Threat Researchers go live on Thursday, June 30 at 4pm Paris, 10am New York, 7am Los Angeles, 11pm Tokyo. Join us as we go through recent and notable security events.
Follow us on Twitter: https://twitter.com/RadwareResearch
Follow us on Telegram: https://t.me/RadwareResearch
Join and chat with us on Telegram: https://t.me/RadwareResearchChat
Links & References
DragonForce Malaysia - OpsPatuk
https://radware.com/security/threat-advisories-and-attack-reports/dragonforce-malaysia-opspatuk-opsindia/
https://www.theregister.com/2022/06/15/dragonforce_malaysia_india_attacks/
Anonymous - OpRussia
https://twitter.com/PucksReturn/status/1535783582530035712
IT Army DDoS Delays Putin's Speech
https://www.zaks.ru/new/archive/view/227493
https://www.darkreading.com/attacks-breaches/ddos-attacks-delay-putin-speech-russian-economic-forum
https://twitter.com/cyber_etc/status/1537792319650467842
IT Army Hiring DDoS Specialists
https://itarmy.com.ua/vacancies/
DDoS Attacks in Lithuania
https://www.aljazeera.com/news/2022/6/24/achilles-heel-of-nato-tensions-amid-kaliningrads-transit-ban
https://english.pravda.ru/news/world/152578-kill_net/
https://cybernews.com/cyber-war/killnet-hits-lithuania-over-eu-sanctions-affecting-kaliningrad/
https://lrv.lt/en/news/intense-ddos-attacks-targeted-several-companies-and-institutions-in-lithuania
Anonymous - OpF###Killnet
https://twitter.com/OpFuckKillnet
DDoS Attacks in Norway
https://therecord.media/norway-accuses-pro-russian-hackers-of-launching-wave-of-ddos-attacks/?utm_source=pocket_mylist
Mandiant Finds Possible Link Between Kremlin, Pro-Russian 'Hacktivists'
https://www.bloomberg.com/news/articles/2022-06-29/mandiant-finds-possible-link-between-kremlin-pro-russian-hacktivists
Ukraine Accused Russia of Hacking Non-Military Targets
https://www.atlanticcouncil.org/blogs/ukrainealert/vladimir-putins-ukraine-invasion-is-the-worlds-first-full-scale-cyberwar/
US Cyber Command Conducted Offensive Ops
https://news.sky.com/story/us-military-hackers-conducting-offensive-operations-in-support-of-ukraine-says-head-of-cyber-command-12625139
https://zetter.substack.com/p/what-it-means-that-the-us-is-conducting
Cyber Defense Report IT Army
https://css.ethz.ch/content/dam/ethz/special-interest/gess/cis/center-for-securities-studies/pdfs/Cyber-Reports-2022-06-IT-Army-of-Ukraine.pdf
Cyber Predictions
https://www.enterprisesecuritytech.com/post/2022-cyber-predictions-supply-chain-crisis-and-remote-workforce-lead-to-new-security-challenges
CISA Alert PRC State-Sponsored Cyber Actors Exploit Network Providers and Devices
https://www.cisa.gov/uscert/ncas/current-activity/2022/06/07/peoples-republic-china-state-sponsored-cyber-actors-exploit
Single Beaver causes disruption to internet access
https://twitter.com/netblocks/status/1536416663385546756?s=20&t=HlSnlFIuOgPqiyhNpfzp4Q
Panchan P2P Botnet
https://www.akamai.com/blog/security/new-p2p-botnet-panchan
RSOCKS Takedown
https://www.justice.gov/usao-sdca/pr/russian-botnet-disrupted-international-cyber-operation
NSA Concerned That Botnets Could Plague 2022 Midterms
https://therecord.media/ransomware-botnets-could-plague-2022-midterms-nsa-cyber-director-says/
WeLeakInfo Domains Seized
https://www.justice.gov/usao-dc/pr/weleakinfoto-and-related-domain-names-seized
