'Forest Blizzard', 'Fancy Bear': Cyber Companies Vs Hacker Nicknames
Washington:
Microsoft, CrowdStrike, Palo Alto and Alphabet's Google on Monday said they would create a public glossary of state-sponsored hacking groups and cybercriminals, in a bid to ease confusion over the menagerie of unofficial nicknames for them.
Microsoft and CrowdStrike said they hoped to potentially bring other industry partners and the U.S. government into the effort to identify Who's Who in the murky world of digital espionage.
"We do believe this will accelerate our collective response and collective defense against these threat actors," said Vasu Jakkal, corporate vice president, Microsoft Security.
How meaningful the effort ends up being remains to be seen.
Cybersecurity companies have long assigned coded names to hacking groups, as attributing hackers to a country or an organization can be difficult and researchers need a way to describe who they are up against.
Some names are dry and functional, like the "APT1" hacking group exposed by cybersecurity firm Mandiant or the "TA453" group tracked by Proofpoint. Others have more color and mystery, like the "Earth Lamia" group tracked by TrendMicro or the "Equation Group" uncovered by Kaspersky.
Crowdstrike's evocative nicknames - "Cozy Bear" for a set of Russian hackers, or "Kryptonite Panda" for a set of Chinese ones - have tended to be the most popular, and others have also adopted the same kind of offbeat monikers.
In 2016, for example, the company Secureworks - now owned by Sophos - began using the name "Iron Twilight" for the Russian hackers it previously tracked as "TG-4127." Microsoft itself recently revamped its nicknames, moving away from staid, element-themed ones like "Rubidium" to weather-themed ones like "Lemon Sandstorm" or "Sangria Tempest."
But the explosion of whimsical aliases has already led to overload. When the U.S. government issued a report about hacking attempts against the 2016 election, it sparked confusion by including 48 separate nicknames attributed to a grab bag of Russian hacking groups and malicious programs, including "Sofacy," "Pawn Storm," "CHOPSTICK," "Tsar Team," and "OnionDuke."
Michael Sikorski, the chief technology officer for Palo Alto's threat intelligence unit, said the initiative was a "game-changer."
"Disparate naming conventions for the same threat actors create confusion at the exact moment defenders need clarity," he said.
Juan-Andres Guerrero-Saade, a top researcher at the cybersecurity firm SentinelOne, was skeptical of the effort, saying the cold reality of the cybersecurity industry was that companies hoarded information.
Unless that changed, he said, "this is branding-marketing-fairy dust sprinkled on top of business realities."
But CrowdStrike Senior Vice President of counter adversary operations, Adam Meyers, said the move had already delivered a win by helping his analysts connect a group Microsoft called "Salt Typhoon" with one CrowdStrike dubbed "Operator Panda."
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Mint
28 minutes ago
- Mint
The stock-market rally is moving beyond Big Tech and investors are thrilled
The summer stock rally is broadening beyond big tech. Megacap technology stocks such as Nvidia, Microsoft and Broadcom led the market's rapid, tariff-spurred selloff earlier this year, only to rebound just as quickly a few weeks later when trade fears eased. Now, with economic fears diminished and optimism growing that the Trump administration will take a milder stance on trade, the recovery has expanded to include stocks across a more diverse group of sectors, such as financials, industrials and utilities. The number of stocks in the benchmark S&P 500 closing above their 50-day moving average has climbed recently to levels last seen in the fall, before Donald Trump's election victory launched an end-of-year rally. And in another sign of breadth, a measure that tracks the number of stocks rising versus those declining notched a new high on Friday. While the so-called Magnificent Seven tech stocks still hold investors' attention—and sway over the market—a broader participation in the recovery has helped propel the Nasdaq composite and the S&P 500 to all-time-highs in June. It could also signal that stocks will keep climbing through the summer, analysts say. 'We've seen this before: big tech leads and the market follows," said Adam Turnquist, chief technical strategist at LPL Financial. 'It seems like we are dusting off that playbook." Wall Street generally views improving breadth as a signal of a healthy stock market and a sustained advance. Whether the trend continues will depend on a few uncertainties still looming in the second half of the year: potential conflict in the Middle East, the path of interest-rate cuts from the Federal Reserve and the final outcome of President Trump's tariff plans. 'As long as things can stay stable, then this market is not exhausted by any stretch of the imagination," said Tom Essaye, founder of the Sevens Report, a market analysis firm. Market breadth has improved as investors who missed out on tech stocks' historic rebound search for new opportunities in different industries, Essaye said. He called it the 'FOMO trade," referencing the acronym for 'fear of missing out." Others have made longer-term bets in less popular industries. Jamie Cox, a managing partner at Harris Financial Group in Richmond, Va., didn't increase his proportion of big-tech holdings over the past few months even as prices dipped. But in recent weeks, his strategy—which includes a blend of defense, financial and large-cap international shares—has started to pay off. 'I'm surprised it took this long," he said. 'It's been a long time coming." Cox, who manages $1.2 billion at Harris, said that, in recent months, he has heard from clients looking to diversify the stocks in their portfolios. 'That lends itself to owning different things than just the most effective of the tech stocks," he said, such as shares of defense contractors Lockheed Martin and RTX Corp. 