Cybersecurity
Threat intel firms on alert for government systems impacted by Microsoft SharePoint vulnerability
Governments, schools, healthcare providers and large enterprise firms are at risk, one cyber threat intelligence chief said.
Cybersecurity
Salt Typhoon hacks into National Guard systems a ‘serious escalation’, experts warn
“Going forward, all U.S. forces must now assume their networks are compromised and will be degraded,” a former Air National Guard servicemember said.
Cybersecurity
DOD gets millions for cyber capabilities under GOP reconciliation package
The law’s vast cuts to Medicaid, however, are putting rural healthcare groups on high alert.
Cybersecurity
Iran-backed hackers may target US defense companies tied to Israel, agencies warn
“Despite a declared ceasefire and ongoing negotiations towards a permanent solution, Iranian-affiliated cyber actors and hacktivist groups may still conduct malicious cyber activity,” a government advisory says.
Cybersecurity
Report: Iranian hackers are trying to create a psychological war in cyberspace
The Iran-linked CyberAv3ngers gang has evolved itself into a digital propaganda machine by combining recycled data leaks and theatrics to manufacture panic about hacks that never happened.
Cybersecurity
Cyber firms sunset free services meant to counter Russia-linked hacking threats
The 2022 initiative by Cloudflare, CrowdStrike and Ping Identity provided cybersecurity support to critical infrastructure sectors seen as potential targets of Russia-linked attacks.
Cybersecurity
DHS expects Iran’s cyber forces will target US networks after strikes on nuclear sites
Iran has often targeted U.S. digital systems. Last year, Iranian hackers pilfered and distributed sensitive documents from inside President Donald Trump’s 2024 campaign.
Cybersecurity
US agencies assessed Chinese telecom hackers likely hit data center and residential internet providers
Data center giant Digital Realty and mass media titan Comcast were documented as likely victims of the Salt Typhoon cyberespionage group, people familiar say, marking a potentially major expansion of the group’s initial telecom hacking campaign discovered last year.
Cybersecurity
China-linked ‘Silk Typhoon’ hackers accessed Commvault cloud environments, person familiar says
The hacking unit previously infiltrated Treasury Department networks and compromised some of the agency’s most sensitive systems.
Cybersecurity
US, international and industry partners topple infrastructure of popular info-stealer malware
The collaborative effort worked to seize the takedown of some 2,300 domains that backed the web infrastructure of Lumma Stealer, sold to help hackers steal passwords and deploy ransomware around the world.
Cybersecurity
US should rethink current views of Russia’s cyber might, new report says
A think tank paper argues that Moscow’s network of hackers is more fragmented than U.S. officials once believed — a dynamic that may have led to exaggerated expectations of Russia’s cyber capabilities during its 2022 Ukraine invasion.
Cybersecurity
DHS head says she’s alarmed CISA doesn't know more about Salt Typhoon hacks
“The thing that has alarmed me the most about CISA is the lack of information that they have, the lack of solutions that they have, and how they protect our critical infrastructure,” Homeland Security Secretary Kristi Noem told members of the House Homeland Security Committee.
Cybersecurity
US and Netherlands seize network providers that helped hackers mask activities
The Justice Department and Dutch law enforcement shuttered 5socks and Anyproxy, services with Russian ties that sold proxies to cybercriminals. Lumen provided internet backbone data to the agencies.
Cybersecurity
Signal clone used by Waltz to archive messages suspends services after reported hack
Smarsh, the Oregon-based owner of TeleMessage, said Monday it was “investigating a potential security incident” and suspended its services out of an abundance of caution.
Cybersecurity
Top NSC official wants to normalize offensive hacking as tool of US might
At the RSAC Conference, Alexei Bulazel said hacking back against adversaries could be the new norm for America’s cyber strategy. He signaled support for various federal cyber offices, but acknowledged they’d be geared in the direction of Trump-era goals.
Cybersecurity
Salt Typhoon hacks ‘a wake up call’ to secure telecom services, lawmakers say
The Cyber Safety Review Board was in the middle of investigating the Salt Typhoon hacks when it was disbanded in January. Rep. Doris Matsui, D-Calif., said the board’s termination “leaves in limbo” the government’s probe into the breach.
Ideas
Mounting cyber defense in the face of unexpected staff reductions
Strategies for dealing with cybersecurity challenges hitting agencies right now.
Cybersecurity
FBI asks public for tips about Salt Typhoon telecom hacks
Salt Typhoon accessed at least nine U.S. telecom firms and their systems that facilitate legal access requests for law enforcement.
Ideas
Driving efficiency while improving federal agencies’ cybersecurity postures
COMMENTARY | A lopsided labor-to-technology spending ratio is just one challenge agencies have to take on.
Cybersecurity