More documents taken from the US Democratic National Committee are released. Nothing newly scabrous, but Russia Today continues to waggle the Guccifer 2.0 sockpuppet to misdirect all from the hackers who doxed the DNC. ABC News says those hackers call themselves "Fancy Bear," which isn't quite accurate: that's what CrowdStrike calls them. Fancy Bear actually calls itself "Гла́вное разве́дывательное управле́ние" (over here people usually say "GRU").
US officials continue to worry about election hacking, and appear to have settled on a policy of offering help to state and local authorities without designating voting "critical infrastructure" or Federalizing elections.
Fancy Bear is also said to be behind the doxing of the World Anti-Doping Authority (WADA), exposing non-Russian Olympians' medical records in a spirit of tu quoque about performance-enhancing substances. (Again, the hacking, not the records, is the shock.)
Ransomware crime continues to pay. One malware author is, incredibly, reported by McAfee Labs to have netted some $94 million ($121 million gross).
KrebsOnSecurity says the US Secret Service is warning of a new ATM threat, "periscope skimming," in which a specialized "probe" connects to the machine's circuit board to access card data.
In the US, Congress is again taking up surveillance legislation. The Intelligence Community (including the NSA Director) this week testified in favor of strong encryption.
Senator McCain (R-Arizona) vows to block any attempt to separate NSA and US Cyber Command. Secretary of Defense Carter muses that NSA might do better as an independent agency.
Today's issue includes events affecting Ireland, Israel, Russia, St. Kitts and Nevis, United Kingdom, United States.
ON THE PODCAST
The CyberWire's regular daily Podcast will be out later this afternoon, with interviews, educational tips, and more on the stories of the day. Today Ben Yelin from our partners at the University of Maryland's Center for Health and Homeland Security will give us an update on the legal ins-and-outs of stingray cell phone interception. Our guest, Acalvio’s Chief Software Architect Raj Gopalakrishna, will talk about machine learning. As always, if you enjoy the podcast, please consider giving it an iTunes review.
Tech Expo Job Fair(Arlington, VA, USA, September 28 - 29, 2016) Software Engineering Institute at Carnegie Mellon University Invitational Hiring Event. This is an invitation-only event. Submit your resume for review by September 27. SEI staff will be interviewing at their offices in Arlington, VA to fill local positions immediately.
CyberMaryland 2016(Baltimore, MD, USA, October 20 - 21, 2016) This year's theme, “Leading the Cyber Generation,” captures the event’s intent to provide unparalleled information sharing and networking opportunities for development of cyber assets on both the human and technological side.
NICE Conference and Expo 2016(Kansas City, MO, USA, November 1 - 2, 2016) The NICE 2016 Conference and Expo will feature timely, topical, and thought-provoking presentations, bringing together cybersecurity workforce, training, and educational leaders from academia, business, and government for two days of focused discussions.
Dateline Billington Cybersecurity Summit
Upgrading Technology, Organization, and Funding(The CyberWire) Tony Scott, the US Federal CIO, addressed the Billington CyberSecurity Summit with the aim of outlining what he sees at the path forward with respect to information technology for the United States Government. In doing so he paid particular attention to the implications of that path for cyber security
Israel cyber head: US-backed cyber norms too broad(The Hill) The head of the of the Israeli National Cyber Directorate on Tuesday criticized the State Department's strategy for developing international cybersecurity norms, calling the plans overly broad
Ransomware usage explodes, as app, browser and plug-in vulnerabilities increase(Help Net Security) Bromium conducted research on cyber attacks and threats affecting enterprise security over the last six months. The good news is while the number of vulnerabilities is steadily increasing, not all exploitable vulnerabilities are actually exploited. The bad news is, criminals are working harder to get protected data. As a result, there’s been an uptick in recent high-profile data breaches and ransomware attacks
NTP reflection attacks hit record high(CSO) Distributed denial of service attacks that take advantage of misconfigured NTP servers were up 276 percent last quarter compared to the same time last year, reaching a new record high, according to a new report
Attackers Launch DDoS Attacks And the Kitchen Sink (CSO) First off, full disclosure, I work for Akamai as my day job. I don’t want any illusion on the point as I discuss the latest State of the Internet report that I was fortunate enough to be a part of creating
Business still ill-prepared to handle modern DDoS attacks(Help Net Security) In September 1996, New York City’s original ISP, Panix, was hit by a SYN flood denial of service attack that took them offline for several days. At a time when only 20 million Americans were online, this was one of the first high profile examples of the growing importance of network and service availability
Cyber 'Smear': Hackers Publish Olympians' Medical Records(ABC News) In what a U.S. official said was a "smear" attack on American Olympians, hackers have posted online medical and drug testing records for top athletes including gymnast Simone Biles, tennis players Serena and Venus Williams and basketball player Elena Delle Donne
Secret Service Warns of ‘Periscope’ Skimmers(KrebsOnSecurity) The U.S. Secret Service is warning banks and ATM owners about a new technological advance in cash machine skimming known as “periscope skimming,” which involves a specialized skimming probe that connects directly to the ATM’s internal circuit board to steal card data
Security Patches, Mitigations, and Software Updates
Microsoft ends Tuesday patches(Help Net Security) Yesterday was a big day for Patch Tuesday. It was the last traditional Windows Patch Tuesday as Microsoft is moving to a new patching release model. In the future, patches will be bundled together and users will no longer be able to pick and choose which updates to install. Furthermore, these new ‘monthly update packs’ will be combined, so for instance, the November update will include all the patches from October as well
Apple iOS 10 and 10.0.1 Released(SANS Internet Storm Center) On top of today being Patch Tuesday, Apple has released IOS 10 sometime today as well. They also released 10.0.1, with not a lot of detail behind that release (maybe something was missed?)
