Lockheed Martin presses case that GPS upgrade will counter jamming threats

https://fed.brid.gy/r/https://spacenews.com/lockheed-martin-presses-case-that-gps-upgrade-will-counter-jamming-threats/

#gpsjamming in der Ostsee war meist auf Quellen aus dem Kaliningrader Gebiet beschränkt. Jetzt ist eine neue Quelle aufgetaucht, die ihren Ursprung augenscheinlich in Deutschland hat. Das Ziel ust klar: eine Meerenge, die viele Schiffe passieren, bei der ein Windpark in der Nähe steht, in der GPS Daten nicht mehr zu trauen ist. Ein Unfall in diesem Gebiet hätte fatale Folgen nicht nur für die Umwelt.

The latest post on TechAptitude reviews GPS Jamming - the ins and outs of jamming, how GPS works, and why we should be aware of the risks! https://techaptitude.substack.com/p/gps-jamming-the-risks-are-real #GPS #GPSJamming #GlobalPositioning #Space #Satellites #Positioning #SpaceForce #GNSS #NAVSTAR #DoD

#39C3: Satellitenunabhängiges Navigationssystem R-Mode soll Ende 2026 starten | heise online https://www.heise.de/news/39C3-Navigationssystem-R-Mode-gegen-den-Baltic-Jammer-11125381.html #GPS #GPSspoofing #GPSjamming

Denmark reports systematic military provocations by Russian #navy in its straits – Reuters

#Denmark's #military intelligence service has accused #Russian warships of repeated aggressive actions in the #Danish straits connecting the #BalticSea and #NorthSea.

The provocations included aiming #weapons at Danish vessels and helicopters, conducting dangerous near-collision manoeuvres and #jamming #navigation systems.

https://www.pravda.com.ua/eng/news/2025/10/04/8001180/

#RussianAggression #GPS #GPSJamming

Thursday, September 25, 2025

https://activitypub.writeworks.uk/2025/09/thursday-september-25-2025/

Nachdem neulich Falschmeldungen von 123.000 ausgefallenen Flügen wegen #GPS-Jamming durchs Netz geisterten, ist es nun das erste Mal tatsächlich dazu gekommen, dass ein norwegisches Verkehrsflugzeug wegen #GPS #Jammings nicht landen konnte. Kaum eine Meldung. www.aerotelegraph.com/sicherheit/p...

Dash 8 von Wideroe kann wegen ...

"123,000 flights disrupted by GNSS jamming" by GPS World (Fediverse presence not found #FPNF - if you know them, invite them) - Report counted 123,000 incidents of GPS/GNSS jamming & spoofing affecting flights over Sweden or neighboring allied countries between January and April 2025. The jamming originated from four sites in Russia. https://www.gpsworld.com/123000-flights-disrupted-by-gnss-jamming/ #GPSjamming #GPS #GNSS #aviation #travel #avgeek

Von-der-Leyen-Flug: Litauen warnt EU vor massiven #GPS-Störungen | heise online https://www.heise.de/news/Von-der-Leyen-Flug-Litauen-warnt-EU-vor-massiven-GPS-Stoerungen-10635292.html #GPSjamming #Russland 🇷🇺 #Russia 🇷🇺

Bulgarien: Verwirrung um potenzielle #GPS-Störung beim Flugzeug von der Leyens | heise online https://www.heise.de/news/Bulgarien-Verwirrung-um-potenzielle-GPS-Stoerung-beim-Flugzeug-von-der-Leyens-10633182.html #GPSjamming

Die Meldungen zum angeblichen #GPS-Jamming auf den Flug von Von-der-Leyen nach Bulgarien waren offenbar übertriebene #fakenews: https://www.derstandard.at/story/3000000286440/kein-gps-jamming-bulgarien-zieht-behauptung-zu-angriff-auf-von-der-leyen-flug-zurueck

#GPSJamming

Tackling Russia's hybrid war on Europe: Jamming and spoofing in the 'grey zone'.

NATO and the EU are working on ways to counter Russia's jamming of GPS systems aboard civilian flights.

