What’s In Store for Nation State Cyber Activity in 2022?

As 2021 winds down, online cybersecurity journals and cyber experts are providing their cyber threat forecasts for the new year. Ransomware, cloud security, supply chain attacks, and of course critical infrastructure are common themes in ...

Analysis

Iran Joins the Cyber Sovereignty Debate

In December 2021, Iran’s Ambassador to the United Nations issued a formal statement rejecting Iran’s use of force in cyberspace. In the statement, the Ambassador acknowledged Iran’s victimization by cyber-attacks, underscoring the 2010 Stuxnet ...

Analysis

Security Directives Give Needed Cybersecurity Attention to Rail Services

The Transportation Security Administration (TSA) issued two Directives focusing on the cybersecurity of both passenger and freight railroads. These directives are designed to help TSA and CISA feed technical intelligence such as indicators of ...

Analysis

Iran-Israel Cyber Conflict Shows Leadership Needed to Curb Critical and Civilian Infrastructure Targeting

Over the course of several months, Israel is suspected of perpetrating several attacks that have disrupted key services in Iran. Not one to play victim, Iran has been retaliating in its own way, targeting ...

Analysis

China’s Continued Rise Hinges on Information Control

In November 2021, the U.S.-China Economic Security Review Commission published its annual report to Congress. The Commission addressed several key areas in the report including the Chinese Communist Party’s (CCP) ambitions in the wake of ...

Analysis

Social Media Platforms Operate More As Independent States, Not Their Proxies

An independent watchdog journalism organization recently published a report that alleged that a team within Facebook attempted to influence Nicaragua’s presidential election. Facebook deleted the accounts of the country’s “top news outlets, journalists and ...

Analysis

Ransomware Hoax Spins Disinformation in a New Direction

On August 22, 2021, the “new” ransomware group Groove emerged on a nascent but fairly exclusive Russian-language DarkNet cybercrime forum. Groove was around for two years focusing their activities on financially motivated industrial espionage. ...

Analysis

Global IT Supply Chain Security – The U.S. Needs to Step Up Its Game

Microsoft officials have warned that Russia’s intelligence apparatus has been engaged in another campaign to gain unauthorized access into thousands of U.S. government, corporate, and think tank networks. The ongoing cyber-espionage campaign appears to be ...

Analysis

Can Moscow Break Biden’s Full-Court Press Against Russian Cyber Criminal Malfeasance?

Attacks against supply chain, energy, water, fuel, and food, many of which are believed to have been orchestrated by Russian nationals, have underscored the need for the international community to try to find practical ways ...

Analysis

U.S. Treasury’s Response to Ransomware Gangs: Punish the Attackers and the Victims

In late September 2021, the U.S. Department of Treasury (DoT) levied sanctions against the Russian cryptocurrency exchange Suex for the laundering of transactions from at least eight ransomware groups. This latest move to “follow the ...

Analysis

Emilio Iasiello