The present incarnation of the hacker collective opened up its cyber war against Russia by temporarily taking down a number of government websites, including those of the Kremlin and the Defense Ministry.
Agencies published a list of tactics, techniques, and procedures used by Russian APTs and mitigations to protect critical infrastructure networks from state-sponsored attacks.
The REvil ransomware gang has been a point of special focus for international law enforcement and possibly been dealt a fatal blow as Russian authorities have rounded up 14 members residing in the country.
The destructive malware that is currently being spread in Ukraine acts like ransomware in that it locks up target systems by encrypting key files, but there is no payment option.
Russia's current conflict with Ukraine is so far playing out with cyber attacks rather than physical warfare. A series of defacement attacks on government websites appears to be the opening salvo.
US and UK have dispatched cyber warfare advisors to Ukraine to prepare for potential cyber attacks. The prospect is not unprecedented, as Russia has disabled Ukrainian power stations before.
The Tor network will no longer be officially available to residents of Russia after a government ban. Taking a path that somewhat resembles China's program of internet control, the Russian government has made a series of moves to restrict access to websites.
Yandex warded off the largest DDoS attack in history recorded at 22 million requests per second and attributed to a new botnet Meris that exploits MikroTik devices.
President Joe Biden warned Vladimir Putin that there would be consequences for ransomware attacks launched from Russia even if they were not sanctioned by the Kremlin.
While Presidents Putin and Biden still appear to be far apart on the issue of cyber attacks originating from the former's country, the two at least appear to be negotiating. Biden presented Putin with a list of critical infrastructure targets that could trigger serious retaliation.