Couple randomly attacked, 1 stabbed, by group of teens in Toronto, police say
A man has been transported to hospital after police say he was stabbed in a random attack carried out by a group of teens in Toronto on Friday night.
Microsoft said Monday the same Russia-backed hackers responsible for the 2020 SolarWinds breach continue to attack the global technology supply chain and have been relentlessly targeting cloud service companies and others since summer.
The group, which Microsoft calls Nobelium, has employed a new strategy to piggyback on the direct access that cloud service resellers have to their customers' IT systems, hoping to "more easily impersonate an organization's trusted technology partner to gain access to their downstream customers." Resellers act as intermediaries between giant cloud companies and their ultimate customers, managing and customizing accounts.
"Fortunately, we have discovered this campaign during its early stages, and we are sharing these developments to help cloud service resellers, technology providers, and their customers take timely steps to help ensure Nobelium is not more successful," Tom Burt, a Microsoft vice president, said in a blog post.
The Biden administration downplayed Microsoft's announcement. A U.S. government official briefed on the issue who insisted on anonymity to discuss the government's response noted that "the activities described were unsophisticated password spray and phishing, run-of-the mill operations for the purpose of surveillance that we already know are attempted every day by Russia and other foreign governments."
The Russian Embassy did not immediately reply to a request for comment.
U.S. and Russian ties have already been strained this year over a string of high-profile ransomware attacks against U.S. targets launched by Russia-based cyber gangs. U.S. President Joe Biden has warned to Russian President Vladimir Putin to get him to crack down on ransomware criminals, but several top administration cybersecurity officials have said recently that they have seen no evidence of that.
Supply chain attacks allow hackers to steal information from multiple targets by breaking into a single product they all use. The U.S. government has previously blamed Russia's SVR foreign intelligence agency for the SolarWinds hack, a supply-chain hack which went undetected for most of 2020, compromised several federal agencies and badly embarrassing Washington.
The hacking campaign is called SolarWinds after the U.S. software company whose product was used in that effort. The Biden administration in April placed new sanctions against six Russian companies that support the country's cyber efforts in response to the SolarWinds hack.
Microsoft has been observing Nobelium's latest campaign since May and has notified more than 140 companies targeted by the group, with as many as 14 believed to have been compromised. The attacks have been increasingly relentless since July, with Microsoft noting that it had informed 609 customers that they had been attacked 22,868 times by Nobelium, with a success rate in the low single digits. That's more attacks than Microsoft had flagged from all nation-state actors in the previous three years.
"Russia is trying to gain long-term, systematic access to a variety of points in the technology supply chain and establish a mechanism for surveilling -- now or in the future -- targets of interest to the Russian government," Burt said.
Microsoft did not name any of the hackers' targets in their latest campaign. But cybersecurity firm Mandiant said it had seen victims in both Europe and North America.
Mandiant Chief Technology Officer Charles Carmakal said the hackers' method of going after resellers make detection difficult.
"It shifts the initial intrusion away from the ultimate targets, which in some situations are organizations with more mature cyber defenses, to smaller technology partners with less mature cyber defenses," he said.
------
AP Business Writer Matt Ott in Silver Spring, Maryland, contributed to this report.
A man has been transported to hospital after police say he was stabbed in a random attack carried out by a group of teens in Toronto on Friday night.
Ron Ellis, who played over 1,000 games with the Toronto Maple Leafs and was a member of Canada's team at the 1972 Summit Series, has died at age 79.
The wildfire that sparked Friday and caused evacuation orders for more than 3,000 people in Fort Nelson, B.C., and the nearby Fort Nelson First Nation, has grown to nearly 1,700 hectares in size, according to a Saturday morning update from the BC Wildfire Service.
Hours before the final, Dutch contestant Joost Klein was dramatically booted out by organizers over a backstage incident. He had failed to perform at two dress rehearsals on Friday, and contest organizer the European Broadcasting Union said it was investigating an "incident."
From London, to Grand Bend, Collingwood and Guelph, here are some highlights of Friday night and Saturday morning's northern lights display.
A growing number of civilians and police officers are demanding the dismissal and arrest of Haiti's police chief as heavily armed gangs launched a new attack in the capital of Port-au-Prince, seizing control of yet another police station early Saturday.
Irresponsibly using a credit card can land you in financial trouble, but personal finance columnist Christopher Liew says when used properly, it can be a powerful wealth-building tool that can help grow your credit profile and create new opportunities.
Where you live plays a big factor in what you pay at the grocery store. And while it's no secret the same item may have a different price depending on the store, city or province, we wanted to see just how big the differences are, and why.
The rolling hills leading to the hamlet of Rosebud are dotted with sprawling farms and cattle pastures -- and a sign sporting a simple message: No Race Track.
A family of fifth generation farmers from Ituna, Sask. are trying to find answers after discovering several strange objects lying on their land.
A Listowel, Ont. man, drafted by the Hamilton Tigercats last week, is also getting looks from the NFL, despite only playing 27 games of football in his life.
The threat of zebra mussels has prompted the federal government to temporarily ban watercraft from a Manitoba lake popular with tourists.
A small Ajax dessert shop that recently received a glowing review from celebrity food critic Keith Lee is being forced to move after a zoning complaint was made following the social media influencer’s visit last month.
The Canada Science and Technology Museum is inviting visitors to explore their poop. A new exhibition opens at the Ottawa museum on Friday called, 'Oh Crap! Rethinking human waste.'
The Regina Police Service says it is the first in Saskatchewan and possibly Canada to implement new technology in its detention facility that will offer real-time monitoring of detainees’ vital health metrics.
Just as she had feared, a restaurant owner from eastern Quebec who visited Montreal had her SUV stolen, but says it was all thanks to the kindness of strangers on the internet — not the police — that she got it back.
The stakes have been set for a bet between Vancouver and Edmonton's mayors on who will win Round 2 of the Stanley Cup playoffs.
A grieving mother is hosting a helmet drive in the hopes of protecting children on Manitoba First Nations from a similar tragedy that killed her daughter.