- Burn After Reading
- Posts
- 🔥 Sandworm Strikes Texas
🔥 Sandworm Strikes Texas
Researchers from Mandiant have determined that the Russian APT is associated with multiple recent attacks on critical infrastructure.
Good Morning. Nine Google employees were arrested after a sit-in at Google's offices in New York and California.
The arrests were part of ongoing protests within Google against Project Nimbus, a $1.2 billion cloud computing contract with the Israeli government. The objections have intensified following recent revelations that the project may be linked to military applications.
Interestingly, the sit-in wrapped up after just eight hours, suggesting that even protests might adhere to a regular workday schedule!
— 🐈⬛ Acoustic Kitty
THE BOTTOM LINE UP FRONT
Russia’s Top Ukraine Cyber Attacker Targeted Texas
Mandiant, a cybersecurity firm under Google, has recently identified a sophisticated Russian military intelligence operation, known as Sandworm, responsible for cyberattacks targeting critical infrastructure in the United States, Poland, and France.
These attacks, conducted through aliases like Xaknet and Cyber Army of Russia Reborn, have targeted water utilities and are part of a broader pattern of misinformation and escalation in cyber aggression by Russian-backed entities. The Sandworm group, also known as Apt 44, was recently identified as Russia’s top cyber attacker in Ukraine and has been linked to the breach of a water system in Texas.
Operational Tactics and International Impact
Sandworm operates through a variety of online personas that claim these attacks, often exaggerating their effects to distance the actual perpetrators from the incidents.
Broader Implications for U.S. National Security
The involvement of Sandworm in attacks on U.S. infrastructure signifies a major escalation in the Kremlin’s cyber warfare tactics, previously evidenced by incidents like the Colonial Pipeline hack.
INTERNATIONAL SECURITY & DIPLOMACY
Counterterrorism
Security forces in Chhattisgarh, India, killed 29 Maoist rebels in a gunfight near Bastar, recovering bodies and arms days before regional elections. The clash, yielding the highest Maoist casualty count in recent years, occurred after a tip-off about rebel leaders in the area, according to state police.
Amnesty International reported widespread abuses, including torture, at detention facilities in northeast Syria, where about 56,000 suspected Islamic State members and their relatives are held, mostly children. The rights group criticized the U.S. for its significant role in establishing and maintaining these centers, which operate indefinitely without charge or trial, in violation of international laws.
Hezbollah launched a drone and missile attack on an Israeli border village, injuring 14 soldiers, in retaliation for Israeli airstrikes that killed two of its commanders. The attack raises concerns of escalating conflict between Israel and Hezbollah, Iran's most influential proxy in the region.
Pakistani security forces killed seven militants attempting to cross into Pakistan from Afghanistan near the border town of Ghulam Khan in northwestern Khyber Pakhtunkhwa province. The clash comes amid a surge in violence attributed to the Pakistani Taliban, who have found sanctuary in Afghanistan following the Afghan Taliban's rise to power in 2021.
Military & Defense
South Korea has strengthened its naval capabilities with the delivery of the Shin Chae-ho, a new 3,000-ton diesel-electric attack submarine named after a Korean independence activist, enhancing its defense strategy against North Korean threats. The submarine, which can launch ballistic missiles, is part of South Korea's KSS-III Batch-I program and marks a significant advancement in the country's underwater defense technology.
China scrambled fighter jets to monitor a U.S. Navy P-8A Poseidon that flew through the Taiwan Strait, claiming the action adhered to laws and regulations, amid heightened regional tensions. The U.S. 7th Fleet stated the flight was in international airspace, emphasizing adherence to international law and the right to navigational freedom.
Russian peacekeepers have begun their withdrawal from Nagorno-Karabakh, a contentious region in Azerbaijan, marking the end of a significant military presence established under a 2020 ceasefire agreement. The move follows a forceful reclaiming of the region by Azerbaijan in September, leading to the displacement of 120,000 ethnic Armenians and heightened tensions with Armenia, which has criticized Russia's protection efforts.
Cybersecurity
A new malware known as Kapeka, linked to the Russia-affiliated cyber group Sandworm, has been targeting Eastern Europe since mid-2022, according to Finnish cybersecurity firm WithSecure. Kapeka, a sophisticated backdoor malware, has been used in cyberattacks to gain long-term access and deploy functions like ransomware distribution, data theft, and remote control operations.
Pakistan blocked access to the social media platform X, previously known as Twitter, citing national security concerns amid allegations of election manipulation and protests initiated by the jailed former Prime Minister Imran Khan's party. The Ministry of Interior confirmed the action in a court submission, explaining the platform failed to comply with government directives and was used to foster unrest during the February elections.
Counterintelligence & Espionage
The United States has banned four former Malawi government officials from entering the country due to their involvement in significant corruption related to a government police contract. The officials, including former solicitor general Reyneck Matemba and former police inspector general George Kainja, allegedly accepted bribes from a private business person in exchange for contract favors.
