A source with knowledge of recent cybersecurity initiatives in Ukraine told BuzzFeed News hours before the cyberattack that Kyiv & Washington had recently seen a "substantial uptick" in Russian cyber activity targeting Ukrainian systems & planting malware
North Korea's hacker army launched at least seven attacks on cryptocurrency platforms in 2021 that menaced global players and netted the reclusive state almost $400 million worth of digital assets, a report said
US NATO ambassador @USAmbNATO @Julie_C_Smith says still looking into Ukraine cyber attack but confirms cyber is "certainly" a criteria to trigger threatened western sanctions against Russia for any further aggressive action against its neighbor
EU says 'mobilising all resources' to help Ukraine after cyberattack
EU’s Borrell condemns cyber attack on Ukraine, called emergency EU meeting to respond
Ukraine SBU on Cyber attack: SBU press service: The content of the sites was not changed, and the leakage of personal data, according to available information, did not occur. We are investigating the incident and collecting digital evidence
1 Jahr zuvorSources tell ~15 sites in Ukraine - all using October content management system - have been defaced, incl Min of Foreign Affairs, Cabinet of Ministers, Min of Ed, Emergency Services, Treasury, Environmental Protection
Ukraine Foreign Ministry spokesperson: As a result of a massive cyber attack, the websites of the Ministry of Foreign Affairs and a number of other government agencies are temporarily down. Our specialists have already started restoring the work of IT systems, and the cyberpolice has opened an investigation
1 Jahr zuvorUkrainian e-government services website down, Cabinet of Ministers site not responding, Foreign Ministry site hacked: Defence Ministry, Rada, and other sites OK for now
1 Jahr zuvorUkrainian government websites hit by a major cyberattack this morning. Below is the screenshot from Foreign ministry website. It says in Ukrainian, Russian and Polish: 'Ukrainian, be afraid and prepare for the worst. All your personal data has been uploaded to the web'
Petrol tankers all over Ukraine could not leave oil storages after database of tax service went down on Thursday morning. Access restored late evening, only few stations went out off fuel
1 Jahr zuvorWholesale AIS spoofing of maritime vessels occurring right now from the Imam Khomeini International Airport south of Tehran, Iran. Around 50 vessels (domestic and foreign-flagged), including a couple of tankers, are falsely identifying themselves from an airport 900km away
Reuters: "White House will meet execs from Apple, Amazon, IBM to discuss software security"
Citizen Lab found the cell phones of nearly three dozen journalists and activists in El Salvador, most investigating alleged state corruption, were hacked since mid-2020 with Pegasus spyware typically available only to governments and law enforcement
Per @US_CYBERCOM, this is the 1st time the US government has publicly connected the actions of MuddyWater to Iran's Ministry of Intelligence & Security re cyber threats
. @CNMF_CyberAlert identified & disclosed multiple open-source tools actively used by Iranian hacker group MuddyWater. The group is subordinate to Iranian intelligence MOIS and collects intel & conducts malicious cyber activity
1 Jahr zuvorPer @US_CYBERCOM, it's not just MuddyWater - other Iranian APTs are also using some of the techniques US is warning about
1 Jahr zuvorInternet has been significantly restored in Kazakhstan from ~6 am local time following a digital curfew that lets users go online a few hours each day. The state-imposed shutdown has left millions without access to services and information
.@CISAgov continues to push for remediation and strengthening security protocols as it leads US response, per @CISAJen CISA's webpage with guidance has already gotten 330,000 page views since it was stood up almost a month ago Another tool downloaded @ 4,000 times
.@CISAgov update on Log4j shell: "This really is the most serious vulnerability I've seen in my career" per Director @CISAJen Likely present in hundreds of millions of products worldwide, & exploiting vulnerability "trivial" she adds
"We have seen widespread exploitation" by criminal actors & seen some reports of more significant activity, per @CISAJen on Log4j, But @CISAgov cannot independently confirm some reported use/exploitation by foreign adversaries
1 Jahr zuvorKazakhstan's internet shutdown continues as of Monday afternoon amidst protests and political turmoil. Earlier today, some users briefly came online for the first time in five days, while many in NurSultan remain connected.
1 Jahr zuvorInternet has been partially restored for some users in Kazakhstan for the sixth time since Wednesday's blackout, in keeping with a daily curfew cycle
Disruption at one of two undersea cables to Svalbard: The disruption is located somewhere between 130 to 230 kilometers southwest of Longyearbyen in the area where the seabed goes from 300 meters down to 2700 meters in the Greenland Sea
1 Jahr zuvorUsing shodan to find indicators of ransomware victims reveals quite a few interesting results . Trends for the "encrypted" string on port 3389 shows an increase in 2019/20, with many having ransomware notes from Loki Locker or XINOF
1 Jahr zuvorIt's now Friday morning in Kazakhstan where internet has been shut down for some 36 hours, placing public safety at risk and leaving friends and family cut off. Connectivity levels continue to flatline at just 5% of ordinary levels
In Ukraine, the SBU security service @ServiceSsu reportedly disrupted 59 attempted cyber attacks on government services in December 2021 alone
Internet and communications outage in all networks in Sudan
1 Jahr zuvorConfirmed: Kazakhstan is again in the midst of a nation-scale internet blackout as of early morning Thursday. While service was available, President Tokayev gave a televised speech appealing to Russia for assistance to "protect the state."
Websites of Kazakhstani authorities and TV channels are unavailable again
