EternalSynergy, EternalRomance, and EternalChampion, leaked last year by the Shadow Brokers and used in the NotPetya pseudoransomware attacks, have been found to work on all unpatched versions of Windows from Windows 2000 on. RiskSense researchers determined the three alleged Equation Group exploits may be just as easy for attackers to use as the hitherto more popular EternalBlue bug. This discovery should spur laggards (there are many) who have yet to apply patches Microsoft issued last March.
On February 1st and 2nd the MacUpdate was briefly infested with cryptomining malware. MacUpdate has expelled the malicious software, but users who downloaded updates at the beginning of the month should check their systems.
Qihoo 360 NetLab warns that a new Monero cryptomining botnet affects Android devices in the wild. It infects through port 5555, which is used by the legitimate debugging tool Android Debug Bridge.
T-Mobile has issued a warning of an active SIM-hijacking campaign. The warning takes the unusual form of a mass text message. In the "phone number port out scam," the crook impersonates the victim in either a phone call or a visit to a phone store and request a new SIM card for the victim’s phone number. Phone passcodes or PINs can help ward off the scam.
Apple and Cisco have partnered with insurance giant Allianz in an arrangement that will give Allianz customers lower cyber insurance rates if they use certain Apple and Cisco products.
US Federal agencies and their contractors prepare to implement NIST information-sharing guidelines.
The board and cyber-risk oversight: Crown Jewels Risk Assessments.
Corporate directors want to review cybersecurity risk and assist security leaders in protecting critical assets. Learn how to identify what matters the most and how to collaboratively assess and treat cyber risk using Crown Jewels Risk Assessments.
Cyber Security Summits: February 13 in Silicon Valley & Atlanta on February 28(Silicon Valley, California, USA, February 13, 2018) Sr. Level Executives are invited to learn about the latest threats & solutions in Cyber Security from experts from The FBI, Darktrace, IBM and more. Register with promo code cyberwire50 for half off your admission (Regular price $350) https://CyberSummitUSA.com
Compete to win prize money plus the chance to be DataTribe’s next big investment(Online, March 23 - April 25, 2018) The DataTribe Inaugural Cyber Funding Competition: We put real firepower behind every idea. If you're part of a entrepreneurial technology team with a vision to disrupt cybersecurity and data sciences — we want to enhance your growth prospect with the opportunity for a DataTribe-financed seed capital of $2,000,000. Plus possible millions more in a Series A Venture Capital Round. The top three finalists will share $20,000 in prize money.
Smominru Botnet Infected Over 500, 000 Windows Machines(Information Security Buzz) News broke yesterday that over 526,000 Windows computers —mainly Windows servers— have been infected with Monero mining software by a group that operates the biggest such botnet known to date. This group’s operations have been known to security researchers since last year, and various companies have published reports on its activity. Because the botnet is so massive …
Bot Hacked Over $3m Worth of Monero from 500m Computers(The Market Mogul) A bot which infected 500,000 computers has earned the hackers responsible over $3m from mining cryptocurrency. Since last May, the crypto-botnet Smominru has infected computers and hijacked their processing power to generate as much as $3.6m of altcoin Monero, according to a researcher’s blog post published by security firm, Proofpoint. The researcher, who went under the name […]
How Cryptocurrency Mining Software Is Turning Into Malware(247wallst.com) Software designed for mining cryptocurrencies is also being used by cybercriminals to create botnets of PCs from unsuspecting victims. The only thing stolen -- so far -- is processing power from which the crook makes money and the victim gets nothing but a computer that runs more slowly.
Few Meltdown, Spectre Malware Attacks Are Being Reported(eWEEK) Meltdown and Spectre malware samples emerge, though few attacks follow; the new Cisco Container Platform will support Kubernetes Orchestrator; threats to industrial control systems grow as vulnerabilities increase; and Microsoft Azure cloud revenue nearly doubles in Q2 2018.
Boomerang spam bombs Malwarebytes forum—not a smart move(Security Boulevard) Boomerang Tech solutions had trouble configuring their spambots, thus dropping a few spam bombs on Malwarebytes forums. Watch us catch them red-handed in a scammer call. Categories: Cybercrime Social engineering Tags: BoomerangforumsMBAMspamTSS (Read more...) The post Boomerang spam bombs Malwarebytes forum—not a smart move appeared first on Malwarebytes Labs.
Would You Have Spotted This Skimmer?(KrebsOnSecurity) When you realize how easy it is for thieves to compromise an ATM or credit card terminal with skimming devices, it’s difficult not to inspect or even pull on these machines when you’re forced to use them personally — half expecting something will come detached.
Security Patches, Mitigations, and Software Updates
Flaw in Grammarly's extensions opened user accounts to compromise(Help Net Security) A vulnerability in the Grammarly Chrome and Firefox extensions allowed websites to read users' authentication tokes and use to them to log in to the users' Grammarly accounts and access all the (potentially sensitive) information held in them.
IGEL Marks Record Software Sales Growth for the Year Ended 2017(IGEL) IGEL announced record results for 2017 with 74% revenue growth in the U.S., year-over-year. Growth was significantly driven by record software sales, which were up 589% in the U.S., specifically, including sales for IGEL’s Universal Desktop Converter™ (UDC) and UD Pocket™ solutions.
