The Olympic Destroyer malware that hit the Winter Games being held in South Korea appears to be a complex piece of work. It's a wiper, it spreads via EternalRomance (one of the alleged Equation Group exploits the Shadow Brokers leaked), and it also contains a self-patching functionality that enables it to change its characteristics as it moves from machine to machine. Cisco's Talos research unit have been examining it, and finds some similarities to code used in NotPetya and BadRabbit, and speculation about attribution has turned largely toward Russia, but speculation remains based mostly on motive and opportunity.
The US Intelligence Community's annual threat assessment sees Iran, Russia, and North Korea as growing more assertive in cyberspace. They expect Russian influence operations (propaganda and disinformation) during this year's midterm elections. The goal is to sow discord and mistrust.
On Patch Tuesday, Microsoft fixed fifty bugs, fourteen rated critical, affecting widely used products, including Outlook. Adobe patched thirty-nine flaws in Acrobat and Reader.
US Army Lieutenant General Paul Nakasone, long the front-runner, has been nominated to succeed Admiral Rogers as Director NSA and Commander, US Cyber Command. He'll be dual-hatted, at least initially, when he takes over this summer. A fourth star will come with the job.
Graham Cluley reports that Salon magazine now offers a choice: you can block ads, but only if you let them install a coinminer on your machine. Mining is disruptive but not very lucrative: the recent CoinHive infestations seem have brought the crooks about $24.
Getting a leg up on your adversary – cyber espionage, cyber crime, or hacktivism – is no easy feat. You need strategic intelligence…from the experts. But what makes intelligence strategic? Learn more in LookingGlass’ webinar featuring the experts. Join our Sr. Directors of Research and Analysis Jonathan Tomek and Olga Polishchuk on February 21 @ 2PM ET for a discussion covering what security teams need to proactively defend against your next cyber attack. Sign up now!
Cyber Security Summits: February 13 in Silicon Valley & Atlanta on February 28(Silicon Valley, California, USA, February 13, 2018) Sr. Level Executives are invited to learn about the latest threats & solutions in Cyber Security from experts from The FBI, Darktrace, IBM and more. Register with promo code cyberwire50 for half off your admission (Regular price $350) https://CyberSummitUSA.com
Compete to win prize money plus the chance to be DataTribe’s next big investment(Online, March 23 - April 25, 2018) The DataTribe Inaugural Cyber Funding Competition: We put real firepower behind every idea. If you're part of a entrepreneurial technology team with a vision to disrupt cybersecurity and data sciences — we want to enhance your growth prospect with the opportunity for a DataTribe-financed seed capital of $2,000,000. Plus possible millions more in a Series A Venture Capital Round. The top three finalists will share $20,000 in prize money.
Attribution Games: Don't Rush to Blame(BankInfo Security) Following the online attack against the opening ceremonies of the Olympic Winter Games in South Korea, some pundits were quick to guess that Russia was involved. But some attribution experts call the rush to attribute any cyberattack premature or even "irresponsible."
Newest Powerful Malware Threat Compromises Chinese, US Company Data(Digital Journal) CyberByte, the leading Romania-based cybersecurity and software solutions firm, has recently uncovered yet another powerful malware threat that has encroached upon numerous companies across Asia and the United States. This latest malware campaign, which goes by the name of Operation PZChao, has been indiscriminately affecting companies in the education, government, technology and telecommunications sectors and are located in the aforementioned geographical areas, scraping passwords, performing Bitcoin mining, and providing hackers with complete remote access and control of infected systems.
New AndroRAT Variant Emerges(SecurityWeek) A newly discovered variant of the AndroRAT mobile malware can inject root exploits to perform malicious tasks
Shedding tears over WannaCry(Sungard Availability Services) WannaCry ransomware crippled organizations in more than 150 countries worldwide. Here are some proactive measures to guard against a cyber-attack.
Love letters from a Black Hat to all the fools on the Internet(Help Net Security) As an underground, "black hat" hacker, I don't have time for significant others. This Valentine's Day I want to show my appreciation by sending love letters to all those ignorant fools on the Internet that pay my bills by making the same mistakes over and over.
Security Patches, Mitigations, and Software Updates
Microsoft Patch Tuesday, February 2018 Edition(KrebsOnSecuirty) Microsoft today released a bevy of security updates to tackle more than 50 serious weaknesses in Windows, Internet Explorer/Edge, Microsoft Office and Adobe Flash Player, among other products. A good number of the patches issued today ship with Microsoft’s “critical” rating, meaning the problems they fix could be exploited remotely by miscreants or malware to seize complete control over vulnerable systems — with little or no help from users.
Microsoft February Patch Tuesday Fixes 50 Security Issues(BleepingComputer) Microsoft has released the February 2018 Patch Tuesday security updates, and this month's release comes with fixes for 50 vulnerabilities, along with additional patches for the Meltdown and Spectre vulnerabilities (ADV180002).
4 questions raised by GD's deal for CSRA(Washington Technology) The blockbuster combination of General Dynamics IT with CSRA raises lot of questions about their strategy and the market at-large. We try to answer some of them.
Former Information Security Bureaucrats, now cybersecurity top guns elsewhere(CISO MAG) The Information Security Officers who have walked through regency corridors are now assisting enterprises in constructing their cybersecurity retreats, as the increasing incidents of cyber heists continue to be a cause of worry for governments and businesses across the world. The last few years have seen top guns in bureaucracy changing gears to propel the …
Grant Thornton Australia strengthens defences with Darktrace(Cambridge Network) Darktrace, the world’s leading AI company for cyber defence, has today announced that leading growth advisory firm, Grant Thornton Australia, has deployed the Enterprise Immune System to detect emerging cyber-threats in real time, in partnership with The Missing Link.
