Anonymous remains predictably double-minded about ISIS. On the one hand the anarchist collective doesn't like violent jihad; on the other it also doesn't want to get coopted by the Man.
US elections approach with much overheated trepidation about hacking. At this point such fears will probably serve as inspiration—Fancy Bear can probably take the week off. More WikiLeaks dumps are expected, but don't expect the FBI to wrap up renewed investigations into State Department emails and pay-for-play foundation allegations before Tuesday. It will take time to sift through those half-million plus homebrew-server emails on Mr. Wiener's laptop.
Liberia is sustaining a massive, nationwide distributed denial-of-service attack. The Mirai Internet-of-things botnet is again implicated, and e-commerce in the country is described as having ground to a halt.
IoT botnets can be used for more than DDoS. ESET and GoSecure describe Linux/Moose, malware that herds IoT bots for social media—specifically Instagram—fraud.
Booz Allen has fresh research on 2015's hack of Ukraine's power grid. Of particular interest is the attackers' patience: the blackouts were two years in preparation. The researchers also find more evidence of Russian state involvement.
Skycure reports on Exaspy, Android malware used in highly targeted attacks against business executives.
In industry news, CenturyLink, itself in the process of buying Level 3, is selling its data centers and collocation business to a joint venture led by BC Partners and Medina Capital. That new security company has also acquired four complementary cybersecurity shops—Cryptzone, Catbird, Easy Solutions, and Brainspace.
Today's issue includes events affecting Belgium, Canada, China, European Union, India, Iraq, Israel, Liberia, Pakistan, Russia, Slovakia, Switzerland, Syria, Turkey, United Kingdom, United States.
ON THE PODCAST
The CyberWire's regular daily Podcast will be out later this afternoon, with interviews, educational tips, and more on the stories of the day. Today Malek Ben Salem from our partners at Accenture Labs will describe work toward developing a redactable blockchain. Our guest, Bill O’Hern, AT&T CSO, will describe his company's place in the security ecosystem, and what he expects in the coming year. (And if you enjoy the podcast, please consider giving it an iTunes review.)
TECHEXPO Cyber Security Hiring Event(McLean, VA, USA, November 2, 2016) Our professional hiring events have benefited nearly a million attendees since 1993. We look forward to helping you advance your career and saving you time in your job search by providing you the opportunity to meet face to face with the nation's leading companies.
Malware Detection: How to Spot Infections Early with AlienVault USM(Live Webcast, November 3, 2016) While malware has been a thorn in the side of IT pros for years, some of the recent variants observed by the AlienVault Labs security research team, like CoreBot, have the ability to modify themselves on the fly, making them nearly impossible to detect with traditional preventative security measures. Join us for a live demo to learn about the most common types of malware, and how you can detect infections quickly with AlienVault USM.
Cybersecurity and Time (and Why Brakes Matter)(The CyberWire) SINET thinks forward with François Lavaste, CEO of Airbus DS Cybersecurity. He takes the OODA loop seriously, and finds value—even positive ROI—in prevention and perimeter defenses
DOD, DHS chart paths to acquisition innovation(FCW) The Departments of Defense and Homeland Security both face challenges in updating legacy IT and acquisition systems, and both agencies have pilot programs that they say are helping to bypass bureaucracy and tap into the best of the tech sector
SINET Showcase(SINET) We believe that effective Cybersecurity is required to facilitate economic growth, protect critical infrastructure and maintain political stability. To accomplish this objective, SINET is dedicated to building a cohesive, worldwide Cybersecurity community with the goal of accelerating innovation through collaboration. SINET is a catalyst that connects senior level private and government security professionals with solution providers, buyers, researchers and investors
SINET 16 Innovator Award Overview(SINET) Each year, SINET evaluates the technologies and products of hundreds of emerging Cybersecurity companies from all over the world, and selects the 16 most innovative and compelling companies. These 16 companies, known as the SINET 16 Innovators, are invited to present their products and solutions on stage in Washington D.C. at our annual SINET Showcase
Cyber Attacks, Threats, and Vulnerabilities
Inside Anonymous’ ‘Civil War’ Over Its Fight With ISIS(Motherboard) For about two years now, Anonymous has waged its own online war against ISIS. Anonymous-affiliated hackers, as well as several splinter groups, have claimed to have taken down countless pro-ISIS Twitter accounts, websites, and even to have gathered crucial intelligence about the terrorist group’s operations
Five Possible Hacks to Worry About Before Election Day(CNBC) President Vladimir V. Putin of Russia dismisses the idea that he has the power to interfere with Tuesday's election. "Does anyone seriously think that Russia can affect the choice of the American people?" he asked during a foreign policy conference last week in the resort city of Sochi. "What, is America a banana republic? America's a great power. Correct me if I'm wrong"
