Hot Topics

cyberespionage

The Misaligned Incentives for Cloud Security

| | certificates, cloud computing, cyberattack, cyberespionage, essays, externalities, Hacking, Russia, Uncategorized
Russia’s Sunburst cyberespionage campaign, discovered late last year, impacted more than 100 large companies and US federal agencies, including the Treasury, Energy, Justice, and Homeland Security departments. A crucial part of the ...
Schneier on Security

The FBI Is Now Securing Networks Without Their Owners’ Permission

| | china, courts, cyberespionage, Espionage, FBI, Microsoft, Uncategorized, zero-day
In January, we learned about a Chinese espionage campaign that exploited four zero-days in Microsoft Exchange. One of the characteristics of the campaign, in the later days when the Chinese probably realized ...
Schneier on Security

Another SolarWinds Orion Hack

| | backdoors, china, cyberespionage, FBI, Hacking, Russia, supply chain, Uncategorized
At the same time the Russians were using a backdoored SolarWinds update to attack networks worldwide, another threat actor — believed to be Chinese in origin — was using an already existing ...
Schneier on Security

Russia’s SolarWinds Attack and Software Security

| | cyberattack, cyberespionage, essays, Hacking, national security policy, Russia, Uncategorized
The information that is emerging about Russia’s extensive cyberintelligence operation against the United States and other countries should be increasingly alarming to the public. The magnitude of the hacking, now believed to ...
Schneier on Security

Russia’s SolarWinds Attack

| | backdoors, cyberattack, cybercrime, cyberespionage, Espionage, essays, Hacking, Russia, Uncategorized, Vulnerabilities
Recent news articles have all been talking about the massive Russian cyberattack against the United States, but that’s wrong on two accounts. It wasn’t a cyberattack in international relations terms, it was ...
Schneier on Security

More on the SolarWinds Breach

| | breaches, cyberespionage, national security policy, Russia, Uncategorized
The New York Times has more details. About 18,000 private and government users downloaded a Russian tainted software update –­ a Trojan horse of sorts ­– that gave its hackers a foothold ...
Schneier on Security

Another Massive Russian Hack of US Government Networks

| | cyberespionage, Hacking, Russia, Uncategorized
The press is reporting a massive hack of US government networks by sophisticated Russian hackers. Officials said a hunt was on to determine if other parts of the government had been affected ...
Schneier on Security

FireEye Hacked

| | breaches, cyberespionage, Hacking, Russia, Uncategorized
FireEye was hacked by — they believe — “a nation with top-tier offensive capabilities”: During our investigation to date, we have found that the attacker targeted and accessed certain Red Team assessment ...
Schneier on Security

New Research into Russian Malware

| | cyberespionage, operationalsecurity, Russia
There's some interesting new research about Russian APT malware: The Russian government has fostered competition among the three agencies, which operate independently from one another, and compete for funds. This, in turn, ...
Schneier on Security
US Bans Foreign Equipment that Threatens National Security, Implicating Huawei

US Bans Foreign Equipment that Threatens National Security, Implicating Huawei

| | cyberespionage, executive order, Huawei, Industry News, trade war
Have Huawei and affiliates been ostracized from the US for fear of cyberespionage? Casting foreign technology as a serious risk to national security, US President Donald Trump has banned telecom companies in ...
HOTforSecurity
Load more