“Given the sensitivity of information widely available on unclassified [cleared contractor] networks, the FBI, NSA, and CISA anticipate that Russian state-sponsored cyber actors will continue to target CDCs for U.S. defense information in the near future.”
By Lee Ferran“The FBI, CISA, and CGCYBER assess that advanced persistent threat cyber actors are likely among those exploiting the vulnerability,” the joint advisory notes.
By Brad D. WilliamsOne senior official said he wants his agency to have the urgency about China the way the US had urgency about counterterrorism after 9/11.
By Brad D. Williams“The PRC’s pattern of irresponsible behavior in cyberspace is inconsistent with its stated objective of being seen as a responsible leader in the world,” a senior administration official said on Sunday night.
By Brad D. WilliamsThe Exchange campaign attribution will also provide hints about the role of the first national cyber director in such incidents. NSA veteran Chris Inglis was confirmed for the position just weeks ago.
By Brad D. Williams“This is a good reminder that the GRU remains a looming threat, which is especially important given the upcoming Olympics, an event they may well attempt to disrupt,” observed John Hultquist, VP of Analysis at Mandiant Threat Intelligence.
By Brad D. Williams“Someone told me I was like Chicken Little, but I prefer Paul Revere,” said Sen. King, who co-chaired the commission that recommended creating the national cyber director.
By Brad D. Williams“[Paying the ransom] was the hardest decision I’ve made in my 39 years in the energy industry… and I put the interest of the country first,” Colonial’s CEO told Congress. “I believe with all my heart [paying the ransom] was the right choice to make, but I want to respect those who see this issue differently.”
By Brad D. WilliamsCISA and FBI issue a joint advisory on DarkSide ransomware. “There is no immediate mission impact” from fuel shortage on DoD, a Pentagon spokesman said. Colonial temporarily restored operations between North Carolina and Maryland last night. Russia denies involvement. DarkSide’s business model complicates attribution.
By Brad D. WilliamsThe Ransomware Task Force report, a comprehensive effort on this topic, includes 48 recommendations to tackle this growing threat.
By Brad D. Williams“That was a list of about as many awful things in 10 minutes as I may have heard in recent time,” Sen. Mark Warner said of the DNI’s threat assessment. Top of mind: China, cyber, and emerging tech.
By Brad D. WilliamsThis operation — which involved the FBI removing malware from privately owned and operated victim servers without advance notice — could be unprecedented, at least at this scale.
By Brad D. WilliamsGurucul CEO Saryu Nayyar told Breaking Defense, “A threat like this really is one of those rare ‘Stop what you are doing and fix this now!’ events.”
By Brad D. WilliamsExperts warn that Iran almost certainly now has the cyber tools to inflict physical damage on US critical infrastructure.
By Theresa Hitchens