his doctors.

Russia dismisses speculation over Vladimir Putin’s health (The Telegraph) ‘I don’t think sane people can see any signs of illness or ailment in this person,’ Sergei Lavrov, the foreign minister, tells TV channel

‘I would defy Putin again’: Meet Marina Ovsyannikova, Russia’s most hated woman (The Telegraph) The television producer reveals the highs and lows she faced since her famous on-air anti-war protest at a Russian news show

Ukraine morning briefing: Five key developments as Kyiv’s Orthodox Church cuts ties with Russia (The Telegraph) Plus: President Zelensky urges the West to stop playing around with Russia and Moscow-backed separatists say they’ve captured railway hub

Finland needs ability to ‘react rapidly’ to any Russian aggression: Minister (Breaking Defense) With a wary eye on Russia, Finnish Foreign Minister Pekka Haavisto said that so far it’s mostly quiet on the eastern front.

Nagorno-Karabakh in the Shadow of Ukraine (Foreign Affairs) What Russia’s war means for Armenia and Azerbaijan.

The Kremlin’s aims and assumptions (ICDS) Despite the political, economic, and military pressure that Russia applied to Ukraine from March 2014, Kyiv demonstrated no willingness to give up its territory, sovereignty, and Western orientation, and return to Moscow’s orbit. Russia’s demands – neutrality (i.e., giving up the quest for NATO membership), reintegration of occupied territories in the Donbas only as Russia’s Trojan horse, and recognition of Crimea as part of Russia – were totally unacceptable to Ukraine. Putin’s regime thus made the extensive preparations for decisive action that materialised in the unprovoked and brutal invasion of Ukraine on 24 February 2022.

The War in Cyberspace (ICDS) While attention has largely been focused on the conventional war in Ukraine, Russia’s attack has also included sustained cyber-measures. The first month of active conflict saw three times more cyberattacks against Ukraine’s information infrastructure compared to the same period in the previous year.

Darktrace CEO Calls For Dedicated ‘Tech NATO’ To Improve International Cyber Resilience (PR Newswire) Darktrace CEO Poppy Gustafsson spoke on Wednesday night at the Royal United Services Institute (RUSI) on the evolving cyber threat landscape in…

2022 Q2: Report on the Vulnerability Detection and Cyber Incident Response System (Security Operation Centre of the State Cyber Protection Centre of the State Service of Special Communication and Information Protection of Ukraine) The SECURITY OPERATION CENTRE’s subsystem detects harmful activity as well as system and network anomalies at cyber defense facilities by analyzing the data obtained from network devices (active sensors, firewalls, vulnerability scanners), workstations and servers, authorization systems, internal and external cyber threat data sources

Experts believe that Russian Gamaredon APT could fuel a new round of DDoS attacks (IT Security News) This article has been indexed from Security Affairs 360 Qihoo reported DDoS attacks launched by APT-C-53 (aka Gamaredon) conducted through the open-source DDoS Trojan program LOIC. Researchers at 360 Qihoo observed a wave of DDoS attacks launched by Russia-linked APT-C-53 (aka Gamaredon) and reported that the threat actors also released as open-source the code of a DDoS Trojan called LOIC. The

Italy warns organizations to brace for incoming DDoS attacks (BleepingComputer) The Computer Security Incident Response Team in Italy issued an urgent alert yesterday to raise awareness about the high risk of cyberattacks against national bodies and organizations on Monday.

Putin horror warning over ‘own goal’ attack on UK coming back to haunt Kremlin (Express.co.uk) VLADIMIR PUTIN may not launch a major cyber attack against the UK for fear of the damage it could cause to Russia, creating an “own goal” situation, according to an expert.

Whitepaper – PIPEDREAM: CHERNOVITE’s Emerging Malware Targeting Industrial Environments (Dragos) PIPEDREAM is the sixth known ICS-specific malware. It is developed by the Activity Group (AG) Dragos has designated as CHERNOVITE. PIPEDREAM malware can disrupt, degrade, and potentially destroy industrial environments and physical processes depending on how it is leveraged in CHERNOVITE’s operations.

