The Week that Was: Motivations: criminal, hacktivist, and strategic. Backdoor-like issue found in Gigabyte firmware. New Mirai malware uses low-complexity exploits to expand its botnet in IoT devices.

Motivations: criminal, hacktivist, and strategic. Backdoor-like issue found in Gigabyte firmware. New Mirai malware uses low-complexity exploits to expand its botnet in IoT devices. Mitiga discovers “significant forensic discrepancy” in Google Drive. Russia-Ukraine hybrid war update. Patch news. Crime and punishment. Courts and torts. Policies, procurements, and agency equities. Labor markets. Mergers and acquisitions. Investments and exits.

The Week that Was: UNC3944 uses SIM swapping to gain access to Azure admin accounts. China's Volt Typhoon snoops into US infrastructure. CosmicEnergy: OT and ICS malware from Russia.

UNC3944 uses SIM swapping to gain access to Azure admin accounts. China's Volt Typhoon snoops into US infrastructure, with special attention to Guam. CosmicEnergy: OT and ICS malware from Russia, maybe for red teaming. Iranian cyber ops against Israeli targets. Rheinmetall data posted to BlackBasta's extortion site. Russia-Ukraine hybrid war update. Patch news. Crime and punishment. Courts and torts. Policies, procurements, and agency equities. Labor markets. Mergers and acquisitions. Investments and exits.

The Week that Was: Attribution and motivation of "RedStinger" remain murky. DDoS "carpet bombing." Cyber agencies warn of BianLian ransomware.

Attribution and motivation of "RedStinger" remain murky. DDoS "carpet bombing." Cyber agencies warn of BianLian ransomware. Chinese government-linked threat actors target TP-link routers with custom malware. Russia-Ukraine hybrid war update. Patch news. Crime and punishment. Courts and torts. Policies, procurements, and agency equities. Labor markets. Mergers and acquisitions. Investments and exits. And security innovation, RedStinger, Corero, BianLian, Camaro Dragon, Mustang Panda, Radio Life, Radio Zhizn, KillNet, Ruckus, DraftKings, Goat Shop, Meta, Akamai, Twitter, ReliaQuest, EclecticIQ, Polar Security, IBM, SECOM CO, Huntress, Advanced Data Protection

The Week that Was: Man-in-the-middle phishing attacks are on the rise. Almost 180 organizations still vulnerable to the Go-Anywhere MFT vulnerability.

Man-in-the-middle phishing attacks are on the rise. Almost 180 organizations are still vulnerable to the Go-Anywhere MFT vulnerability. CACTUS, a new ransomware leveraging VPNs to infiltrate its target. CISA and FBI release a joint report on PaperCut NG/MF vulnerability exploitation. More bad bots out there than anyone would like. Russia-Ukraine disinformation update. Patch news. Crime and punishment. Courts and torts. Policies, procurements, and agency equities. Mergers and acquisitions. Investments and exits.

The Week that Was: HTML attacks double in one year. LOBSHOT, a cryptowallet stealer abusing Google Ads. Russia-Ukraine disinformation update.

HTML attacks double in one year. LOBSHOT, a cryptowallet stealer abusing Google Ads. Meta observes and disrupts new NodeStealer malware campaign. Iran integrates influence and cyber operations. Wipers reappear in Ukrainian networks. Russia-Ukraine disinformation update. Crime and punishment. Courts and torts. Policies, procurements, and agency equities. Labor markets. Mergers and acquisitions. Investments and exits. Company news.