Chinese Company Outs U.S. Cyber Espionage and Sends a Message

In late February 2022, Qi An Pangu Lab, a Chinese cybersecurity company, “declassified” technical details of a cyber espionage campaign allegedly perpetrated by an elite hacking group working under the U.S. National Security Agency (NSA). ...

Analysis

Durham’s Filing: Lessons Here On Insider Threats at the Highest Level

The recent John Durham filing alleges that a tech executive used his previous company’s access “to nonpublic domain name system (DNS) data” in order to analyze potential links between the Trump organization and a Russian ...

Analysis

Will China Replicate Russia’s Cyber Offensives in a Taiwan Reunification?

The current situation in the Ukraine has garnered the world’s attention with stakeholders watching attentively as the crisis unfolds. Such regional hotspots have the potential of spilling over into neighboring countries and pulling in governments ...

Analysis

Front Companies Muddy Already Dark Waters of Hostile Cyber Activity

Recently, the Federal Bureau of Investigation (FBI) published an industry advisory outlining the tactics, techniques, and procedures of Emennet Pasargad, an Iran-based cybersecurity company supporting government organizations to help them defends against this company’s potential ...

Analysis

Renewed Interest in Hack-Backs Is a Step in the Wrong Direction

In mid-2021, members of the Senate Finance Committee introduced Bill S2292, which directed the Department of Homeland Security (DHS) to study the potential pros and cons of allowing private companies to hack back against perpetrators ...

Analysis

What’s Really Behind WhisperGate Attacks Against Ukraine?

Recently, Ukraine suffered two sets of cyber-attacks in response to the geopolitical situation with Russia. The second round of attacks executed WhisperGate, a destructive wiper malware disguised as ransomware, that impacted dozens of Ukrainian ...

Analysis

Are Initial Access Brokers the Next Crime Target for Governments?

Initial Access Brokers (IAB) are poised to become a force in 2022, due to a unique skill set that positions them as a valuable commodity for the deployment of hostile cybercrime activity. IABs serve as ...

Analysis

Social Media Platforms Remain a Force Multiplier for Information-Based Threats

A recent report published by The Washington Post revealed how China is aggressively using advanced software to surveil popular social media sites such as Twitter and Facebook, among others, in order to monitor the activities ...

Analysis

Looking at IP Theft as a Cyber Criminal Offering

A recent article suggests that legitimate businesses have lost the fight against cyber-crime, applied defensives and cyber security strategies have ultimately failed to secure networks, and prevent the loss of sensitive information. The piece goes ...

Analysis

What’s In Store for Nation State Cyber Activity in 2022?

As 2021 winds down, online cybersecurity journals and cyber experts are providing their cyber threat forecasts for the new year. Ransomware, cloud security, supply chain attacks, and of course critical infrastructure are common themes in ...

Analysis

Emilio Iasiello