The UK’s Ministry of Defence has revealed that it was the target of a sophisticated cyber attack that saw Russia-linked hackers pose as journalists. Read more in my article on the Hot for Security blog.
Category: Russia
APT, Cybercrime, Cybersecurity, Global Security News, Government, Microsoft, Microsoft Threat Intelligence Center, Research, Russia, Threat Intelligence, Threats
New Russian state-sponsored APT quickly gains global reach, hitting expansive targets
A newly discovered Russian state-sponsored threat group has targeted a large swath of industries, especially in NATO member states and Ukraine, part of a global espionage campaign in support of Moscow’s interests, Microsoft Threat Intelligence said in a Tuesday blog post. Laundry Bear, a group Microsoft tracks as Void Blizzard, has attacked multiple governments and…
Botnet, Cloud Security, Cybersecurity, DanaBot, Data Privacy, Data Security, Endpoint, Featured, Global Security News, Identity & Access, malware, Network Security, News, Operation Endgame Cybercrime, Russia, Security Boulevard (Original), Spotlight, Threats & Breaches
U.S. Authorities Seize DanaBot Malware Operation, Indict 16
U.S. authorities seized the infrastructure of the DanaBot malware and charged 16 people in an action that is part of the larger Operation Endgame, a multinational initiative launched last year to disrupt and take apart global cybercriminals operations. The post U.S. Authorities Seize DanaBot Malware Operation, Indict 16 appeared first on Security Boulevard.
botnets, Cybercrime, Cybersecurity, DanaBot, Department of Justice (DOJ), espionage, Global Security News, Government, indictment, Information stealing malware, infostealers, malware, Russia, Threats
DanaBot malware operation seized in global takedown
A global collection of private defenders and law enforcement agencies notched another win against a core facilitator for cybercrime, initiating coordinated seizures and takedowns of DanaBot’s command and control servers, disrupting the malware-as-a-service’s operations, the Justice Department said Thursday. Federal officials also unsealed a grand jury indictment and criminal complaint charging 16 individuals for their…
apt 28, Cybersecurity, eset, Fancy Bear, Global Security News, Government, GRU, nato, North America, phishing, powershell, PsExec, Russia, Threats, Transportation, Ukraine
Multi-national warning issued over Russia’s targeting of logistics, tech firms
A joint advisory from intelligence and cybersecurity agencies in the United States, United Kingdom, Canada, Australia and multiple European countries has detailed an ongoing Russian state-sponsored campaign targeting Western logistics organizations and technology companies, especially those supporting aid to Ukraine. The campaign, orchestrated by the group known as APT28 or Fancy Bear, has relied heavily…
cross-site scripting, defense contractors, Europe, Fancy Bear, Geopolitics, Global Security News, Government, Russia, Ukraine
Fancy Bear campaign sought emails of high-level Ukrainians and their military suppliers
Fancy Bear, the hacking group linked to Russia’s Main Intelligence Directorate (GRU), has been targeting the email accounts of high-ranking Ukrainian officials as well as executives at defense contractors located in other countries who sell weapons and equipment to Kyiv, according to new research from ESET. The campaign, ongoing since at least 2023, has taken…
china, critical infrastructure, cyber workforce, cybersecurity workforce, FireEye, Global Security News, North Korea, North Korean IT workers, Ransomware, Research, Russia, SentinelOne, SolarWinds, telecommunications, Threats, Workforce
Cybersecurity vendors are themselves under attack by hackers, SentinelOne says
Cybersecurity companies don’t just defend their customers against cyberattacks — they also have to defend themselves, and a SentinelOne report published Monday examines some of the biggest threats they’re facing. Those include ransomware, Chinese government-sponsored hackers and North Korean IT workers posing as job applicants, according to the report from SentinelOne’s SentinelLabs. “In recent months,…
AI, Artificial Intelligence (AI), Asia Pacific, china, cloud computing, Cybercrime, Cybersecurity, Global Security News, Iran, North Korea, Russia, SentinelOne, wiz
AI can help defenders stop nation-state threat actors at machine speed
Last year, the escalating concerns about Chinese threat actors breaching U.S. organizations reached a crescendo as federal authorities issued increasingly urgent advisories about China’s “Typhoon” groups infiltrating U.S. networks, pressing organizations to take immediate action. The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) warned that these groups were engaged…