Business Update: Forcepoint Global Governments & Critical Infrastructure(Forcepoint) Forcepoint continues its focus on the unique needs and challenges found in the most highly regulated and mission-critical sectors. After over 20 years of protecting US and Five-Eyes critical classified information and networks, Forcepoint expanded the government business charter to bring human-centric cybersecurity to governments around the world in 2017.
Invest in the First Line of Defence(Infosecurity Magazine) How to create a culture of an informed, empowered and committed workforce, fully appreciative of the threat and knowledgeable of the signs of concerning behaviors.
ERAU adds graduate cybersecurity program(The Daily Courier) Responding to an increased demand for cybersecurity professionals in Arizona and across the country, the College of Security and Intelligence at Embry-Riddle Aeronautical University’s Prescott campus has announced plans to offer a Master of Science in cyber intelligence and security.
DOD's nuclear posture review includes tougher cyber defenses(InsideDefense.com) The Pentagon's updated Nuclear Posture Review includes steps for strengthening the military's cyber defenses, as President Trump is calling for an increase in spending to modernize the nation's nuclear arsenal, Inside Cybersecurity reports.
McCaul calls on the Senate to act on cyber bills(FCW) House Homeland Security Committee Chairman Michael McCaul (R-Texas) urged the Senate to move on restoring the State Department's cyber office and reorganizing DHS' National Protection and Programs Directorate.
UK data protection authority issues record fines(Help Net Security) Since August 2015, The UK's independent authority, The Information Commissioner's Office, has fined 104 organisations a total of £8.7 million for breaches in data security and anti-spam regulations.
For a complete running list of events, please visit the Event Tracker on the CyberWire website.
Newly Noted Events
Connect Security World 2018(Marseilles, France, September 24 - 26, 2018) While the number of IoT devices predicted by 2020 varies within tens of billions, all analysts agree that security is now the top concern of organizations looking at deploying IoT solutions. To address...
SecureWorld Charlotte(Charlotte, North Carolina, USA, February 8, 2018) Connecting, informing, and developing leaders in cybersecurity. SecureWorld conferences provide more content and facilitate more professional connections than any other event in the Information Security...
Cyber Security Summit: Silicon Valley(San Jose, California, USA, February 13, 2018) This event is an exclusive conference connecting Senior Level Executives responsible for protecting their companies’ critical data with innovative solution providers & renowned information security experts.
Security Titans(Scottsdale, Arizona, USA, February 23, 2018) Security Titans is a ground-breaking event, bringing the biggest names in Information Security together - all in one day, on a single stage to give the nation's cyber security industry access to the very...
CyberThreat 18(Westminster, England, UK, February 27 - 28, 2018) Hosted by the UK’s National Cyber Security Centre, a part of GCHQ, and the SANS Institute, CyberThreat18 brings together a packed schedule of talks on a broad range of familiar and less familiar topics...
Midlands Cyber: US Cyber Market Workshop(Lutterworth, England, UK, February 27, 2018) We are delighted to announce that we will be running two workshops, led by Andy Williams, the International Director of the iCyber Centre @bwtech, Maryland. The workshops have been tailored by the team...
European Cybersecurity Forum – CYBERSEC Brussels(Brussels, Belgium, February 27, 2018) CYBERSEC Forum is an unique opportunity to meet and discuss the current issues of cyber disruption and ever-changing landscape of cybersecurity related threats. Our mission is to foster the building of...
The Cyber Security Summit: Atlanta(Atlanta, Georgia, USA, February 28, 2018) This event is an exclusive conference connecting Senior Level Executives responsible for protecting their company’s critical data with innovative solution providers & renowned information security experts.
SINET ITSEF 2018(Silicon Valley, California, USA, March 7 - 8, 2018) Bridging the gap between Silicon Valley and the Beltway. SINET – Silicon Valley provides a venue where entrepreneurs can meet and interact directly with leaders of government, business and the investment...
PCI Security Standards Council Middle East and Africa Forum(Cape Town, South Africa, March 14 - 15, 2018) Don’t miss the data security event of the year for the payment card industry. Join us for: networking opportunities, updates on industry trends, insights and strategies on best practices, engaging keynotes...
SecureWorld Boston(Boston, Massachussetts, USA, March 14 - 15, 2018) Connecting, informing, and developing leaders in cybersecurity. SecureWorld conferences provide more content and facilitate more professional connections than any other event in the Information Security...
Cyber 9-12(Washington, DC, USA, March 16 - 17, 2018) Now entering its fifth year, the Cyber 9/12 Student Challenge is a one-of-a-kind competition designed to provide students across academic disciplines with a deeper understanding of the policy challenges...
3rd Annual Billington International Cybersecurity Summit(Washington, DC, USA, March 21, 2018) With confirmed speakers from Estonia, Romania, Singapore, Sweden, the United States, and Kuwait, and with attendees from many more countries, this summit brings together world-class cybersecurity thought...
Infosecurity Magazine North America Virtual Conference(Online, March 21 - 22, 2018) Tune in on Wednesday March 21 for day two of our two-day online event to learn what’s going on at the heart of the industry. Our easy to digest format offers a mix of short sessions, panel debates and...
The Cyber Security Summit: Denver(Denver, Colorado, USA, March 22, 2018) This event is an exclusive conference connecting Senior Level Executives responsible for protecting their company’s critical data with innovative solution providers & renowned information security experts.
SPONSOR & SUPPORT
Grow your brand and reach new customers.
Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.
Be a part of the CyberWire story.
People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.