russia – SSL and internet security news

China, Russia, Iran, and North Korea Intelligence Sharing

March 12, 2025 infossl

AI, china, intelligence, iran, North Korea, russia, Security technology, Uncategorized

Former CISA Director Jen Easterly writes about a new international intelligence sharing co-op: Historically, China, Russia, Iran & North Korea have cooperated to some extent on military and intelligence matters, but differences in language, culture, politics & technological sophistication have hindered deeper collaboration, including in cyber. Shifting geopolitical dynamics, however, could drive these states toward … Read More “China, Russia, Iran, and North Korea Intelligence Sharing” »

Device Code Phishing

February 19, 2025 infossl

authentication, authorization, phishing, russia, Security technology, Uncategorized

This isn’t new, but it’s increasingly popular: The technique is known as device code phishing. It exploits “device code flow,” a form of authentication formalized in the industry-wide OAuth standard. Authentication through device code flow is designed for logging printers, smart TVs, and similar devices into accounts. These devices typically don’t support browsers, making it … Read More “Device Code Phishing” »

On the CSRB’s Non-Investigation of the SolarWinds Attack

July 8, 2024 infossl

cyberattack, cyberespionage, dhs, microsoft, national security policy, russia, Security technology, Uncategorized

ProPublica has a long investigative article on how the Cyber Safety Review Board failed to investigate the SolarWinds attack, and specifically Microsoft’s culpability, even though they were directed by President Biden to do so. Powered by WPeMatico

Microsoft Executives Hacked

January 29, 2024 infossl

disclosure, hacking, microsoft, russia, Security technology, Uncategorized

Microsoft is reporting that a Russian intelligence agency—the same one responsible for SolarWinds—accessed the email system of the company’s executives. Beginning in late November 2023, the threat actor used a password spray attack to compromise a legacy non-production test tenant account and gain a foothold, and then used the account’s permissions to access a very … Read More “Microsoft Executives Hacked” »

Cyberattack on Ukraine’s Kyivstar Seems to Be Russian Hacktivists

December 21, 2023 infossl

cyberattack, cyberwar, hacking, russia, Security technology, telecom, ukraine, Uncategorized

The Solntsepek group has taken credit for the attack. They’re linked to the Russian military, so it’s unclear whether the attack was government directed or freelance. This is one of the most significant cyberattacks since Russia invaded in February 2022. Powered by WPeMatico

Remotely Stopping Polish Trains

August 28, 2023 infossl

cyberattack, cybersecurity, radio, russia, Security technology, transportation, Uncategorized

Turns out that it’s easy to broadcast radio commands that force Polish trains to stop: …the saboteurs appear to have sent simple so-called “radio-stop” commands via radio frequency to the trains they targeted. Because the trains use a radio system that lacks encryption or authentication for those commands, Olejnik says, anyone with as little as … Read More “Remotely Stopping Polish Trains” »

FBI Disables Russian Malware

May 10, 2023 infossl

cyberespionage, espionage, fbi, hacking, malware, russia, Security technology, Uncategorized

Reuters is reporting that the FBI “had identified and disabled malware wielded by Russia’s FSB security service against an undisclosed number of American computers, a move they hoped would deal a death blow to one of Russia’s leading cyber spying programs.” The headline says that the FBI “sabotaged” the malware, which seems to be wrong. … Read More “FBI Disables Russian Malware” »

PIPEDREAM Malware against Industrial Control Systems

May 9, 2023 infossl

advanced persistent threats, cybersecurity, infrastructure, malware, russia, Security technology, Uncategorized

Another nation-state malware, Russian in origin: In the early stages of the war in Ukraine in 2022, PIPEDREAM, a known malware was quietly on the brink of wiping out a handful of critical U.S. electric and liquid natural gas sites. PIPEDREAM is an attack toolkit with unmatched and unprecedented capabilities developed for use against industrial … Read More “PIPEDREAM Malware against Industrial Control Systems” »

Russian Cyberwarfare Documents Leaked

March 31, 2023 infossl

cyberespionage, cyberwar, espionage, hacking, leaks, russia, Security technology, Uncategorized, whistleblowers

Now this is interesting: Thousands of pages of secret documents reveal how Vulkan’s engineers have worked for Russian military and intelligence agencies to support hacking operations, train operatives before attacks on national infrastructure, spread disinformation and control sections of the internet. The company’s work is linked to the federal security service or FSB, the domestic … Read More “Russian Cyberwarfare Documents Leaked” »

Cyberwar Lessons from the War in Ukraine

February 23, 2023 infossl

cyberattack, cyberwar, defense, infrastructure, reports, russia, Security technology, ukraine, Uncategorized

The Aspen Institute has published a good analysis of the successes, failures, and absences of cyberattacks as part of the current war in Ukraine: “The Cyber Defense Assistance Imperative Lessons from Ukraine.” Its conclusion: Cyber defense assistance in Ukraine is working. The Ukrainian government and Ukrainian critical infrastructure organizations have better defended themselves and … Read More “Cyberwar Lessons from the War in Ukraine” »