Asia Pacific, china, CISA, critical infrastructure, Cybersecurity and Infrastructure Security Agency, Cybersecurity and Infrastructure Security Agency (CISA), Cybersecurity Information Sharing Act, Department of Homeland Security (DHS), disinformation, Exclusive, Gary Peters, Global Security News, Government, information sharing, information sharing and analysis centers (ISACs), Joint Cyber Defense Collaborative, Local Government, Mike Rounds, misinformation, North Carolina, Policy, privacy, rand paul, Russia, Salt Typhoon, Senate Armed Services Committee, Senate Homeland Security and Governmental Affairs Committee, SolarWinds, State Government, Volt Typhoon
Exclusive: Peters, Rounds tee up bill to renew expiring cyber threat information sharing law
A bipartisan pair of senators are kicking off the race Wednesday to reauthorize a 2015 cyber threat information sharing law, a move that industry groups and cyber experts are eager to see happen before it’s set to expire in September. Advocates say the 10-year-old Cybersecurity Information Sharing Act has been vital to sharing threat information…
bugs, Cybersecurity, Exploits, Global Security News, Russia, Security, Telegram, zero days
Russian zero-day seller is offering up to $4 million for Telegram exploits
Two sources in the zero-day industry say Operation Zero’s prices for exploits against the popular messaging app Telegram will depend on different factors.
APT37, APT43, china, Cybercrime, Cybersecurity, Evil Corp, Exploits, Global Security News, Government, India, Iran, Microsoft, microsoft windows, nation state threats, nation-state hackers, North Korea, pakistan, Ransomware, Research, Russia, Stanford University, Threats, trend micro, vulnerability, Windows, Zero Day Initiative, zero days
Nation-state groups hit hundreds of organizations with Microsoft Windows zero-day
Cybercriminals working on behalf of at least six nation-states are actively exploiting a zero-day vulnerability in Microsoft Windows to commit espionage, steal data and cryptocurrency, according to Trend Micro researchers. The vulnerability, which Trend Micro tracks as ZDI-CAN-25373, allows attackers to execute hidden malicious commands due to the way Windows displays the contents of shortcut…
cyberattacks, Cybersecurity, Cyberwar, Global Security News, Ransomware, Russia, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Threats & Breaches
“My vas pokhoronim!”
CISA, in collaboration with the FBI and NSA, identified and attributed multiple attacks to Russian entities, emphasizing the risks posed by state-backed Advanced Persistent Threats (APTs). The post “My vas pokhoronim!” appeared first on Security Boulevard.
Cybercrime, Cybersecurity, Global IT News, Global Security News, hacking, In Brief, LockBit, Ransomware, Russia, Security
Accused LockBit ransomware developer extradited to the US
The U.S. Department of Justice announced that Rostislav Panev, who developed code and maintained infrastructure for LockBit, is now in U.S. custody. © 2024 TechCrunch. All rights reserved. For personal use only.
Application Security, Cloud Security, Cloudflare DDoS Protection, cyber attacks during ukraine war, cyber attacks russia, Cybersecurity, Dark Storm Team, DDoS, DDoS attack, Denial of Service, Denial of Service (DoS) attacks, denial of service attacks, denial of service vulnerability, DevOps, DevSecOps, distributed denial of service, Distributed denial of service (DDoS) attacks, distributed denial of service attack, Editorial Calendar, Elon Musk, elon musk twitter, Featured, Global Security News, Governance, Risk & Compliance, hacktivism ukraine cyber-attacks, Humor, Incident Response, Industry Spotlight, IoT, IoT & ICS Security, malware, Most Read This Week, Network Security, News, Popular Post, Russia, Russia-Ukraine, russia-ukraine conflict, Russia's War on Ukraine, SB Blogwatch, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, social media, Social Media Attack, social media attacks, social media cyber attacks, Social Media Cybercrime, Social Media Exploits, Spotlight, Threats & Breaches, Ukraine, ukraine conflict, Ukraine Cyber War, Ukraine-Russia War, Ukraine/European Security, vulnerabilities, X
No, Elon — X DDoS was NOT by Ukraine
X marks the botnet: Outage outrage was a Ukrainian cyberattack, implies our favorite African billionaire comedy villain. The post No, Elon — X DDoS was NOT by Ukraine appeared first on Security Boulevard.
