More cyberespionage in Russia. Advice on conducting propaganda. Iranian group conducts DDoS against Port of London Authority. News from the underworld. CISA alerts. Operation Delilah.

A previously unknown APT group has been targeting the Russian government with malware attacks since the invasion of Ukraine. The group uses fake Windows updates to spread remote access tools. Ukraine is considering using tactics from the Lincoln Project, which targeted Trump in the 2020 US elections, against Putin. A pro-Iran group called ALtahrea has launched a DDoS attack on the Port of London Authority website. It is unclear if a recent DDoS campaign is the work of REvil or copycats. RansomHouse, a data theft gang, may be composed of frustrated white hat hackers. CISA has added 20 known exploited vulnerabilities to its catalog, including flaws in Rockwell Automation Logix Controllers and Mitsubishi Electric FA Engineering Software Products. Interpol has arrested the suspected head of the SilverTerrier cybercrime gang in Nigeria. Operation Delilah, a collaboration between Unit 42 and Interpol, helped identify the Nigerian business email compromise actor.