All Good Men

Hardware Backdoor Discovered in RFID Cards Used in Hotels and Offices Worldwide (thehackernews.com) - Hardware backdoor means even with appropriate controls, threat actors can still attack hotel and office doors around the globe. The FM11RF08S backdoor enables any entity with knowledge of it to compromise all user-defined keys on these cards, even when fully diversified, simply by accessing the card for a few minutes. Russia fears Ukraine hijacking home CCTV systems for intel • The Register - This is genius, the Russians have asked users in the Bryansk, Kursk, and Belgorod regions to shut off dating apps and IP cameras that Ukranians are using for intelligence gathering. 110K domains targeted by ‘sophisticated’ cloud extortionists • The Register - Those in the study who eventually found their S3-stored data replaced with a ransom note had exposed their environment variables, failed to refresh credentials regularly, and didn’t adopt a least-privilege architecture. Attackers zeroed

CISA warns of Jenkins RCE bug exploited in ransomware attacks (bleepingcomputer.com) - Jenkins vulnerabilities from January being used by threat actors for Remote Code Execution. Patches should be applied in every environment. Exploitation of this vuln and proof of concepts hit the web less than 48hrs after the issue was identified. GitHub Actions artifacts found leaking auth tokens in popular projects (bleepingcomputer.com) - GitHub breaks the principle of least astonishment/surprise by including tokens, api keys, other key material in artifacts download. ‘Digital arrest’ scams are big in India and may be spreading • The Register - Formerly used heavily in the US by Indian based scam callers, threat actors now turn inward. Will it move India towards taking action? Indian telcos told to block scam telemarketers for two years • The Register - Yes, it turns out, within 24 hours. [PDF] 022212_ACUS_NatlResponsibilityCyber.PDF (atlanticcouncil.org) - The Spectrum of State Responsib