South Korean sources report an increased tempo of North Korean cyberattacks. The targets are said to be largely defectors and rights groups.
Invincea researchers have discovered flaws in the Mirai IoT botnet-forming Trojan implicated in recent distributed denial-of-service attacks that had widespread effect. The stack buffer overflow flaw could be exploited to crash the attack process. Whether Invincea's discovery could be legally used against Mirai bots is another matter (and Invincea isn't necessarily recommending it, either): such use could constitute the sort of hacking back forbidden by the US Computer Fraud and Abuse Act.
Post mortems on the Dyn DDoS attacks of October 21 focused, properly enough, on users of common IoT devices leaving default factory passwords in place. But there are other issues of IoT security that fixing passwords won't touch—the ease with which such devices can be found through simple Shodan searches would be one; the economic forces driving enterprise users toward remote online management of IoT devices comprise another.
Shame (or, more probably, fear) in the gray market has led HackForums to remove "server stress testing" (generally regarded as a euphemism for DDoS for hire) from its offerings.
US election hacking fears persist; states seem ambivalent about accepted help from the Department of Homeland Security.
An ambiguously worded letter US FBI Director Comey sent Congress Friday suggests the Bureau is reopening investigation of former Secretary of State Clinton's emails.
Observers wonder how former NSA contractor Martin kept his Top Secret clearance as long as he did.
Today's issue includes events affecting Australia, Canada, Denmark, Iceland, Ireland, Israel, Democratic Peoples Republic of Korea, Republic of Korea, New Zealand, Nigeria, Russia, Singapore, United Kingdom, United States.
Two notes to our readers: First, we'll be in Washington, DC, this Wednesday and Thursday covering the SINET Showcase 2016. We'll be getting to know this year's SINET 16, some of the most innovative young companies in our industry.
And second, today is the last day of National Cyber Security Awareness Month. The theme of this final day is "building resilience in critical systems."
ON THE PODCAST
The CyberWire's regular daily Podcast will be out later this afternoon, with interviews, educational tips, and more on the stories of the day. Today we hear from Dale Drew of our partners at Level 3. He discusses concerns over the increased scale of online attacks. As always, if you enjoy the podcast, please consider giving it an iTunes review.
TECHEXPO Cyber Security Hiring Event(McLean, VA, USA, November 2, 2016) Our professional hiring events have benefited nearly a million attendees since 1993. We look forward to helping you advance your career and saving you time in your job search by providing you the opportunity to meet face to face with the nation's leading companies.
Malware Detection: How to Spot Infections Early with AlienVault USM(Live Webcast, November 3, 2016) While malware has been a thorn in the side of IT pros for years, some of the recent variants observed by the AlienVault Labs security research team, like CoreBot, have the ability to modify themselves on the fly, making them nearly impossible to detect with traditional preventative security measures. Join us for a live demo to learn about the most common types of malware, and how you can detect infections quickly with AlienVault USM.
Cyber Attacks, Threats, and Vulnerabilities
North Korea amps up cyber attacks on defectors and rights groups(Daily NK) "North Korean hacking units have intensified their attacks on defectors and human rights groups in South Korea since August 2016. The sustained attacks typically continue until the target’s computer is under the full control of the hackers, with documents, videos and pictures seized in the process. While the South Korean government and private security firms are coming to the defense of these organizations to stave off further damage, defectors have not been afforded the same level of protection”
Assessing the Damage of Last Week's Powerful DDoS Attack(Redmond Magazine) The damage from last week's distributed denial-of-service attack suggests it was the most powerful to date and it could be a precursor to an even more sustained attack. A bipartisan committee of senators formed over the summer wants answers, but some critics want the government to act more swiftly. The incident also puts a spotlight on the vulnerability of Internet of Things-based components, ranging from sensors on gas meters to IP-connected webcams and thermostats. There are currently 6.4 billion IoT-connected devices in use and that figure is expected to grow to 20 billion by the year 2020, according to Gartner's most recent forecast
When zombie computers attack: 4 nightmares CIOs must face(CIO Dive) Like a scary clown lurking in the shadows, CIOs face a number of terrifying potential threats this Halloween season. Avoiding the threats and protecting the enterprise is paramount, but what are the best ways to do so?