How does jamming work and what other "grey zone" techniques has Moscow been using in Europe?

https://mediafaro.org/article/20250905-tackling-russias-hybrid-war-on-europe-jamming-and-spoofing-in-the-grey-zone?mf_channel=mastodon&action=forward

#Russia #Europe #HybridWarfare #GPSJamming #GPSSpoofing #Tech #NATO #EU #Bulgaria

"Bulgaria flip-flops on von der Leyen plane’s GPS glitch" by @POLITICOEurope - Confusion in the reporting appears to have come from a mistaken and then retracted announcement by the Bulgarian government, and news media parroting the report initially without attempting verification. A reporter who was on the plane originated the "circled for an hour" goof. Arrival was delayed 9 minutes after a missed approach. https://www.politico.eu/article/bulgaria-no-jamming-eu-ursula-von-der-leyen-gps-plane-russia-pm-rosen-zhelyazkov/ #GPS #GPSjamming #GNSS #aviation #pilot #avgeek #travel

"Ursula von der Leyen’s flight to Plovdiv: what the data tells us" by @flightradar24 / Ian Petchenik - FlightRadar24's examination of ADS-B positions reported by the aircraft indicate GPS jamming was not a factor in European Commission President Ursula von der Leyen's plane on approach to Plovdiv, Bulgaria. It did not "circle for an hour" as some media reported. FR24 recommends waiting for the investigation results. https://www.flightradar24.com/blog/aviation-explainer-series/ursula-von-der-leyen-gps-jamming/ #GPS #GPSjamming #GNSS #aviation #pilot #avgeek #travel

Forse toename gps-jamming vanuit Rusland boven Zweden geteld

https://www.transport-online.nl/98662/forse-toename-gps-jamming-vanuit-rusland-boven-zweden-geteld/ #gps #gpsjamming #luchtvaart #Rusland #Zweden

What can Europe do to better defend against GPS hacks from Russia?

Europe is experiencing an upsurge in GPS interference in areas such as the Baltic and Black Seas, particularly near airports and critical infrastructure.

In a letter European ministers reported that GPS jamming and spoofing had been observed since 2022 in the Baltic Sea region, mainly from Russia and Belarus.

https://mediafaro.org/article/20250902-what-can-europe-do-to-better-defend-against-gps-hacks-from-russia?mf_channel=mastodon&action=forward

#GPSInterference #GPSJamming #GPSSpoofing #GPS #Aviation #EU #Europe #Security #Russia #Tech

Alright team, it's been a pretty packed 24 hours in the cyber world! We've got a flurry of supply chain breaches, some critical zero-days, new nation-state malware, and a few reminders about basic security hygiene. Let's dive in:

Recent Cyber Attacks & Breaches ⚠️

- Luxury car manufacturer JLR has confirmed a cyber incident "severely disrupted" its global IT systems, impacting both production and retail operations.
- The company proactively shut down systems to mitigate impact, with no evidence of customer data theft reported yet, but significant operational downtime.
- This follows a trend of UK companies facing cyber incidents, highlighting the need for robust incident response and resilience planning.

🗞️ The Record | https://therecord.media/jaguar-land-rover-disruption-cyber-incident
🤖 Bleeping Computer | https://www.bleepingcomputer.com/news/security/jaguar-land-rover-says-cyberattack-severely-disrupted-production/

Pennsylvania AG Office Ransomware Attack 🏛️

- The Office of the Pennsylvania Attorney General confirmed a ransomware attack caused a two-week service outage, with the office refusing to pay the ransom.
- While systems are being restored, the incident led to court extensions for cases, though criminal prosecutions are not expected to be impacted.
- This marks the third ransomware attack on a Pennsylvania state entity, underscoring the persistent threat to government services and the importance of robust backups and recovery plans.

🤖 Bleeping Computer | https://www.bleepingcomputer.com/news/security/pennsylvania-ag-office-says-ransomware-attack-behind-recent-outage/
🗞️ The Record | https://therecord.media/pennsylvania-attorney-general-office-ransomware-attack-recovery

Salesloft Drift Supply Chain Attacks Continue 🔗

- Palo Alto Networks, Zscaler, and Cloudflare are the latest victims in the ongoing Salesloft Drift supply chain attacks, where stolen OAuth tokens from Drift's Salesforce integration led to data exfiltration.
- Attackers gained access to Salesforce instances, primarily exfiltrating customer business contact information, company attributes, and basic support case details, with Cloudflare specifically warning about potential exposure of API tokens and sensitive info shared in support tickets.
- Organisations using Drift integrations should immediately revoke and rotate all associated OAuth tokens and API keys, and meticulously audit Salesforce login histories and API access logs from early August for suspicious activity.

🕵🏼 The Register | https://go.theregister.com/feed/www.theregister.com/2025/09/02/stolen_oauth_tokens_expose_palo/
🕵🏼 The Register | https://go.theregister.com/feed/www.theregister.com/2025/09/02/zscaler_customer_data_drift_compromise/
🤖 Bleeping Computer | https://www.bleepingcomputer.com/news/security/cloudflare-hit-by-data-breach-in-salesloft-drift-supply-chain-attack/
🕵🏼 The Register | https://go.theregister.com/feed/www.theregister.com/2025/09/02/cloudflare_salesloft_drift_breach/

Europe Blames Russia for GPS Jamming 🛰️

- A plane carrying European Commission president Ursula von der Leyen was forced to use manual navigation after GPS jamming, which Bulgarian authorities and the EC attribute to Russia.
- This incident highlights a growing trend of GPS interference, particularly on Europe's Eastern flank, impacting air, maritime, and transport economies.
- The EU is working on an action plan to mitigate future attacks, including increasing low Earth orbit satellites and enhancing interference detection, but these are long-term solutions.