Microsoft reported an increase in Russia’s disinformation operations targeting the U.S. elections over the last month-and-a-half, with a strategic emphasis on undermining U.S. support for Ukraine and stirring anti-NATO sentiment among Americans. These operations, run by the Russian Presidential Administration rather than previous agencies, aim to portray Ukraine as a puppet state and discredit American aid as support for a corrupt regime.
A military judge is deliberating whether Navy Chief Bryce Pedicini was merely selling research papers or if he engaged in espionage by providing classified military information to a foreign intelligence officer. Pedicini, who took photos of classified systems and discussed payment for sensitive information, pleaded guilty to a lesser charge but is contesting the more severe accusations of espionage in his trial at Naval Base San Diego.
Transnational Organized Crime
German authorities launched a major raid involving over 1,000 officers against an international human smuggling operation, detaining 10 suspects and targeting dozens of locations across the country. The operation uncovered a scheme where two lawyers, the primary suspects, allegedly exploited immigration laws to illegally secure German residency for approximately 350 mostly Chinese nationals, collecting substantial fees ranging from 30,000 to 350,000 euros.
Spanish authorities have arrested a Barcelona gallery owner for illegally obtaining and selling an ancient Egyptian sculpture head, dating back to around 1450 BC, for over $200,000 using forged documentation. The artifact, acquired from a company in Bangkok linked to antiquities trafficking, was sold through European galleries and discovered at the European Fine Art Fair in Maastricht before being handed over to Dutch authorities.
Canadian police have arrested several suspects and issued nine warrants relating to the country's largest gold theft, where over 6,500 gold bars worth C$20 million were stolen from Toronto Pearson Airport in April 2023. The year-long investigation, named Project 24K, has so far recovered a fraction of the stolen gold, fashioned into crude bracelets, and C$430,000 in cash from the proceeds of the gold sales.
SCIENCE & TECHNOLOGY
Intel Corp. has launched Hala Point, its latest neuromorphic chip system, delivering unparalleled efficiency and power by emulating the human brain's functionality. This advanced technology, deployed to Sandia National Laboratories, aims to revolutionize AI's energy consumption and computational capabilities.
Innovative Computing Model
Hala Point advances neuromorphic computing with 1,152 Loihi 2 processors and capacity equivalent to an owl's brain, positioning Intel as a potential challenger to Nvidia's dominance in the AI processing sector.
Strategic Deployment and Future Potential
Intel's partnership with Sandia National Laboratories focuses on enhancing scientific computing and real-time learning applications, setting the stage for groundbreaking efficiency in AI operations and problem-solving.
In other news…
🖨️ Formlabs has introduced the Form 4, their latest 3D printer, marking five years since their last major model, the Form 3. The new printer features significantly faster printing speeds, a 30% larger build volume, and enhanced print resolution that rivals traditional injection molding.
🤖 The Apple-Baidu partnership could normalize Beijing's authoritarian digital governance model and boost China's global influence on AI standards and technologies, analysts with The Diplomat reasoned. This collaboration risks advancing China's control over the future development of generative AI worldwide.
🤯 Digital Concepts Engineering has introduced the X3 Unmanned Ground Vehicle, an advanced version of its predecessor with enhanced capabilities for defense, nuclear, and agricultural applications, featuring a reconfigurable top deck for various mission systems.
DEALS & FUNDING
At the AI Risk Summit in Half Moon Bay, Armis, a leading cybersecurity firm, announced the acquisition of Silk Security, a company specializing in cyber risk prioritization and remediation, for $150 million.
Strategic Expansion
Armis' purchase of Silk Security aims to enhance its capabilities in risk management and threat remediation, reflecting a growing trend of consolidation in the cybersecurity sector.
In other news…
🔐 Tel Aviv-based Cynomi Ltd. has secured $20 million in Series A funding led by Canaan, aiming to expand globally and address the cybersecurity skills shortage. The AI-powered platform offers virtual CISO services to managed service providers, boasting over 100 clients and anticipating growth as demand for such services rises.
🌱Tel Aviv-based startup Miggo Security has raised $7.5 million in seed funding to develop its application detection and response (ADR) technology, designed to enhance corporate cybersecurity by illuminating the complex inner workings of applications. Miggo's ADR technology aims to detect and prevent application-based cyberattacks in real-time, a critical need as 80% of breaches begin with application vulnerabilities, according to CEO Daniel Shechter.
LOOKING FOR MORE CONTENT?
Check out our Podcasts:
The America Builds podcast sits at the nexus of national security, technology, and venture capital. We highlight the brilliant operators and investors pushing the boundaries of frontier technology.
Hosted by Will Allen and Hayley Menser.
Stay tuned for our brand new podcast Safehouse coming soon!
Join Our Covert Communities:
Syndicate by Frontsight: Engage with like-minded strategists, tech enthusiasts, and defense mavens.
Range 400: Entry is exclusive, and for those chosen, the doors to unparalleled knowledge and network open wide.
What'd you think of today's edition? |