Grandparents killed in wrong-way crash on Hwy. 401 identified
A 60-year-old man and a 55-year-old woman killed in a wrong-way crash on Highway 401 earlier this week have been identified by the Consulate General of India in Toronto.
The elite Russian state hackers behind last year's massive SolarWinds cyberespionage campaign hardly eased up this year, managing plenty of infiltrations of U.S. and allied government agencies and foreign policy think tanks with consummate craft and stealth, a leading cybersecurity firm reported.
Also Monday, Microsoft announced that it had disrupted the cyber-spying of a state-backed Chinese hacking group by seizing websites it used to gather intelligence from foreign ministries, think tanks and human rights organizations in the U.S. and 28 other countries, chiefly in Latin America and Europe.
Microsoft said a Virginia federal court had granted its request last Thursday to seize 42 web domains that the Chinese hacking group, which it calls Nickel but which is also known as APT15 and Vixen Panda, were using to access targets typically aligned with China's geopolitical interests. It said in a blog that “a key piece of the infrastructure the group has been relying on” in its latest wave of infiltrations was removed. The seized domains include “elperuanos.org,” “pandemicacre.com” and “cleanskycloud.com.”
The dual announcements, though unrelated, highlight the unrelenting drumbeat of digital spying by its top U.S. geopolitical rivals, whose cyber-intrusion skillset is matched only by that of the United States.
A year after it discovered the SolarWinds intrusions, Mandiant said the hackers associated with Russia's SVR foreign intelligence agency continue to steal data “relevant to Russian interests” with great effect using novel, stealthy techniques that it detailed in a mostly technical report aimed at helping security professionals stay alert. It was Mandiant, not the U.S. government, that disclosed SolarWinds.
While the number of government agencies and companies hacked by the SVR was smaller this year than last, when some 100 organizations were breached, assessing the damage is difficult, said Charles Carmakal, Mandiant's chief technical officer. Overall, the impact is quite serious. “The companies that are getting hacked, they are also losing information.”
“Not everybody is disclosing the incident(s) because they don't always have to disclose it legally,” he said, complicating damage-assessment.
The Russian cyber spying unfolded, as always, mostly in the shadows as the U.S. government was consumed in 2021 by a separate, eminently “noisy” and headline-grabbling cyber threat - ransomware attacks launched not by nation-state hackers but rather criminal gangs. As it happens, those gangs are largely protected by the Kremlin.
The Mandiant findings follow an October report from Microsoft that the hackers, whose umbrella group it calls Nobelium, continue to infiltrate the government agencies, foreign policy think tanks and other organizations focused on Russian affairs through the cloud service companies and so-called managed services providers on which they increasingly rely. The Mandiant researchers said the Russian hackers “continue to innovate and identify new techniques and tradecraft” that lets them linger in victim networks, hinder detection and confuse attempts to attribute hacks to them.
Mandiant did not identify individual victims or describe what specific information may have been stolen but did say unspecified “diplomatic entities” that received malicious phishing emails were among the targets.
Often, the researchers say, the hackers' path of least resistance to their targets were cloud-computing services. From there, they used stolen credentials to infiltrate networks. The report describes how in one case they gained access to one victim's Microsoft 365 system through a stolen session token. And, the report says, the hackers routinely relied on advanced tradecraft to cover their tracks.
One clever technique discussed in the report illustrates the ongoing cat-and-mouse game that digital espionage entails. Hackers set up intrusion beachheads using IP addresses, a numeric designation that identifies its location on the internet, that were physically located near an account they are trying to breach - in the same address block, say, as the person's local internet provider. That makes it highly difficult for security software to detect a hacker using stolen credentials posing as someone trying to access their work account remotely.
Microsoft expressed no illusions that the website seizures it announced Monday would discourage the Chinese hackers, who it has been tracking since 2016. It said the takedowns were of infrastructure it has been tracking since 2019, much of it exploiting on-premises -- as opposed to cloud-based - Exchange Server and SharePoint systems. The company has used the legal takedown tactic in 24 lawsuits to date, Microsoft said, knocking out a total of 600 sites used by nation-state actors and 10,000 by cybercriminals.
The SolarWinds hack exploited vulnerabilities in the software supply-chain system and went undetected for most of 2020 despite compromises at a broad swath of federal agencies - including the Justice Department - and dozens of companies, primarily telecommunications and information technology providers and including Mandiant and Microsoft.
The hacking campaign is named SolarWinds after the U.S. software company whose product was exploited in the first-stage infection of that effort. The Biden administration imposed sanctions last April in response to the hack, including against six Russian companies that support the country's cyber efforts.
A 60-year-old man and a 55-year-old woman killed in a wrong-way crash on Highway 401 earlier this week have been identified by the Consulate General of India in Toronto.
Three people have been arrested and charged in the killing of B.C. Sikh activist Hardeep Singh Nijjar – as authorities continue investigating potential connections to the Indian government.
Pius Suter scored with 1:39 left and the Vancouver Canucks advanced to the second round of the NHL playoffs with a 1-0 victory over the Nashville Predators on Friday night in Game 6.
TD Bank Group could be hit with more severe penalties than previously expected, says a banking analyst after a report that the investigation it faces in the U.S. is tied to laundering illicit fentanyl profits.
A Quebec man who pleaded guilty to threatening Prime Minister Justin Trudeau and Premier François Legault has been sentenced to 20 months in jail.
RCMP say human remains found in a rural area in central Saskatchewan may have been there for a decade or more.
A source close to singer Britney Spears tells CNN that the pop star is 'home and safe' after she had a 'major fight' with her boyfriend on Wednesday night at the Chateau Marmont in West Hollywood.
As Wegovy becomes available to Canadians starting Monday, a medical expert is cautioning patients wanting to use the drug to lose weight that no medication is a ''magic bullet,' and the new medication is meant particularly for people who meet certain criteria related to obesity and weight.
Drew Carey took over as host of 'The Price Is Right' and hopes he’s there for life. 'I'm not going anywhere,' he told 'Entertainment Tonight' of the job he took over from longtime host Bob Barker in 2007.
Alberta Ballet's double-bill production of 'Der Wolf' and 'The Rite of Spring' marks not only its final show of the season, but the last production for twin sisters Alexandra and Jennifer Gibson.
A British Columbia mayor has been censured by city council – stripping him of his travel and lobbying budgets and removing him from city committees – for allegedly distributing a book that questions the history of Indigenous residential schools in Canada.
Three men in Quebec from the same family have fathered more than 600 children.
A group of SaskPower workers recently received special recognition at the legislature – for their efforts in repairing one of Saskatchewan's largest power plants after it was knocked offline for months following a serious flood last summer.
A police officer on Montreal's South Shore anonymously donated a kidney that wound up drastically changing the life of a schoolteacher living on dialysis.
Since 1932, Montreal's Henri Henri has been filled to the brim with every possible kind of hat, from newsboy caps to feathered fedoras.
Police in Oak Bay, B.C., had to close a stretch of road Sunday to help an elephant seal named Emerson get safely back into the water.
Out of more than 9,000 entries from over 2,000 breweries in 50 countries, a handful of B.C. brews landed on the podium at the World Beer Cup this week.
Raneem, 10, lives with a neurological condition and liver disease and needs Cholbam, a medication, for a longer and healthier life.