Tag: decades | SpinSafe

First state-sponsored cyberattack against UK government revealed two decades later

June 30, 2023/in Computer Security

The UK National Cyber Security Centre (NCSC) has revealed details of the first cyberattack perpetrated against the UK government by another state. The rare insight marks the 20^th anniversary of a malware attack on a government department that was identified by GCHQ’s Communications-Electronics Security Group (CESG) as state-sponsored cyber espionage. The response acted as the forerunner to a capability that became the NCSC, which was launched in 2016.

Today, state-sponsored cyber campaigns against other nations are common, particularly during periods of conflict and political unrest. The current Russia-Ukraine conflict is a prime example. Microsoft’s latest nation-state cybersecurity intelligence report revealed a wave of cyberattacks from an actor it calls “Cadet Blizzard” associated with the Russian GRU. These attacks, which began in February 2023, target government agencies and IT service providers in Ukraine. It also revealed “Cadet Blizzard” as a new Russian state-sponsored threat actor that targeted Ukraine before the Russian invasion began, likely in an attempt to weaken infrastructure ahead of the assault.

GCHQ fused intelligence capabilities with cybersecurity function for the first time

In June 2003, cyber experts were called upon to investigate after a government employee detected suspicious activity on one of their workstations, the NCSC wrote in a blog. At the time, there was no government agency set up to deal with cyberattacks, nor was there a dedicated national incident management function. A suspected phishing email was identified, so technical specialists sought help from the CESG – the information assurance arm of GCHQ at that time.

“CESG’s analysis discovered that malware, designed to steal sensitive data and evade anti-virus products, had been installed, raising suspicions about the attacker’s intent and setting in motion a series of actions that was transformative to cyber incident investigations,” the NCSC said. For the first time, GCHQ fused its signals intelligence capabilities with its cybersecurity function to investigate and identify the actor responsible.

The ground-breaking analysis, coupled with international engagement, led CESG…

Source…

How US threatens global internet security through decades of cyber surveillance, attacks

May 13, 2023/in Internet Security

Photo: VCG

Editor’s Note:

A decade has passed since the PRISM scandal was exposed by Edward Snowden and enraged the world. Under the guise of so-called “national interests,” the US government and its related intelligence agencies utilize their technological and first-mover advantages to conduct cyber surveillance and attacks around the world.

Documents leaked from the Pentagon earlier this year offered further proof that the US has extended its hand to almost every corner of the globe. What evil deeds the US has orchestrated and probably continues to do in the cyber world? In this series, the Global Times will closely look into how this veritable “network surveillance empire” gradually damages global cyber security through its intelligence network, which has in turn severely hurt its own reputation and credibility.

Recently leaked Pentagon documents have once again exposed to the world the ugly face of US espionage campaigns orchestrated against other countries. While maintaining the close surveillance of both its “enemies” and allies, the US has extended its evil hand to almost every corner of the globe.

For years, the US has conducted large-scale surveillance and launched cyberattacks targeting overseas governments, companies, and individuals with its technological advantages and vast intelligence network, a severe violation of International Law and the basic norms governing international relations. Worse still, the US paints itself as the victim while perpetrating these villainous acts, by defaming other countries including China with groundless accusations.

Last month, China’s Cybersecurity Industry Alliance (CCIA) released a report titled “Review of Cyberattacks from US Intelligence Agencies – Based on Global Cybersecurity Communities’ Analyses.”

The report details the malicious behavior of the US in conducting long-term cyberattacks and surveillance worldwide, such as attacks against key infrastructure in other countries, indiscriminate cyber theft and monitoring, and implantation of backdoor pollution standards and supply chain sources.

The report lays out evidence that reveals the true nature of the US’ role as the world’s biggest secret information stealer and “hacker…

Source…

OODA Loop – Joseph Menn: Observations From Two Decades Of Tech Journalism

October 1, 2022/in Computer Security

Covering technology issues, and specifically cybersecurity as a journalist is a tough endeavor. Some of these technologies are complex as are the security vulnerabilities often inherent in their deployment and making these topics broadly accessible can be a challenge. Many of the underlying issues touch upon national security and civil liberties creating an interesting nexus that must be highlighted in the proper context. Lastly, it can be a challenge to create trusted relationships with the hacker community, but they provide essential perspectives and leads.

Joseph Menn has established himself as one of the top journalists covering these issues for over two decades at organizations like the Financial Times, Los Angeles Times, Bloomberg, Reuters, and now at the Washington Post. He’s spoken at conferences like Black Hat, Def Con, and RSA. He’s written three books covering topics like Napster, cybercrime, and most recently the infamous hacker group cDC in his book “Cult of the Dead Cow: How the Original Hacking Supergroup Might Just Save the World”.

In the OODAcast, Joseph provides insights from his career as a journalist covering technology and cybersecurity. We explore how he first got involved with Def Con Black Hat and the value of attending the events. Joseph discusses how he first got introduced to the cDC and why he decided to write a book about the group and developed an overall positive outlook in the critical role hackers will play in saving the world.

Official Bio:

Joseph Menn joined The Washington Post in 2022 where he specializes in computer security, hacking, privacy and surveillance. He has perhaps the longest running track record among professional journalists covering cyber security and cyber conflict issues, having over two decades of experience on the topic. Prior to the Washington Post he covered cybersecurity and technology for Reuters, the Financial Times and the Los Angeles Times

His books include “Cult of the Dead Cow: How the Original Hacking Supergroup Might Just Save the World” (2019) and “Fatal System Error: The Hunt for the New Crime Lords who are Bringing Down the Internet” (2010).

Podcast Version:

External Links:

Cult of the Dead Cow book

Source…

Cubans take to the streets for the biggest anti-government protests in decades

July 12, 2021/in Mobile Security

Norges Rodríguez, co-founder of YucaByte, a website on Cuban affairs, said the protests appeared to be the result of a spontaneous “domino effect” from San Antonio de los Baños, 16 miles from Havana, outward. Videos shared on social media from the scene showed Cuban security forces manhandling protesters.

Source…

Tag Archive for: decades

GCHQ fused intelligence capabilities with cybersecurity function for the first time