Hackers wage war on Russia’s largest bank (The Telegraph) Sberbank targeted by politically motivated action following war in Ukraine

Putin plot: UK hospitals at risk of chilling ‘sleeper cell’ attack by Russia (Express) BRITISH hospitals remain at risk of a chilling ‘sleeper cell’ plot by Russian cyber criminals.

Will Russia Launch a New Cyber Attack on America? (The National Interest) Although Putin’s intentions are far from clear, his decision to pursue a cyberattack on the United States’ critical infrastructure that would instantly shut down electricity or disrupt clean water supply, the offense might come unexpectedly, and soon.

REvil prosecutions reach a ‘dead end,’ Russian media reports (CyberScoop) The contention follows multiple claims from Russian officials that a lack of U.S. cooperation was hurting their case.

До российских хакеров Америке нет дела (Kommersant) Уголовное преследование предполагаемых участников группировки REvil зашло в тупик

Major supermarkets ‘uniquely vulnerable’ as Russian cyber attacks rise (ABC) The head of a national cybersecurity firm warns it’s not a matter of “if” but “when” major supermarkets or distributors are targeted by Russia-backed hackers, risking shortages on grocery store shelves.

Remote bricking of Ukrainian tractors raises agriculture security concerns (CSO Online) Modern agriculture depends on internet-connected machinery that is centrally controlled and collects and analyzes massive amounts of data, making it an inviting target for threat actors.

Russia’s Black Sea Blockade Will Turbocharge the Global Food Crisis (Foreign Policy) Lithuania’s call for a naval coalition to break Russia’s stranglehold on Ukraine’s exports hasn’t been taken up—yet.

Russia’s Invasion Unleashes ‘Perfect Storm’ in Global Agriculture (Foreign Policy) Curtailed harvests and scarcer fertilizer all but promise hunger and hardship for tens of millions.

‘War in Ukraine Means Hunger in Africa’ (Foreign Policy) The International Monetary Fund’s two top leaders discuss the global economic ramifications of Russia’s invasion.

Afghanistan’s Hungry Will Pay the Price for Putin’s War (Foreign Policy) The knock-on effects of Russia’s war on Ukraine are hammering wheat-dependent countries such as Afghanistan.

Attacks, Threats, and Vulnerabilities

How Costa Rica found itself at war over ransomware (CSO Online) Costa Rica failed to implement the cyber-preparedness strategy that it laid out five years ago and now serves as an example not only to other Latin American nations but also to the world.

Clop ransomware gang is back, hits 21 victims in a single month (BleepingComputer) After effectively shutting down their entire operation for several months, between November and February, the Clop ransomware is now back according to NCC Group researchers.

Conti ransomware explained: What you need to know about this aggressive criminal group (CSO Online) The Conti ransomware group is less likely to help victims restore encrypted files and more likely to leak exfiltrated data.

Microsoft finds severe bugs in Android apps from large mobile providers (BleepingComputer) Microsoft security researchers have found high severity vulnerabilities in a framework used by Android apps from multiple large international mobile service providers.

Phishing Campaign Delivering Three Fileless Malware: AveMariaRAT / BitRAT / PandoraHVNC – Part II (Fortinet) Fortinet’s FortiGuard Labs captured a phishing campaign that delivers three fileless malware onto a victim’s device. Once executed, they are able to control and steal sensitive information from that device to perform other actions according to the control commands from their server.

Microsoft Office zero-day “Follina”—it’s not a bug, it’s a feature! (It’s a bug) (Malwarebytes Labs) Researchers around the world are working to understand a new remote code vulnerability in Microsoft Office dubbed Follina.

Microsoft Word struck by zero-day vulnerability (Register) Researchers comb through code execution flaw found in malicious document

Watch Out! Researchers Spot New Microsoft Office Zero-Day Exploit in the Wild (The Hacker News) Cybersecurity researchers have discovered a new zero-day bug in Microsoft Office that could be exploited to execute arbitrary code on affected Windows

Researchers Reveal ‘Follina’ Zero-Day Vulnerability in Microsoft Office (PCMAG) Malicious documents can be used to enable code execution even if Office macros are disabled.

