Proofpoint has directly observed a targeted email campaign that delivers DarkSword RCE, and we attribute the messages to Russian FSB threat actor TA446 with high confidence. 🧵

Now is your time to PIVOT!

Impose Cost. This isn't an option, it's how we win.
Huge respect for the CTI community, industry partners, researchers, analysts, law enforcement professionals et al who made this possible.
Let’s make the threat landscape harder for TAs every single day. #OperationEndgame

Washington Post data breach impacts nearly 10K employees, contractors The Washington Post is notifying nearly 10,000 employees and contractors that some of their personal and financial data has been exposed in the Oracle data theft attack.

The Washington Post is notifying nearly 10,000 employees and contractors that some of their personal and financial data has been exposed in the Oracle data theft attack.

New day, new #UserAgent. Threat actors are getting creative… brute-force run now comes with a fresh disguise. Just in time for Halloween! #cyberthreatIntelligence FTW

Exclusive | Chinese Hackers Pretended to Be a Top U.S. Lawmaker During Trade Talks The FBI is investigating a scheme to spy on trade groups using fake emails from China committee chair Rep. John Moolenaar.

how do we know if a cyber attack is just spying or an act of war? from a national security perspective, there are some challenges in responses when it's unclear if an action constitutes traditional espionage or a form of asymmetric/guerrilla attack, esp. in the cyber?
www.wsj.com/politics/nat...

This sector's been hot since the 1990s!