Cybersecurity
Suspected pro-Iran hacker group tied to Stryker cyberattack
“We are currently experiencing a global network disruption affecting the Windows environment. Our teams are actively working to restore systems and operations. Stryker has business continuity measures in place, and we’re committed to serve our customers,” the company said in a statement.
Russia-linked hackers appear on Iran war’s cyber front, but their impact is murky
Some experts question the significance of pro-Russia “hacktivist” groups.
Trump’s new cyber strategy details more offensive response to cyber threats
“Unlike other Administrations, the Trump Administration will not tinker at the edges and apply partial measures and ambiguous strategies that neglect the growing number and severity of cyber threats,” the strategy said.
FBI is probing ‘suspicious’ breach into bureau networks
Initial reporting tied the incident to the FBI’s wiretap systems, which are used to lawfully surveil suspected criminals and spies.
Iran-linked hacktivists could target governments, experts warn
State and local governments and some crucial technology infrastructure are among the key retaliatory targets as hostilities escalate in the Middle East.
Potential US-built hacking tools obtained by foreign spies and cybercriminals, research says
iVerify has described the activity as the “first known mass iOS attack” campaign of its kind. Google said fragments of the exploit first appeared last February, with ties to an unnamed “customer of a surveillance company.”
How Cyber Command contributed to Operation Epic Fury against Iran
The digital combatant command was among the “first movers” in the operation against Iran, Joint Chiefs Chair Dan Caine said.
Intelligence firms watch for uptick in Iran cyber activity after US, Israel strikes
Analysts say organizations should remain vigilant, though early indications show Iran-linked hackers have overstated their success.
Fake DOD memo about ‘compromised’ apps shows swift spread of deceptive messaging
The message, widely circulated as the U.S. bombed Iran, shows how quickly unverified information can reach troops.
Hackers are exploiting exposed Cisco products, Five Eyes intelligence agencies say
A Cisco threat intelligence report calls the cyberintruders “highly sophisticated” but stops short of naming any affiliation with a foreign nation.
Treasury sanctions Russian firm said to have stolen and sold US cyber tools
The sanctions coincide with an FBI investigation into Peter Williams, a former employee of U.S. defense contractor L3Harris who pleaded guilty to selling cyber exploits to a Russian entity.
Exclusive
Energy Department patched flaws enabling email impersonation in critical minerals system
The vulnerabilities could have let malicious users masquerade as agency officials, potentially misleading researchers, contractors and others.
Featured eBooks
Chinese telecom hackers likely holding stolen data ‘in perpetuity’ for later attempts, FBI official says
“I think it’s important to say we do not know exactly what the [People’s Republic of China] intends to do with a lot of this information,” said FBI cyber official Michael Machtinger.
US cyber responses will be ‘linked to adversary actions’ and involve industry coordination, official says
That dynamic will be outlined in a national cyber strategy, which will be released “soon,” said ONCD’s Alexandra Seymour.
New Treasury initiative targets improved cyber risk management for AI tools
The department says it plans to release deliverables from a public-private working group in phases throughout the rest of February.
CISA threat-hunting leader to depart for private sector role
Jermaine Roebuck announced his voluntary departure last week. The cyber agency has already lost a third of its workforce in the past year.
CISA to furlough most of its workforce under impending DHS shutdown
The shutdown would also slow ongoing revamps of a major cyber incident reporting rule that was signed into law in 2022, acting director Madhu Gottumukkala said this week.
CISA orders agencies to patch and replace end-of-life devices, citing active exploitation
The directive gives agencies three months to identify unsupported edge devices, a year to begin removing them and 18 months to eliminate them entirely.
Domestic surveillance fears loom over Congress debate to renew spying power
Lawmakers’ concerns about immigration enforcement and Fourth Amendment compliance are weighing on the reauthorization fight for Section 702 of FISA, even as the FBI privately warns against letting the foreign spying law lapse.
Senator says AT&T and Verizon blocked release of Salt Typhoon security reports
“AT&T and Verizon apparently intervened” to block a major cyber intelligence firm from sending documentation about the telecom hackers, Sen. Maria Cantwell wrote in a letter.