🕵🏼 The Register | https://go.theregister.com/feed/www.theregister.com/2025/09/02/eu_gps_jamming_russia_response/

New Threat Research 🔬

Lazarus Group Expands Malware Arsenal 🇰🇵

- North Korea's Lazarus Group is deploying three new cross-platform RATs – PondRAT, ThemeForestRAT, and RemotePE – in social engineering campaigns targeting the DeFi sector.
- The attack chain involves impersonating employees, using fake meeting sites, and deploying a loader (PerfhLoader) for initial access, potentially leveraging a Chrome zero-day.
- PondRAT is a basic RAT for file operations and shellcode, ThemeForestRAT offers more functionality and stealth, while RemotePE is a sophisticated RAT reserved for high-value targets, showcasing the group's evolving tradecraft.

📰 The Hacker News | https://thehackernews.com/2025/09/lazarus-group-expands-malware-arsenal.html

Ukrainian Network FDN3 Launches Brute-Force Campaigns 🇺🇦

- A Ukrainian IP network, FDN3 (AS211736), along with associated networks (VAIZ-AS, ERISHENNYA-ASN, TK-NET), has been flagged for massive brute-force and password spraying attacks on SSL VPN and RDP devices.
- These networks frequently exchange IPv4 prefixes to evade blocklisting and are linked to bulletproof hosting services, including those associated with Ecatel's owners and Russian company Alex Host LLC.
- The activity, peaking in July 2025, highlights the use of such infrastructure by RaaS groups for initial access, urging defenders to secure RDP and SSL VPN endpoints against common credential attacks.

📰 The Hacker News | https://thehackernews.com/2025/09/ukrainian-network-fdn3-launches-massive.html

Vulnerabilities & Exploitation 🛡️

WhatsApp & Apple Zero-Day Under Attack 📱

- WhatsApp and Apple have patched a zero-day vulnerability (CVE-2025-55177 in WhatsApp, CVE-2025-43300 in Apple OS) believed to be used in highly targeted, sophisticated attacks.
- The WhatsApp flaw involved "incomplete authorization of linked device synchronization messages," which could trigger content processing from arbitrary URLs.
- Apple's CVE-2025-43300 was an "out-of-bounds write issue" affecting iOS, iPadOS, and macOS, with both companies confirming active exploitation against specific individuals. Update your devices immediately!

🗞️ The Record | https://therecord.media/whatsapp-apple-zero-day-targeted-attacks

Frostbyte10 Bugs in Copeland Controllers 🧊

- Ten vulnerabilities, dubbed Frostbyte10, have been discovered in Copeland E2 and E3 controllers, used in thousands of refrigeration systems at major grocery chains and cold storage facilities.
- Three critical bugs could allow unauthenticated remote code execution with root privileges, potentially enabling manipulation of temperatures, food spoilage, and supply chain disruption.
- Copeland has issued firmware updates (E3 version 2.31F01) to fix these flaws, and CISA is urging immediate patching, especially for E2 controllers which are end-of-life.

🕵🏼 The Register | https://go.theregister.com/feed/www.theregister.com/2025/09/02/frostbyte10_copeland_controller_bugs/

Exposed Ollama Servers Pose AI Risk 🤖

- Cisco Talos researchers found over 1,100 Ollama servers, used for running large language models locally, exposed to the public internet, with 20% actively hosting models susceptible to unauthorised access.
- These exposed servers could be exploited for resource exhaustion, denial of service, lateral movement, or even unauthorised model uploads and configuration manipulation.
- The findings highlight a widespread neglect of fundamental security practices in AI system deployments, urging better access control, authentication, and network isolation.

🕵🏼 The Register | https://go.theregister.com/feed/www.theregister.com/2025/09/02/exposed_ollama_servers_insecure_research/

Data Privacy 🔒

Disney Fined $10M for Children's Data Collection 👶

- Disney has agreed to pay $10 million to settle FTC allegations that it unlawfully collected personal data from children watching YouTube videos without parental consent.
- The company allegedly failed to label a "significant number" of its YouTube videos as "Made for Kids," allowing targeted advertising based on collected data, violating the COPPA Rule.
- The settlement mandates changes to Disney's video designation practices and pushes YouTube to implement age assurance technologies, reinforcing the importance of child online privacy.