Octopus-Rex. Evolution of a multi task Botnet(This is Security) During the last decade, different types of malware have been targeting Linux servers; Elknot, Encoder, Mirai, LuaBot, NyaDrop, Gayfgt etc. Most of them are used for DDoS purpose but there are some exceptions. Rex is one of them
APAC malware and botnet threats charge ahead rest of the world(Security Brief) Fortinet's latest quarterly threat intelligence report has painted a picture of global trends in the cybersecurity sector, showing that malware and botnet threats in the Asia Pacific region are charging ahead more than anywhere else in the world
Is this the email that hacked John Podesta's account?(CNN) A phishing email sent to Hillary Clinton campaign chairman John Podesta may have been so sophisticated that it fooled the campaign's own IT staffers, who at one point advised him it was a legitimate warning to change his password
WikiLeaks email dump a cautionary tale(Dayton Daily News) An ongoing WikiLeaks dump of Hillary Clinton campaign manager John Podesta’s emails shows how easy the public and even high-ranking officials fall victim to cybercrime “phishing” schemes
Experts say an Election Day cyberattack is inevitable (and not a big deal)(Mashable) As Election Day approaches, tension is rising. Schools are canceling classes. Investors are waiting cautiously. Law enforcement is on alert for violence at polling locations. And when what seemed like half the internet shut down last week, fear of a large-scale cyberattack joined that list
Young, business-savvy hackers corner ransom market(Sunday Times) We tend to think of criminals as hardened men in masks climbing through windows to burgle homes and offices. In the world of cybercrime, they are more likely to be young hackers keeping to their own bedrooms, testing the limits of their computer skills
Security Patches, Mitigations, and Software Updates
Google to Make Certificate Transparency Mandatory By 2017(Threatpost) Google is making Certificate Transparency mandatory for its Chrome web browser by October 2017. Google software engineer Ryan Sleevi made the announcement in conjunction with the CA/Browser Forum that took place in Redmond, Washington last week
In a cyberwar(Military Embedded Systems) This is another broad, sticky, and complex topic, much like the previous article on cryptology. So, let’s get started by offering some definitions
Building the IoT monster(Help Net Security) When Mary Shelley wrote Frankenstein, she imagined the misguided doctor assembling his creature from dead body parts, who instead of elevating science, created something dark and terrible. A modern day Mary might well imagine the monster being assembled, not from arms and legs, from nanny-cams, door locks, and DVRs
The New Intelligence Economy, And How We Get There(Next Platform) Earlier this month, Samsung acquired Viv, the AI platform built by the creators of Siri that seeks to “open up the world of AI assistants to all developers.” The acquisition was largely overshadowed by the more high-profile news of Samsung’s struggles with its Galaxy Note smartphone, but make no mistake, this was a bold and impactful move by Samsung that aggressively launches the company into the future of smart, AI-enabled devices
What can we do about the critical cybersecurity skills shortage?(Help Net Security) Tech-savvy youth could plug a widening skills gap as employers seek to combat the growing threat of cybercrime and avert mass disruption to public and private lives. But the industry is failing to provide a clear path for young people to find work, hone their skills, and serve society
Healthcare industry lacks basic security awareness among staff(Help Net Security) SecurityScorecard released a comprehensive analysis exposing cybersecurity vulnerabilities across 700 healthcare organizations including medical treatment facilities, health insurance agencies and healthcare manufacturing companies
Is Cybersecurity for the Nation's Critical Infrastructure Rooted In the Past?(SIGNAL) Efforts to increasingly digitize networks that run the nation’s critical infrastructure enterprises also are boosting attack surfaces and vulnerabilities in an enduring cybersecurity contest in which hackers target those weaknesses with an elevated furor, experts admonished during a panel discussion on the issue
N159b lost to cyber crime in 13 Years, says Minister(Guardian) The Federal Government yesterday said not less than N159 billion has been lost to cyber crime in Nigeria in the last 13 years due mainly to Nigerians’ lack of technical knowhow to protect their online products and resources
