CyberWire Daily

The daily cybersecurity news and analysis industry leaders depend on. Published each weekday, the program also includes interviews with a wide spectrum of experts from industry, academia, and research organizations all over the world.


episode 1604: A Fancy Bear sighting. Why Russian cyberattacks against Ukraine have fallen short of expectations. ToddyCat APT discovered. ICEFALL ICS issues described. Europol collars 9. Say it ain’t so, Dmitry.

Fancy Bear sighted in Ukrainian in-boxes. Why Russian cyberattacks against Ukraine have fallen short of expectations. ToddyCat APT is active in European and Asian networks. ICEFALL ICS vulnerabilities described. CISA issues ICS vulnerability advisories. Europol makes nine collars. Andrea Little Limbago from Interos on The global state of data protection and sharing. Rick Howard speaks with Michelangelo Sidagni from NopSec on the Future of Vulnerability Management. We are shocked, shocked, to hear of corruption in the FSB

For links to all of today's stories check out our CyberWire daily news briefing:

Selected reading.

Ukrainian cybersecurity officials disclose two new hacking campaigns (CyberScoop) 

Ukraine Warns of New Malware Campaign Tied to Russian Hackers (Bloomberg Law) 

Russian govt hackers hit Ukraine with Cobalt Strike, CredoMap malware (BleepingComputer) 

Opinion How Russia’s vaunted cyber capabilities were frustrated in Ukraine (Washington Post) 

New Toddycat APT Targets MS Exchange Servers in Europe and Asia (Infosecurity Magazine) 

Microsoft Exchange servers hacked by new ToddyCat APT gang (BleepingComputer)

OT:ICEFALL: 56 Vulnerabilities Caused by Insecure-by-Design Practices in OT (Forescout)

From Basecamp to Icefall: Secure by Design OT Makes Little Headway (SecurityWeek)

Dozens of vulnerabilities threaten major OT device makers (Cybersecurity Dive) 

CISA releases 6 Industrial Control Systems Advisories (Cybersecurity and Infrastructure Security Agency) 

Phishing gang behind several million euros worth of losses busted in Belgium and the Netherlands (Europol)

Подполковника УФСБ по Самарской области арестовали за кражу криптовалюты у хакера (TASS)