A threat actor referred to as POISON CARP has targeted senior members of Tibetan groups via WhatsApp for around six months, Citizen Lab reveals. Read More
Digest Article
Topic: Advanced Persistent Threat (APT)
Digest Article
North Korean Government Hackers Sanctioned by U.S. Treasury
The Treasury's Office of Foreign Assets Control announced Friday it is sanctioning three North Korean hacking groups it says are backed by Kim Jong-un's regime, including the well-known Lazarus Group. The office also identifies two sub-groups of Lazarus Group, Bluenoroff and Andariel. Read More
Digest Article
North Korea Took $2 Billion in Cyberattacks to Fund Weapons Program: U.N. Report
North Korea has generated an estimated $2 billion for its weapons of mass destruction programs using "widespread and increasingly sophisticated" cyberattacks to steal from banks and cryptocurrency exchanges, according to a confidential U.N. report seen by Reuters on Monday. Read More
Digest Article
Russian Government Hackers Used Office Technology to Try to Breach Privileged Accounts
Early this spring, Russian government-linked hackers used three popular internet of things devices with weak security to access several Microsoft customers' networks, then tried infiltrating more privileged accounts, researchers announced Monday. Read More
Podcast
VPNFilter Router Attack
In late May 2018, security researchers announced that specific consumer-grade electronic devices had been infected by a type of malware referred to as the VPNFilter. Only a couple of days after this information was disclosed, several agencies of the United States Government issued a warning to users of these compromised devices, strongly advising them of Read More
Digest Article
Yet Another Hacking Group is Targeting Oil and Gas Companies, Dragos Says
The revelation brings to five the number of groups tracked by Dragos that go after the oil and gas sector, highlighting the growing interest shown by well-resourced hackers in probing the industrial control systems (ICS) that underpin energy infrastructure. Oil and gas companies move markets and are strategic national assets, giving cyber operatives plenty Read More
Digest Article
Iranian Hackers Use New Malware in Recent Attacks
The Iran-linked cyber-espionage group OilRig has started using three new malware families in campaigns observed over the past month, FireEye reports. Read More
Digest Article
Thrangrycat Flaw Lets Attackers Plant Persistent Backdoors on Cisco Gear
A vulnerability disclosed today allows hackers to plant persistent backdoors on Cisco gear, even over the Internet, with no physical access to vulnerable devices. Read More
Author / Presenter
Dr. Terry R. Merz, CISSP, CISM
Dr. Merz is a Senior Research Scientist at the Pacific Northwest National Laboratory (PNNL). She holds a Doctorate and Masters in Computer Science, with a concentration in Information Assurance from Colorado Technical University, and a Bachelor of Science in Information Management from the University of Maryland. Dr. Merz has 17+ years of cybersecurity Read More
Journal Article
Game Theoretic Modeling of Advanced Persistent Threat in Internet of Things
Cyber-Physical Systems (CPS) and Internet of Things (IoT) devices such as sensors, wearable devices, robots, drones, and autonomous vehicles facilitate the Intelligence, Surveillance and Reconnaissance to Command and Control and battlefield services. However, the extensive use of information and communication technologies in such systems makes them Read More