Bitcoin, Crypto, Cybercrime, Exclusive, Garantex, Global IT News, Global Security News, India, money laundering, Russia, Security, tether
Garantex administrator arrested in India under extradition law
Garantex co-founder Aleksej Besciokov was arrested in India’s Kerala on Tuesday under the country’s extradition law. © 2024 TechCrunch. All rights reserved. For personal use only.
Crypto, CryptoCurrency, Garantex, Global IT News, Global Security News, money laundering, Russia, Secret Service, Security
Following takedown operation, Garantex invites customers to ‘face-to-face’ Moscow meeting
Russian crypto exchange Garantex has yet to directly address the international law enforcement operation that resulted in the seizure of its domains, and criminal charges against two of its administrators. © 2024 TechCrunch. All rights reserved. For personal use only.
Browser Privacy, Canadian Tariffs, CISA, cyber security, cyber threat, Cybersecurity, Data Privacy, Data Security, Digital Privacy, Episodes, Firefox Privacy, Global Security News, Government & Policy, Information Security, infosec, internet privacy, mozilla, online security, Podcast, Podcasts, privacy, privacy rights, Putin, Russia, Russian Cyber Threat, Security, Security Bloggers Network, Tech Talk, Technology, Technology News, Trump, Trump Administration, US Cyber Command, Weekly Edition
Trump Administration and the Russian Cyber Threat, Firefox Privacy Changes
In this episode, we discuss whether the Trump administration ordered the U.S. Cyber Command and CISA to stand down on the Russian cyber threat. We also touch on the Canadian tariff situation with insights from Scott Wright. Additionally, we discuss the recent changes to Firefox’s privacy policy and what it means for user data. **…
Crypto, doj, Garantex, Global IT News, Global Security News, money laundering, Ransomware, Russia, sanctions, Security, US Department of Justice
US charges admins of Garantex for allegedly facilitating crypto money laundering for terrorists and hackers
The administrators of Garantex, Aleksej Besciokov and Aleksandr Mira Serda, allegedly knew their crypto exchange was used to launder money, according to U.S. prosecutors. © 2024 TechCrunch. All rights reserved. For personal use only.
CryptoCurrency, Cybercrime, Cybersecurity, Department of Justice (DOJ), Elliptic, Europe, Europol, Garantex, Geopolitics, Global Security News, Lazarus Group, Ransomware, Russia, sanctions, Secret Service, Technology, Telegram
Russian crypto exchange Garantex seized in international law enforcement operation
U.S. and European law enforcement agencies have seized the infrastructure of Garantex, a cryptocurrency exchange accused of laundering billions in criminal proceeds, in a sweeping international operation that signals heightened focus on illicit financial flows in cryptocurrency markets. According to Justice Department documents unsealed Friday, the Moscow-based exchange processed approximately $96 billion in cryptocurrency transactions…
Crypto, doj, fbi, Garantex, Global IT News, Global Security News, Russia, sanctions, Secret Service, Security
Russian crypto exchange Garantex seized by law enforcement operation
An international coalition of law enforcement agencies seized the official website of Garantex, which has previously been sanctioned by the U.S. and E.U. governments. © 2024 TechCrunch. All rights reserved. For personal use only.
CISA, Global Security News, Guest blog, Law & order, malware, Russia, Security threats, united states
CISA refutes claims it has been ordered to stop monitoring Russian cyber threats
It’s been a confusing few days in the world of American cybersecurity… Read more in my article on the Hot for Security blog.