'You buy the less-aggressive, more tried-and-true, boring stocks." The recovery hasn't worked its way through every corner of the market. Small-cap stocks still lag behind major indexes. It might take a significant shift in the outlook to change that, said George Pearkes, macro strategist at Bespoke Investment Group. 'We would have to see a change in risk appetite." Some investors think that a confidence boost could come sooner than expected. Eric Teal, chief investment officer at Comerica Wealth Management, said he is adding midcap, small-cap and even microcap companies. He is buying shares of domestic banks that he thinks won't be affected by future tariffs, and said the Fed's rate cut could also boost smaller firms. 'The broadening out that we've seen over the last number of months is not something that's going to be short-lived," Teal said. It is unlikely that the market's biggest tech names will fade into the background soon, analysts said. Optimism for artificial intelligence, which powered tech stocks' ascendance to new highs, is still top-of-mind for professional and individual investors alike. But as tech shares have rebounded, so have valuations: Some large-cap names traded at more than 30 times their expected earnings over the next year last week, compared with an S&P 500 average of about 22 times. Those rich prices could be another nudge for traders to start snapping up shares in different industries, said Brian Buetel, a managing director at UBS Private Wealth Management. 'Nobody disagrees that the Mag Seven are just extremely expensive," he said. 'People forget there are sectors of the market that are on sale—that are cheap." Write to Hannah Erin Lang at and Roshan Fernandez at
Time of India
35 minutes ago
- Time of India
Ukrainian F-16 pilot killed as Russia launches 477 drones, 60 missiles; Zelenskyy urges West: ‘We're ready to buy Patriots'
A Ukrainian F-16 fighter pilot was killed while defending the country from one of Russia's most intense aerial attacks in months, Ukrainian officials said on Sunday. The pilot, hailed for shooting down seven Russian air targets before his aircraft was struck, died while steering the damaged jet away from a populated area. The overnight assault, which involved hundreds of drones and missiles, left at least seven civilians injured and caused widespread damage across several regions, triggering renewed calls from President Volodymyr Zelenskyy for urgent Western air defense support. Top 10 key points- Ukrainian F-16 pilot killed after intercepting seven Russian targets: A Ukrainian fighter pilot died while defending against a large-scale Russian air assault overnight. According to Ukraine's Air Force, the pilot successfully destroyed seven incoming targets using all onboard weapons. His aircraft was hit while downing the final target. Though he diverted the jet away from a populated area, he did not have enough time to eject. This marks the third Ukrainian F-16 lost since the war began. Massive overnight Russian barrage: 477 drones, 60 missiles launched: Ukrainian military officials said Russia launched 477 drones and 60 missiles in one of the heaviest overnight strikes in recent weeks. The assault included cruise and ballistic missiles, as well as glide bombs, continuing a trend of high-intensity night attacks targeting Ukrainian infrastructure and defenses. by Taboola by Taboola Sponsored Links Sponsored Links Promoted Links Promoted Links You May Like Scam Exposed: What They Won't Tell You about zero trust! Expertinspector Click Here Undo Ukraine shoots down 211 drones, 38 missiles; 225 declared decoys or diverted: In response, Ukrainian defense forces deployed all available systems and intercepted 211 drones and 38 missiles. The Air Force added that another 225 drones were either diverted using electronic warfare techniques or turned out to be drone simulators carrying no warheads. Civilians injured, buildings damaged in multiple regions: The attacks injured at least seven people, including a child in the Cherkasy region. Governor Ihor Taburets said three multi-storey buildings and a college were hit. One woman was injured in the western Ivano-Frankivsk region. Local authorities shared images showing blackened walls, blown-out windows, and emergency workers rescuing civilians. Industrial facilities hit in Mykolaiv and Dnipropetrovsk: Strikes targeted industrial sites in central and southern Ukraine, including Mykolaiv and Dnipropetrovsk. Officials are still assessing the scale of the damage. Air raid sirens and explosions reported in at least six regions: Explosions were reported in Lviv, Poltava, Mykolaiv, Cherkasy, Dnipropetrovsk, and Ivano-Frankivsk as air raid sirens sounded throughout the night. The Ukrainian military confirmed air strikes in six separate locations. Zelenskyy calls for urgent air defense aid after latest wave: President Volodymyr Zelenskyy, responding to the overnight barrage, again appealed to Western allies for more robust air defense systems. 'This war must be brought to an end, pressure on the aggressor is needed, and so is protection,' he said in a post on X (formerly Twitter). 'Ukraine needs to strengthen its air defense, the thing that best protects lives.' Ukraine ready to buy Patriot missile systems , says Zelenskyy: Zelenskyy stated that Ukraine is ready to purchase US-made Patriot missile batteries. He said he had raised the issue directly with US President Donald Trump during their meeting in The Hague last week. 'Now we count on leadership, political will, and the support of the United States, Europe, and all our partners,' he wrote. Russia ramping up attacks - 1,270 drones and 114 missiles this week alone: Zelenskyy warned that Russia has sharply escalated its offensive in recent days. 'Just this week alone, there have been more than 114 missiles, over 1,270 drones, and nearly 1,100 glide bombs,' he said, underscoring the urgency of international support. Air Force confirms pilot's heroism in final moments: In its statement, the Ukrainian Air Force highlighted the fallen pilot's courage. 'The pilot used all of his onboard weapons and shot down seven air targets,' it said. 'While shooting down the last one, his aircraft was damaged and began to lose altitude.' His actions helped save civilian lives, even though it cost him his own.
