Hunt & Hackett’s Post

Over the past few months, the Quorum Cyber Threat Intelligence team has detected a surge in Distributed Denial-of-Service (#DDoS) attacks launched by the pro-Russia NoName057(16) #hacktivist persona. These sustained efforts have primarily focussed on NATO Member States, as well as the alliance's global partners, such as Japan. In response, we have compiled a Threat Actor Profile including our coverage and tracking of the #hacktivist group that you can now download for free! Key Points: ✔ NoName057(16) is a hacktivist collective that operates in support of the Russian Federation and has been active since July 2022. ✔ The main mode of offensive operation launched by the threat actor group is distributed denial-of-service (DDoS) attacks against various high-profile organisations within North Atlantic Treaty Organisation (NATO) member states ✔ Primary targeted sectors for NoName057(16) DDoS operations include government entities, financial companies, and transport hubs. ✔ The Diamond Model of Intrusion Analysis has been applied for NoName057(16) to map the adversary's operational profile. ✔ NoName057(16) often claims responsibility for their attacks through their Telegram channel and, prior to launching DDoS campaigns, the collective often also discloses its target set on the same channel. Samples of these communications has been included within the report ✔ Verified indicators of compromise (IoCs) and recommended mitigation strategies against NoName057(16) DDoS campaigns have been provided for industry awareness of the threat actor’s operations. Download the Quorum Cyber NoName057(16) Threat Actor Profile for free 👉 #threatintelligence #cybersecurity #incidentresponse #riskintelligence #intelligence #intelligenceanalysis #protectiveintelligence #cyberthreatintelligence #informationsecurity #ddos

The ongoing Russia-Ukraine conflict is transforming cyber warfare, as highlighted in a recent article by Luke Rodeheffer in the Eurasia Daily Monitor. Both nations are ramping up cyberattacks that target infrastructure and civilian lives, blurring the lines between state and non-state actors. You can read the article from here: https://lnkd.in/gC6nu3hs In my most recent blog post, I discussed how we are at a turning point for cyber norms, with the war significantly increasing destructive cyberattacks. - https://lnkd.in/erqrgUQX I believe the incidents covered in Rodeheffer's article strongly underscore these points. For example, Ukraine's call center fraud operations against Russia, reflect the "Cult of the Offensive" scenario I described, where offensive cyber operations thrive in the absence of effective norms and sanctions. Just a few months ago, I published an e-book about Geopolitical Cyber Threat Intelligence, designed to help CTI analysts understand how cyber capabilities are used in broader geopolitical objectives. It's essential reading for anyone interested in analyzing cyber risks in the context of geopolitics. If you haven't bought the book yet, now's your chance! 👉📘🌍 https://lnkd.in/g-i4aqg8 #PredictiveDefense #GeopoliticalRisk #CyberThreatIntelligence #IntelligenceAnalysis #ThreatIntelligence #CyberSecurity #InfoSec #Geopolitics

🚨🚨 Breaking Analysis: Navigating the Cyber Conflict Between Israel 🇮🇱 and Iran 🇮🇷 In the wake of escalating tensions, our team at CybelAngel has meticulously dissected the cyber activities between Israeli and Iranian proxies. Here's a glimpse of what we’ve uncovered: 🔹 Emerging Cyber Groups – Spotlight on three state sponsored groups: Handala, NET Hunter, and Karma, each marking their territory with unique cyber offensives. From data exfiltration to infiltrating high-profile targets, their tactics reveal a sophisticated understanding of cyber warfare. 🔹 Innovative Tactics – Our analysis dives deep into the use of compromised credentials, the establishment of hacktivist communication platforms, and the provision of concrete proof through digital infiltration. 🔹 Geopolitical Impact – How are these cyber engagements shaping the security landscape for not just the primary actors but also their global allies? 🔸 Exclusive Insights – Get the full scoop on the tactics, techniques, and procedures (TTPs) that are shaping tomorrow’s cyber strategies. This is just the tip of the iceberg. 📩 Interested in the complete analysis? Contact us directly at marketing@cybelangel.com to gain access to the full research. #CyberSecurity #GeopoliticalTensions #ThreatIntel #CyberThreatIntelligence

The perfect photo! ODNI Unveils Strategy To Combat Cyber Intelligence Threats August 8, 2024, Signal AFCEA https://lnkd.in/emqkAx7Z The Office of the Director of National Intelligence (ODNI) unveiled its National Counterintelligence Strategy, https://lnkd.in/eK8QwdGd, presenting three main pillars: 1.     Outmaneuver and constrain foreign intelligence entities: focusing on detecting, understanding and countering foreign intelligence threats, including cyber activities, through proactive and innovative measures. 2.     Protect America’s strategic advantages: aiming to safeguard critical technology, economic security, democracy and infrastructure by countering foreign influence, espionage and supply chain vulnerabilities. 3.     Invest in the future: emphasizing capabilities buildup, partnerships and resilience of the counterintelligence community to address current and future threats effectively.