IBM: From Firing To Hiring Spree(Forbes) There was a time when International Business Machine Corporation (NYSE:IBM) was on a firing spree, letting thousands of people go as sales declined. That was prior to 2015, as the company was in the middle of a transition, scaling down its old computing business to plow resources into new business initiatives and prepare for the coming of the cognitive era
ProtectWise CTO to Demonstrate Enterprise Security Platform at SINET Showcase(BusinessWire) ProtectWise, provider of the enterprise security platform that delivers pervasive visibility, was named a SINET 16 Innovator Award Winner and as such, CTO and Co-founder Gene Stevens will provide a demonstration of the capabilities and functionality of the ProtectWise Grid at the SINET Showcase in Washington D.C. on November 3
Solving the Microsoft Silverlight security issue in a few easy steps(Neurogadget) Many might not be aware of this, but using Microsoft Silverware can lead to serious malicious issues that can lead to security breaches that you wouldn’t want to have. Some have already experienced these problems at a degree or another, but in this quick guide we will see how we can solve the issue completely
WTF is the dark web?(TechCrunch) Maybe you heard your LinkedIn, Tumblr or Dropbox password was floating around there. Or maybe you read a news story about that guy who got busted for running Silk Road, that site that sold drugs and other illicit goods. Chances are, you’ve seen the words “dark web” splashed in a headline or heard them mentioned by a friend. But WTF is the dark web? How do you get there? And what makes it “dark”?
The Future of Privacy Is Plausible Deniability(Atlantic) In a hackable world where neither the NSA nor Sony Pictures nor John Podesta could safeguard their private communications, the surest way to keep data secure may be surrounding it with decoys
Exploring Cyber Security Education(The CyberWire) It’s no secret that cyber security is a hot field, with many more jobs available than qualified workers. So what’s the best way to become one of those qualified workers? In this CyberWire special edition, we look at some of the available options in cyber security education, we speak to the people who are teaching and designing the classes, and examine the creative ways people are trying to prepare the next generation of cyber security professionals
DHS cyber chief to young hackers: Help us protect the grid (+video)(Christian Science Monitor Passcode) At a hacking competition Passcode hosted in Washington, Phyllis Schneck said threats against critical infrastructure "keeps us up at night" – and encouraged young security researchers to partner with the government to help curtail the threat
Legislation, Policy, and Regulation
Iceland's Pirate Party Gains Ground in Election(Motherboard) After near-constant exposure to the nausea-inducing dumpster fire that is the 2016 U.S. presidential race, it might be hard to grok that a movement of anti-establishment internet pirates has become one of the leading political parties of a small island nation
Trump’s New Cyber Security Plan?(JDSupra) With the recent news regarding Yahoo’s massive data breach and the continuing posting of Clinton Foundation emails by Wikileaks, cybersecurity policy is beginning to get the discourse it is due. Secretary Clinton’s campaign was swift to publish a lengthy briefing on her cybersecurity policy agenda when she declared her candidacy
Carter creates new DoD post: Chief Innovation Officer(Federal News Radio) With only a few months left before his tenure as Defense secretary expires, Ashton Carter took one more step to drive home his oft-repeated point that the notion that the Pentagon needs more “innovation” in its bloodstream, in case anyone has failed to take notice so far
Litigation, Investigation, and Law Enforcement
FBI reopens investigation into Clinton email use(Fox News) The FBI has reopened its investigation into Hillary Clinton’s use of a private server while secretary of state after discovering new emails, in a stunning turn of events just days before the presidential election
Hillary's emails matter: A retired CIA officer explains why(The Hill) The 2016 presidential election, already one of the wildest in American history, has been rocked by the announcement that the Federal Bureau of Investigation (FBI) is reopening its investigation into Hillary Clinton’s use of a private email server while Secretary of State
Inside Palantir’s War With the U.S. Army(Bloomberg Technology) The company’s lawsuit against the Army claims it was unfairly blocked from competing for a contract, and the decision is expected on Monday
InfoShot: The FBI’s Cyber’s Most Wanted(IDG Connect) The FBI’s Ten Most Wanted Fugitives is one of the most famous lists of criminals in the world. Hundreds of people have been added and removed from the list in its 66 years
For a complete running list of events, please visit the Event Tracker on the CyberWire website.
