Latest News Articles



--- TLP:WHITE ---

News

− Hive Ransomware Infrastructure Seized in Joint International Law Enforcement Effort

The infrastructure associated with the Hive ransomware-as-a-service (RaaS) operation has been seized as part of a coordinated law enforcement effort involving 13 countries. "Law enforcement identified the decryption keys and shared them with many of the victims, helping them regain access to their data without paying the cybercriminals," Europol said in a statement.

https://www.europol.europa.eu/media-press/newsroom/news/cybercriminals-stung-hive-infrastructure-shut-down

− Russia-Linked APT29 Uses New Malware in Embassy Attacks

Russia-linked cyberespionage group APT29 has been observed using embassy-themed lures and the GraphicalNeutrino malware in recent attacks.

https://go.recordedfuture.com/hubfs/reports/cta-2023-0127.pdf

− ESET APT Activity Report T3 2022

An overview of the activities of selected APT groups investigated and analyzed by ESET Research in T3 2022

https://www.welivesecurity.com/2023/01/31/eset-apt-activity-report-t3-2022/

Vulnerabilities

− CISA: Federal agencies hacked using legitimate remote desktop tools

CISA, the NSA, and MS-ISAC warned today in a joint advisory that attackers are increasingly using legitimate remote monitoring and management (RMM) software for malicious purposes.

https://www.cisa.gov/uscert/ncas/alerts/aa23-025a

− UK Gov Warns of Phishing Attacks Launched by Iranian, Russian Cyberspies

The UK’s NCSC has issued a security advisory to warn about spearphishing campaigns conducted by two unrelated Russian and Iranian hacker groups.

https://www.ncsc.gov.uk/news/spear-phishing-campaigns-targets-of-interest

Community News

− Ukraine deepens NATO cyber partnership

The 27 Sponsoring Nations in the Steering Committee of the CCDCOE agreed to Ukraine’s membership in the NATO CCDCOE as a Contributing Participant.

https://ccdcoe.org/news/2022/ukraine-to-be-accepted-as-a-contributing-participant-to-nato-ccdcoe/

− French presidency of the EU: enhancing cooperation in the event of a cyber crisis

On January 26 and 27, 2022, ANSSI brought together the 27 Member States of the CyCLONe network, ENISA and the European Commission (DG CONNECT), as part of the EU-CYCLES (EU Cyber Crisis Linking Exercise on Solidarity) sequence of exercises to be held in January and February 2022.

https://www.ssi.gouv.fr/en/actualite/french-presidency-of-the-eu-enhancing-cooperation-in-the-event-of-a-cyber-crisis/

--- TLP:WHITE ---