President Joe #Biden last year ordered his #NationalSecurity team to establish working groups to monitor the issue amid warnings from US #intelligence that Russia was escalating a shadow war against Western nations.
The plan was led by Biden's #NSC & involved at least 7 national security agencies working w/European allies to disrupt plots targeting #Europe & the #UnitedStates….
Exclusive: #US suspends some efforts to
counter Russian sabotage as #Trump moves closer to #Putin
Several US #NationalSecurity agencies have halted work on a coordinated effort to counter Russian #sabotage, #disinformation & #cyberattacks, easing pressure on Moscow as the Trump Admin pushes #Russia to end its war in #Ukraine.
#intelligence #security #USpol #geopolitics #NewWorldOrder #PutinsPuppet
https://www.reuters.com/world/us-suspends-some-efforts-counter-russian-sabotage-trump-moves-closer-putin-2025-03-19/
“Donald #Trump is so desperate to earn the affection of a #thug like Vladimir Putin he appears to be giving him a free pass as #Russia continues to launch #cyber operations & #ransomware attacks against critical American infrastructure, threatening our economic & #NationalSecurity," #ChuckSchumer said. "It is a critical strategic mistake for Donald Trump to unilaterally disarm against #Putin."
More on #Defense Secy #PeteHegseth’s idiotic order that US #Cyber Command halt offensive cyber operations & #information operations against #Russia.
#Senate Minority Leader #ChuckSchumer, called the admin's decision to pause offensive cyber operations against Russia a bid by #Trump to earn #Putin's favor.
#geopolitics #USpol #NationalSecurity #InfoSec #CyberAttacks #ransomware #Intelligence
https://www.nbcnews.com/politics/trump-administration/defense-secretary-pete-hegseth-orders-halt-offensive-cyber-operations-rcna194435
Defense Secretary #Hegseth ordered US #Cyber Command to suspend offensive cyber & information operations against #Russia
This aligns with #Trump’s efforts to end Russia’s war in Ukraine under terms that favor #Moscow
#Cybersecurity experts warn the move benefits America’s most persistent cyber adversaries, weakening US leverage in both cyber & conventional military operations.
https://kyivindependent.com/us-halts-cyber-operations-against-russia-media-reports/
Today is #DataPrivacyDay, dedicated to raising awareness and promoting #DataProtection best practices. 
Data breaches affect individuals, businesses, and governments. Stay informed, take control of your data, and keep it safe—privacy matters!
Learn the basics with Linux Professional Institute’s (LPI) Learning Materials for #SecurityEssentials:
https://lpi.org/y8uu
The panel also passed #legislation to protect people's #privacy & protect systems from #ransomware & other attacks. A 2022 bill by Peters required that the owners of critical #infrastructure like banks & electric grids promptly report to federal ofcls major #cyberattacks or ransomware payments.
#US government mulls entire #TPLink product #ban - #routers, #switches and more all set to be blocked
#Cybersecurity concerns could see TP-Link banned from US
TP-Link supplies 65% of home routers in the US
The routers aren’t just for home use either, with federal agencies such as #NASA and the #DEA using the brand, which could leave them exposed to #China state sponsored #cyberattacks earlier in #2024
https://www.techradar.com/pro/security/us-government-mulls-entire-tp-link-product-ban-routers-switches-and-more-all-set-to-be-blocked #itsec #apt
SmokeLoader Malware Exploits MS Office Flaws to Steal Browser Credentials https://hackread.com/smokeloader-malware-ms-office-flaws-browser-data/ #MicrosoftOffice #Cybersecurity #CyberAttacks #PhishingScam #CyberAttack #SmokeLoader #Security #Malware #Macros
As controversial as it may seem, malware can be used by hacktivists against corrupt states and commercial actors.
#Anonymous #hacker #malware #corruption #cyberattacks #cybersecuity
https://cnews.link/malicious-code-interview-with-anonymous-3/
Just my luck to be working on a kiberphant0m profile on the same day as Krebs 
The threat actor has had a very busy year; victims have included the NSA, Verizon, AT&T, Snowflake, critical infrastructure in China, Ukraine, a UK bank, and Indian and Asian telcos. Thanks to the Cyble dark web research team for their great work and help.