Time of India
37 minutes ago
- Time of India
Russia's 'Mr Nobody' gambles all with film on Kremlin propaganda
Live Events 'Persona non grata' 'Like musketeers' (You can now subscribe to our (You can now subscribe to our Economic Times WhatsApp channel When Moscow invaded Ukraine, Pavel Talankin , a staff member at a secondary school in Russia's Ural Mountains, was ordered to film patriotic lessons, songs and morning the school's event organiser and also a keen videographer, found the propaganda work so depressing that he wanted to quit his job in the industrial town of he received what he says was the strangest message of his life.A Europe-based filmmaker got in touch, offering to collaborate on a project to document the abrupt militarisation of Talankin's school in the wake of Russia's February 2022 invasion of its had earlier seen a post from a Russian company looking for people whose jobs had been affected by the war. Talankin said he was ready to receiving the foreigner's offer Talankin did not sleep all project changed his life teaming up with David Borenstein and shooting many hours of footage, Talankin last summer fled Russia with seven hard discs, leaving behind his mother, brothers and sisters and the town he the smuggled-out footage Borenstein, a Denmark-based US filmmaker, directed what became " Mr Nobody Against Putin ", an award-winning 90-minute documentary which exposes the intensity of the propaganda at Talankin's school and throughout premiered at the 2025 Sundance film festival in project cost Talankin dearly. Local officials banned his former colleagues from contacting him, he became a hate figure for supporters of the war and his school librarian mother was upset."I have become a persona non grata," Talankin, 34, told AFP from Prague, where he is now outlawed all criticism of the Russian military and the Kremlin and Talankin knew he had taken huge he has no regrets."I would do it all over again."He has been buoyed by the support of people featured in the film including those who lost their loved ones in the former colleague said she became ashamed that she, too, was "part of the system."The documentary reaped awards at festivals and the film crew hopes it will be available to wider audiences in Europe later this year. Borenstein said the film's success had been a "relief" because the multi-national crew overcame numerous obstacles including communication and above all he was "really scared" that if the film flopped Talankin's sacrifice would come to nothing."I knew the whole time that Pasha would have to leave Russia to make this project happen," Borenstein told AFP, referring to his co-director by his diminutive."That is a huge sacrifice for him, because his mum is there, his whole life is there, he does not speak English, not at that time."Talankin has not been able to join the crew to present the film at the Sundance festival in Utah and elsewhere due to paperwork issues, but the team hopes this will soon now he is learning English and adjusting to his new life in said he was heartened by the reactions at the viewer in the Czech Republic said he hated Russians but the film made him reconsider. "We knew nothing about what was happening to you," Talankin quoted the Czech as saying."It is a powerful and poetic piece of cinema," said producer Alexandra Fechner, who is promoting the film in France."This film shows the hidden side of propaganda in Russia , which targets the youngest members of society, children who are being taught a rewritten version of history and given guns!" she the war in its fourth year, Moscow has put society on a war footing and leveraged the educational system to raise a fiercely pro-Kremlin film features Wagner mercenaries telling children about hand grenades and teachers calling Ukrainians "neo-Nazi", and includes an audio recording of a wailing mother at her soldier son's critics also point to the documentary's empathy and light one episode, a history teacher tells pupils that the spiralling prices could soon make gas unaffordable for Europeans."The French will soon be like musketeers, riding horses, and the rest of Europe too," he said that by viewing the footage sent by Talankin nearly every day, he understood the effect of the dehumanising war-time at the beginning he found some of the clips shocking, months later his mind had become so used to the onslaught of the propaganda that he did not see the footage depicting the Wagner mercenaries as something abnormal."I was able to replicate among myself some of the feelings that maybe the students and people in the school felt," he said. "Looking at this propaganda every single day was a lesson in how desensitised you can become to it."A lot of the footage had not made it into the film, including the school's preparations for the possibility of a nuclear is located close to one of Russia's most sensitive sites, the Mayak nuclear reprocessing said Borenstein did not want the viewers to "drown in the enormous amount of negative material.""I have plans for this footage," Talankin said. "Sooner or later I will start slowly releasing it."
