department of homeland security
Featured Government Leadership Nation-state Technology

Ridding Hackers From Government Networks Will Be “Highly Complex and Challenging,” CISA Warns

The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency on Thursday issued its most urgent and detailed alert yet about the hacking campaign that has rocked government agencies and technology firms in recent days, saying that it “poses a grave risk” to federal and state governments, critical infrastructure entities, and private sector organizations. Additionally, CISA said it has evidence of additional attack vectors other than the SolarWinds Orion platform. CISA said it is still investigating the additional attack vectors, and that the attacker is likely using tactics, techniques, and procedures that have not yet been discovered…

The Hague
Featured Government Nation-state People

Dutch Intelligence Expels Two Russian Diplomats Over Espionage Accusations

The Netherlands’ on Thursday ordered the expulsion of two Russian intelligence officers accused of spying on the country’s high-tech sector and targeting research that could potentially be used in weapons systems, the country’s national intelligence agency said. The Netherlands’ General Intelligence and Security Service, known as AIVD, said that diplomats stationed at the Russian Embassy in The Hague were officers working for the SVR, the Russian civil intelligence agency that was recently reported to be implicated in a high-profile cyberattack against FireEye…

Hack
Cybercrime Featured Nation-state Technology

What We Know So Far About the FireEye Breach—and Why It Matters

On Tuesday afternoon, cybersecurity firm FireEye announced what is likely one of the most significant cyberattacks of 2020—with itself as the victim. The attack was notable not just because the fallout could be immense, but because it required a brazenness and skill that only the most sophisticated hacking groups could pull off. Details will likely emerge as the FBI, FireEye, and its partners investigate the incident, but here’s what we know already…

FBI warning
Featured Government Nation-state

CISA, FBI Warn of Foreign Cyberattacks Targeting U.S. Think Tanks

The FBI and the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency on Tuesday alerted U.S. think tanks of “persistent continued cyber intrusions” from advanced persistent threat groups. Several individuals who work at think tanks, including Neera Tanden, the president of the Center for American Progress who was recently announced to be Joe Biden’s pick to lead the Office of Management and Budget, have already been tapped to join the new administration….

Chart 4
Chart of the Week Featured Government Nation-state

Cyber-Espionage Attacks Disproportionately Target These Industries

Industries frequently targeted by financially-motivated cybercriminals, such as banks and healthcare organizations, are a low priority for attackers engaged in espionage, a new report from Verizon suggests. These attackers, typically linked to nation states, instead focus their efforts on industries that hold data like trade secrets, blueprints and classified government documents…

Demediuk
Cybercrime Featured Government Leadership Nation-state People

Ukraine’s Top Cyber Cop on Defending Against Disinformation and Russian Hackers

In recent years, Ukraine has become an involuntary testing ground for some of the most dangerous cyberweapons in the world. Serhii Demediuk has perhaps played the most prominent role in defending Ukraine against digital intrusions, investigating cyberattacks and the groups behind them, and strengthening the country’s capabilities in cyberspace….

Vietnam hacking group
Featured Government Nation-state

Researchers Identify New Malware Campaigns Linked to Vietnamese Hacking Group

When it comes to state-sponsored hacking groups, big players such as China and Russia tend to get the most attention. But smaller nations are also continuously expanding their capabilities in cyberspace, often with regional goals in mind. Two studies published in recent days have shown that one of these groups—the Vietnamese state-sponsored threat group APT32, also known as OceanLotus—has expanded its efforts by targeting the country’s Southeast Asian neighbors with malware campaigns….

A chart graphic.
Featured Nation-state

Harvard Researchers Say These Countries Have the Greatest Cybersecurity Skills

When it comes to cybersecurity, countries like North Korea, Iran, and Israel garner plenty of headlines. But according to a study released this month from a Harvard University research center, the United States reigns supreme in terms of cyber capabilities, followed by China, the United Kingdom, and Russia…

Chinese government building
Featured Nation-state

U.S. Ramps Up Pressure on Chinese Hackers With New Charges Against 5 Chinese Nationals

Federal law enforcement officials on Wednesday announced that five alleged members of a Chinese hacking group known as APT41 had been charged for their role in “unprecedented” efforts to compromise and siphon sensitive data from more than 100 companies…

The Vatican was again targeted by RedDelta hackers.
Featured Nation-state

Chinese State-Backed Hackers Target the Vatican, Again

Hackers sometimes come back for seconds — even if they’re caught. Just days after being exposed for targeting the Vatican and the Catholic Diocese of Hong Kong with malware, the suspected Chinese-state sponsored threat group known as RedDelta resumed cyberoperations against Catholic Church-related organizations…