Twitter Election Bots Hide Tons of Reply Spam Behind Boring Themed Accounts(Motherboard) A much-discussed research paper out of Oxford this month concluded that millions of tweets about the presidential election are generated by highly automated Twitter accounts. According to the authors’ analysis, about a third of pro-Trump traffic, and one fifth of pro-Clinton tweets, is “driven by bots and highly automated accounts"
Linux/Moose is loose: Analysis finds IoT botnet malware favors Instagram fraud(SC Magazine) Not all Internet-of-Things botnets take down the Internet like Mirai did, but that doesn't necessarily mean they should be allowed to perpetuate. Yet that seems to be the case for Linux/Moose, a malware program that recruits IoT devices to engage in social media fraud, according to a pair of reports from ESET and GoSecure
This Evil Office Printer Hijacks Your Cellphone Connection(Wired) Julian Oliver has for years harbored a strange obsession with spotting poorly disguised cellphone towers, those massive roadside antennae draped in fake palm fronds to impersonate a tree, or even hidden as spoofed lamp posts and flag poles
Android spyware targets business executives(Help Net Security) Overreliance on smartphones, both in out personal and professional lives, is a reality for many of us. These devices hold a lot of sensitive information – information that could be worth a lot to some people, especially if you are a high-positioned executive in a thriving business
Exaspy – Commodity Android Spyware Targeting High-level Executives(Skycure) We are entering a new era of mobile threats as Android spyware evolves to become a commodity product. What that means is that you no longer need deep technical expertise to hack into someone’s mobile device. The spyware attackers need is now available online for easy purchase and use, similar to the tools available for running DDoS attacks against websites. This is a significant step in the evolution of mobile malware, and one which will make proactive mobile threat defense for IT that much more crucial
NHS Trust Back Online After ‘Virus’ Caused Outage(Infosecurity Magazine) North Lincolnshire and Goole NHS Foundation Trust’s IT systems appear to be back up and running several days after a warning note on its main website revealed a “virus” infection had forced a shut down
Cisco plugs critical hole in Prime Home management platform(Help Net Security) Cisco has released nine security alerts on Wednesday, and among these are two for critical vulnerabilities in its ASR 900 Series routers and the Cisco Prime Home management platform (for provisioning and managing in-home devices)
Microsoft extends support for EMET, but its days are numbered(Help Net Security) The days of EMET, Microsoft’s Enhanced Mitigation Experience Toolkit for Windows, are numbered. Although, the company has listened to the customers’ pleas, and is extending its end of life date to July 31, 2018 (it was previously scheduled for January 27, 2017)
New cybersecurity report focuses on the private sector(Malwarebytes Labs) George Washington University’s Center for Cyber and Homeland Security (CCHS), a “think and do” tank responsible for carrying out research and analysis on homeland security, counter-terrorism, and cybersecurity issues, has recently released a new, 86-page report [PDF] entitled, “Into the Gray Zone: The Private Sector and Active Defense against Cyber Threats"
Intel Proposes 'Unified' Security, Opens DXL(Light Reading) Last year, Intel Security began saying that the prevailing "every man for himself" approach to security is not going to cut it anymore: Wednesday's announcement of what it's calling an enhanced unified defense architecture represents Intel's first steps in getting beyond that approach
Symantec CFO To Depart, Replaced By Blue Coat Systems CFO(CRN) Symantec announced on Thursday that CFO Thomas Seifert would step down, a move that takes away one of the last few remaining Symantec executives from the leadership lineup of the security vendor after its acquisition of Blue Coat Systems earlier this year
Cisco Launches New Endpoint Security Platform(TopTechNews) ch giant Cisco is bulking up its enterprise Relevant Products/Services security offerings with a new endpoint security tool. The company launched Cisco AMP for Endpoints as part of its annual Cisco Partner Summit taking place in San Francisco this week
Distil Networks releases Hi-Def fingerprinting solution(Help Net Security) Distil Networks announced the bot mitigation industry’s first Hi-Def fingerprinting solution. Hi-Def device fingerprinting goes beyond IP- and header-centric identification by actively pulling additional data from the browser to identify devices with precision. This approach minimizes false positives and creates an even clearer picture of web traffic, allowing web defenders to make access decisions with certainty
Sophos launches next generation anti-exploit, anti-ransomware technology 'Intercept X'(Business Standard) Global leader in network and endpoint security Sophos has announced the availability of Sophos Intercept X in India. Intercept X is an ext-generation endpoint security product that stops zero-day malware, unknown exploit variants and stealth attacks, and includes an advanced anti-ransomware feature that can detect previously unknown ransomware within seconds