🗞️ The Record | https://therecord.media/disney-settles-with-ftc-millions/

Regulatory & Oversight ⚖️

Commercial Surveillanceware Industry Thrives Amidst Weak Oversight 🕵️‍♀️

- The commercial surveillanceware industry is experiencing significant growth and rising prices, with vendors charging millions for hacking services, despite government protestations and sanctions.
- Governments and companies are widely abusing these tools, targeting activists, journalists, and political figures, and there's evidence of surveillanceware techniques bleeding into criminal malware.
- The lack of effective political and regulatory safeguards, coupled with vendors' adeptness at covering tracks through corporate renamings and shell firms, leaves targets more exposed than ever.

🕵🏼 The Register | https://go.theregister.com/feed/www.theregister.com/2025/09/02/commercial_surveillanceware_safe/

Government Staffing & Programs 🏛️

Nicholas Andersen Appointed CISA Cybersecurity EAD 🇺🇸

- Nicholas Andersen has been appointed as the Executive Assistant Director for Cybersecurity at CISA, a key leadership role focused on protecting federal civilian agency networks and critical infrastructure.
- Andersen, a veteran of the first Trump administration, previously served at the Department of Energy and most recently as President and COO of Invictus International Consulting.
- His appointment comes amidst significant changes at CISA, including job cuts and funding reductions, with Andersen previously advocating for streamlining the agency.

🤫 CyberScoop | https://cyberscoop.com/cisa-nicholas-andersen-executive-assistant-director-of-cybersecurity/
🗞️ The Record | https://therecord.media/andersen-leadership-cisa-role

Moscow Hires Former School System Hackers 🇷🇺

- Moscow authorities have reportedly hired "three or four young people" who previously successfully hacked the capital's digital education platform, Moscow Electronic School (MES).
- These individuals are now working on the educational platform and other city services, a move that is not unprecedented in Russia, where the FSB has also appointed former hackers.
- This practice raises questions about the ethics and implications of governments recruiting individuals with a history of cybercrime, potentially normalising such activities.

🗞️ The Record | https://therecord.media/moscow-hires-hackers-breached-education/

Everything Else 💡

Varonis Acquires AI Email Security Firm SlashNext 🤝

- Varonis has acquired SlashNext, an AI-driven email security company, for up to $150 million, integrating its data-centric security with SlashNext's phishing and social engineering detection.
- SlashNext's technology uses predictive AI models, computer vision, and natural language processing to block threats across email and collaboration platforms like Slack and Microsoft Teams.
- This acquisition reflects the increasing role of AI in both cyber attacks and defence, aiming to enhance real-time data threat detection and incident response capabilities.

🤫 CyberScoop | https://cyberscoop.com/varonis-slashnext-acquisition-ai-email-security/

Google Debunks Widespread Gmail Password Reset Rumours ❌

- Google has clarified that it did not issue a broad warning for all 2.5 billion Gmail users to reset their passwords, debunking widely reported misinformation.
- The company stated that claims of a major Gmail security issue are "entirely false" and that Gmail's security defences block over 99.9% of phishing and malware attacks.
- This incident highlights the prevalence of unverified cybersecurity stories and the importance of relying on official sources for accurate information.

🤖 Bleeping Computer | https://www.bleepingcomputer.com/news/technology/no-google-did-not-warn-25-billion-gmail-users-to-reset-passwords/

#CyberSecurity #ThreatIntelligence #Ransomware #SupplyChainAttack #ZeroDay #Vulnerability #APT #LazarusGroup #DataBreach #InfoSec #AI #DataPrivacy #GovernmentCyber #GPSJamming #IncidentResponse

Experts Question Alleged GPS Jamming of EU Chief's Flight by Russia

Ursula von der Leyen's plane reportedly experienced GPS jamming while approaching Plovdiv airport in Bulgaria, forcing the pilot to rely on paper maps for landing. The EU accused Russia of the interference, but Moscow has denied the claims. GPS jamming in the region is known to be a routine issue, p... [More info]

GPS jamming attack on Ursula von der Leyen’s plane marks ‘escalation’ in Russia’s hybrid warfare tactics

Russia is suspected to have “neutralised” the GPS systems of a plane carrying European Commission President Ursula von…
#NewsBeep #News #Headlines #AU #Australia #EuropeanCommission #gps #GPSjamming #gpsspoofing #Russia #Ukraine #UrsulavonderLeyen
https://www.newsbeep.com/98269/

Tuesday, September 2, 2025

https://activitypub.writeworks.uk/2025/09/tuesday-september-2-2025/