Microsoft Office zero-day flaw ‘Follina’ uncovered by researchers (Computing) Word attack is possible even with macros turned off, no patch yet available

Data collected by mobile apps: the gap between what’s disclosed and reality (Pradeo) 17% of Android apps claim that they do not collect personal data, while they actually exfiltrate it through the network. The percentage reaches 19% on iOS.

Beware the Smish! Home delivery scams with a professional feel… (Naked Security) Home delivery scams are getting leaner, and meaner, and more likely to “look about right”. Here’s an example to show you what we mean…

Verizon downplays database hacked and held for ransom, security risk could remain (9to5Mac) A Verizon employee database was recently compromised with the hacker holding it for a $250,000 ransom. Verizon says it doesn’t believe it contains “any sensitive information” and stopped communication with the hacker. However, the list of details including employee email addresses, phone numbers, and more could present a risk for future attacks. Reported by Motherboard […]

Hacker accesses a Verizon employee database and tries to ransom the data for $250,000 (The Verge) Hacker captures Verizon employee info, holding it ransom.

Portland lost $1.4M in a ‘cybersecurity breach’ (opb) City officials recently learned of a “fraudulent financial transaction” that occurred late last month, according to a press statement issued Friday afternoon by the city’s Office of Management and Finance. City officials realized there had been a breach after another attempt was made on May 17.

Regina Public Schools remain offline, cyber attack confirmed (CTV News) Cyber security attacks happen every day, and as Regina Public Schools division discovered this week, no one is safe.

Cyberattack against Regina Public Schools likely ransomware (CBC) A ransom note displayed on some Regina Public Schools computers indicates a recent cyberattack was a ransomware attack.

Ransomware group forces victims to ‘pick any 5 poor children’ and buy them KFC (pcgamer) It’s like if Robin Hood and a chain email from your aunt fell into the machine from The Fly.

Vulnerability Summary for the Week of May 23, 2022 (CISA) The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. NVD is sponsored by CISA. In some cases, the vulnerabilities in the bulletin may not yet have assigned CVSS scores. Please visit NVD for updated vulnerability entries, which include CVSS scores once they are available.

4 in 5 cyber attacks executed by organised crime (Information Age) Executives hiding breaches and paying ransoms.

Cyber Defense Confidence Ebbs as Ransomware Attacks Multiply (Wall Street Journal) Despite Washington’s recent attempts to expand cybersecurity rules and disrupt hacking gangs, ransomware continues to proliferate and executives report unease about their companies’ ability to ward off the threat.

Cyber criminals targeting agribusiness (World Grain) Industry’s increased use of internet-enabled technologies makes it more vulnerable.

There are worrying gaps in cybersecurity training in law firms | theHRD (theHRDIRECTOR) New research just published among UK legal professionals suggests that the risk of cyber attacks is a growing concern for most law firms, although there is a worrying minority that is still complacent about the risks.

Cybersecurity: Companies brace for more cyber attacks (The New Indian Express) Many organisations, irrespective of size, transformed their operations to facilitate remote work during the pandemic period.

DNV discusses cyber resilience (World Pipelines) Their comment on the World Economic Forum story ‘Global CEOs Commit to Collective Action on Cyber Resilience’.

Marketplace

Parsons to Acquire Xator (Hstoday) Xator’s portfolio includes critical infrastructure protection, counter-unmanned aircraft systems (cUAS), intelligence and cyber solutions, biometrics, and global threat assessment and operations.

Vade Lands $30 Million in New Funding Round (PR Newswire) Vade, an international pioneer in threat detection and response that already monitors one billion email messages worldwide, has announced that…

Why is Broadcom acquiring VMWare? (Analytics India Magazine) Broadcom has announced it is acquiring VMware in a massive USD 61 billion cash-and-stock deal.

Analysts weigh in on Broadcom-VMware deal (ComputerWeekly.com) VMware customers in APAC will need to assess their exposure amid uncertainty over the impact of the mega deal on the market.

VMware-Broadcom deal includes US$1.5b termination fees (CRN Australia) To be paid by chipmaker if regulatory approvals fall through.