Securing information in the age of external collaboration(Help Net Security) A new Enterprise Strategy Group (ESG) research study, which was completed by 200 senior IT and security professionals with influence over purchasing decisions, highlights the need for organizations to have the necessary technologies in place to ensure policies travel with sensitive data wherever and however it is shared
GDPR: Are you prepared?(Help Net Security) Many European and US businesses are ill-prepared for the recently agreed EU General Data Protection Regulation (GDPR) and are at risk of falling foul of its rules around the use and control of personal data, according to a study conducted by Vanson Bourne
U.S. spies think China wants to read your email(Bloomberg View via the Chicago Tribune) For more than a decade, the U.S. military and intelligence community has quietly warned that the world's largest telecom equipment manufacturer, Huawei, is an arm of the People's Liberation Army and that its phones, circuits and routers are instruments of Chinese eavesdropping
FireEye: A Closer Look At Mandiant(Seeking Alpha) FireEye bought Mandiant for synergistic reasons. Mandiant is yet to live up to expectation due to dwindling high profile attacks. Separating Mandiant can potentially unlock more value for FireEye
Kaspersky Lab opens R&D office in Ireland(Telecompaper) Kaspersky Lab opened its first European research and development (R&D) centre, in Dublin, Ireland. The location was selected on account of Dublin’s growing reputation as a major European tech hub, providing access to a highly skilled IT talent pool and a strong network of innovative technology companies
CrowdStrike Co-Founder and CTO Dmitri Alperovitch Named to Politico 50 List(Broadway World) CrowdStrike Co-Founder and CTO Dmitri Alperovitch Named to Politico 50 List CrowdStrike, the leader in cloud-delivered next-generation endpoint protection, today announced that Dmitri Alperovitch, CrowdStrike’s co-founder and chief technology officer, has been named into the Politico 50 list for 2016
Cybersecurity In The Obama Era(Dark Reading) Our roundup of the Obama administration's major initiatives, executive orders and actions over the past seven and a half years. How would you grade the president's cybersecurity achievements?
White House’s DJ Patil wants to disrupt the criminal justice system with data(TechCrunch) At TechCrunch Disrupt SF 2016 today, I had a chance to chat with DJ Patil, the nation’s deputy chief technology officer for data policy and chief data scientist. We talked about what he’s been up to at the White House lately, the criminal justice system and a recently-launched data justice initiative
Tor Slams Mass Hacking Amendments(Infosecurity Magazine) The Tor Project has slammed proposed US legislation that would allow the FBI greater capabilities to hack computers and conduct surveillance on electronic media that is “concealed through technological means"
McCain vows to block breakup of NSA leadership(The Hill) Sen. John McCain (R-Ariz.) on Tuesday vowed to oppose a reported proposal that would split up the leadership of the National Security Agency (NSA) and the U.S Cyber Command in a preview of what could be a brutal fight later this year
Army wants cyber capability everywhere(FCW) The Army's new cyber director said the service is still struggling to make cyber, electronic warfare and information operations tangible to warfighters
Edward Snowden says he deserves presidential pardon over NSA leaks(Washington Times) Edward Snowden on Monday said he should be pardoned, not prosecuted, for leaking government secrets, and he described his decision to disclose national security documents as being “necessary” to affect change to the country’s surveillance programs
For a complete running list of events, please visit the Event Tracker on the CyberWire website.
Newly Noted Events
Cyber National Security – The Law of Cyberspace Confrontation(Hanover, Maryland, and Fort Meade, October 3 - 6, 2016) US Cyber Command will host the fourth annual COCOM-Interagency Cyber Law Conference from 3 through 6 October 2016, Cyber National Security – The Law of Cyberspace Confrontation. This year the conference...
SANS Network Security 2016(Las Vegas, Nevada, USA , September 10 - 16, 2016) We are pleased to invite you and your colleagues to attend SANS Network Security 2016 at the magnificent Caesars Palace, Las Vegas, on September 10-19. SANS Network Security is your annual networking opportunity!...
Hacker Halted 2016(Atlanta, Georgia, USA, September 11 - 16, 2016) This year, Hacker Halted’s theme is the Cyber Butterfly Effect: When Small Mistakes Lead to Big Disasters. The goal of the conference is to bring the IT security community together...
