Cybereason CISOs Can Boost Their Credibility

Cybereason Discloses Attack Vector Used by Chinese Cybergang to Steal IP

The Cybereason Nocturnus Incident Response Team today divulged how cybercriminals affiliated with the Chinese Winnti APT group compromised enterprise resource planning (ERP) applications in Windows environments. Dubbed Operation CuckooBees, the cyberespionage attacks ...
Security Boulevard
Chinese Meng FCC Thousand Talents Program

FBI Director Warns of Chinese Espionage Threats

FBI Director Christopher Wray said in an interview on CBS’s Sunday news program 60 Minutes that the current level of cybersecurity threats from China was “unprecedented in history” and highlighted the country’s ...
Security Boulevard

Amy Zegart on Spycraft in the Internet Age

Amy Zegart has a new book: Spies, Lies, and Algorithms: The History and Future of American Intelligence. Wired has an excerpt: In short, data volume and accessibility are revolutionizing sensemaking. The intelligence ...

Using Foreign Nationals to Bypass US Surveillance Restrictions

Remember when the US and Australian police surreptitiously owned and operated the encrypted cell phone app ANOM? They arrested 800 people in 2021 based on that operation. New documents received by Motherboard ...

NSO Group Hacked

NSO Group, the Israeli cyberweapons arms manufacturer behind the Pegasus spyware — used by authoritarian regimes around the world to spy on dissidents, journalists, human rights workers, and others — was hacked ...

Candiru: Another Cyberweapons Arms Manufacturer

Citizen Lab has identified yet another Israeli company that sells spyware to governments around the world: Candiru. From the report: Summary: Candiru is a secretive Israel-based company that sells spyware exclusively to ...

The Misaligned Incentives for Cloud Security

Russia’s Sunburst cyberespionage campaign, discovered late last year, impacted more than 100 large companies and US federal agencies, including the Treasury, Energy, Justice, and Homeland Security departments. A crucial part of the ...

The FBI Is Now Securing Networks Without Their Owners’ Permission

In January, we learned about a Chinese espionage campaign that exploited four zero-days in Microsoft Exchange. One of the characteristics of the campaign, in the later days when the Chinese probably realized ...

Another SolarWinds Orion Hack

At the same time the Russians were using a backdoored SolarWinds update to attack networks worldwide, another threat actor — believed to be Chinese in origin — was using an already existing ...
Focus-on-OT-and-IoT-Cybersecurity-in-Australia-s-Critical-Infrastructure-Blog-Featured

SolarWinds Cyberattack: Layered OT Security Creates Best Defense

Technology boundaries can lessen the impact of nation state threats like the SolarWinds cyberattack, and help expose APTs in your OT network. The post SolarWinds Cyberattack: Layered OT Security Creates Best Defense ...