Operation First Light 2022
https://www.bleepingcomputer.com/news/security/interpol-seizes-50-million-arrests-2000-social-engineers/
SSNDOB Seized
https://www.justice.gov/usao-mdfl/pr/ssndob-marketplace-series-websites-listed-more-20-million-social-security-numbers-sale
DownThem Sentenced
https://krebsonsecurity.com/2022/06/downthem-ddos-for-hire-boss-gets-2-years-in-prison/
Paige Thompson Convicted
https://www.nytimes.com/2022/06/17/technology/paige-thompson-capital-one-hack.html
Mariposa Botnet Retrial
https://english.sta.si/3042908/retrial-ordered-in-mariposa-botnet-case-after-coder-serves-prison-sentence
Dominion Voting Systems
https://www.cisa.gov/uscert/ics/advisories/icsa-22-154-01
https://www.cisa.gov/uscert/ncas/current-activity/2022/06/03/cisa-releases-security-advisory-dominion-voting-systems-democracy
15 vulnerabilities in Siemens
https://therecord.media/15-vulnerabilities-discovered-in-siemens-industrial-control-management-system/
CVE-2022-26134: Atlassian Confluence
https://github.com/crowsec-edtech/cve-2022-26134
https://www.volexity.com/blog/2022/06/02/zero-day-exploitation-of-atlassian-confluence/
https://www.reshiftsecurity.com/ognl-injection-primer-for-java-developers/
https://confluence.atlassian.com/doc/confluence-security-advisory-2022-06-02-1130377146.html
https://www.lacework.com/blog/kinsing-dark-iot-botnet-among-threats-targeting-cve-2022-26134/
CVE-2022-29499: Mitel VoIP 0day
https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-22-0002
https://nvd.nist.gov/vuln/detail/CVE-2022-29499
CVE-2022-29225: Denial-of-Service Vulnerability in Envoy Proxy
https://jfrog.com/blog/denial-of-service-vulnerability-in-envoy-proxy-cve-2022-29225/
Follow us on Twitter: https://twitter.com/RadwareResearch
Follow us on Telegram: https://t.me/RadwareResearch
Join and chat with us on Telegram: https://t.me/RadwareResearchChat
Links & References
DragonForce Malaysia - OpsPatuk
https://radware.com/security/threat-advisories-and-attack-reports/dragonforce-malaysia-opspatuk-opsindia/
https://www.theregister.com/2022/06/15/dragonforce_malaysia_india_attacks/
Anonymous - OpRussia
https://twitter.com/PucksReturn/status/1535783582530035712
IT Army DDoS Delays Putin's Speech
https://www.zaks.ru/new/archive/view/227493
https://www.darkreading.com/attacks-breaches/ddos-attacks-delay-putin-speech-russian-economic-forum
https://twitter.com/cyber_etc/status/1537792319650467842
IT Army Hiring DDoS Specialists
https://itarmy.com.ua/vacancies/
DDoS Attacks in Lithuania
https://www.aljazeera.com/news/2022/6/24/achilles-heel-of-nato-tensions-amid-kaliningrads-transit-ban
https://english.pravda.ru/news/world/152578-kill_net/
https://cybernews.com/cyber-war/killnet-hits-lithuania-over-eu-sanctions-affecting-kaliningrad/
https://lrv.lt/en/news/intense-ddos-attacks-targeted-several-companies-and-institutions-in-lithuania
Anonymous - OpF###Killnet
https://twitter.com/OpFuckKillnet
DDoS Attacks in Norway
https://therecord.media/norway-accuses-pro-russian-hackers-of-launching-wave-of-ddos-attacks/?utm_source=pocket_mylist
Mandiant Finds Possible Link Between Kremlin, Pro-Russian 'Hacktivists'
https://www.bloomberg.com/news/articles/2022-06-29/mandiant-finds-possible-link-between-kremlin-pro-russian-hacktivists
