LOT experienced a denial-of-service condition that disrupted flight planning and grounded some aircraft, but the incident's causes remain murky. LOT called it a cyber attack; others think bug, accident, casual prank have yet to be ruled out.
Operation Cleaver, the Iranian cyber campaign Cylance discovered (and named) last winter appears to have had a hitherto unknown target: the Saudi Foreign Ministry.
As those who attribute attacks continue to narrow down the list of Chinese threat groups suspected in the US Office of Personnel Management (OPM) hack, the US and China prepare for security talks. The US is expected to bring up the OPM affair; China is expected to counter with the latest tranche of Snowden documents.
Some observers persist in calling OPM a "cyber Pearl Harbor," a metaphor which more reflective minds think wayward. For one thing, Admiral Kimmel strikes many as having been far more ready for an attack on Pearl than Director Archuleta seems to have been for foreign inspection of her data. (Kimmel didn't outsource harbor maintenance to the Zaibatsu, for example.) And, of course, no one's been killed in this typical intelligence operation. In any case, the Senate is grilling OPM leaders and others this morning.
SANS describes the difficult-to-eradicate XOR DDoS Trojan. Dr. Web reports growth in OS X adware. Fortinet warns that AJAX is delivering unusually well-obfuscated payloads. Trend Micro and others look at the Deep, Dark Web.
An interesting exercise in Tel Aviv displays difficulties of cyber attribution and the potential for disinformation.
Today's issue includes events affecting African Union, Australia, Canada, China, Germany, Iran, Israel, Kenya, Madagascar, Mauritania, Morocco, Poland, Russia, Saudi Arabia, Tanzania, Thailand, Tunisia, Uganda, United Kingdom, United States, and Vanuatu.
The CyberWire will be covering SINET's Innovation Summit in New York this Thursday. We'll live-tweet the proceedings and devote at least one special issue to the conference.
Cyber Attacks, Threats, and Vulnerabilities
The Malware Economy(Heimdal Security) With more and more activity happening within the hacking industry and the malware market, you might wonder: How can it scale so much and where does it end?
Security Patches, Mitigations, and Software Updates
Security updates available for Adobe Flash Player(Adobe Security Bulletin) Adobe has released security updates for Adobe Flash Player for Windows, Macintosh and Linux. These updates address a critical vulnerability (CVE-2015-3113) that could potentially allow an attacker to take control of the affected system
Design and Innovation
Barclays partners with bitcoin tech vendor Safello on proof of concept(FierceFinanceIT) Barclays has reportedly signed a proof of concept with European bitcoin retailer Safello aimed at working together to explore how blockchain technologies could be used in the financial sector. The partnership came after Safello completed participation in Barclays' 13-week accelerator program
For a complete running list of events, please visit the Event Tracker on the CyberWire website.
SPONSOR & SUPPORT
Grow your brand and reach new customers.
Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.
Be a part of the CyberWire story.
People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.