Defence and Aerospace


  • Biden signs cybersecurity memorandum for Defense Department, intelligence agencies

    January 19, 2022

    US President Joe Biden signed a memorandum on Tuesday concerning the cybersecurity of the Defense Department and the country’s intelligence agencies, sketching out exactly how an executive order he signed in May 2021 will be implemented. “This NSM requires that, at minimum, National Security Systems employ the same network cybersecurity measures as those required of federal ...

  • Cyber attack on UK’s Defence Academy had ‘significant’ impact, officer in charge at the time reveals

    January 2, 2022

    A cyber attack – possibly by China or Russia – hit the academic arm of the UK’s Ministry of Defence and had a “significant” impact, the officer in charge at the time has revealed. Air Marshal Edward Stringer, who retired from the armed forces in August, said the “sophisticated” hack – discovered last March – prompted ...

  • After NSO Scandal, What’s Next for Israel’s Cyber Industry?

    December 28, 2021

    The year 2021 was not a good one for NSO Group, an Israeli technology firm that became famous, and then notorious, for its Pegasus spyware, capable of remote surveillance of smartphones. Once a promising startup that developed a unique tool to fight against terror and crime, NSO Group is now associated with targeted attacks against journalists ...

  • Belgian Defense Ministry confirms cyberattack through Log4j exploitation

    December 20, 2021

    The Belgian Ministry of Defense has confirmed a cyberattack on its networks that involved the Log4j vulnerability. In a statement, the Defense Ministry said it discovered an attack on its computer network with internet access on Thursday. They did not say if it was a ransomware attack but explained that “quarantine measures” were quickly put in ...

  • Major Updates to the Cybersecurity Maturity Model Certification: What You Need to Know

    December 20, 2021

    The United States Department of Defense (DoD) views securing the supply chain and the Defense Industrial Base (DIB) as one critical pillar in protecting national security. Dedicated security requirements exist for the protection of federal information systems as well as classified information based on the NIST 800-53 standard. However, several years ago, a gap was ...

  • PseudoManuscrypt: a mass-scale spyware attack campaign

    December 16, 2021

    In June 2021, Kaspersky ICS CERT experts identified malware whose loader has some similarities to the Manuscrypt malware, which is part of the Lazarus APT group’s arsenal. In 2020, the group used Manuscrypt in attacks on defense enterprises in different countries. These attacks are described in the report “Lazarus targets defense industry with ThreatNeedle“. Curiously, the ...

  • Suspected Iranian hackers target airline with new backdoor

    December 16, 2021

    A suspected, state-sponsored Iranian threat group has attacked an airline with a never-before-seen backdoor. On Wednesday, cybersecurity researchers from IBM Security X-Force said an Asian airline was the subject of the attack, which likely began in October 2019 until 2021. The advanced persistent threat (APT) group ITG17, also known as MuddyWater, leveraged a free workspace channel on ...

  • NATO strengthens cyber security posture with cutting-edge capability

    December 6, 2021

    The NATO Communications and Information Agency (NCI Agency) has delivered a high-capacity system to help cyber defenders track what occurs on NATO’s networks. The system, which reached full operational capability in November 2021, will strengthen NATO’s cyber security posture and ensure critical data and communications are protected. This project was executed under the Capability Package (CP) ...

  • Britain and Israel to sign trade and defence deal

    November 28, 2021

    Britain and Israel will sign a 10-year trade and defence pact in London on Monday, promising cooperation on issues such as cybersecurity and a joint commitment to prevent Iran from obtaining nuclear weapons. The agreement was announced by Liz Truss, the foreign secretary, and her Israeli counterpart Yair Lapid, despite evidence that spyware made by Israeli ...

  • UK and US join forces to strike back in cyber-space

    November 18, 2021

    The US and UK are joining forces to “impose consequences” on their shared adversaries who conduct malicious cyber-activities. The combined action would address “evolving threats with a full range of capabilities”, they said. The shared adversaries were not named but the announcement follows increasing concern over Russia-based ransomware. Read more… Source: BBC News  

  • New Zealand spooks say satellite snooping is obsolete – better intel is found elsewhere

    November 11, 2021

    New Zealand’s Government Communications Security Bureau (GCSB) – the nation’s signals intelligence and infosec agency – will retire its Waihopai satellite communications interception station because it’s no longer needed. “The nature of telecommunications has changed, and other needs and capabilities have overtaken the sort of satellite communication interception that has been done at Waihopai,” said Andrew ...

