Killnet claims a DDoS campaign against Estonia. The head of GCHQ calls Russian cyber operations a failure. US Cyber Command concludes its "hunt forward" mission in cooperation with Croatia. A criminal gang targets the travel and hospitality sectors. Thomas Pace of NetRise shares insights on firmware vulnerabilities. Daniel Floyd from BlackCloak on Quantifying the Business Need for Digital Executive Protection. CISA issues five ICS security advisories.

For links to all of today's stories check out our CyberWire daily news briefing:
https://thecyberwire.com/newsletters/daily-briefing/11/157

Selected reading.
Estonia says it repelled major cyber attack after removing Soviet monuments (Reuters)
There’s a chance regular people didn’t even notice: expert on Russian cyber attack (TVP World) 
Estonia says it repelled a major cyberattack claimed by Russian hackers. (New York Times)
The head of GCHQ says Vladimir Putin is losing the information war in Ukraine (The Economist)
Cyber Command deployed 'hunt forward' defenders to Croatia to help secure systems (The Record by Recorded Future)
U.S. Cyber Command completes defensive cyber mission in Croatia (CyberScoop)
You Can’t Audit Me: APT29 Continues Targeting Microsoft 365 (Mandiant)
Reservations Requested: TA558 Targets Hospitality and Travel (Proofpoint)
Cybercrime Group TA558 Ramps Up Email Attacks Against Hotels (Decipher)
CISA Adds Seven Known Exploited Vulnerabilities to Catalog (CISA) 
Siemens Linux-based Products (Update G) (CISA)
Siemens Industrial Products LLDP (Update B) (CISA)
Siemens OpenSSL Affected Industrial Products (CISA)
Mitsubishi Electric MELSEC Q and L Series (CISA)
Mitsubishi Electric GT SoftGOT2000 (CISA)