IT Army of Ukraine, KillNet, XakNet, Roe v Wade, DragonForce Malaysia, OpRussia, Russian Botnets



Threat Researchers go live on Thursday, June 30 at 4pm Paris, 10am New York, 7am Los Angeles, 11pm Tokyo. Join us as we go through recent and notable security events. Follow us on Twitter: https://twitter.com/RadwareResearch Follow us on Telegram: https://t.me/RadwareResearch Join and chat with us on Telegram: https://t.me/RadwareResearchChat Links & References DragonForce Malaysia - OpsPatuk https://radware.com/security/threat-advisories-and-attack-reports/dragonforce-malaysia-opspatuk-opsindia/ https://www.theregister.com/2022/06/15/dragonforce_malaysia_india_attacks/  Anonymous - OpRussia https://twitter.com/PucksReturn/status/1535783582530035712 IT Army DDoS Delays Putin's Speech https://www.zaks.ru/new/archive/view/227493 https://www.darkreading.com/attacks-breaches/ddos-attacks-delay-putin-speech-russian-economic-forum https://twitter.com/cyber_etc/status/1537792319650467842 IT Army Hiring DDoS Specialists https://itarmy.com.ua/vacancies/ DDoS Attacks in Lithuania https://www.aljazeera.com/news/2022/6/24/achilles-heel-of-nato-tensions-amid-kaliningrads-transit-ban https://english.pravda.ru/news/world/152578-kill_net/ https://cybernews.com/cyber-war/killnet-hits-lithuania-over-eu-sanctions-affecting-kaliningrad/ https://lrv.lt/en/news/intense-ddos-attacks-targeted-several-companies-and-institutions-in-lithuania Anonymous - OpF###Killnet https://twitter.com/OpFuckKillnet DDoS Attacks in Norway https://therecord.media/norway-accuses-pro-russian-hackers-of-launching-wave-of-ddos-attacks/?utm_source=pocket_mylist Mandiant Finds Possible Link Between Kremlin, Pro-Russian 'Hacktivists' https://www.bloomberg.com/news/articles/2022-06-29/mandiant-finds-possible-link-between-kremlin-pro-russian-hacktivists Ukraine Accused Russia of Hacking Non-Military Targets https://www.atlanticcouncil.org/blogs/ukrainealert/vladimir-putins-ukraine-invasion-is-the-worlds-first-full-scale-cyberwar/ US Cyber Command Conducted Offensive Ops https://news.sky.com/story/us-military-hackers-conducting-offensive-operations-in-support-of-ukraine-says-head-of-cyber-command-12625139 https://zetter.substack.com/p/what-it-means-that-the-us-is-conducting  Cyber Defense Report IT Army https://css.ethz.ch/content/dam/ethz/special-interest/gess/cis/center-for-securities-studies/pdfs/Cyber-Reports-2022-06-IT-Army-of-Ukraine.pdf Cyber Predictions https://www.enterprisesecuritytech.com/post/2022-cyber-predictions-supply-chain-crisis-and-remote-workforce-lead-to-new-security-challenges CISA Alert PRC State-Sponsored Cyber Actors Exploit Network Providers and Devices https://www.cisa.gov/uscert/ncas/current-activity/2022/06/07/peoples-republic-china-state-sponsored-cyber-actors-exploit Single Beaver causes disruption to internet access https://twitter.com/netblocks/status/1536416663385546756?s=20&t=HlSnlFIuOgPqiyhNpfzp4Q Panchan P2P Botnet https://www.akamai.com/blog/security/new-p2p-botnet-panchan RSOCKS Takedown https://www.justice.gov/usao-sdca/pr/russian-botnet-disrupted-international-cyber-operation NSA Concerned That Botnets Could Plague 2022 Midterms https://therecord.media/ransomware-botnets-could-plague-2022-midterms-nsa-cyber-director-says/ WeLeakInfo Domains Seized https://www.justice.gov/usao-dc/pr/weleakinfoto-and-related-domain-names-seized Operation First Light 2022 https://www.bleepingcomputer.com/news/security/interpol-seizes-50-million-arrests-2000-social-engineers/ SSNDOB Seized https://www.justice.gov/usao-mdfl/pr/ssndob-marketplace-series-websites-listed-more-20-million-social-security-numbers-sale DownThem Sentenced https://krebsonsecurity.com/2022/06/downthem-ddos-for-hire-boss-gets-2-years-in-prison/ Paige Thompson Convicted https://www.nytimes.com/2022/06/17/technology/paige-thompson-capital-one-hack.html Mariposa Botnet Retrial https://english.sta.si/3042908/retrial-ordered-in-mariposa-botnet-case-after-coder-serves-prison-sentence Dominion Voting Systems https://www.cisa.gov/uscert/ics/advisories/icsa-22-154-01 https://www.cisa.gov/uscert/ncas/current-activity/2022/06/03/cisa-releases-security-advisory-dominion-voting-systems-democracy  15 vulnerabilities in Siemens https://therecord.media/15-vulnerabilities-discovered-in-siemens-industrial-control-management-system/ CVE-2022-26134: Atlassian Confluence https://github.com/crowsec-edtech/cve-2022-26134 https://www.volexity.com/blog/2022/06/02/zero-day-exploitation-of-atlassian-confluence/ https://www.reshiftsecurity.com/ognl-injection-primer-for-java-developers/ https://confluence.atlassian.com/doc/confluence-security-advisory-2022-06-02-1130377146.html https://www.lacework.com/blog/kinsing-dark-iot-botnet-among-threats-targeting-cve-2022-26134/ CVE-2022-29499: Mitel VoIP 0day https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-22-0002 https://nvd.nist.gov/vuln/detail/CVE-2022-29499 CVE-2022-29225: Denial-of-Service Vulnerability in Envoy Proxy https://jfrog.com/blog/denial-of-service-vulnerability-in-envoy-proxy-cve-2022-29225/


Comments