'Forest Blizzard', 'Fancy Bear': Cyber Companies Vs Hacker Nicknames
Washington:
Microsoft, CrowdStrike, Palo Alto and Alphabet's Google on Monday said they would create a public glossary of state-sponsored hacking groups and cybercriminals, in a bid to ease confusion over the menagerie of unofficial nicknames for them.
Microsoft and CrowdStrike said they hoped to potentially bring other industry partners and the U.S. government into the effort to identify Who's Who in the murky world of digital espionage.
"We do believe this will accelerate our collective response and collective defense against these threat actors," said Vasu Jakkal, corporate vice president, Microsoft Security.
How meaningful the effort ends up being remains to be seen.
Cybersecurity companies have long assigned coded names to hacking groups, as attributing hackers to a country or an organization can be difficult and researchers need a way to describe who they are up against.
Some names are dry and functional, like the "APT1" hacking group exposed by cybersecurity firm Mandiant or the "TA453" group tracked by Proofpoint. Others have more color and mystery, like the "Earth Lamia" group tracked by TrendMicro or the "Equation Group" uncovered by Kaspersky.
Crowdstrike's evocative nicknames - "Cozy Bear" for a set of Russian hackers, or "Kryptonite Panda" for a set of Chinese ones - have tended to be the most popular, and others have also adopted the same kind of offbeat monikers.
In 2016, for example, the company Secureworks - now owned by Sophos - began using the name "Iron Twilight" for the Russian hackers it previously tracked as "TG-4127." Microsoft itself recently revamped its nicknames, moving away from staid, element-themed ones like "Rubidium" to weather-themed ones like "Lemon Sandstorm" or "Sangria Tempest."
But the explosion of whimsical aliases has already led to overload. When the U.S. government issued a report about hacking attempts against the 2016 election, it sparked confusion by including 48 separate nicknames attributed to a grab bag of Russian hacking groups and malicious programs, including "Sofacy," "Pawn Storm," "CHOPSTICK," "Tsar Team," and "OnionDuke."
Michael Sikorski, the chief technology officer for Palo Alto's threat intelligence unit, said the initiative was a "game-changer."
"Disparate naming conventions for the same threat actors create confusion at the exact moment defenders need clarity," he said.
Juan-Andres Guerrero-Saade, a top researcher at the cybersecurity firm SentinelOne, was skeptical of the effort, saying the cold reality of the cybersecurity industry was that companies hoarded information.
Unless that changed, he said, "this is branding-marketing-fairy dust sprinkled on top of business realities."
But CrowdStrike Senior Vice President of counter adversary operations, Adam Meyers, said the move had already delivered a win by helping his analysts connect a group Microsoft called "Salt Typhoon" with one CrowdStrike dubbed "Operator Panda."
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Indian Express
26 minutes ago
- Indian Express
OnePlus 13s: Specs, features, price and everything else we know so far about the compact phone
OnePlus is all set to launch the OnePlus 13s, its first-ever compact smartphone, on Thursday, June 5, in India. The upcoming smartphone, which will run on OxygenOS 15 based on Android 15 out of the box, will be joining the OnePlus 13 and the OnePlus 13R. The company is also hosting a virtual event, which will be livestreamed on YouTube at noon tomorrow. If you are interested in knowing more about the OnePlus 13s, from battery to chipset, here's everything we know so far about the upcoming compact flagship device. OnePlus' upcoming small phone will be competing against the likes of the iPhone 16e, the Pixel 9a and the recently launched Galaxy S25 Edge. The Chinese phone maker has already confirmed that the OnePlus 13s will be powered by Qualcomm's newest and fastest chipset – the Snapdragon 8 Elite. To give you a quick recap, this is the same chipset that powers the likes of the Galaxy S25 Ultra, OnePlus 13, Xiaomi 15, iQOO 13, and other flagship phones launched this year. The OnePlus 13s is said to sport a 6.32-inch LTPO AMOLED screen with a 120Hz refresh rate and a maximum brightness of around 1,600 nits. This is rumoured to be backed by 12GB of LPDDR5X RAM and 512GB of UFS 4.0 storage. The back of the phone is expected to sport a squircle-ish camera island that houses a dual camera setup, which comprises of a 50MP primary shooter in addition to a 50MP telephoto lens with 2x optical zoom. On the front, we may see a 32MP selfie shooter. However, like the Chinese exclusive OnePlus 13T, it may miss out on an ultrawide shooter. Rumour also has it that the OnePlus 13s will pack a 6,260mAh Silicon Carbon battery with support for 80W wired and 18W wireless charging, but we will have to wait a few more hours to know more. With the OnePlus 13s, the company might also ditch the iconic Alert Slider in favour of a new button called the Plus key, which can be customised to launch to trigger frequently used functions or use AI features. OnePlus has also teased some new AI-powered software features like VoiceScribe, Call Assistant and AI translation. As for colourways, the OnePlus 13s is said to come in three colours – Black Velvet, Pink Satin and Green Silk. It will most likely weigh 185 and be priced at or around Rs 55,000, making it significantly more affordable than the OnePlus 13 but a lot more expensive than the OnePlus 13R.
