Source: Beebright via Shutterstock
Week in Review: Iran's 'Cyber Centers', China's 'Pre-positioning,' and Cloud Identity
Lots of global coverage this week. Security researchers exposed Iran's use of cyber centers to hide the activity of their advanced persistent threat (APT) groups, while US officials warned that China's state-sponsored actors were 'pre-positioning' to attack US critical infrastructure, as an adjunct to a physical conflict, such as an invasion of Taiwan. Finally, companies are finding tracking identities for cloud services much more difficult.
China Infiltrates US Critical Infrastructure in Ramp-up to Conflict | Dark Reading
Threat actors linked to the People's Republic of China, such as Volt Typhoon, continue to "pre-position" themselves in the critical infrastructure of the United States, according to military and law enforcement officials. (1 February 2024)
Managing Identity Across Clouds Critical to Enterprise Security | Dark Reading
Privileged access management (PAM) is notoriously difficult to deploy, and companies' increasing use of cloud has made it even more complex. (31 January 2024)
Iran's 'Cyber Centers' Dodge Sanctions to Sell Cyber Operations | Dark Reading
Networks of Iranian officials and cyber-offensive specialists have created a variety of cybersecurity contractors in an attempt to dodge sanctions, according to leaked documents. (29 January 2024)