Advisory on Chinese cyberespionage. US National Cybersecurity Strategy. LokiBot is out. Malware misrepresenting itself as a proof-of-concept. Hybrid war notes.

Advisory on Chinese cyberespionage. US National Cybersecurity Strategy. LokiBot is out. Malware misrepresenting itself as a proof-of-concept. Hybrid war notes.

CISA and the FBI issue a joint Cybersecurity Advisory on exploitation of Microsoft Exchange Online. Implementing the US National Cybersecurity Strategy. FortiGuard discovers a new LokiBot campaign that uses Microsoft Word as an attack vector. Training code turns out to be malicious in a new proof-of-concept attack discovered on GitHub. Russia resumes its pursuit of a “sovereign Internet.” The GRU’s offensive cyber tactics. A probable Ukrainian false-flag operation.   Read More 

The CyberWire 

Related Posts

North Korea Threat Landscape Update
North Korea Threat Landscape Update

North Korea Threat Landscape Update

On this week’s episode of The Microsoft Threat Intelligence Podcast, Sherrod DeGrippo is joined by Jeremy Dallman, Kimberly Ortiz, and Steve Ginty. Sherrod emphasizes the importance of understanding vulnerabilities before they’re exploited in the wild and discusses the process of responding to security vulnerabilities, including identifying threat actors and the urgency of patch deployment, especially for vulnerabilities targeted by ransomware groups. The conversation also focuses on Security Copilot, a tool built on Microsoft’s extensive threat intelligence, designed to make SOC analysts’ work more accessible by providing immediate, relevant information on threats. This episode offers an insider’s view on how these professionals track internal incident responses, share crucial intelligence with customers, and continuously evolve their processes to ensure swift, accurate delivery of threat intelligence.   Read More 

The CyberWire