20 April 2022

Security News This Week: North Korea’s Lazarus Group Was Behind $540 Million Ronin Theft


EARLY THIS WEEK, the Ukrainian Computer Emergency Response Team and Slovakian cybersecurity firm ESET warned that Russia's notorious GRU Sandworm hackers had targeted high-voltage electrical substations in Ukraine using a variation of their blackout-inducing Industroyer malware, also known as Crash Override. Days later, the US Department of Energy, the Cybersecurity and Infrastructure Security Agency, the NSA, and the FBI jointly released an advisory about a new industrial control-system hacking tool set of unspecified provenance, dubbed Pipedream, that seemingly hasn't been deployed against targets but that the operators of industrial systems need to proactively block.

No comments: