The anti-ISIS hacktivists of GhostSec talk to the Irari Report about the soi-disant caliphate's operations in cyberspace. Of interest are ISIS's efforts to evade disruption (not so much detection, since so much of their operations are directed to recruiting and developing mindshare among the disaffected) because these involve hiding in plain sight as opposed to using technically sophisticated cloaking.
A vBulletin breached, swiftly patched by the company, arouses fears of a more general zero-day campaign.
The post-mortem of the PageFair hack continues. Threatpost explains how the service was exploited to serve as the vector for bogus (and malicious) Flash updates.
The Tinba banking Trojan is seeing a surge in activity against Russian targets. The Angler and Nuclear exploit kits are observed integrating PawnStorm.
Mixed news on ransomware: the good news is that Dutch police have taken down CoinVault and Bitcryptor (with an assist from Kaspersky, who extracted the encryption keys); the bad news is that German companies are being hit with Chimera.
XcodeGhost is circulating again, now affecting iOS9 devices.
Dark Matters takes a dive into the metaphysics of identity, which it sees as necessarily a social artifact. (A defensible position, but contrast the work of a classical metaphysician, John Duns Scotus, particularly in Ordinatio II.)
Some journalists covering the cyber beat listen to psychologists advising a Freudian look at hacking motivations. Understanding motives is surely a good thing, but turning to psychoanalysis for insight seems like advising a chip fab to think about how it handles phlogiston during lithography.
Today's issue includes events affecting Germany, Iran, Iraq, Ireland, Kenya, Malaysia, Netherlands, Sudan, Syria, United Kingdom, United States.
Dateline SINET Showcase 2015
SINET Showcase 2015(SINET) SINET Showcase provides a platform to identify and highlight "best-of-class" security companies that are addressing industry and government's most pressing needs and requirements
Irari Report: ISIS using U.S. hosting services to avoid intelligence agencies(CSO) In the first segment of The Irari Report interview with WauchulaGhost, leader of the hacktivist group GhostSec, which has been taking down ISIS operations and actually credited with stopping terrorist attacks, Ira Winkler and Araceli Treu Gomes learn that ISIS has purposefully been using Google and Amazon Web Services to avoid US and international intelligence agencies
Trick-or-treat, the PageFair breach(Dark Matters) PageFair, an advertising system provider that displays ad-block friendly ads to users who use adblockers; and also an analytics service allowing publishers to measure how many users block ads was hacked on Halloween night
Chimera crypto-ransomware is hitting German companies(Help Net Security) A new piece of crypto-ransomware is targeting German companies: it's called Chimera, and the criminals behind the scheme are threatening to release sensitive corporate data on the Internet if the targets don't pay the ransom
Updated XcodeGhost Adds iOS9 Support(Threatpost) New samples of XcodeGhost, malware targeting iOS devices, have surfaced beyond the borders of China with new support for iOS9 and obfuscation techniques making it that much harder to detect
NFC: The Next Big Fraud Vector?(B2C) Google Wallet, Apple Pay. These are services most people nowadays are pretty familiar with even if they're not using them
Security Patches, Mitigations, and Software Updates
Security update kills several critical bugs in Android Marshmallow(Help Net Security) Google's November Android security update carries fixes for seven vulnerabilities, including two remote code execution flaws that are rated "critical" (CVE-2015-6608, CVE-2015-6609), and an elevation of privilege vulnerability (CVE-2015-6610) that would also be rated as such were it not for a lower likelihood that it can be exploited remotely
Firefox 42 — The End of Cross Domain Tracking?(Check & Secure) With the theme of adblockers becoming increasingly more topical and controversial issues — given the news regarding Pagefair yesterday — it would seem that some of the internet's largest players have turned on the providers of loud, noisy ads, as well as websites who store data about visitors against their will
Why Security Doesn't Know You(Dark Matters) If I learn about you from your neighbor, who would they say you are? How close would that be to what your co-worker says about you? What about a sibling, your parents, your children, or your lovers?
More companies form data breach response plans(Business Insurance) More companies are introducing data breach response plans, but relatively few have confidence in their effectiveness, says a study issued Tuesday by the Ponemon Institute L.L.C
Carlyle Group Cuts Booz Allen Ownership Stake to 20%(GovConWire) Global investment firm Carlyle Group will reduce its ownership stake in consulting services provider Booz Allen Hamilton (NYSE: BAH) to 20 percent through a sale of 13 million shares to Credit Suisse for 388,440,000
Tech firms between rock and hard place(New Zealand Herald) Oh dear. It looks like Britain has painted itself into a corner with proposed new legislation that will give tech firms in the country major headaches
DISA: Automation key to cyber defense(C4ISR & Networks) As the Defense Department continues to fortify its networks and data, officials say they are automating some cyber defenses that can be triggered and respond to threats without manual maneuvers
Kicking Off A New Era For Policing Cybersecurity(Dark Reading) In the wake of FTC v. Wyndham, government agencies are becoming more aggressive about protecting corporate data and customer privacy. But the new rules are very much a work in progress
CoinVault and Bitcryptor, R.I.P.(SC Magazine) Kaspersky and Dutch police have shut down these two strains of ransomware in a joint effort, arresting the authors and seizing the decryption keys
Putrajaya dodges question on alleged spyware buy(Malay Mail) The federal government evaded today from answering a question from an opposition lawmaker, who wanted to know if it had bought software from foreign security vendor Hacking Team in July to spy on Malaysians
F-35 Data Smuggler Sentenced to Jail(Defense News) A former Connecticut resident has been sentenced to 97 months in jail for attempting to send sensitive technical data on the F-35 engine to Iran
MPAA Takes Down Pirating Group And Popcorn Time Fork(TechCrunch) There are corks popping around the MPAA offices today. The American trade organization is claiming responsibility for shutting down several pirating services including a popular version of Popcorn Time, you know, the Netflix for pirates
For a complete running list of events, please visit the Event Tracker on the CyberWire website.