VMware partners: get ready for a $61 billion hug (CRN Australia) Broadcom Software Group President Tom Krause said past mergers have taught the chip maker to respect the channel and the revenue opportunity it presents.

Broadcom, VMware $61bn deal could lead to price hikes (Capacity) Broadcom’s US$61 billion acquisition of cloud computing firm VMware could result in increased pricing for VMware customers, an industry analyst says.

Google’s Acquisition Of Mandiant: Is It Too Late In Cloud Market? (SeekingAlpha) In March 2022, Google announced its $5.4 billion acquisition of cybersecurity firm Mandiant. See if Google’s push into cloud is ultimately too little too late.

Palantir Stock: Butchered But Still Growing Rapidly (NYSE:PLTR) (SeekingAlpha) Palantir’s (PLTR) high retention rates and growing revenue signify the company’s prospects are improving.

Spark lures NTT cyber security executive to lead its MSSP business (Reseller News) Patric Balmer, formerly of NTT New Zealand, is officially Spark’s new lead for managed security services.

KnowBe4 Makes Strategic Hire for Australia and New Zealand to Help Drive APAC Growth Efforts (KnowBe4) Experienced sales leader Natalie “Nat” Burrows joins KnowBe4’s executive team as director of sales for Australia and New Zealand

SPHERE Welcomes Experienced Enterprise Sales Leader Ken Koocher as New Director of Ecosystem Strategy (PR Newswire) SPHERE, a woman-owned cybersecurity business focused on providing best-of-breed software and services for access governance across data,…

Products, Services, and Solutions

Radware expands partnership with eCommerce company (SecurityBrief Asia) Radware has made a million-dollar deal with a leading, multinational eCommerce company, expanding its existing relationship with the customer.

Tanium’s New Free Risk Assessment Raises Awareness of Cybersecurity’s Importance (TahawulTech.com) Tanium’s New Free Risk Assessment Raises Awareness of Cybersecurity’s Importance.

Zscaler und Siemens kooperieren für sichere Digitalisierung von OT-Umgebungen (Infopoint Security) Mit der Erweiterung von Zscaler Private Access for OT können Mitarbeitende von Fabriken, Auftragnehmern und Drittanbietern aus der Ferne sicher auf Fa…

Deepwatch: Managed Detection & Response. Endpoint Detection. (Deepwatch) At Deepwatch, we bring game-changing managed detection & response, leading edge products and relentless service to lower your cybersecurity risk.

Huawei adds App security feature for AppGallery (Huawei Central) Recently, Huawei has officially announced to add an app security feature on AppGallery. The company is taking this step to remove unwanted and harmful apps away from users’ devices. According to the information, Huawei AppGallery will gradually rollout these new features for AppGallery in Huawei devices. Where to find it? To find the new Huawei […]

DuckDuckGo Allows Microsoft to Track Data, Find Security Researcher (News18) DuckDuckGo Allows Microsoft to Track Data, Find Security Researcher

Blue Turtle helps customers up threat intelligence game with Recorded Future (ITWeb) Blue Turtle Technologies and Recorded Future will be showcasing their threat intelligence solutions at the ITWeb Security Summit 2022.

AppOmni Expands INFINITY Partner Program with APAC Launch and New Pricing Tiers (Business Wire) AppOmni, the leading provider of SaaS security, continues to expand its channel presence with new availability to partners in Australia and New Zealan

Technologies, Techniques, and Standards

How effective are public-private partnerships? (Help Net Security) 93% of cyber decision-makers say public-private partnerships are vital to national defense, but only 34% believe they are very effective.

Future proofing: How companies can upgrade cyber defenses and be ready for tomorrow (Help Net Security) In this video for Help Net Security, Jaspal Sawhney, Global CISO at Tata Communications, talks about future proofing.

Academia

Industry to academia: Justin Del Vecchio tabbed to lead Canisius’ new master’s in cybersecurity (Buffalo Business First) Do you understand the social engineering component of malware and ransomware? You probably should if you want to work in the growing field of cybsecurity.

FBI Alert: U.S. Academic Credentials Being Sold On Various Public and Dark Web Forums (Campus Technology) A new alert issued by the FBI warns higher education institutions that cybersecurity agents have identified U.S. college and university credentials are being advertised for sale on “dark web” criminal marketplaces and on publicly accessible internet forums.

