White House adds its voice to CISA’s Shields Up, warning of the possibility of Russian cyberattacks. New malware strains described, new criminal attack techniques observed.

The White House has warned of potential large-scale cyberattacks from Russia, urging Americans to take immediate action to protect against these threats. A new phishing toolkit called "Browser-in-the-Browser" attack has been discovered, making phishing attempts nearly undetectable. A new Conti affiliate has been exposed, with new domain names, IP addresses, and email addresses identified. A malware known as "Facestealer" has infected over 100,000 Google Play users, stealing sensitive information. Microsoft and Okta are investigating possible attacks by the Lapsus$ group, which may have breached Azure DevOps source code repositories. A new malware variant called "Arid Gopher" has been identified, part of the Micropsia malware family. Meta has been officially declared an "extremist organization" in Russia, advancing censorship. Experts are discussing opportunities for underrepresented groups in cybersecurity and the possibility of eliminating passwords.