#Cybersecurity #InfoSec #ThreatIntelligence #DarkWeb #Cybercrime #Breaches #DataBreach #Cyberattacks
https://thecyberexpress.com/verizon-att-hacked-by-second-threat-actor/
Russian Hackers Exploit Firefox and Windows 0-Days to Deploy Backdoor https://hackread.com/russian-hackers-firefox-windows-0-days-backdoor/ #Cybersecurity #Vulnerability #CyberAttacks #CyberAttack #Security #backdoor #Malware #Firefox #Ukraine #Windows #RomCom #0day
Russian-based #RomCom cybercrime group chained two zero-day vulnerabilities in recent attacks targeting Firefox and Tor Browser users across Europe and North America. #cyberattacks #Russia #zeroday
https://www.bleepingcomputer.com/news/security/firefox-and-windows-zero-days-exploited-by-russian-romcom-hackers/
The #cyberattacks statistics for August 2024 are out with 233 events dominated by #malware (21.1%) and #ransomware (15%), and #cybercrime (64.4%) as the main driver.
https://www.hackmageddon.com/2024/11/26/august-2024-cyber-attacks-timeline/
Russia and other adversaries of the UK are trying to use artificial intelligence to enhance cyber-attacks against the nation’s infrastructure, the cabinet minister Pat McFadden will warn at a Nato conference in London on Monday. #unitedkingdom #britain #GreatBritain #russia #cyberattacks #uk #PatMcFadden
The second #cyberattacks timeline of August 2024 is out with 108 events and a #threat landscape dominated by #malware and the exploitation at scale of #vulnerabilities. #Cybercrime continued to be the main driver for threat actors.
https://www.hackmageddon.com/2024/11/21/16-31-august-2024-cyber-attacks-timeline
The US has indicted five men over alleged involvement in a sophisticated scheme that utilized phishing attacks and social engineering tactics.
#US #phishing #cyberattacks #cybersecurity #infosec
https://cnews.link/scattered-spider-mgm-hackers-indictment-1/
I'm fascinated by the concept of measuring attacker-defender advantage in software, devices, and even entire IT environments. What do I mean by "attacker-defender advantage?" Lemme sum up and then share a chart.
Let's say you could measure the speed at which defenders remediate various types of security vulnerabilities across all relevant assets. Then say you could detect and measure the speed at which attackers find/exploit those vulnerable assets across the target population of organizations using them. Finally, plot those curves (across time and assets) to see the delta between them and derive a measure of relative advantage for attackers and defenders. That relative value is what I mean by attacker-defender advantage.
Since a picture is worth a thousand words, here's a visual example of the concept. The blue line represents defenders, measuring the speed of remediation. Red measures how attacker exploitation activity spreads across the target population. When the blue line is on top, defenders have a relative advantage (remediating faster than attackers are attempting to exploit new targets). When red's on top, the opposite is true. The delta between the lines corresponds to the relative degree of advantage (also expressed by the number in the upper left).
This chart comes from prior Cyentia Institute research in which we were able to combine datasets from two different partners (with their permission). Unfortunately, those datasets/partners are no longer available to further explore this concept - but maybe this post will inspire new partnerships and opportunities!
Any surprises in the attacker-defender advantage results depicted in the chart? Has anyone measured this or something similar?
Apple has released patches for two zero-day vulnerabilities, which were exploited by threat actors in the wild.
#Apple #cybersecurity #vulnerability #cyberattacks #infosec #bigtech
https://cnews.link/apple-security-updates-address-dangerous-zero-day-attacks-3/
Broadcom is sounding the alarm bells about attackers actively exploiting two critical vulnerabilities in VMware vCenter Server.
#Hacking #Broadcom #cyberattacks #CyberSecurity #infosec
https://cnews.link/hackers-exploit-critical-vmware-vcenter-server-flaw-1/
