Fancy Bear sighted in Ukrainian in-boxes. Why Russian cyberattacks against Ukraine have fallen short of expectations. ToddyCat APT is active in European and Asian networks. ICEFALL ICS vulnerabilities described. CISA issues ICS vulnerability advisories. Europol makes nine collars. Andrea Little Limbago from Interos on The global state of data protection and sharing. Rick Howard speaks with Michelangelo Sidagni from NopSec on the Future of Vulnerability Management. We are shocked, shocked, to hear of corruption in the FSB

Selected reading.

Ukrainian cybersecurity officials disclose two new hacking campaigns (CyberScoop) 

Ukraine Warns of New Malware Campaign Tied to Russian Hackers (Bloomberg Law) 

Russian govt hackers hit Ukraine with Cobalt Strike, CredoMap malware (BleepingComputer) 

Opinion How Russia’s vaunted cyber capabilities were frustrated in Ukraine (Washington Post) 

New Toddycat APT Targets MS Exchange Servers in Europe and Asia (Infosecurity Magazine) 

Microsoft Exchange servers hacked by new ToddyCat APT gang (BleepingComputer)

OT:ICEFALL: 56 Vulnerabilities Caused by Insecure-by-Design Practices in OT (Forescout)

From Basecamp to Icefall: Secure by Design OT Makes Little Headway (SecurityWeek)

Dozens of vulnerabilities threaten major OT device makers (Cybersecurity Dive) 

CISA releases 6 Industrial Control Systems Advisories (Cybersecurity and Infrastructure Security Agency) 

Phishing gang behind several million euros worth of losses busted in Belgium and the Netherlands (Europol)

Подполковника УФСБ по Самарской области арестовали за кражу криптовалюты у хакера (TASS)