FBI warns of education credentials awash on dark web (SC Magazine) The FBI issued an alert to the educational institutions warning that cybercriminal forums are worryingly full of their network credentials.

FBI warns US colleges of widespread VPN credential leaks on Russian cybercrime forums (The Record by Recorded Future) Russian cybercrime forums are chock full of network credentials and virtual private network accesses from US colleges and universities, according to a new alert from the FBI. 

Legislation, Policy, and Regulation

Security law a ‘glorious mission,’ but radicals ‘advocating terrorism’ still lurking, Hong Kong’s Carrie Lam says (Hong Kong Free Press HKFP) The passing of the Beijing-mandated national security law was a “glorious mission” though there are still “underground organisations advocating terrorism,” Hong Kong’s incumbent leader Carrie Lam has said. Speaking at a legal forum on the national security law, Lam said the legislation punished illegal activity endangering China’s security and restored stability in the city following […]

How censoring China’s open-source coders might backfire (MIT Technology Review) Many suspect the Chinese state has forced Gitee, the Chinese competitor to GitHub, to censor open-source code in a move developers worry could obstruct innovation.

India-China border dispute: Huawei, ZTE trip over government’s network gear supply rules (Gadgets Now) Both Huawei and ZTE have yet to complete paperwork to seek trusted sources approval, India’s national cybersecurity coordinator Rajesh Pant told ET. He, however, did not elaborate on the specific requirements that the two companies have been unable to fulfil so far.

Why Canada banned Huawei from its 5G network (Yahoo) The Chinese telecommunications firm has faced accusations that its technology could provide a potential backdoor for espionage.

Political appointees may be getting [too] deep into agency technical operations (Federal News Network) American University professor Bob Tobias talks about the problems with putting political appointees in charge of cybersecurity at federal agencies

White House Taps Kennedy for Air Force Info Warfare Post (MeriTalk) The Department of Defense (DoD) announced the Biden Administration’s nomination of Maj. Gen. Kevin B. Kennedy to lead the 16th Air Force, which is based in Texas and is responsible for information warfare operations including cyber operations.

Litigation, Investigation, and Law Enforcement

Federal review says Dominion software flaws haven’t been exploited in elections (CNN) Federal cybersecurity officials have verified there are software vulnerabilities in certain ballot-marking devices made by Dominion Voting Systems, discovered during a controversial Georgia court case, which could in theory allow a malicious actor to tamper with the devices, according to a draft analysis reviewed by CNN.

Man who helped Infraud cybercrime cartel steal millions of credit cards sentenced (The Record by Recorded Future) John Telusma was sentenced to four years in federal prison after pleading guilty to being an integral member of the Infraud Organization, a cybercrime cartel that cost victims more than $568 million dollars.

Israeli private detective used Indian hackers in job for Russian oligarchs, court filing says (Reuters) An Israeli private investigator currently in U.S. custody used Indian hackers to conduct surveillance operations for ultra-wealthy Russians, a reporter said in a court filing late Wednesday.

Texas gunman had threatened school shootings on social media, reports say (the Guardian) Teenager displayed worrying behavior in the months before the Uvalde attack, schoolmates tell news outlets

Before massacre, Uvalde gunman frequently threatened teen girls online (Washington Post) Young people who met the alleged gunman online said he had threatened to kidnap, rape or kill. But they said their reports were ignored and that his kind of angry misogyny was just ‘how online is.

‘Sickening’: Multiple school shooting threats made across U.S. since Uvalde (Newsweek) Three arrests have been made for shooting threats in the country since the tragic mass shooting at Robb Elementary School in Uvalde, Texas.

As young gunmen turn toward new social networks, old safeguards fail (Washington Post) Private messaging apps are harder to scan for warning signs of potential violence, experts say

How Do Schools Spot Possible Shooters Before Tragedy Strikes? This Tech Can Help (Wall Street Journal) School districts are turning to monitoring software to flag troubled teens, but the tools can only help if schools are able to act on the information they receive.