Secureworks is hosting an insightful webinar on December 18, 2024, by 4.00pm GMT, titled "An A to Z of Dominance: Re-Examining Chinese Cyber Threats in the Age of the Xictionary." This session will provide an in-depth exploration of: China's Cyber Intrusion Structures: Unveiling the key entities driving China's cyber operations. The Evolution of Chinese Intelligence Collection Operations: Analysing how China's intelligence strategies have adapted over time. Organisational Risk Assessment: Assessing whether your organisation might be a target for Chinese espionage. Here is the link to register 👇🏾 https://lnkd.in/gt7MVYJg

Let's join forces to fortify our defenses against nation-state cyber threats. By investing in robust cybersecurity measures and promoting international cooperation, we can create a safer digital future for all. Together, we can hold state-sponsored actors accountable for their actions and safeguard the integrity of our online world. Join me in this mission for a secure cyberspace. #Cybersecurity #InternationalCooperation #DigitalFuture

A Video worth watching with Jan Easterly the director of CISA. Discussing the cyber threat from Nation States. Nation state threat actors have been compromising U.S technology companies for years. Nation states are a threat tactics have changed over the years. They are positioned to do disruptive and destructive operations in the U.S. Burrowing deep into critical infrastructure to launch disruptive and destructive attacks in the event of a crisis in the Taiwan states. "You could expect pipelines blowing up, trains getting derailed, communications severed, water polluted." Cyber is an asymmetric risk, there is no 100% security and 80% security is difficult to achieve. It is important to ensure there are defensive layers across the digitial value chain, from communications entering a nation through to the use of data within CNI sector organisations. Thaddeus Dziekanowski Brian D. McCarthy Faisal Khan Veritas GRC #cybersecurity #cyberriskmanagement #cyberregulation

China's cyber espionage tactics have evolved significantly, posing an escalating threat to U.S. critical infrastructure. The Cybersecurity and Infrastructure Security Agency (CISA) identifies China as the most active and persistent cyber threat to the United States. Recent operations, such as the "Salt Typhoon" campaign, have targeted telecommunications networks, compromising sensitive data and communications. These sophisticated attacks underscore the urgent need for robust cybersecurity measures to safeguard national security.

🛡️Fortifying the Future🛡️ The National Counterintelligence and Security Center (NCSC) recently updated the National Counterintelligence Strategy to refine counterintelligence priorities in response to both current and anticipated threats. 🤝 This updated strategy aims to synchronize counterintelligence efforts across various sectors, including federal, state, local, and private sectors, aligning them with U.S. National Security objectives. The strategy emphasizes a framework for strategic planning, resource allocation, and evaluation to enhance key counterintelligence mission areas, communicated broadly to ensure comprehensive engagement and awareness. 📝 The strategy is structured around three main pillars: outmaneuvering foreign intelligence entities (FIEs), protecting U.S. strategic advantages, and investing in future counterintelligence capabilities. Supported by nine strategic goals, these pillars focus on detecting and countering foreign intelligence activities, protecting against foreign intelligence targeting and collection, and enhancing cybersecurity and critical infrastructure resilience. This framework underlines the need for ongoing vigilance, collaboration, and innovation to address the complex and evolving threats posed by foreign adversaries in the realm of intelligence and cybersecurity. 👇 Click the link below to read all the details about this latest update, then drop your thoughts on the future of national counterintelligence in the comments below! ❓ What is the most pressing threat we face currently? ❓ What future threats should we begin the preparation to face? #NCSC #counterintelligence #nationalsecurity #FIEs #foreignthreats #foreignadversaries #criticalinfrastructure #cyberthreats #cybersecurity #framework #riskmanagement https://buff.ly/3AdVvwz