skip navigation

More signal. Less noise.

Daily briefing.

The Kaptoxa point-of-sale malware campaign, apparently contained in Target and Neiman Marcus, is thought to remain active in other retailers' networks. Investigation increasingly points to Russian cyber criminals as the culprits, although the briefly famous "Russian teenaged hacker" fingered in early reports was probably misidentified.

Many security firms and mavens have advice for affected consumers. The consensus is that effectively preventing such breaches will require two-factor authentication in payment card transactions, which will be "a tough sell, " as ZDNet puts it.

South Korea has been hit with a major banking data breach, apparently the work of an insider at the Korea Credit Bureau. At least 20M users have had their information compromised.

Researchers discover an Android vulnerability that can be exploited to bypass secure VPN connections and redirect clear-text traffic to an attacker.

The Vietnamese government is found conducting active, extensive cyber operations against activists, most of them expatriates in the US and France. The Syrian Electronic Army resurfaces, now with cyber vandalism against Office.com.

Industry observers look at the cyber start-up universe and conclude that while booming, it's not a bubble. They also note the important role the US Intelligence Community plays in this particular start-up ecosystem.

The full text of US President Obama's remarks on "signals intelligence" (a.k.a. surveillance policy) is out. He proposes what most observers tepidly characterize as modest reforms.

Leading members of the US House Intelligence Committee assert Snowden had Russian government help. Private-sector Russian Eugene Kaspersky wants none of it, calling Snowden a "traitor. "

Notes.

Today's issue includes events affecting Brazil, Canada, France, Germany, Israel, Kenya, Republic of Korea, New Zealand, Russia, Syria, United Arab Emirates, United Kingdom, United States, and Vietnam..

For a complete running list of events, please visit the Event Tracker on the CyberWire website.

Upcoming Events

CANCELLED DUE TO WINTER STORMS: cybergamut Tech Tuesday: Malware Reverse Engineering — An Introduction to the Tools, Workflows, and Tricks of the Trade to Attack Sophisticated Malware (Columbia, Maryland, USA, January 21, 2014) This talk has been cancelled. Please consult cybergamut for scheduling updates.

Cyber Security Management for Oil and Gas (, January 1, 1970) Attend to gain cutting-edge information from oil and gas cyber security experts on: Using the very latest in intelligence techniques to find and neutralize the newest threats in time. Preventing security...

Federal Mobile Computing Summit (, January 1, 1970) The Federal Mobile Computing Summit: Digital Government Strategy II will feature government leaders who played an instrumental role in the development of the DGS and worked on the resulting deliverables.

"Cyber Threat Landscape": How the FBI is counteracting the current threats (, January 1, 1970) Donald J. Good, FBI Section Chief Cyber Operations and Outreach Section, will offer first-hand awareness of how the FBI works with other government agencies and the private sector to counteract the current...

Cybertech — Cyber Security Conference and Exhibition (Tel Aviv, Israel, January 27 - 29, 2014) Cybertech Israel, the first event of its kind, will present world-leading companies in the field of cyber defense alongside young companies that offer unique solutions to advance the discipline of cyber...

U.S. Census Data Protection & Privacy Day (Suitland, Maryland, USA, January 28, 2014) The Census Bureau's Privacy Compliance Branch of the Policy Coordination Office is hosting a Data Protection and Privacy Day on January 28. This event is intended to provide a forum for Census employees...

2014 Cybersecurity Innovation Forum (Baltimore, Maryland, USA, January 28 - 30, 2014) The 2014 Cybersecurity Innovation Forum (CIF) is a three-day event, sponsored by the National Cybersecurity Center of Excellence (NCCoE) with DHS, NIST, and NSA as primary participating organizations.

Cyber Training Forum at NGA (Springfield, Virginia, USA, February 4, 2014) The 2014 Cyber Security Training Forum (CSTF) will take place at the NGA East Campus in Springfield, VA. This event is designed to provide education and training to the NGA Workforce, the Intelligence...

U.S. Department of Commerce Technology Expo (, January 1, 1970) Department of Commerce is interested in hearing from you! The OCIO Office is specifically looking for speakers on Vulnerability Management and Implementation of Continuous Monitoring. Please contact...

Cyber Security 2014 (, January 1, 1970) The threats and the opportunities conference brings together over 150 business leaders, senior decision makers, business development managers and IT professionals from across the whole defence and security...

Security Analyst Summit 2014 (Punta Cana, Dominican Republic, February 9 - 13, 2014) The Kaspersky Security Analyst Summit (SAS) is an annual event connecting anti-malware researchers and developers, global law enforcement agencies and CERTs and members of the security research community.

FBI HQ Cloud Computing Vendor Day (, January 1, 1970) As part of its FAR mandated market research efforts and in order to keep FBI employees informed of new products, technologies and services available in the industry, ITED has been tasked with organizing...

RSA Conference USA (San Francisco, California, USA, February 24 - 28, 2014) Hundreds of game-changing interactions will give you an unparalleled diversity of industry insight and information based on best practices, real implementation stories, and detailed case studies. Each...

Nellis AFB Technology & Cyber Security Expo (, January 1, 1970) For over 12 years, the Armed Forces Communications & Electronics Association (AFCEA) - Las Vegas Chapter and FBC have been co-hosting the Annual Information Technology Expo at Nellis AFB. As was the case...

Creech AFB Technology & Cyber Security Expo (, January 1, 1970) The Armed Forces Communications & Electronics Association (AFCEA) - Las Vegas Chapter, with support from the 432d Wing, will host a Cyber Security Awareness Day & Technology Expo at Creech AFB. This is...

Grow your brand and reach new customers.

Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.

Be a part of the CyberWire story.

People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.