Global Digital Payments Company Extends Contract with IPSA International(PRNewswire) IPSA International (IPSA), a root9B Technologies (OTCQB: RTNB) company and leading regulatory risk mitigation firm, today announced the third contract extension with a global digital and mobile payments company. The new agreement is worth an additional $1.5 million and extends this relationship through the end of 2016
New infosec products of the week: November 4, 2016(Help Net Security) Cisco transforms endpoint security with AMP for Endpoints...Aerohive security solution protects networks from IoT attacks...DomainTools launches PhishEye to stop phishing attacks before they occur...Ixia launches Flex Tap Secure+
5 fixes for U.S. election systems(GCN) What: A report from the Harvard Kennedy School's Belfer Center for Science and International Affairs, titled "Hacking Chads: The Motivations, Threats, and Effects of Electoral Insecurity"
#BHEU: Why AI Doesn’t Exist and Why Machine Learning is Only as Good as the Human(Infosecurity Magazine) “Artificial intelligence doesn’t exist yet, nor will it for at least the next twenty years,” Ilia Kolochenko, CEO of High-Tech Bridge, told Infosecurity without hesitation at Black Hat Europe on November 4 2016. “Artificial intelligence refers to systems that will be able to solve any problems, knowing everything about everything. That technology does not exist, and it’s certainly not appropriate to cybersecurity"
Google’s Chrome Hackers Are About to Upend Your Idea of Web Security(Wired) In a show of hacker team spirit in August of last year, Parisa Tabriz ordered hoodies for the staff she leads at Google, a group devoted to the security of the company’s Chrome browser. The sweatshirts were emblazoned with the words “Department of Chromeland Security,” along with Chrome’s warning to users when they visit insecure websites that leave them open to surveillance or sabotage: a red padlock crossed out with an X
Naval Academy's New Hopper Hall to House Data Security Studies(Campus Technology) The United States Naval Academy, which serves as a liberal arts college to train future officers for the U.S. Navy and U.S. Marine Corps, is constructing the first new building in four decades on its campus in Maryland. The new facility will serve as the home for Cyber Security Studies
ISU looks to fill cybersecurity gap(Pantagraph) With businesses and government increasingly concerned with hackers and internet protection, Illinois State University is developing a new major: cybersecurity
Turkey: Getting Worse before It Gets Better(Lawfare) The noose around Turkish democracy’s neck tightened further on Monday, when the police raided the offices of yet another newspaper—this time Cumhuriyet—and detained a number of its journalists on accusations of facilitating terrorist activities
Report: New emails relate to Clinton's tenure at State(The Hill) Newly discovered emails that the FBI initially said may be "pertinent" to its investigation into Hillary Clinton's private email server do relate to her tenure as secretary of State, a source told CBS News Thursday
Ne’er-Do-Well News and Cyber Justice(KrebsOnSecurity) Way back in the last millennium when I was a lowly copy aide at The Washington Post, I pitched the Metro Section editor on an idea for new column: “And the Good News Is…” The editor laughed me out of her office. But I still think it’s a decent idea — particularly in the context of cybersecurity — to periodically highlight the good news when people allegedly responsible for spewing so much badness online are made to face justice
Indian Government can now Unlock any Smartphone for Investigation: Cellebrite(InTabloid) Soon the law enforcement agencies in India including the Indian Government would be able to unlock any Smartphone prior to investigation. This would be made possible by a technology that the Forensic Science Laboratory (FSL) present in Gandhinagar has finally dealt to buy from an Israeli security company named, Cellebrite
Protection of white-hat hackers slow in coming(CSO) Cybersecurity researchers can help manufacturers fix flaws in their products before criminals exploit those flaws. But current law still casts a legal cloud over even friendly research
For a complete running list of events, please visit the Event Tracker on the CyberWire website.
2nd Annual Summit: Global Cyber Security Leaders(Berlin, Germany, November 7 - 8, 2016) The Global Cyber Security Leaders 2016 is designed to provide unrivaled access to peers from across the globe, and encourage participants to discuss the current challenges and explore the ideas shaping...
IAPP Europe Data Protection Congress 2016(Brussels, Belgium, November 7 - 10, 2016) The GDPR is finalised, the Data Protection Congress is returning to Brussels and you have a great deal of work ahead. Begin at the Congress, where you’ll find thought leadership, a thriving professional...
SANS Miami 2016(Coconut Grove, Florida, USA, November 7 - 12, 2016) Attend our new SANS Miami 2016 event, November 7-12 and choose from five hands-on, immersion-style cybersecurity training courses taught by real-world practitioners. Attackers are targeting you with increasing...