How to guard your data like it’s an Olympic sport(The Parallax) Heading to the Winter Olympics in South Korea or another major public event? Don’t let yourself get so carried away with excitement that you forget that the bad guys are just waiting for you to slip up.
Endpoint security suites must have these features(CSO Online) Endpoint security vendors must be a one-stop endpoint security shop -- providing such things as anti-malware, anti-exploit, EDR and hybrid deployment options -- if they want to compete.
AMP for email is a terrible idea(TechCrunch) Google just announced a plan to "modernize" email, allowing "engaging, interactive, and actionable email experiences." Does that sound like a terrible idea to..
Intel chiefs: No direction from Trump on election security(FCW) At a Senate hearing, three intelligence chiefs acknowledged the White House has not specifically directed them to dedicate resources towards securing election infrastructure, but told lawmakers they are still focused on addressing the issue.
As Primaries Loom, Election Security Efforts Behind Schedule(Dark Reading) While federal agencies lag on vulnerability assessments and security clearance requests, the bipartisan Defending Digital Democracy Project releases three new resources to help state and local election agencies with cybersecurity, incident response.
Outsourcing Intel: How Intel-for-Hire Undermines U.S. Intelligence(MintPress News) Despite lacking professional credentials, a commitment to public service, or the minimum amount of vetting that would go into a security clearance background check, these private-sector spies collect intelligence that is passed along and ultimately may be included in the President’s Daily Briefing.
The Cybersecurity Legal Plot Thickens(SecurityInfoWatch.com) When it comes to cyber vulnerability and liability, integrators are often stuck in the middle between manufacturers and customers
For a complete running list of events, please visit the Event Tracker on the CyberWire website.
Security Titans(Scottsdale, Arizona, USA, February 23, 2018) Security Titans is a ground-breaking event, bringing the biggest names in Information Security together - all in one day, on a single stage to give the nation's cyber security industry access to the very...
CyberThreat 18(Westminster, England, UK, February 27 - 28, 2018) Hosted by the UK’s National Cyber Security Centre, a part of GCHQ, and the SANS Institute, CyberThreat18 brings together a packed schedule of talks on a broad range of familiar and less familiar topics...
Midlands Cyber: US Cyber Market Workshop(Lutterworth, England, UK, February 27, 2018) We are delighted to announce that we will be running two workshops, led by Andy Williams, the International Director of the iCyber Centre @bwtech, Maryland. The workshops have been tailored by the team...
European Cybersecurity Forum – CYBERSEC Brussels(Brussels, Belgium, February 27, 2018) CYBERSEC Forum is an unique opportunity to meet and discuss the current issues of cyber disruption and ever-changing landscape of cybersecurity related threats. Our mission is to foster the building of...
The Cyber Security Summit: Atlanta(Atlanta, Georgia, USA, February 28, 2018) This event is an exclusive conference connecting Senior Level Executives responsible for protecting their company’s critical data with innovative solution providers & renowned information security experts.
PrivacyCon 2018(Washington, DC, USA, February 28, 2018) The 2018 PrivacyCon will expand collaboration among leading privacy and security researchers, academics, industry representatives, consumer advocates, and the government. As part of this initiative, the...
SINET ITSEF 2018(Silicon Valley, California, USA, March 7 - 8, 2018) Bridging the gap between Silicon Valley and the Beltway. SINET – Silicon Valley provides a venue where entrepreneurs can meet and interact directly with leaders of government, business and the investment...
PCI Security Standards Council Middle East and Africa Forum(Cape Town, South Africa, March 14 - 15, 2018) Don’t miss the data security event of the year for the payment card industry. Join us for: networking opportunities, updates on industry trends, insights and strategies on best practices, engaging keynotes...
SecureWorld Boston(Boston, Massachussetts, USA, March 14 - 15, 2018) Connecting, informing, and developing leaders in cybersecurity. SecureWorld conferences provide more content and facilitate more professional connections than any other event in the Information Security...
Cyber 9-12(Washington, DC, USA, March 16 - 17, 2018) Now entering its fifth year, the Cyber 9/12 Student Challenge is a one-of-a-kind competition designed to provide students across academic disciplines with a deeper understanding of the policy challenges...
3rd Annual Billington International Cybersecurity Summit(Washington, DC, USA, March 21, 2018) With confirmed speakers from Estonia, Romania, Singapore, Sweden, the United States, and Kuwait, and with attendees from many more countries, this summit brings together world-class cybersecurity thought...
Infosecurity Magazine North America Virtual Conference(Online, March 21 - 22, 2018) Tune in on Wednesday March 21 for day two of our two-day online event to learn what’s going on at the heart of the industry. Our easy to digest format offers a mix of short sessions, panel debates and...
The Cyber Security Summit: Denver(Denver, Colorado, USA, March 22, 2018) This event is an exclusive conference connecting Senior Level Executives responsible for protecting their company’s critical data with innovative solution providers & renowned information security experts.
Women in CyberSecurity 2018(Chicago, Illinois, USA, March 23 - 24, 2018) Through the WiCyS community and activities we expect to raise awareness about the importance and nature of cybersecurity career. We hope to generate interest among students to consider cybersecurity as...
SecureWorld Philadelphia(Philadelphia, Pennsylvania, USA, March 28 - 29, 2018) Connecting, informing, and developing leaders in cybersecurity. SecureWorld conferences provide more content and facilitate more professional connections than any other event in the Information Security...
National Cyber League Spring Season(Chevy Chase, Maryland, USA, March 30 - May 25, 2018) The NCL is a defensive and offensive puzzle-based, capture-the-flag style cybersecurity competition. Its virtual training ground helps high school and college students prepare and test themselves against...
SPONSOR & SUPPORT
Grow your brand and reach new customers.
Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.
Be a part of the CyberWire story.
People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.