CERT-EU

[TLP:CLEAR] Cyber Brief (August 2024) We compiled our Cyber Brief for the month of August 2024, with a summary of the main IT security developments, reported by open sources. It is available at https://lnkd.in/e7BhJDcK. ?? Policy and Law enforcement: ???? police temporarily arrested the CEO of Telegram, ???? joined two European cybersecurity initiatives, a joint law enforcement operation led to the seizure of Dispossessor ransomware servers. Proton VPN introduced functionality to camouflage the existence of its app on phones and the ???? arrested a US resident for operating as a Chinese agent within a telecommunications company. ???♀? Cyberespionage: ???? Coldriver targeted Russian opposition figures in exile, and ???? APT29 targeted Mongolian governmental websites. ???? Peach Sandstorm targeted satellite and governmental entities in ???? and ????, while ???? APT42 targeted ???? and ???? influential figures. ?? Cybercrime: this month the most sighted ransomware operations in ???? were Ransomhub, Blacksuit, Bianlian, Lynxblog, and Play. ??? Information operation: several cybersecurity researchers report ongoing Iranian efforts to influence the US Presidential elections. Please do not hesitate to share your feedback.

#CERTEU Today CERT-EU is delighted to introduce Morio, an end-to-end streaming data backbone designed to meet your observability needs. Morio will simplify the setup and management of a robust observability infrastructure, leveraging top-tier open-source technologies. We are building this in the open, so feel free to look around, try it out, and leave feedback. The source code is available on GitHub under the under the European Union Public License (EUPL). https://lnkd.in/egNRQp6d

#FIRST, #CERTEU On the occasion of the 36th annual FIRST conference, we are excited to announce the release of droid, a tool designed to enhance management of detection rules by taking advantage of Sigma. Read more about it in our latest blog post. :tada: -) https://lnkd.in/e5_H3J-G

We have compiled our Cyber Brief for the month of May 2024, with a summary of the main IT security developments, reported by open sources. It is available at https://lnkd.in/gzTGFZvb. ?? Policy and Law enforcement: ???? will oversee compliance of Telegram with the DSA. ???? ???? ???? condemned APT28 attacks, and ???? ???? ???? identified and sanctioned the Lockbit leader. ???♀? Cyberespionage: reporting of activity by allegedly ???? ???? ???? ???? threat actors. Additionally, Amnesty International exposed ???? spyware activities, an alleged ???? campaign against the ICC was revealed. ?? Cybercrime: most sighted ransomware in ????: Lockbit 3, Akira, Cactus, Blackbasta and Ransomhub. ?? Hacktivism: pro-???? supposed hacktivists intensified DDoS attacks on ???? amid its NATO membership pursuit and target ???? for its support to Ukraine. Stark Industries Solutions reportedly facilitates NoName057's DDoS attacks. Please do not hesitate to share your feedback.

Are YOU a cybersecurity expert? LAST WEEK to submit your proposal for the CERT-EU Annual Conference 2024. Share your expertise, network with peers & get recognized! Submit by 31 May at https://lnkd.in/e9zk2hkV. Don't miss out! #cybersecurity #CFP #infosec

Psst, time is ticking for your chance to speak at the CERT-EU Annual Conference 2024. Don't miss out on sharing your expertise and ideas with fellow security professionals. Proposal submissions for our technical track close on May 31. No time to waste! Get all the details and submit your proposal here: https://lnkd.in/e9zk2hkV #cybersecurity #infosec #CFP

Knock knock ???? Missed our LinkedIn post last week? No problem, you still have time to submit your proposal for our Annual Conference's technical track ???? Deadline’s May 31, so let’s make it snappy! ? ?? Submit here your own tale from the real world and you might get a chance to make your voice heard by the 400+ delegates of our highly-regarded, invite-only event ???? ???? https://lnkd.in/gqUQ7fqG

We have compiled our Cyber Brief for the month of April 2024, with a summary of the main IT security developments, reported by open sources. It is available at https://lnkd.in/eV3Q4peY ?? Policy: EC encourages MS to adopt a unified approach to cryptography-safe digital infrastructure. ???? ???? announce partnerships in AI research. ???? published an advisory on securing election infrastructure against FIMI and charged ???? nationals for involvement in cyber intrusions. ???♀? Cyberespionage: reporting of activity by allegedly ???? ???? ???? threat actors. Additionally, Apple alerted iPhone users about potential targeting of a spyware by PSOAs. ?? Cybercrime: top ransomware in ????: Lockbit3, Blackbasta, Akira, Bianlian, and Hunter. ?? Disruption: ???? a hospital experienced a cyberattack, disrupting operations. Reportedly ???? Sandworm and Muddling Meerkat have targeted ???? energy infrastructure and manipulated ???? Great Firewall's DNS responses, respectively. ???? accused ???? of attempting to sabotage European railways. ?? InfoOps: Reportedly ???? ???? disinformation campaigns are heavily targeting ???? and ???? elections, ???? through social media and fake websites, ???? attempts to influence ???? elections through covert accounts posing as Trump supporters. AI chatbots have inadvertently contributed to misinformation about the ???? elections.

We are delighted to announce that CERT-EU’s Annual Conference 2024 will take place on ?????????????? ????–???? ???? ????????????????. We are expecting around 400 delegates: cybersecurity experts from both the private and public sector. While our flagship event remains an ????????????-???????? ???????????????????? we are inviting the cybersecurity professionals, researchers, and industry leaders out there to submit proposals for the technical track for the consideration of our programme committee. Want to seize the opportunity to have your voice heard and potentially participate in shaping the discussions at our highly valued, highly regarded event? Easy! Visit the dedicated conference page on our website and ???????????? ???????? ???????????????? ???? ?????? ???? ???? ?????? ???????????? ???? https://lnkd.in/gqUQ7fqG

We have compiled our Cyber Brief for the month of March 2024, with a summary of the main IT security developments, reported by open sources. It is available at https://lnkd.in/e94D4SZe ?? Policy: ???? reached an agreement on the Cyber Solidarity Act; ???? dismantled two major darknet platforms; ???? adopted a resolution to balance AI with human rights; ???? sanctioned individuals and entities involved in cyberespionage, disinformation, Predator spyware, including those from ???? and ????. ???♀? Cyberespionage: supposed ???? and ???? threat actors active in Europe, including in targeting ???? political parties; wordlwide activities from ???? ???? ???? ???? threat actors and PSOAs. ?? Cybercrime: top ransomware in ????: Lockbit3, Ragroup, Cactus, 8Base, Play, and Qilin. ?? Disruption: GPS interference in +1.600 planes in the Baltic Sea region; cut submarine cables caused outages in Africa.