Federal IT Security Conference(Columbia, Maryland, USA, November 8, 2016) The Federal IT Security Institute in partnership with PhoenixTS in Columbia, MD is hosting the first annual Federal IT Security Conference. Speakers from NIST, DHS, the Defense Department as well as private...
11th Annual API Cybersecurity Conference & Expo(Houston, Texas, USA, November 9 - 10, 2016) Join us at the 11th Annual API Cybersecurity Conference & Expo and discover methods for thwarting the bad guys, what the scene looks like over the horizon and how the latest technologies can help you counter...
SecureWorld Seattle(Bellevue, Washington, USA, November 9 - 10, 2016) Join your fellow security professionals for affordable, high-quality cybersecurity training and education. Earn 12-16 CPE credits through 60+ educational elements learning from nationally recognized industry...
Israel HLS and Cyber 2016(Tel Aviv, Israel, November 14 - 17, 2016) Where physical and cyber security meet. Topics include intelligence, cyber crime, and counter-terrorism, defending critical infrastructures, a smart global world, mass events--the integrative approach,...
SANS Healthcare CyberSecurity Summit & Training 2016(Houston, Texas, USA, November 14 - 21, 2016) SANS will be hosting its 4th Annual Healthcare Cybersecurity Summit. Join us and hear top security experts from leading healthcare companies discuss proven approaches for securing and succeeding in the...
Infosec 2016(Dublin, Ireland, November 15, 2016) Infosec 2016 conference addresses the critically important issues that threaten businesses in the information age By any measure, the digital threats that businesses and organisations of all sizes face...
Commercial Cyber Forum: Insider Threat(Odenton, Maryland, USA, November 15, 2016) Please join us for a panelist discussion with insider threat experts on upcoming Federal rules, key elements of an insider threat program and privacy, due process, and human resource requirements.
Kaspersky Academy Talent Lab(Online, then Prague, Czech Republic, November 15, 2016) Kaspersky Academy Talent Lab is an international cyber-world competition for young researchers and professionals aged 18-30 who are interested in the cybersecurity challenges facing the world. 50 finalists...
CISO Charlotte(Charlotte, North Carolina, USA, November 15, 2016) The CISO Summit brings together C-level IT security executives, industry analysts and solution providers to discuss challenges and best practices in a relaxed, yet focused business setting. Agenda sessions
Pharma Blockchain Bootcamp(Edison, New Jersey, USA, November 16, 2016) Blockchain technology has gained recognition as one of the most disruptive technologies in the industrial world with the potential of redefining how businesses operate similarly the internet changed it...
CyberCon 2016(Washington, DC, USA, November 16, 2016) CyberCon 2016 is the forum for dialogue on strategy and innovation to secure civilian and defense networks, as well as private-sector networks that hold their sensitive data. Cybersecurity will be the...
Versus 16(San Francisco, California, USA, November 17, 2016) Versus is not an ordinary event. Versus is not about pitching products or preaching to the choir. Versus is about challenging what you think you know about cybersecurity, about technology, about doing...
Data Breach & Fraud Prevention Summit Asia(Mumbai, India, June 8, 2016) ISMG’s Data Breach & Fraud Prevention Summit Asia – Mumbai is a one-day event that will focus on the latest fraud techniques and technologies, as well as a holistic, strategic approach to looking at the
SCSC Cyber Security Conclave 2.0 Conference and Exhibition(Hyderabad, India, November 22 - 23, 2016) India’s leading two-day cyber security event is returning in November 2016, once again bringing together over hundreds of cyber security experts, senior officials and policy-makers from across the public...
4th Ethiopia Banking & ICT Summit(Addis Ababa, Ethiopia, November 25, 2016) The 4th Ethiopia Banking & ICT Summit is the ONLY event in Horn of Africa that focuses on technology innovations and trends in the Banking and ICT sectors. This annual summit brings together Financial...
Internet of Things (IoT)(Elkridge, Maryland, USA, November 29, 2016) This cybergamut Technical Tuesday features Dr. Susan Cole, currently the Cybersecurity Lead for a Federal Information Systems Controls Audit Management (FISCAM) preparation team and also provides consulting...
CIFI Security Summit(Toronto, Ontario, Canada, November 30 - December 1, 2016) The Annual CIFI Security Summit takes place all over the world, Asia, Europe, Australia & North America. These summits are essential 2 day conferences and exhibitions bringing together leading security...
SPONSOR & SUPPORT
Grow your brand and reach new customers.
Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.
Be a part of the CyberWire story.
People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.