Lightnews — Scholar-powered news

Oleg Shakirov

@shakirov2036.bsky.social

970 followers 150 following 380 posts

I study Russian foreign policy, cyber security, arms control

Posts Media Videos Starter Packs

Pinned

Oleg Shakirov @shakirov2036.bsky.social · Jun 18

Cyber threat intelligence has evolved primarily as a private domain driven by cyber security vendors and researchers. Is this about to change?

My reflections on several recent publications about whether threat intelligence is becoming 'nationalized'

fromcyberia.substack.com/p/nationaliz...

Nationalization of Cyber Threat Intelligence

Cyber threat intelligence has evolved primarily as a private domain driven by cyber security vendors and researchers. Is this about to change?

fromcyberia.substack.com

1 4 4

Oleg Shakirov @shakirov2036.bsky.social · 10h

I'm presenting at @cyberwarcon.bsky.social this year, November 19!

Come for big names, stay for my obscure stories about cyber aspects of drone warfare.

cyberwarcon.com/agenda-25

Agenda — CYBERWARCON

Agenda

cyberwarcon.com

1 2 12

Oleg Shakirov @shakirov2036.bsky.social · 2d

"It is not a question of five or six years but significantly more, when there are no nuclear weapons. By that time, the weapons will have been destroyed, and integration will have been completed not just in Europe but beyond its borders," Yeltsin said in Rome [...].

Oleg Shakirov @shakirov2036.bsky.social · 2d

Putin recently said that Russia requested twice to join NATO (in 1954 & 2000). Actually that happened multiple times including when Russia was not in the best shape

See here on Yeltsin's appeal in late 1991, days before the collapse of the Soviet Union

www.washingtonpost.com/archive/poli...

1 3

Oleg Shakirov @shakirov2036.bsky.social · 4d

Nothing makes you more aware of cyber security than the shortage of Asahi beer

Happy Cybersecurity Awareness Month!

1 1

Oleg Shakirov @shakirov2036.bsky.social · 5d

@snlyngaas.bsky.social did a better job this year

Oleg Shakirov @shakirov2036.bsky.social · 5d

Over past couple of days Russian media claimed that Russian drone strike hit a scam call center in Dnipro. Here are my review of the coverage and quick analysis of whether Russia now considers scammers a legitimate military target (probably not)

fromcyberia.substack.com/p/did-russia...

Did Russia Attack a Ukrainian Scam Call Center?

Russian media—albeit not the officials—claim that a drone strike on Dnepropetrovsk (Dnipro) hit an office building that housed scammers.

fromcyberia.substack.com

Oleg Shakirov @shakirov2036.bsky.social · 7d

This one is from Genius; they use CookiePro by OneTrust. But this is typical these days

Oleg Shakirov @shakirov2036.bsky.social · 7d

How is this real...

1 1 2

Oleg Shakirov @shakirov2036.bsky.social · 22d

Microsoft report blogs.microsoft.com/on-the-issue...

Cloudflare report www.cloudflare.com/threat-intel...

Oleg Shakirov @shakirov2036.bsky.social · 22d

Kudos to Microsoft & Cloudflare for taking action against RaccoonO365

Here's the link to relevant legal files with a bunch of seized domains & other interesting details (via Health ISAC)

noticeofpleadings.com/RaccoonO365/

1 1 1

Oleg Shakirov @shakirov2036.bsky.social · Sep 6

a) Even in Seqrite's report you can see a bunch of 'test' email addresses in the list of recipients which makes more sense when you do a simulated rather than real attack

b) some folks in Kazakh infosec chats got angry over Seqrite's report even before KazMunayGas's denial

2/2

Oleg Shakirov @shakirov2036.bsky.social · Sep 6

APT or Another Phishing Training?

Seqrite reported an attack on the Kazakhstani oil company KazMunayGas attributed to a new group NoisyBear www.seqrite.com/blog/operati...

Yet the company later argued that this was a simulated attack orda.kz/planovoe-mer...

This looks plausible:

1/2

1 2 1

Oleg Shakirov @shakirov2036.bsky.social · Sep 6

Yes

Oleg Shakirov @shakirov2036.bsky.social · Sep 5

It does work, but not always. Maybe too many people tried checking out?

Oleg Shakirov @shakirov2036.bsky.social · Sep 5

defense.gov now redirects to war.gov, but the page won't load at the moment

2 2

Oleg Shakirov @shakirov2036.bsky.social · Aug 22

Y'all are missing out on the BRICS+ Fashion Summit

Oleg Shakirov @shakirov2036.bsky.social · Aug 8

This story is fascinating to watch as the Russian government keeps finding solutions to the problems of its own making, obviously without addressing the underlying cause, i.e. the war

Oleg Shakirov @shakirov2036.bsky.social · Aug 8

Since May Russia regularly shuts down mobile Internet to counter the drone threat

Shutdowns disrupt taxis, food delivery, ATMs, remote work & upset ppl

Now the gov't wants to create white list of services that would be available even during shutdowns

www.interfax.ru/russia/1040184

1 1

Oleg Shakirov @shakirov2036.bsky.social · Aug 1

My take (in Russian) on this week's cyber attack against Aeroflot. The key idea is pretty simple: to solve the problem of cyber war, information security measures alone are not enough; it needs to be adressed politically, too, through conflict resolution

www.forbes.ru/mneniya/5430...

Эскалация в киберпространстве: о чем говорит атака против «Аэрофлота»

Кибератака на «Аэрофлот» напомнила об уязвимости современной инфраструктуры, которая только обостряется, когда интернет становится одним из фронтов международного конфликта. При этом, отмечает аспиран...

www.forbes.ru

Oleg Shakirov @shakirov2036.bsky.social · Aug 1

Trump says he "ordered two Nuclear Submarines to be positioned in the appropriate regions" in response to ex-President Medvedev's provocative statements (probably his recent tweet)

This reminded me of the 2020 report by Alexi Drew & @heatherwilly.bsky.social www.kcl.ac.uk/csss/assets/...

1 3

Oleg Shakirov @shakirov2036.bsky.social · Jul 28

This is what's actually happening, yes

Oleg Shakirov @shakirov2036.bsky.social · Jul 28

The alleged attackers have already collaborated before: in late March they claimed a hack of the Belarusian national CERT, apparently exaggerating the impact of the attack

tochka.by/articles/lif...

Сайт специалистов по кибербезопасности в Беларуси взломан – так ли это

Эксперты рассказали, как отличать реальную информацию о хакерских атаках от фейков.

tochka.by

Oleg Shakirov @shakirov2036.bsky.social · Jul 28

Silent Crow emerged on Telegram in January & leaked several datasets allegedly stolen from Russian firms (at least 2 cases were confirmed in court: t.me/cyberguerre/..., t.me/cyberguerre/...). Acc. to BI.ZONE researchers, Silent Crow is rebranded DumpForums

1 5