A nation-state threat actor (probably Russian) targets industrial systems. A quick look at the GRU's earlier attempt against Ukraine's power grid. The difficulty of recovering from a credible threat to industrial systems. Lazarus Group resumes Operation Dream Job. OldGremlin speaks Russian, and it holds Russian companies for ransom. Carole Theriault looks at research on lie detection. Josh Ray from Accenture drops some SBOMs. And another look at the privateers in the Conti gang.
For links to all of today's stories check out our CyberWire daily news briefing:
https://thecyberwire.com/newsletters/daily-briefing/11/72
Selected reading.
Ukraine Update: U.S., EU to Send More Arms; Warship Damaged (Bloomberg)
INCONTROLLER: New State-Sponsored Cyber Attack Tools Target Multiple Industrial Control Systems (Mandiant).
PIPEDREAM: CHERNOVITE's Emerging Malware Targeting Industrial Environments | Dragos (Dragos)
APT Cyber Tools Targeting ICS/SCADA Devices (CISA)
U.S. warns newly discovered malware could sabotage energy plants (Washington Post)
Industroyer2 Targets Ukraine’s Electric Grid: Here’s How Companies Can Stay Protected and Resilient (Nozomi Networks)
Wind Turbine Giant Nordex Hit By Cyber-Attack (Infosecurity Magazine)
Lazarus Targets Chemical Sector (Symantec)
Old Gremlins, new methods (Group-IB)
Learn more about your ad choices. Visit megaphone.fm/adchoices