CISA, Cloud Security, Cybersecurity, Data Privacy, Data Security, Featured, Global Security News, Governance, Risk & Compliance, Industry Spotlight, malware, Network Security, News, North America, Russia, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, Threats & Breaches, Trump, US DOD
Security Pros Push Back as Trump Orders Halt to Cyber Ops vs. Russia
The Trump Administration’s orders to the DoD and CISA to halt cyber operations and investigations against Russia is a gift to the United States’ longtime foreign adversary and makes the country less safe, according to cybersecurity professionals. The post Security Pros Push Back as Trump Orders Halt to Cyber Ops vs. Russia appeared first on…
CISA, Cloud Security, Cybersecurity, Data Privacy, Data Security, Featured, Global Security News, Governance, Risk & Compliance, Industry Spotlight, malware, Network Security, News, North America, Russia, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, Threats & Breaches, Trump, US DOD
Security Pros Push Back as Trump Orders Halt to Cyber Ops vs. Russia
The Trump Administration’s orders to the DoD and CISA to halt cyber operations and investigations against Russia is a gift to the United States’ longtime foreign adversary and makes the country less safe, according to cybersecurity professionals. The post Security Pros Push Back as Trump Orders Halt to Cyber Ops vs. Russia first appeared on…
Bennie Thompson, CISA, Cybersecurity, Cybersecurity and Infrastructure Security Agency, Cybersecurity and Infrastructure Security Agency (CISA), Department of Homeland Security (DHS), Global Security News, House Homeland Security Committee, Jake Williams, Russia, Threats
DHS says CISA won’t stop looking at Russian cyber threats
The Department of Homeland Security said that its Cybersecurity and Infrastructure Security Agency will continue to pay attention to Russian cyber threats, contrary to media reports suggesting the opposite. The Guardian reported last week that a recent CISA memo setting out priorities for the agency didn’t list Russia among them, while including Chinese threats and…
Cybersecurity, Global IT News, Global Security News, hacking, Russia, Security, us government
US said to halt offensive cyber operations against Russia
The reported policy shift comes as the U.S. government signals a change in its threat assessment of Russia © 2024 TechCrunch. All rights reserved. For personal use only.
CISA, Donald Trump, Global Security News, Guest blog, Law & order, malware, Ransomware, Russia, Security threats, Ukraine, united states
Stop targeting Russian hackers, Trump administration orders US Cyber Command
The Trump administration has told US cyber command and CISA to stop following or reporting on Russian cyber threats. Yes, Russia! That country everyone used to agree was home to lots of ransomware gangs and hackers. Hmmm… Read more in my article on the Hot for Security blog.
CISO, Cybersecurity, Geopolitics, Global Security News, Government, liability, Policy, Russia, SolarWinds
SolarWinds CISO says security execs are ‘nervous’ about individual liability for data breaches
SolarWinds’ top cybersecurity executive said chief information security officers are increasingly grappling with how to do their jobs while avoiding individual legal liability for breaches that happen on their watch. Tim Brown, now CISO at SolarWinds, was a vice president and the highest-ranking security official at the company when hackers working on behalf of the…
cyber espionage, Cybercrime, Cybersecurity, data theft, Department of Justice (DOJ), Global Security News, Google Threat Intelligence Group, North America, Ransomware, Research, Russia, Snowflake, Threats, Unit 221B
Army soldier linked to Snowflake attack spree allegedly tried to sell data to foreign spies
U.S. authorities say a 21-year-old U.S. Army soldier attempted to sell stolen sensitive information to a foreign intelligence service as part of a broader effort to extort victims and leak call records of high-ranking public officials. In November while on active duty, Cameron Wagenius made multiple attempts to extort $500,000 from a major telecommunications company…
Artificial Intelligence, Artificial Intelligence (AI), china, Cyber Command, cyber workforce, cybersecurity workforce, DistrictCon, Gen. Paul Nakasone, Geopolitics, Global Security News, hunt forward operations, Iran, Joint Chiefs of Staff, National Security Agency, National Security Agency (NSA), North America, nsa, openai, Paul Nakasone, Pete Hegseth, Ransomware, Russia, Salt Typhoon, telecommunications, telecoms, Threats, Vanderbilt University, Workforce
Former NSA, Cyber Command chief Paul Nakasone says U.S. falling behind its enemies in cyberspace
The United States is falling “increasingly behind” its adversaries in cyberspace, a former Cyber Command and National Security Agency boss said Saturday. Speaking at the DistrictCon cybersecurity conference in Washington, D.C., retired Gen. Paul Nakasone said that “our adversaries are continuing to be able to broaden the spectrum of what they’re able to do to…