NICE 2015 Conference and Expo(San Diego, California, USA, November 3 - 4, 2015) Cybersecurity has emerged as one of the leading creators of jobs and opportunity for all economic sectors. The demand for cybersecurity positions in both the public and private sector is large and growing,...
Inside Data Science 2015(Monterey, California, USA, November 3 - 4, 2015) At the Inside Data Science 2015 Conference (IDS2015) our focus is not on the storage or volume of data, but rather the importance of what you do with it. To synchronize the processing, exploitation and...
4th International Internet-of-Things Expo(Santa Clara, California, USA, November 3 - 5, 2015) With major technology companies and startups seriously embracing IoT strategies, now is the perfect time to attend @ThingsExpo in Santa Clara. Learn what is going on, contribute to the discussions, and...
RSA Conference 2015 Abu Dhabi(Abu Dhabi, United Arab Emirates, November 4 - 5, 2015) Join your fellow information security professionals at RSA Conference 2015 Abu Dhabi, where we'll be discussing security issues from a global perspective
ICMC (the International Cryptographic Module Conference)(Washington, D.C., USA, November 4 - 6, 2015) ICMC core focus includes cryptographic modules, FIPS 140-2, ISO/IEC 19790 and cryptographic algorithms. Specialists from all over the world gather in Washington to discuss about commercial cryptography...
After the Shift: Securing Tomorrow's Payment Technology(Washington, DC, USA, November 5, 2015) From encryption to tokenization, what does the future hold for keeping consumer data safe? Policymakers, industry leaders, and technology experts will explore the cutting edge of cyber technology and discuss...
2nd Annual Journal of Law and Cyber Warfare Conference(New York, New York, USA, November 5, 2015) The 2015 symposium speakers represent an unparalleled group of cyber security experts with a wide variety of industry expertise and knowledge. Attendees will hear from experts on cybersecurity and cyber...
Start with Security(Austin, Texas, USA, November 5, 2015) This one-day conference will continue the FTC's work to provide companies with practical tips and strategies for implementing effective data security. Aimed at start-ups and developers, this event will...
University of Phoenix® Technology Conference(Arlington, Virginia, USA, November 7, 2015) At the University of Phoenix® Technology Conference 2015, a free event hosted by the University of Phoenix College of Information Systems and Technology, you will be introduced to cyber security,...
Cyber³ Conference: Crafting Security in a less Secure World(Nago City, Okinawa, Japan, November 7 - 8, 2015) An international conference on cyber security hosted by the Government of Japan with the support of the World Economic Forum. At this conference, multi-stakeholders, including policymakers, business leaders,...
FedCyber 2015(Tyson's Corner, Virginia, USA, November 10, 2015) This conference, orchestrated by cyber practitioners Matt Devost and Bob Gourley, is designed to advance the state of cyber defense. The FedCyber.com Threat Expo will bring together thought leaders who...
First International Conference on Anti-Cybercrime (ICACC-2015)(Riyadh, Saudi Arabia, November 10 - 12, 2015) Al Imam Mohammad Ibn Saud Islamic University is organizing this international conference to establish a forum where discussions on vital issues related to anti-cybercrime can occur. This conference will...
Black Hat Europe(Amsterdam, the Netherlands, November 10 - 13, 2015) Black Hat prides itself with being "the most technical and relevant global information security event series in the world." For the past 16 years, the Black Hat events have given their attendees the opportunity...
Pen Test Hackfest Summit & Training(Alexandria, Virgina, USA, November 16 - 23, 2015) SANS Pen Test Hackfest Training Event and Summit is coming back to Washington DC, bigger and better than ever! The Hackfest is an ideal way to learn offensive techniques so you can better defend your environment.
Cybersecurity, the SEC and Compliance(New York, New York, USA, November 18, 2015) The recent SEC CyberSecurity Examination Initiative focuses on information safeguards for financial services organizations. Are you prepared? Please join us for a panel discussion on what cybersecurity...
CyberCon 2015(Pentagon City, Virginia, USA, November 18, 2015) CyberCon 2015 is the forum for dialogue on strategy and innovation to secure federal and defense networks, as well as private sector networks that hold their sensitive data
Internet-of-Things World Forum 2015(London, England, UK, November 18 - 19, 2015) This conference features speakers from leading IoT companies and their customers. Learn how the Internet-of-Things is creating new markets for products, services, and solutions
2015 U.S. Cyber Crime Conference(National Harbor, Maryland, USA, November 14, 2015) The 2015 U.S. Cyber Crime Conference (Formerly the DoD Cyber Crime Conference) has brought world-class forensics and incident response training combined with outstanding community networking for over 15...
DefCamp6(Bucharest, Romania, November 19 - 20, 2015) Why DefCamp? Because it's the most important conference on Hacking & Information Security in Central Eastern Europe, bringing hands-on talks about the latest research and practices from the INFOSEC field,...
SPONSOR & SUPPORT
Grow your brand and reach new customers.
Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.
Be a part of the CyberWire story.
People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.