Vulkan Playbook Leak Exposes Russia's Plans for Worldwide Cyberwar

Russian intelligence services, together with a Moscow-based IT company, are planning worldwide hacking operations that will also enable attacks on critical infrastructure facilities. [TechWeb]( Follow Dark Reading: [RSS]( April 03, 2023 LATEST SECURITY NEWS & COMMENTARY [Vulkan Playbook Leak Exposes Russia's Plans for Worldwide Cyberwar]( Russian intelligence services, together with a Moscow-based IT company, are planning worldwide hacking operations that will also enable attacks on critical infrastructure facilities. [Post-Quantum Satellite Protection Rockets Towards Reality]( A successful multi-orbit cryptography test beamed quantum-agile data up to two different satellites and back down to Earth. [Pro-Islam 'Anonymous Sudan' Hacktivists Likely a Front for Russia's Killnet Operation]( "Anonymous Sudan" has been claiming that its DDoS attacks are in retaliation for anti-Islamic activities, but at least one security vendor is suspicious about its true motives. [BEC Fraudsters Expand to Snatch Real-World Goods in Commodities Twist]( Business email compromise scams are moving beyond just stealing cash, with some threat actors fooling companies into sending goods and materials on credit, and then skipping out on payment. [US Space Force Requests $700M for Cybersecurity Blast Off]( Russia's invasion of Ukraine spurs Space Force to seek astronomical investments in cybersecurity. [Is Decentralized Identity About to Reach an Inflection Point?]( Decentralized identity products are increasingly projected to be introduced to the market in the next couple of years. [What CISOs Can Do to Build Trust & Fight Fraud in the Metaverse]( Until a degree of confidence is established, a platform's credibility can be eroded by scammers and unsuspecting gamers who fall victim to their attacks. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Automatic Updates Deliver Malicious 3CX 'Upgrades' to Enterprises]( In a SolarWinds-like attack, compromised, digitally signed versions of 3CX DesktopApp are landing on user systems via the vendor's update mechanism. [Stop Blaming the End User for Security Risk]( Don't count on securing end users for system security. Instead, focus on better securing the systems — make them closed by default and build with a security-first approach. [Google: Commercial Spyware Used by Governments Laden With Zero-Day Exploits]( Google TAG researchers reveal two campaigns against iOS, Android, and Chrome users that demonstrate how the commercial surveillance market is thriving despite government-imposed limits. [MORE]( EDITORS' CHOICE [BEC Fraudsters Expand to Snatch Real-World Goods in Commodities Twist]( Business email compromise scams are moving beyond just stealing cash, with some threat actors fooling companies into sending goods and materials on credit, and then skipping out on payment. LATEST FROM THE EDGE [Organizations Consider Self-Insurance to Manage Risk]( Risk reassessment is shaking up the cybersecurity insurance market, leading some organizations to consider their options, including self-insurance. LATEST FROM DR TECHNOLOGY [Adaptive Access Technologies Gaining Traction for Security, Agility]( With companies pushing to adopt zero-trust frameworks, adaptive authentication and access — once languishing — looks finally ready to move out of the doldrums. WEBINARS - [How to Launch a Threat Hunting Program]( Security teams need to be more proactive about finding threats before they can cause too much damage. How do these enterprises build threat hunting programs? What stakeholders needs to be involved? What skills are necessary for the threat hunting team? ... - [Managing Identity in the Cloud]( Shifting identity management and provisioning to the cloud helps streamline these operations. It also brings a new set of challenges, including integrating and managing user identities, privileges, and other attributes used in various on-premise and cloud systems, especially if your ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [The Essential Guide to Secure Web Gateway]( - [The Relationship Between Security Maturity and Business Enablement]( - [How to Simplify Security with a Cybersecurity Mesh Architecture]( - [Empower Digital Transformation by Protecting Converged IT and OT]( - [Cloud Journey Migration Stage: Adaptive Cloud Security]( - [Cloud Journey Consideration Stage: 2022 Cloud Security Report]( - [Unit 42 Retainer]( [View More White Papers >>]( FEATURED REPORTS - [Shoring Up the Software Supply Chain Across Enterprise Applications]( Supply chain security attacks are growing at an alarming pace, and things are going to keep getting worse until DevSecOps teams get on the same page. A little help from the feds could also be welcome Modern-day software development depends ... - [The Promise and Reality of Cloud Security]( Cloud security has been part of the cybersecurity conversation for years but has been on the sidelines for most enterprises. The shift to remote work during the COVID-19 pandemic and digital transformation projects have moved cloud infrastructure front-and-center as enterprises ... - [10 Hot Talks From Black Hat USA 2022]( Black Hat USA brings together cutting-edge research, new security tools, and sophisticated defensive techniques over the course of two days. There were some recurring themes across the sessions, and many of these topics are going to be important issues to ... [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [Socura Launches Managed SASE (MSASE) Service]( [DataDome Closes $42M in Series C Funding to Advance the Fight Against Bot-Driven Cyberattacks and Fraud]( [Prancer Announces Integration With ChatGPT for Enhanced Security Assessments]( [BigID's Data Security Posture Management Solution Integrates With SOAR Platforms]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [The 10 Most Impactful Types of Vulnerabilities for Enterprises Today]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)