Cyber phases of a hybrid war continue at a nuisance level. IcedID’s distribution vectors. Automating software supply-chain attacks. CISA offers power supply risk mitigation guidance.

A major cyberattack has taken down a prominent Ukrainian internet provider, with GhostWriter suspected to be behind the attack using Cobalt Strike against the Ukrainian government. Anonymous has made large claims about their involvement in the situation. Ukrainian intelligence has exposed the identities of 620 FSB officers in a data breach. Conventional criminals are exploiting sympathy for Ukraine in scams, while Red-Lili automates software supply-chain attacks. CISA offers mitigation guidance on risks to uninterruptible power supplies. Russia claims it will scale back near Kyiv as talks progress, and Ukraine has reported some battle successes. A cyberattack has disrupted the internet service of a Ukrainian telecom company, and GhostWriter APT is targeting state entities in Ukraine with Cobalt Strike Beacon. Anonymous is working on a huge data dump that will expose Russia, and the group has hacked VGTRK Russian Television and Radio. Names and addresses of 620 FSB officers have been published in a data breach, which is an embarrassing blow for Vladimir Putin.