John Sakellariadis
contributor
Articles By This Author
Researchers Find Links Between SolarWinds Campaign and Tools Used by Russian Hackers
Federal investigators still canât say with certainty who was behind the recent hacking campaign that compromised countless government agencies and private companies. But cybersecurity researchers say theyâve found evidence linking tools used in the months-long espionage campaign to malware used by Russian cyber operators….
Sen. Warner Says U.S. âUnderestimate[s] and Underreport[s]â on Russian Hacks Following SolarWinds Breach
A Senate Democrat who has been a top backer of cybersecurity and intelligence policies accused the Trump administration of âwatering downâ Russiaâs responsibility for the SolarWinds breach and warned that the hackers had compromised several high-profile victims that remain unidentified. Mark Warner, who as Vice-chair of the Senate Intelligence Committee spearheaded a five-volume report on the 2016 Russian election interference campaign, called that statement âone more outrageous effort to underestimate and underreport on Russian activity…”
The SolarWinds Hack and the Perils of Attribution
On Tuesday, a multi-agency task force stood up by the U.S. National Security Council to investigate and respond to the SolarWinds compromise issued a statement alleging that hackers âlikely Russian in originâ were behind the intrusion, offering the first official indication that the government believes the attacks were ordered by the Kremlin. But nearly a month after the compromise was first detected, none of the private security companies that are leading the investigation into the intrusionsâand often provide the forensic data necessary to identify the perpetrators behind state-sponsored cyber-campaignsâhave pinned the blame on a specific group….
Spyware Attack Targeting Dozens of Journalists Used Pernicious Zero-Click Exploit, Researchers Say
The mobile phones of dozens of employees at news outlet Al Jazeera were hacked using a stealthy âzero-clickâ exploit developed by NSO Group, a heavily scrutinized Israeli commercial spyware vendor, according to a new report by researchers at Citizen Lab. The security research group associated with the University of Toronto said that the 36 journalists identified in their report likely represent a âminuscule fractionâ of the total victims of the companyâs spyware given the size of NSO Groupâs customer base and the reach of the vulnerability, which affects iPhones prior to the iOS 14 update that was released this fall and included several security enhancements….
Why Email Is Still an Election Day Disinformation Risk
As Election Day looms, federal officials, private companies, and information security experts are urging voters to be on guard for misleading information, especially from sites like Facebook, YouTube, and Twitter, where viral information can whipsaw across the country in the blink of an eye. But one disinformation vector may be hiding in plain sight: email….
A Conversation With Jack Rhysider About How He Started His Hit Hacking Podcast Darknet Diariesâand What It Has Taught Him About Infosec
“On a weekly basis, I get some CEO messaging me saying that they would love to be on the show. My first question is always, âHave you ever been hacked? And are you willing to talk about that?â Because that’s the story I want. I want a first-hand experience of the worst day of your life on the job…”
Hacker Directly Targets Patients Following a Data Breach at a Finnish Mental Health Provider
A data breach involving a mental health provider in Finland has devolved into a horrifying extortion scheme that includes the abuse of hypersensitive medical data. âItâs an indescribable feeling when you know that someone has information of your traumas and is willing to use it against you,â said one patient who received a ransom email over the weekend and asked not to be named given the sensitivity of the information involved. âI feel like I have once again taken a step back in my treatment. It hurts to know that my journey to better health might take even longer now.â
Flurry of Indictments Signal a New U.S. Strategy for Combating Foreign Hackers
The federal government isnât always known for its speed in the cybersecurity realm. But last week it moved at a breakneck pace to pull back the curtain on foreign cyberthreats. In a series of enforcement actions, the Department of Justice unsealed seven federal indictments charging 16 foreign nationals from China, Russia, Iran, and Malaysia with hacking-related crimes…