  • Targeted Attack Campaign Against ManageEngine ADSelfService Plus Delivers Godzilla Webshells, NGLite Trojan and KdcSponge Stealer

    November 7, 2021

    On Sept. 16, 2021, the US Cybersecurity and Infrastructure Security Agency (CISA) released an alert warning that advanced persistent threat (APT) actors were actively exploiting newly identified vulnerabilities in a self-service password management and single sign-on solution known as ManageEngine ADSelfService Plus. The alert explained that malicious actors were observed deploying a specific webshell and ...

  • Ransomware has proliferated because it’s ‘largely uncontested’, says GCHQ boss

    October 26, 2021

    If you’ve wondered why ransomware has proliferated in recent years, it’s because until recently it has remained unchallenged, according to Sir Jeremy Fleming, director of British signals intelligence agency GCHQ. “We’ve seen twice as many attacks this year as last year in the UK – but the reason it is proliferating is because it works,” ...

  • NATO Allies take the lead on the development of NATO’s Innovation Fund

    October 22, 2021

    On Friday (22 October 2021), at a signing ceremony hosted by NATO’s Secretary General, Defence Ministers from 17 Allied countries* agreed to take the lead on the development of NATO’s first Innovation Fund. This multinational Fund will help NATO retain its technological edge by enabling investment – worth 1 billion euros – in dual-use technologies of ...

  • MysterySnail attacks IT companies, defence contractors and diplomatic entities with Windows zero-day

    October 12, 2021

    In late August and early September 2021, Kaspersky technologies detected attacks with the use of an elevation of privilege exploit on multiple Microsoft Windows servers. The exploit had numerous debug strings from an older, publicly known exploit for vulnerability CVE-2016-3309, but closer analysis revealed that it was a zero-day. We discovered that it was using ...

  • Iran-linked DEV-0343 targeting defense, GIS, and maritime sectors

    October 11, 2021

    DEV-0343 is a new activity cluster that the Microsoft Threat Intelligence Center (MSTIC) first observed and began tracking in late July 2021. MSTIC has observed DEV-0343 conducting extensive password spraying against more than 250 Office 365 tenants, with a focus on US and Israeli defense technology companies, Persian Gulf ports of entry, or global maritime ...

  • US Navy Warship’s Facebook Page Hacked to Stream ‘Age of Empires’ Gaming

    October 7, 2021

    The official Facebook page of a destroyer-class Navy warship, the USS Kidd, has gone rogue: Someone has taken over the page in order to…stream Age of Empires play. Age of Empires is a real-time online multiplayer strategy game in which the objective is to advance one’s civilization. Players “build, settle, trade and fight” their way from ...

  • UK plans to invest £5 billion in retaliatory cyber-attacks

    October 4, 2021

    The United Kingdom has revealed plans to invest £5 billion in bolstering national cybersecurity that includes creating a “Cyber Force” unit to perform retaliatory attacks. Cyber-warfare is being embraced as the “fifth domain” of international conflict and is being incorporated in the core functional aspects of nations, including the military. This includes having the same level ...

  • Transnational fraud ring stole millions from US Army members, veterans

    October 3, 2021

    Fredrick Brown, a former U.S. Army contractor, was sentenced today to 151 months in prison after admitting to his role in a conspiracy that targeted thousands of U.S. service members and veterans and caused millions of dollars in losses. Brown was one of five fraudsters charged with carrying out an identify-theft and fraud scheme that targeted ...

  • UK: Location Of New National Cyber Force Revealed

    October 3, 2021

    The UK Government’s new National Cyber Force (NCF) will be located in Samlesbury in the North West, Defence Secretary Ben Wallace has confirmed. Samlesbury is also home to a BAE Systems site. The NCF draws together personnel from intelligence, cyber and security agency GCHQ, the Ministry of Defence (MOD), the Secret Intelligence Service (MI6) and the Defence ...