Cybercrime, Cybersecurity, Global Security News, Google Threat Intelligence Group, GRU, messaging apps, phishing, Research, Russia, Sandworm, signal, Threats, Uncategorized
Russia-aligned threat groups dupe Ukrainian targets via Signal
Russian state threat groups have compromised Signal accounts used by Ukrainian military and government personnel to eavesdrop on real-time communications, Google Threat Intelligence Group said in a report released Wednesday. “This is a persistent, ongoing campaign being carried out by multiple different Russia-aligned threat actors,” Dan Black, principal analyst at Google Threat Intelligence Group, said…
Cybersecurity, Exploits, Global Security News, Microsoft, phishing, Research, Russia, Threat Intelligence, Threats, Volexity
Threat researchers spot ‘device code’ phishing attacks targeting Microsoft accounts
Microsoft threat researchers discovered a series of what they are calling “device code” phishing attacks that allowed a suspected Russia-aligned threat group to gain access to and steal data from critical infrastructure organizations, the company said in research released Thursday. The group, which Microsoft tracks as Storm-2372, has targeted governments, IT services and organizations operating…
Asia Pacific, china espionage, Cloud Security, Cyberlaw, Cybersecurity, Data Security, Featured, Global Security News, Google, Incident Response, malware, Mobile Security, nation-state attacks, national security risk, Network Security, News, Russia, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, Threats & Breaches
Lines Between Nation-State and Cybercrime Groups Disappearing: Google
Threat researchers with Google are saying that the lines between nation-state actors and cybercrime groups are blurring, noting that gangs backed by China, Russia, and others are using financially motivated hackers and their tools while attacks by cybercriminals should be seen as national security threats. The post Lines Between Nation-State and Cybercrime Groups Disappearing: Google…
CVE, Cybersecurity, Exploits, Global Security News, Microsoft, Microsoft Threat Intelligence Center, Research, Russia, Seashell Blizzard, Threats, Uncategorized, vulnerabilities
Russian state threat group shifts focus to US, UK targets
A subgroup of Seashell Blizzard has shifted its focus to targets in the U.S., Canada, Australia and the U.K. within the past year, expanding the scope of its malicious activity, Microsoft’s threat intelligence team said in a report released Wednesday. The initial-access operation, which Microsoft tracks as the “BadPilot campaign,” has allowed the Russian state…
APT44, Asia Pacific, china, Cybercrime, Global Security News, Google, Iran, North Korea, Russia, Sandworm, Trellix, Ukraine
U.S. adversaries increasingly turning to cybercriminals and their malware for help
Governments of the United States’ chief adversaries in cyberspace, especially Russia, have increasingly been relying on cybercriminals and their tools to advance their goals, according to a Google report published Tuesday. There’s long been overlap between government and criminal cyber operators, but governments are now enjoying the benefits of collaboration and borrowing more — both…
Cybersecurity, data breach, Global IT News, Global Security News, Hewlett-Packard Enterprise, Microsoft, Russia, Security
HPE begins notifying data breach victims after Russian government hack
Hackers with Russian foreign intelligence were blamed for the breach, which also targeted Microsoft. © 2024 TechCrunch. All rights reserved. For personal use only.
disinformation, doj, Election Security, Emerging Tech, Foreign Agents Registration Act (FARA), Global Security News, Government, Policy, Russia, Trump Administration
DOJ disbands foreign influence task force, limits scope of FARA prosecutions
One of the first acts taken by Pam Bondi after being sworn in as attorney general was to disband an FBI task force that countered the influence of adversarial foreign governments on American politics. In a memo issued Wednesday, Bondi wrote that the Department of Justice would be shifting resources in its National Security Division,…
Department of Justice (DOJ), FSB, Geopolitics, Global Security News, Government, Microsoft, phishing, Russia, Star Blizzard, Threats, WhatsApp
Microsoft catches Russian state-sponsored hackers shifting tactics to WhatsApp
The cat-and-mouse game between state-sponsored Russian hackers and one of the world’s biggest technology companies has continued into 2025. Microsoft’s threat intelligence team published research Thursday examining how a state-sponsored Russian threat actor group, known as Star Blizzard, has altered its longstanding attack strategies to target WhatsApp accounts. This attack vector is a significant change…
Citizen Lab, Cybersecurity, Global IT News, Global Security News, Greece, infosec, poland, Russia, Security, Spyware, UN, United Nations, united states
Governments call for spyware regulations in UN Security Council meeting
Several governments participated in a meeting on the proliferation of commercial spyware at the United Nations Security Council. © 2024 TechCrunch. All rights reserved. For personal use only.
