The accelerating complexity of cyber threats demands urgent collaboration between public and private sectors. <\/p>\n\n\n\n
That was the central theme of Sandra Joyce\u2019s keynote address at the Tallinn Digital Summit 2024, where she shared alarming updates about nation-state cyber operations and underscored the growing risks posed by emerging technologies and adversarial tactics. <\/p>\n\n\n\n
Joyce, Vice President of Google Threat Intelligence, opened her address with a warning:\u202f\u201cWe have to think very clearly about what [we\u2019re] up against. Because there is not just the capability, but drive from the perspective of these folks.\u201d <\/p>\n\n\n\n
Sandra Joyce provided a vivid picture of Russian cyber aggression, particularly through GRU-linked Advanced Persistent Threat (APT) groups such as Sandworm (APT44) and APT28. Sandworm, she revealed, is\u202f\u201cright now, as we\u2019re in this room, targeting and continuing to work towards targeting the electrical institutions and organizations across Europe.\u201d\u202f<\/p>\n\n\n\n
Meanwhile, APT28 is,\u202f\u201cdisrupting logistics lines going to Ukraine.\u201d <\/p>\n\n\n\n
Adding to the mix, Joyce highlighted the public-facing nature of Russian sabotage campaigns:\u202f\u201cThe thing that strikes me is those smiling faces, the disruption, and that they\u2019re so proud of the sabotage that they\u2019re so willing to put out to everybody else.\u201d <\/p>\n\n\n\n
She explained that this hybrid warfare strategy blends cyberattacks with physical sabotage, targeting critical infrastructure while amplifying pro-Russian narratives to weaken NATO cohesion and destabilize Ukrainian morale. <\/p>\n\n\n\n
The speech took an unexpected turn as Joyce delved into North Korea\u2019s evolving cyber operations.\u202f\u201cWhat\u2019s interesting is that these IT workers are stealing credentials online and getting themselves hired at Fortune 500 companies,\u201d\u202fshe said. <\/p>\n\n\n\n
These operatives use false identities to infiltrate international organizations, posing both a financial and security risk. As Joyce explained,\u202f\u201cThis insider threat\u2026 represents both a financial risk and a security risk.\u201d <\/p>\n\n\n\n
One startling example detailed an individual managing 12 fake identities simultaneously to gain access to companies in both Europe and the United States. The FBI\u2019s recent investigations revealed the scale of the problem, but as Joyce warned,\u202f\u201cNow that it\u2019s becoming more known in the United States, now they\u2019re shifting their focus to Europe.\u201d <\/p>\n\n\n\n
The surge of artificial intelligence (AI) technologies has become a focal point in cybersecurity conversations. While AI offers promising tools for defense\u2014such as anomaly detection and malware analysis\u2014adversaries are also harnessing its potential. <\/p>\n\n\n\n
Joyce shared examples of AI-enabled deepfakes and phishing attacks:\u202f\u201c<\/em>Threat actors are using AI to create better spear-phishing tools, better content to do research.\u201d <\/p>\n\n\n\n However, she emphasised that, so far, AI hasn\u2019t yet revolutionised cyber offence:\u202f\u201cWe have not yet seen a real AI usage that would surpass what a normal human can do.\u201d\u202fShe urged defenders to capitalise on this window of opportunity:\u202f\u201cWe need to take this moment where the innovation is still happening on the defender side.\u201d <\/p>\n\n\n\n Reflecting on the lessons learned from the ongoing Russian invasion of Ukraine, Joyce emphasised the importance of cloud infrastructure in maintaining national sovereignty:\u202f\u201cOne lesson that was learned in Ukraine was that when these wipers were hitting\u2026 they were able to switch to cloud very quickly and maintain their sovereignty.\u201d <\/p>\n\n\n\n She lauded Estonia for its leadership in digital governance, describing the country as\u202f\u201ckilometers ahead of everybody else.\u201d <\/p>\n\n\n\n As a closing note, Joyce urged for more robust public-private partnerships:\u202f\u201cWe don\u2019t win this with just government or just industry\u2026 putting them together, we should be able to build a much more comprehensive picture.\u201d <\/p>\n\n\n\n She stressed the necessity of collaboration to protect critical infrastructure:\u202f\u201cIf you are in a room trying to solve for a threat\u2026 and the private sector isn\u2019t there, we\u2019re going to lose.\u201d <\/p>\n\n\n\n Closing her keynote, Joyce posed a stark challenge to attendees:\u202f\u201cThe regulatory environment, the threat environment\u2026if we are not changing from inside to match the threats that are outside, we are not going to win what we\u2019re doing.\u201d <\/p>\n\n\n\n Her message was clear: The threat landscape is growing more sophisticated, but with proactive collaboration and adaptive strategies, there is an opportunity to stay one step ahead. <\/p>\n\n\n\n Read the complete article at From Moscow to Pyongyang: Cyber Threats Revealed by Sandra Joyce at the Tallinn Digital Summit<\/a> <\/em><\/p>\n\n\n\n This content has been produced in collaboration with a partner organisation through our Global Visibility Programme. Our programme helps companies and organisations boost their digital presence and strengthen the thought leadership of their experts. Find out more here<\/a>.<\/em><\/p>\n\n\n\n The accelerating complexity of cyber threats demands urgent collaboration between public and private sectors. That was the central theme of Sandra Joyce\u2019s keynote address at the [\u2026]<\/span><\/p>\n","protected":false},"author":1,"featured_media":19531,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5310],"tags":[],"class_list":["post-19530","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-from-our-community"],"_links":{"self":[{"href":"https:\/\/reinvantage-dev.eonserver.com\/index.php?rest_route=\/wp\/v2\/posts\/19530","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/reinvantage-dev.eonserver.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/reinvantage-dev.eonserver.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/reinvantage-dev.eonserver.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/reinvantage-dev.eonserver.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=19530"}],"version-history":[{"count":0,"href":"https:\/\/reinvantage-dev.eonserver.com\/index.php?rest_route=\/wp\/v2\/posts\/19530\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/reinvantage-dev.eonserver.com\/index.php?rest_route=\/wp\/v2\/media\/19531"}],"wp:attachment":[{"href":"https:\/\/reinvantage-dev.eonserver.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=19530"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/reinvantage-dev.eonserver.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=19530"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/reinvantage-dev.eonserver.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=19530"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}Lessons from Ukraine: Resilience through cloud and continuity <\/h5>\n\n\n\n
Building the Cybersecurity Coalition <\/h5>\n\n\n\n
Staying ahead in a rapidly changing environment <\/h5>\n\n\n\n
\n\n\n\n
\n\n\n\n
\n","protected":false},"excerpt":{"rendered":"