(ISC)² Security Congress(Orlando, Florida, USA, September 12 - 15, 2016) (ISC)² Security Congress offers attendees over 90 education sessions, designed to transcend all industry sectors, focus on current and emerging issues, best practices, and challenges facing cybersecurity...
Privacy. Security. Risk. 2016(San Jose, California, USA, September 13 - 16, 2016) Innovative since Day 1, P.S.R. brings together two related fields—privacy and security—helping you see beyond your role in order to excel in your role. Because perspective is everything. Delivering the...
ISS World Americas(Washington, DC, USA, September 13 - 15, 2016) ISS World America is the world's largest gathering of North American Law Enforcement, Intelligence and Homeland Security Analysts as well as Telecom Operators responsible for Lawful Interception, Hi-Tech...
SecureWorld Detroit(Dearborn, Michigan, USA , September 14 - 15, 2016) Join your fellow security professionals for affordable, high-quality cybersecurity training and education. Earn 12-16 CPE credits through 60+ educational elements learning from nationally recognized industry...
Insider Threat Program Development Training for NISPOM CC 2(Milwaukee, Wisconsin, USA, September 19 - 20, 2016) Insider Threat Defense will hold a two-day training class on Insider Threat Program Development (NISPOM Conforming Change 2). For a limited time the training is being offered at a discounted rate of $795...
4th ETSI/IQC Workshop on Quantum-Safe Cryptography(Toronto, Ontario, Canada, September 19 - 21, 2016) This three-day workshop brings together diverse players in the quantum-safe cybersecurity community to facilitate the knowledge exchange and collaboration required to transition cyber infrastructures and...
Cyber Physical Systems Summit(Newport News, Virginia, USA, September 20 - 22, 2016) On September 20-22, 2016 the Commonwealth will be hosting a Cyber and Physical Systems Summit. The three day event will consist of roundtable discussions, plenary and panel presentations across the intersection...
hardwear.io Security Conference(The Hague, the Netherlands, September 20 - 23, 2016) hardwear.io Security Conference is a platform for hardware and security community where researchers showcase and discuss their innovative research on attacking and defending hardware. The objective of...
New York Cyber Security Summit(New York, New York, USA, September 21, 2016) The Cyber Security Summit is an exclusive conference series connects C-Suite & Senior Executives who are responsible for protecting their companies’ critical infrastructures with innovative solution providers...
Gigaom Change 2016 Leader's Summit(Austin, Texas, USA, September 21 - 23, 2016) Over an immersive 2.5 days, we will explore the current state-of-the-art technologies, how these are transforming industry, and why this all matters. You’ll emerge with a greater understanding of the exponential...
NYIT Annual Cybersecurity Conference(New York, New York, USA, September 22, 2016) Presented by NYIT School of Engineering and Computing Sciences, this conference brings together cyber experts from academia, business, and government to address: Cyber Defense Against Attacks–How Industry...
GDPR Comprehensive 2016(London, England, UK, September 22 - 23, 2016) The GDPR is now a reality. Are you prepared? We had an incredible response to the IAPP GDPR Comprehensive in Brussels and New York, where we prepared hundreds of privacy and data protection professionals...
Cyber Security: How to Identify Risk and Act(Frankenmuth, Michigan, USA, September 26, 2016) Join us on 9/26/2016 for the PMI-MTC's annual project management PDD focusing on "Cyber Security: How to Identify Risk and Act." Earn 7 PDUs during the interactive sessions with well-known information
CYBERSEC(Kraków, Poland, September 26 - 27, 2016) The CYBERSEC forum is the first of its kind in Poland and one of just a few regular public policy conferences in Europe devoted to the strategic issues of cyberspace and cybersecurity.The goal of the CYBERSEC...
Third Annual Women in Cyber Security Reception(Baltimore, Maryland, USA, September 27, 2016) The CyberWire is pleased to present the 3rd Annual Women in Cyber Security Reception in cooperation with our partner the Cybersecurity Association of Maryland (CAMI) on Tuesday, September 27, 2016, in...
IP EXPO Nordic 2016(Stockholm, Sweden, September 27 - 28, 2016) IP EXPO Nordic is part of Europe’s number ONE enterprise IT event series, designed for those looking to find out how the latest IT innovations can drive business growth and competitiveness. The event showcases...
SecureWorld Dallas(Plano, Texas, USA , September 27 - 28, 2016) Join your fellow security professionals for affordable, high-quality cybersecurity training and education. Earn 12-16 CPE credits through 60+ educational elements learning from nationally recognized industry...
escar Asia 2016(Tokyon, Japan, September 28 - 30, 2016)
Founded in 2003, escar has established itself as the premier forum for the discussion and exchange of ideas to identify and minimize threats to data and vehicles. Held in Europe, the US and now for the third time in Asia, escar provides a forum for collaboration among industry, academia and governments for in-vehicle cyber security.
SPONSOR & SUPPORT
Grow your brand and reach new customers.
Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.
Be a part of the CyberWire story.
People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.