Ukraine Accused Russia of Hacking Non-Military Targets
https://www.atlanticcouncil.org/blogs/ukrainealert/vladimir-putins-ukraine-invasion-is-the-worlds-first-full-scale-cyberwar/
US Cyber Command Conducted Offensive Ops
https://news.sky.com/story/us-military-hackers-conducting-offensive-operations-in-support-of-ukraine-says-head-of-cyber-command-12625139
https://zetter.substack.com/p/what-it-means-that-the-us-is-conducting
Cyber Defense Report IT Army
https://css.ethz.ch/content/dam/ethz/special-interest/gess/cis/center-for-securities-studies/pdfs/Cyber-Reports-2022-06-IT-Army-of-Ukraine.pdf
Cyber Predictions
https://www.enterprisesecuritytech.com/post/2022-cyber-predictions-supply-chain-crisis-and-remote-workforce-lead-to-new-security-challenges
CISA Alert PRC State-Sponsored Cyber Actors Exploit Network Providers and Devices
https://www.cisa.gov/uscert/ncas/current-activity/2022/06/07/peoples-republic-china-state-sponsored-cyber-actors-exploit
Single Beaver causes disruption to internet access
https://twitter.com/netblocks/status/1536416663385546756?s=20&t=HlSnlFIuOgPqiyhNpfzp4Q
Panchan P2P Botnet
https://www.akamai.com/blog/security/new-p2p-botnet-panchan
RSOCKS Takedown
https://www.justice.gov/usao-sdca/pr/russian-botnet-disrupted-international-cyber-operation
NSA Concerned That Botnets Could Plague 2022 Midterms
https://therecord.media/ransomware-botnets-could-plague-2022-midterms-nsa-cyber-director-says/
WeLeakInfo Domains Seized
https://www.justice.gov/usao-dc/pr/weleakinfoto-and-related-domain-names-seized
Operation First Light 2022
https://www.bleepingcomputer.com/news/security/interpol-seizes-50-million-arrests-2000-social-engineers/
SSNDOB Seized
https://www.justice.gov/usao-mdfl/pr/ssndob-marketplace-series-websites-listed-more-20-million-social-security-numbers-sale
DownThem Sentenced
https://krebsonsecurity.com/2022/06/downthem-ddos-for-hire-boss-gets-2-years-in-prison/
Paige Thompson Convicted
https://www.nytimes.com/2022/06/17/technology/paige-thompson-capital-one-hack.html
Mariposa Botnet Retrial
https://english.sta.si/3042908/retrial-ordered-in-mariposa-botnet-case-after-coder-serves-prison-sentence
Dominion Voting Systems
https://www.cisa.gov/uscert/ics/advisories/icsa-22-154-01
https://www.cisa.gov/uscert/ncas/current-activity/2022/06/03/cisa-releases-security-advisory-dominion-voting-systems-democracy
15 vulnerabilities in Siemens
https://therecord.media/15-vulnerabilities-discovered-in-siemens-industrial-control-management-system/
CVE-2022-26134: Atlassian Confluence
https://github.com/crowsec-edtech/cve-2022-26134
https://www.volexity.com/blog/2022/06/02/zero-day-exploitation-of-atlassian-confluence/
https://www.reshiftsecurity.com/ognl-injection-primer-for-java-developers/
https://confluence.atlassian.com/doc/confluence-security-advisory-2022-06-02-1130377146.html
https://www.lacework.com/blog/kinsing-dark-iot-botnet-among-threats-targeting-cve-2022-26134/
CVE-2022-29499: Mitel VoIP 0day
https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-22-0002
https://nvd.nist.gov/vuln/detail/CVE-2022-29499
CVE-2022-29225: Denial-of-Service Vulnerability in Envoy Proxy
https://jfrog.com/blog/denial-of-service-vulnerability-in-envoy-proxy-cve-2022-29225/
- Category
- ATLANTIC ROAD
Commenting disabled.