March has been a month of concern for those in the cyber security community following revelations of extensive hacking campaigns carried out by state-backed groups.
In the latter part of the month, it was reported that APT 31, a Chinese state-backed threat group, had accessed information on tens of millions of UK voters in a breach of the Electoral Commission. Threat actors had also targeted US politicians and businesses.
What can we learn from the breach and how can organizations protect themselves against future state-backed threats?
In this episode, Jane and Rory welcome back Ross Kelly, ITPro’s news and analysis editor, to explore the month’s cyber security developments.
Highlights
“APT31 is a Chinese state-linked threat group, it's highly active, highly aggressive in its tactics, and it's been known to target a wide variety of public and private sector organizations.”
RELATED WEBINAR
“It's very much indicative of the increasingly interwoven nature of public sector and private sector, third-sector, government, in terms of how our economies work today. If you have an attack on, say, a private enterprise how many times have we seen government departments in the US, for example, impacted by that, and vice versa? It's both a political and financial minefield for governments and private enterprises themselves.”
“[Phishing] is still something that threat actors are using extensively, because it's so effective. That's where education comes into the equation: enterprises, whether in the public sector or private sector, educating and informing staff, to be able to look out for telltale signs is critical. ”
Footnotes
- Security experts raise questions about UK cyber funding in wake of Electoral Commission hack
- Microsoft: The UK is woefully unprepared for future AI cyber threats
- Five Eyes advisory raises alarm over state-backed 'living off the land' attacks
- State-sponsored hackers are diversifying tactics, targeting small businesses
- Should your business worry about Chinese cyber attacks?
- Should your business worry about Russian cyber attacks?
- NCSC: “New class” of Russian cyber attackers seek to destroy critical infrastructure
Subscribe
- Subscribe to The IT Pro Podcast on Apple Podcasts
- Subscribe to The IT Pro Podcast on Spotify
- Subscribe to the IT Pro newsletter
- Join us on LinkedIn
-
Microsoft quietly launched an AI agent that can detect and reverse engineer malwareNews Researchers say the tool is already achieving the “gold standard” in malware classification
-
AWS CEO Matt Garman just said what everyone is thinking about AI replacing software developersNews Junior developers aren’t going anywhere, according to AWS CEO Matt Garman
-
Can cyber group takedowns last?ITPro Podcast Threat groups can recover from website takeovers or rebrand for new activity – but each successful sting provides researchers with valuable data
-
July rundown: Salt Typhoon and SharePoint scaresITPro Podcast US public sector organizations are under serious threat from the state-backed hacking group
-
Can the UK ban ransomware payments?ITPro Podcast Attempts to cut off ransomware group profits could instead harm businesses
-
We need to talk about operational technologyITPro Podcast Groups like Volt Typhoon are abusing poor hygiene in critical infrastructure to pre-position for attacks
-
RSAC Conference 2025: The front line of cyber innovationITPro Podcast Ransomware, quantum computing, and an unsurprising focus on AI were highlights of this year's event
-
April rundown: MITRE frights and Microsoft launches Recall (again)ITPro Podcast As CISA delivered an eleventh-hour reprieve for the CVE database, AWS reportedly began to pause some data center leases
-
The new era of cyber threatsITPro Podcast With AI-powered attacks and state-backed groups, security teams face face a new wave of sophisticated threats
-
Supply chain scares and Google’s AI codeITPro Podcast As the ransomware attack on Blue Yonder disrupts a wide range of firms, Google moves to lead by example on internal AI code
