Ezekiel Dean Potter, 34, who worked as a senior IT support specialist, retained access credentials after his employment ended in April 2023 and targeted the district's systems for over a year and a half.
The FBI's Kinetic Cyber Range, a 22,000 square-foot replica town in Huntsville, Alabama, features houses, a hotel, a gas station, a courthouse, a hospital, and a power company, all wired with functioning devices.
The House voted against renewing Section 702 of FISA, a law that allows U.S. intelligence agencies to collect vast amounts of information, including data on Americans, to identify foreign threats.
The group's operation, dubbed Operation Highland, involved backdooring the Pluggable Authentication Modules (PAM) and OpenSSH components, which are fundamental to user authentication on Linux systems.
Vietnam-aligned threat actor OceanLotus has been linked to two distinct campaigns targeting domestic entities and stock investors with a backdoor known as SPECTRALVIPER, according to ESET.
OnyxC2 is being sold on cybercrime forums for as little as $250 per month, with developers offering refunds if their builds are detected, highlighting confidence in its evasion capabilities.
Initially flagged as part of the KV-botnet, JDY has evolved into an independent reconnaissance capability following the U.S. government's takedown of KV in early 2024.
