Cybersecurity
Report: Iranian hackers are trying to create a psychological war in cyberspace
The Iran-linked CyberAv3ngers gang has evolved itself into a digital propaganda machine by combining recycled data leaks and theatrics to manufacture panic about hacks that never happened.
Cybersecurity
Cyber firms sunset free services meant to counter Russia-linked hacking threats
The 2022 initiative by Cloudflare, CrowdStrike and Ping Identity provided cybersecurity support to critical infrastructure sectors seen as potential targets of Russia-linked attacks.
Cybersecurity
DHS expects Iran’s cyber forces will target US networks after strikes on nuclear sites
Iran has often targeted U.S. digital systems. Last year, Iranian hackers pilfered and distributed sensitive documents from inside President Donald Trump’s 2024 campaign.
Cybersecurity
US agencies assessed Chinese telecom hackers likely hit data center and residential internet providers
Data center giant Digital Realty and mass media titan Comcast were documented as likely victims of the Salt Typhoon cyberespionage group, people familiar say, marking a potentially major expansion of the group’s initial telecom hacking campaign discovered last year.
Cybersecurity
China-linked ‘Silk Typhoon’ hackers accessed Commvault cloud environments, person familiar says
The hacking unit previously infiltrated Treasury Department networks and compromised some of the agency’s most sensitive systems.
Cybersecurity
US, international and industry partners topple infrastructure of popular info-stealer malware
The collaborative effort worked to seize the takedown of some 2,300 domains that backed the web infrastructure of Lumma Stealer, sold to help hackers steal passwords and deploy ransomware around the world.
Cybersecurity
US should rethink current views of Russia’s cyber might, new report says
A think tank paper argues that Moscow’s network of hackers is more fragmented than U.S. officials once believed — a dynamic that may have led to exaggerated expectations of Russia’s cyber capabilities during its 2022 Ukraine invasion.
Cybersecurity
DHS head says she’s alarmed CISA doesn't know more about Salt Typhoon hacks
“The thing that has alarmed me the most about CISA is the lack of information that they have, the lack of solutions that they have, and how they protect our critical infrastructure,” Homeland Security Secretary Kristi Noem told members of the House Homeland Security Committee.
Cybersecurity
US and Netherlands seize network providers that helped hackers mask activities
The Justice Department and Dutch law enforcement shuttered 5socks and Anyproxy, services with Russian ties that sold proxies to cybercriminals. Lumen provided internet backbone data to the agencies.
Cybersecurity
Signal clone used by Waltz to archive messages suspends services after reported hack
Smarsh, the Oregon-based owner of TeleMessage, said Monday it was “investigating a potential security incident” and suspended its services out of an abundance of caution.
Cybersecurity
Top NSC official wants to normalize offensive hacking as tool of US might
At the RSAC Conference, Alexei Bulazel said hacking back against adversaries could be the new norm for America’s cyber strategy. He signaled support for various federal cyber offices, but acknowledged they’d be geared in the direction of Trump-era goals.
Cybersecurity
Salt Typhoon hacks ‘a wake up call’ to secure telecom services, lawmakers say
The Cyber Safety Review Board was in the middle of investigating the Salt Typhoon hacks when it was disbanded in January. Rep. Doris Matsui, D-Calif., said the board’s termination “leaves in limbo” the government’s probe into the breach.
Ideas
Mounting cyber defense in the face of unexpected staff reductions
Strategies for dealing with cybersecurity challenges hitting agencies right now.
Cybersecurity
FBI asks public for tips about Salt Typhoon telecom hacks
Salt Typhoon accessed at least nine U.S. telecom firms and their systems that facilitate legal access requests for law enforcement.
Ideas
Driving efficiency while improving federal agencies’ cybersecurity postures
COMMENTARY | A lopsided labor-to-technology spending ratio is just one challenge agencies have to take on.
Cybersecurity
User with Russian IP address tried to log into NLRB systems following DOGE access, whistleblower says
The blocked login attempts, detailed in an extensive whistleblower complaint filed to the Senate Intelligence Committee and others, may indicate foreign adversaries have begun leveraging DOGE inroads into sensitive federal systems.
Digital Government
How cyber vulnerabilities and workforce cuts threaten the crisis lifeline program
A bipartisan, bicameral measure is hoping to prevent cyber incidents from limiting access to the 988 Suicide and Crisis Lifeline after a 2022 attack on a system operator disrupted calls to the hotline.
Cybersecurity
Treasury regulatory office reports ‘major information security incident’
The disclosed breach into the Office of the Comptroller of the Currency comes just months after another incident involving Chinese hacks into Treasury Department offices.
Cybersecurity
Tariffs create more volatile environment for cyberattacks, industry executive warns
Tenable Co-CEO Steve Vintz told Nextgov/FCW that the potential trade wars stoked by the Trump administration’s tariffs facilitate conditions that incentivize hacking activity around the globe.
Cybersecurity