December 7, 2023 at 10:29AM Iranian-backed Lebanese hackers, known as Polonium, have escalated cyberattacks on Israel’s critical infrastructure, expanding from espionage to destructive operations. Microsoft reported Polonium targeted multiple Israeli sectors since 2021, with a recent focus on water and energy. They often use fragmented malware to evade detection. Attacks coincide with increased regional tensions … Read more
November 16, 2023 at 01:18AM Russian threat actors are suspected of launching the largest cyber attack on Danish critical infrastructure in May 2023. The attack targeted 22 energy sector companies and was coordinated and successful. Evidence suggests the involvement of Russia’s GRU military intelligence agency. The attacks exploited a critical command injection flaw in Zyxel … Read more
November 15, 2023 at 10:04AM Cyber warfare is a growing method of attack in international conflicts due to its flexibility, impact, and deniability. Attackers target vulnerable Internet of Things (IoT) devices, which are often neglected and constitute a major security risk. The use of powerful IoT devices has expanded, making attacks easier to scale, and … Read more
November 13, 2023 at 12:12AM Cybersecurity researchers have identified a new version of a wiper malware called BiBi-Windows Wiper, which targets Windows systems. This variant is an expansion of the previous BiBi-Linux wiper used in cyber attacks against Israel during the recent Israel-Hamas war. The malware overwrites data in the C:\Users directory with junk data … Read more
November 10, 2023 at 07:51AM Russian hackers Sandworm targeted a Ukrainian electrical substation, causing a brief power outage in October 2022. The attack involved using OT-level living-off-the-land techniques and a variant of CaddyWiper malware. The exact initial vector remains unclear, but the incident highlights Sandworm’s ongoing efforts to disrupt Ukraine’s power grid. Asset owners globally … Read more
November 9, 2023 at 03:07AM Russian cyberattack group Sandworm was responsible for the coordinated cyberattack and power outage in Ukraine last year, according to Mandiant’s threat intel team. The attack targeted a power plant, compromising its operational technology (OT) environment through a hypervisor hosting a supervisory control and data acquisition (SCADA) management instance. Sandworm executed … Read more
November 1, 2023 at 07:27PM MacPaw, a software company in Ukraine, has successfully maintained operations during the ongoing conflict with Russia. The company implemented several measures to ensure resilience, including creating an emergency team, prioritizing employee safety and customer service, fortifying headquarters, securing power and connectivity options, building hardware reserves, establishing redundant communication channels, staying … Read more
November 1, 2023 at 03:38PM The cybersecurity community is focusing on preparing for uncertainty amid the conflict in Israel. Vira Tkachenko, CTO of MacPaw, shares her experiences and offers insights into wartime cyber resilience. MacPaw created an emergency team, prioritized physical safety and security, hardened headquarters, bolstered power and connectivity options, built up hardware reserves, … Read more