Mint
37 minutes ago
- Mint
Company earns ₹44 lakh from ‘desperate' parents for fake kids' fashion show, uses luxury brand names like Dior, Gucci
A Chinese company has been running fake children's fashion shows under the name Paris Kids Fashion Week. Since 2020, it tricked many parents by claiming links with Paris Fashion Week. It also used images of The Louvre and luxury brand names like Dior and Gucci. The company charged 6,000 yuan ( ₹ 71,000) per child to walk the ramp and even organised events where parents joined their kids. It collected 367,000 yuan ( ₹ 44 lakh) from parents as registration fees. The scam ran shows in Shanghai, Paris and Toronto, The South China Morning Post reported. The Shanghai Market Regulatory Bureau confirmed it was a fraud after Gucci's office had complained in 2023. The firm had also used fake logos like Gucc100 and Gucc101. The company has now been fined 600,000 yuan ( ₹ 71 lakh). During the investigation, a staff member revealed the company charged over 10,000 yuan ( ₹ 1.20 lakh approx) for each costume children wore. But, many of those clothes were fake, SCMP added. The owner, Huang, admitted buying fake clothes online but said they were only used for photo shoots, not sold. Still, the authorities found this was trademark misuse. A legal officer in Shanghai said this wasn't the first time the company was fined, yet it didn't stop. Their social media pages still remain active. When dug further, we found such social media pages on platforms like Instagram and Facebook. However, the pages had very little engagement. The last posts on those pages were shared back in 2023. The South China Morning Post shared how Chinese social media users reacted to the scam. 'Such phenomena are quite common these days. Many art and sports training centres also charge parents a big sum of money to send their kids to unauthorised contests,' wrote one user.
&w=3840&q=100)
First Post
41 minutes ago
- First Post
Ukraine war has claimed nearly 1.4 million troop casualties: Study
Russia's ongoing war on Ukraine has led to around 1.4 million troop casualties on both the sides, according to a study by Center for Strategic and International Studies (CSIS). While Russia has suffered 1 million casualties, Ukraine has suffered around 400,000 casualties. read more Ukrainian servicemen carry a bag containing the body of a Ukrainian soldier as one of them, right, carries the remains of a body of a Russian soldier in a retaken area near the border with Russia in the Kharkiv region if Ukraine. (Photo: AP) Russia's ongoing war on Ukraine has led to around 1.4 million military casualties, according to a study by Center for Strategic and International Studies (CSIS). In February 2022, Russia launched a full-scale invasion of Ukraine. The invasion came eight years after Russia invaded and annexed Ukraine's Crimea region. While Russian leader Vladimir Putin had thought his forces would overrun Ukraine within weeks if not days and he would install a puppet ruler in Kyiv after overthrowing the administration of President Volodymyr Zelenskyy, the war is now in its fourth year and Putin is nowhere near achieving the goals he set out with. STORY CONTINUES BELOW THIS AD The CSIS study has assessed that Russia has suffered around 1 million military casualties and Ukraine has suffered 400,000 — the worst toll on either country since the World War II. Actual casualties of both sides are difficult to assess as Russian often undercounts its death to portray a false sense of victory and Ukraine does not release its casualty figures. The study is based on figures from US and British government estimates among other sources. Russia pays heavy toll for war of attrition Despite being stronger in every aspect, Russia has paid a heavy toll for the war on Ukraine — and it appears to be in a better place at least for now. Out of around 1 million Russian casualties, around 250,000 soldiers have been killed, according to the study. As for Ukraine, around 60-100,000 soldiers have been killed out of total 250,000 casualties. While Russia lost more soldiers overall, Ukraine's share is higher. As Russia has a much larger population, and has foreign sources like North Korea providing several thousands of soldiers, it is in a much better position to absorb its losses. Ukrainians are also outnumbered on the frontline as independent analysts have said that 400,000 Russian soldiers are facing around 250,000 Ukrainians. Russia achieves little at high cost — But is it high enough? The CSIS study found that Russian progress has halted for more than a year and its forces have progressed at some place at a pace of just around 165 feet a day. Since January 2024, Russia has seized less than 1 per cent of Ukrainian territory, according to the study. Overall, Russia controls around 19 per cent of Ukrainian territory, as per the Russia Matters project of the Harvard Kennedy School's Belfer Center for Science and International Affairs. STORY CONTINUES BELOW THIS AD Out of this 19 per cent territory, Russia had occupied around 12 per cent with the annexation of Crimea in 2014. This means that Russia has suffered 1 million casualties, including 250,000 deaths, to capture just around 7 per cent territory in more than three years. In addition to 1 million troop casualties, Russia has also lost nearly the entire Black Sea fleet, around a third of its long-range bomber and surveillance fleet, and some of its top generals. Seth G Jones, a co-author of the CSIS study, told The New York Times, that the Russian campaign is among the slowest in modern history and Russia can only win if US President Donald Trump decides to end the support to Ukraine. 'They have suffered upwards of 1 million casualties. They have taken a tiny amount of territory and they have lost massive amounts of equipment…The Russians would hold the long-term balance of power if President Trump walks away. If the US doesn't walk, Putin is in serious trouble,' said Jones. STORY CONTINUES BELOW THIS AD
