More malware deployed in Eastern Europe. Cozy Bear is typosquatting. CuckooBees swarm around intellectual property. Tracking the DPRK’s hackers. Quiet persistence in corporate networks.

Google researchers have reported an increase in cyber activity in Eastern Europe, with multiple government hacking groups targeting Ukraine and the region. The SolarWinds hackers have been using phony media outlets to trick targets, while a Chinese cyber espionage operation is targeting US organizations. Researchers have also discovered a massive Chinese intellectual property theft operation called Operation CuckooBees. A new espionage group is targeting corporate M&A personnel, and the North Korean cyber-army has been linked to ransomware families. The Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory for Yokogawa CENTUM and ProSafe-RS systems. Meanwhile, Caleb Barlow discusses backup communications for businesses during this period of "shields up," and Duncan Jones from Cambridge Quantum talks about the NIST algorithm finalist Rainbow vulnerability.