APT28, Europe, Fancy Bear, Global Security News, GRU, Kazakhstan, Russia, Sekoia, Threats
Fancy Bear spotted using real Kazak government documents in spearpishing campaign
A hacking group linked to Russian intelligence has been observed leveraging seemingly legitimate documents from the Kazakhstan government as phishing lures to infect and spy on government officials in Central Asia, according to researchers at Sekoia. The files, laced with malware, include draft versions of diplomatic statements, correspondence letters, internal administrative notes and other documents…
crypto mixer, Cybercrime, Department of Justice (DOJ), Federal Bureau of Investigation (FBI), Global Security News, money laundering, Russia
Russian nationals charged with operating crypto mixers that masked cybercrime funds
Three Russian nationals were indicted this week for their roles in managing a pair of cryptocurrency mixing services, operations that were funded in part by money gained through ransomware attacks. The indictment from a federal grand jury in the Northern District of Georgia alleges that Roman Vitalyevich Ostapenko, 55, Alexander Evgenievich Oleynik, 44, and Anton…
disinformation, election hacking, Geopolitics, Global Security News, Government, Iran, Russia, sanctions, Technology, Threats
US sanctions Russian, Iranian groups for election interference
The U.S. State Department has sanctioned two foreign organizations and one individual who it alleges worked on behalf of Russian and Iranian intelligence agencies to interfere in the 2024 U.S. general election. “These actors sought to stoke sociopolitical tensions and undermine our election institutions during the 2024 U.S. general election,” said State Department Press Secretary…
Budapest Convention, Chris Painter, Cybercrime, David Kaye, Electronic Frontier Foundation, Geopolitics, Global Forum on Cyber Expertise, Global Security News, human rights, North America, Policy, privacy, Russia, State Department, treaties, United Nations
After UN adoption, controversial cybercrime treaty’s next steps could prove vital
A divisive United Nations cybercrime treaty — one that critics say is a huge danger to human rights and that the United States cautiously agreed to advance — is now in the hands of member nations. The U.N. General Assembly adopted the treaty without a vote last week, leaving ratification to individual states. If the…
china, Congress, disinformation, Global Security News, Government, NDAA, Russia, State Department
State Department’s disinformation office to close after funding nixed in NDAA
The State Department’s center for fighting global disinformation received a lump of coal in its Christmas stocking this week as congressional lawmakers excluded new funding and authorization for the office beyond this year. The Global Engagement Center, which tracks foreign disinformation, will lose its authority on Dec. 24. Despite a concerted push by State officials…
Asia Pacific, china, future union, Global Security News, humba ventures, Russia, Venture
Over 20 venture firms pledge to not take money from China, Russia
Founders now have a way to ensure that their investors haven’t taken money from countries like China, Russia, Iran or Cuba. Over 20 venture firms have signed the Clean Capital Certification, attesting that they have not and will not take money from foreign adversaries. Some of the firms that have signed include Marlinspike Partners, Humba…
Central Intelligence Agency, Commerce Department, Geopolitics, Global Security News, Google, Kaspersky, Mastercard, Money, North America, Recorded Future, Russia, Ukraine
Russia bans cybersecurity company Recorded Future
Russia banned the cybersecurity company Recorded Future on Wednesday, labeling it an “undesirable” organization — much to its CEO’s delight. The company stands accused of collaborating with the Central Intelligence Agency, Ukraine and other countries. “They provide information and technical support for the propaganda campaign launched by the West against Russia,” Russia’s Office of Prosecutor…
china, Cybercrime, Department of Justice, Department of Justice (DOJ), Department of State, Geopolitics, Global Security News, Justice Department, Mandiant, North America, North Korea, North Korean IT workers, Russia, State Department, U.S. courts, U.S. Department of Justice, U.S. Department of State
Court indicts 14 North Korean IT workers tied to $88 million in illicit gains
A federal court has indicted 14 more North Korean IT workers as part of an ongoing U.S. government campaign to crack down on Pyongyang’s use of tech professionals to swindle American companies and nonprofits. The Justice Department said the 14 indicted workers generated at least $88 million throughout a conspiracy that stretched over approximately six…
Global Security News, Guest blog, malware, North America, Ransomware, Russia
Ransomware-hit vodka maker Stoli files for bankruptcy in the United States
Stoli Group USA, the US subsidiary of vodka maker Stoli, has filed for bankruptcy – and a ransomware attack is at least partly to blame. The American branch of Stoli, which imports and distributes Stoli brands in the United States, as well as the Kentucky Owl bourbon brand it purchased in 2017, was hit by…