Cybersecurity
Russian hackers target local internet to spy on embassies in Moscow, Microsoft says
The attack works by rerouting targeted diplomatic devices through a hoax captive portal modeled on the kind commonly used to grant internet access in hotels and airports.
Cybersecurity
Pentagon not impacted by Microsoft Sharepoint hack, tech chief says
The department has been holding daily calls with Microsoft since the zero-day was discovered, the DOD CIO said at an event Thursday.
Cybersecurity
Trump’s CISA nominee is confident he can get funding to cyber agency where needed
Sean Plankey, a former Energy Department cyber official, tussled with Sen. Richard Blumenthal, D-Conn., over 2020 election security during his confirmation hearing. He also committed to the renewal of a key cyber information-sharing law before it soon expires.
Cybersecurity
DHS impacted in hack of Microsoft SharePoint products, people familiar say
The zero-day vulnerability — which was first disclosed late Saturday — has been exploited by several Chinese state-aligned groups, according to Microsoft.
Cybersecurity
Chinese hackers are exploiting SharePoint vulnerabilities, Microsoft says
The bugs affecting on-premises builds of SharePoint deployments are officially being exploited by at least two major Chinese nation-state hacking units, the company said. Patches have been issued for all affected versions of SharePoint.
Cybersecurity
Threat intel firms on alert for government systems impacted by Microsoft SharePoint vulnerability
Governments, schools, healthcare providers and large enterprise firms are at risk, one cyber threat intelligence chief said.
Cybersecurity
Salt Typhoon hacks into National Guard systems a ‘serious escalation’, experts warn
“Going forward, all U.S. forces must now assume their networks are compromised and will be degraded,” a former Air National Guard servicemember said.
Cybersecurity
DOD gets millions for cyber capabilities under GOP reconciliation package
The law’s vast cuts to Medicaid, however, are putting rural healthcare groups on high alert.
Cybersecurity
Iran-backed hackers may target US defense companies tied to Israel, agencies warn
“Despite a declared ceasefire and ongoing negotiations towards a permanent solution, Iranian-affiliated cyber actors and hacktivist groups may still conduct malicious cyber activity,” a government advisory says.
Cybersecurity
Report: Iranian hackers are trying to create a psychological war in cyberspace
The Iran-linked CyberAv3ngers gang has evolved itself into a digital propaganda machine by combining recycled data leaks and theatrics to manufacture panic about hacks that never happened.
Cybersecurity
Cyber firms sunset free services meant to counter Russia-linked hacking threats
The 2022 initiative by Cloudflare, CrowdStrike and Ping Identity provided cybersecurity support to critical infrastructure sectors seen as potential targets of Russia-linked attacks.
Cybersecurity
DHS expects Iran’s cyber forces will target US networks after strikes on nuclear sites
Iran has often targeted U.S. digital systems. Last year, Iranian hackers pilfered and distributed sensitive documents from inside President Donald Trump’s 2024 campaign.
Cybersecurity
US agencies assessed Chinese telecom hackers likely hit data center and residential internet providers
Data center giant Digital Realty and mass media titan Comcast were documented as likely victims of the Salt Typhoon cyberespionage group, people familiar say, marking a potentially major expansion of the group’s initial telecom hacking campaign discovered last year.
Cybersecurity
China-linked ‘Silk Typhoon’ hackers accessed Commvault cloud environments, person familiar says
The hacking unit previously infiltrated Treasury Department networks and compromised some of the agency’s most sensitive systems.
Cybersecurity
US, international and industry partners topple infrastructure of popular info-stealer malware
The collaborative effort worked to seize the takedown of some 2,300 domains that backed the web infrastructure of Lumma Stealer, sold to help hackers steal passwords and deploy ransomware around the world.
Cybersecurity
US should rethink current views of Russia’s cyber might, new report says
A think tank paper argues that Moscow’s network of hackers is more fragmented than U.S. officials once believed — a dynamic that may have led to exaggerated expectations of Russia’s cyber capabilities during its 2022 Ukraine invasion.
Cybersecurity
DHS head says she’s alarmed CISA doesn't know more about Salt Typhoon hacks
“The thing that has alarmed me the most about CISA is the lack of information that they have, the lack of solutions that they have, and how they protect our critical infrastructure,” Homeland Security Secretary Kristi Noem told members of the House Homeland Security Committee.
Cybersecurity
US and Netherlands seize network providers that helped hackers mask activities
The Justice Department and Dutch law enforcement shuttered 5socks and Anyproxy, services with Russian ties that sold proxies to cybercriminals. Lumen provided internet backbone data to the agencies.
Cybersecurity
Signal clone used by Waltz to archive messages suspends services after reported hack
Smarsh, the Oregon-based owner of TeleMessage, said Monday it was “investigating a potential security incident” and suspended its services out of an abundance of caution.
Cybersecurity