Regional Cyber Security Summit(Sharm El-Sheikh, Egypt, October 30 - November 1, 2016) The Regional Cyber Security Summit comes this year with the theme of “Boundless Collaboration, Boundless Protection”. It focuses on the cooperation in cybersecurity as one of key pillars to tackle the...
Inside Dark Web(Washington, DC, USA, November 1 - 2, 2016) Individuals, organizations, corporations, and governments use the Dark Web to protect themselves and their users, employees, customers, and citizens seeking a more accessible and secure Internet experience.
GTEC(Ottawa, Ontario, Canada, November 1 - 3, 2016) For the public sector and business, count on GTEC to help you keep up with the changing landscape of technology and service delivery in Canada. With our nationally recognized awards program and annual...
Black Hat Europe 2016(London, England, UK, November 1 - 4, 2016) Black Hat is returning to Europe again in 2016, and we have quite an event in store. Here the brightest professionals and researchers in the industry will come together for a total of four days--two days...
TECHEXPO Cyber Security Hiring Event(Tysons Corner, Virgina, USA, June 30, 2016) Cyber security professionals are invited to interview face-to-face with employers including The CIA, Deloitte, Intel Security, Northrop Grumman, Lockheed Martin, Deloitte, Vencore and many more. Hundreds...
ISSA International Conference(Orlando, Florida, USA, October 22 - 23, 2014) Join us for solution oriented, proactive and innovative sessions focused on security as a vital part of the business.
SINET Showcase 2016: Highlighting and Advancing Innovation(Washington, DC, USA, November 2 - 3, 2016) SINET Showcase provides a platform to identify and highlight “best-of-class" security companies that are addressing industry and government’s most pressing needs and requirements. The chosen SINET 16 Innovators...
3rd Annual Journal of Law and Cyber Warfare Conference(New York, New York, USA, November 3, 2016) The 2016 Journal of Law and Cyber Warfare symposium speakers represent an unparalleled group of cyber security experts with a wide variety of industry expertise and knowledge. Attendees will hear from
Security of Things World USA(San Diego, California, USA, November 3 - 4, 2016) Security. Privacy. Connected Devices. Exploring Security and the Internet of Things. A world class event focused on the next information security revolution. Be part of Security of Things World USA in...
2nd Annual Summit: Global Cyber Security Leaders(Berlin, Germany, November 7 - 8, 2016) The Global Cyber Security Leaders 2016 is designed to provide unrivaled access to peers from across the globe, and encourage participants to discuss the current challenges and explore the ideas shaping...
IAPP Europe Data Protection Congress 2016(Brussels, Belgium, November 7 - 10, 2016) The GDPR is finalised, the Data Protection Congress is returning to Brussels and you have a great deal of work ahead. Begin at the Congress, where you’ll find thought leadership, a thriving professional...
SANS Miami 2016(Coconut Grove, Florida, USA, November 7 - 12, 2016) Attend our new SANS Miami 2016 event, November 7-12 and choose from five hands-on, immersion-style cybersecurity training courses taught by real-world practitioners. Attackers are targeting you with increasing...
Federal IT Security Conference(Columbia, Maryland, USA, November 8, 2016) The Federal IT Security Institute in partnership with PhoenixTS in Columbia, MD is hosting the first annual Federal IT Security Conference. Speakers from NIST, DHS, the Defense Department as well as private...
11th Annual API Cybersecurity Conference & Expo(Houston, Texas, USA, November 9 - 10, 2016) Join us at the 11th Annual API Cybersecurity Conference & Expo and discover methods for thwarting the bad guys, what the scene looks like over the horizon and how the latest technologies can help you counter...
SecureWorld Seattle(Bellevue, Washington, USA, November 9 - 10, 2016) Join your fellow security professionals for affordable, high-quality cybersecurity training and education. Earn 12-16 CPE credits through 60+ educational elements learning from nationally recognized industry...
Israel HLS and Cyber 2016(Tel Aviv, Israel, November 14 - 17, 2016) Where physical and cyber security meet. Topics include intelligence, cyber crime, and counter-terrorism, defending critical infrastructures, a smart global world, mass events--the integrative approach,...
SANS Healthcare CyberSecurity Summit & Training 2016(Houston, Texas, USA, November 14 - 21, 2016) SANS will be hosting its 4th Annual Healthcare Cybersecurity Summit. Join us and hear top security experts from leading healthcare companies discuss proven approaches for securing and succeeding in the...
Infosec 2016(Dublin, Ireland, November 15, 2016) Infosec 2016 conference addresses the critically important issues that threaten businesses in the information age By any measure, the digital threats that businesses and organisations of all sizes face...
Kaspersky Academy Talent Lab(Online, then Prague, Czech Republic, November 15, 2016) Kaspersky Academy Talent Lab is an international cyber-world competition for young researchers and professionals aged 18-30 who are interested in the cybersecurity challenges facing the world. 50 finalists...
CISO Charlotte(Charlotte, North Carolina, USA, November 15, 2016) The CISO Summit brings together C-level IT security executives, industry analysts and solution providers to discuss challenges and best practices in a relaxed, yet focused business setting. Agenda sessions
Pharma Blockchain Bootcamp(Edison, New Jersey, USA, November 16, 2016) Blockchain technology has gained recognition as one of the most disruptive technologies in the industrial world with the potential of redefining how businesses operate similarly the internet changed it...
Cybercon 2016(Washington, DC, USA, November 16, 2016) The forum for dialogue on strategy and innovation to secure defense and government networks, as well as private-sector networks that hold their sensitive data.
Versus 16(San Francisco, California, USA, November 17, 2016) Versus is not an ordinary event. Versus is not about pitching products or preaching to the choir. Versus is about challenging what you think you know about cybersecurity, about technology, about doing...
Data Breach & Fraud Prevention Summit Asia(Mumbai, India, June 8, 2016) ISMG’s Data Breach & Fraud Prevention Summit Asia – Mumbai is a one-day event that will focus on the latest fraud techniques and technologies, as well as a holistic, strategic approach to looking at the
SCSC Cyber Security Conclave 2.0 Conference and Exhibition(Hyderabad, India, November 22 - 23, 2016) India’s leading two-day cyber security event is returning in November 2016, once again bringing together over hundreds of cyber security experts, senior officials and policy-makers from across the public...
4th Ethiopia Banking & ICT Summit(Addis Ababa, Ethiopia, November 25, 2016) The 4th Ethiopia Banking & ICT Summit is the ONLY event in Horn of Africa that focuses on technology innovations and trends in the Banking and ICT sectors. This annual summit brings together Financial...
Internet of Things (IoT)(Elkridge, Maryland, USA, November 29, 2016) This cybergamut Technical Tuesday features Dr. Susan Cole, currently the Cybersecurity Lead for a Federal Information Systems Controls Audit Management (FISCAM) preparation team and also provides consulting...
CIFI Security Summit(Toronto, Ontario, Canada, November 30 - December 1, 2016) The Annual CIFI Security Summit takes place all over the world, Asia, Europe, Australia & North America. These summits are essential 2 day conferences and exhibitions bringing together leading security...
SPONSOR & SUPPORT
Grow your brand and reach new customers.
Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.
Be a part of the CyberWire story.
People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.