Twitter continues to notify users that they've been contacted by bots from the Internet Research Agency, the now-famous St. Petersburg troll farm. Russian bots appear to have shown a new flurry of activity over the weekend.
Tweeting toward Washington, the bots call for the release of a FISA memorandum prepared by House Intelligence Committee staff. The memo's said, by the bots and others, to be "explosive," and perhaps good government would be served by its release, but that's not what they're interested in around Moscow and St. Petersburg.
Social media trolling is also on the upswing in the Czech Republic as it conducts the presidential run-off between challenger Jiri Drahos and incumbent Milos Zeman. Radio Liberty says the trolls snapping mostly at Drahos.
A new Trojan, "Evrial," has been discovered. It has the unusual ability to snoop through not just browser cookies and stored credentials, but also through Windows Clipboard. That latter capability is paired with the ability to replace strings in the Clipboard. Criminals are using such replacement to redirect BitCoin payments to their own accounts.
This month's wave of SamSam ransomware crests in the healthcare sector. Allscripts continues its recovery from the infestation disclosed last week.
Natalya Kaspersky, Eugene's ex and co-founder of their eponymous security company Kaspersky Lab, has said, reports Sputnik, that Satoshi Nakamoto is a crypto crew inside the US Intelligence Community. They created Bitcoin as "dollar 2.0" the better to advance the Five Eyes' interests, says she. (Others say Satoshi was a rogue AI.)
Is your security team equipped to make the very best tactical decisions?
Conducting business in another country and need to know more about international business laws? Want to know some of the biggest threats to the 2018 Winter Olympics or North Korea’s cyber capabilities? You need finished intelligence…from the experts. Join LookingGlass’ Sr. Director of Investigation and Analysis, Olga Polishchuk and Jonathan Tomek, Sr. Director of Research on February 20 @ 2PM ET, as they discuss what your security team needs to make more effective business decisions.
Cyber Security Summits: February 13 in Silicon Valley & Atlanta on February 28(Silicon Valley, California, USA, February 13, 2018) Sr. Level Executives are invited to learn about the latest threats & solutions in Cyber Security from experts from The FBI, Darktrace, IBM and more. Register with promo code cyberwire50 for half off your admission (Regular price $350) https://CyberSummitUSA.com
Evrial Trojan Switches Bitcoin Addresses Copied to Windows Clipboard(BleepingComputer) A new information stealing Trojan called Evrial is being actively distributed in the wild. Like most infostealing Trojans, Evrial can steal browser cookies and stored credentials, but this Trojan also has the ability to monitor the Windows clipboard for certain text replace it with text received from the attackers.
Struts and DotNetNuke Server Exploits Used For Cryptocurrency Mining(TrendLabs Security Intelligence Blog) Threat actors have turned to cryptocurrency mining as a reliable way to make a profit in recent months. Cryptocurrency miners use the computing power of end users to mine coins of various kinds, most commonly via malware or compromised websites. By compromising servers in order to run cryptocurrency miners, the threat actors would gain access to more computing power and increase their profits from illicit mining.
Understanding Motivations and Methods of Web Defacement(TrendLabs Security Intelligence Blog) Cybercrime takes on many forms, but one of the long-standing tactics attackers use is web defacement – the process of compromising and vandalizing a website. Typically, these attackers – known as web defacers – replace the original page with their own version, boldly stating a political or social message. This is not a new phenomenon, but it is an enduring one. The data we’ve analyzed goes back almost two decades, and we’ve seen how the process of web defacement is still being used nowadays.
Seoul eyes ban on digital signature certificates(Korea Herald) The South Korean government on Monday decided to push for the abolishment of the uniformly used digital signature certificates system and switch to other authentication methods to create a more user-friendly internet environment. The abolition of the digital signature certificates was included in the government’s plans to “push for hyperconnectivity of intelligence innovation” designed to improve capabilities of d...
GDPR: Whose problem is it anyway?(Help Net Security) Compounding matters, the scope and complexity of GDPR extends beyond cyber security, requiring equal involvement from legal and IT teams.
Why Customer Security is an Essential Part of Customer Experience(Customer Think) For physical businesses, it is essential to keep your business premises in order and protect it from thieves and other unwanted intruders. This is not just to protect your business, but to help you serve your customers better without hassles or disruptions.
Containing Russia, Again(Foreign Affairs) The United States cannot stand by when an adversary not only adopts an agenda of countering U.S. influence throughout the world but also strikes directly at the heart of American democracy.
British teenager hacked top ranking US officials using social engineering(Help Net Security) How did British teenager Kane Gamble, who at the time was only 15 years old, manage to break into email accounts of the CIA and DNI chiefs, as well as gain access to a number of sensitive databases and plans for intelligence operations in Afghanistan and Iran? The answer is social engineering.
AMD, Apple Sued Over CPU Vulnerabilities(Security Week) Apple and Advanced Micro Devices (AMD) are also facing class action lawsuits following the disclosure of critical CPU vulnerabilities that affect billions of devices.
FBI did not save officials’ texts during key period in Trump probe, senator says(Washington Post) The five-month gap ended the same day Robert S. Mueller III was appointed special counsel over the Russia probe, according to a letter sent Sunday to FBI Director Christopher A. Wray.The five-month gap ended the same day Robert S. Mueller III was appointed special counsel over the Russia probe, according to a letter sent Sunday to FBI Director Christopher A. Wray.
Man Admits to DDoS-ing Employers, Competitors(Security Week) A New Mexico man admitted in court this week to launching distributed denial of service (DDoS) attacks against the websites of former employers, business competitors, and public services.
Jail for man who launched DDoS attacks against Skype, Google, and...(HOTforSecurity) A British man has been sentenced to two years in jail after admitting to a series of computer crime offences, which included over 100 attempts to knock the likes of Google, Skype and Nintendo’s popular video game Pokemon Go offline. 21-year-old Alex Bessell pleaded...
For a complete running list of events, please visit the Event Tracker on the CyberWire website.
DistribuTECH(San Antonio, Texas, USA, January 23 - 25, 2018) The 15-track conference brings industry thought leaders from all over the world opportunities to network, share knowledge and problem solve with worldwide utilities and product and service providers. Among...
CYBERTACOS(Arlington, Virginia, USA, January 24, 2018) CYBERTACOS is back and becoming one of the DC metro area’s biggest cybersecurity networking events! Register today and join us for networking, food and drinks. This event includes a 45-minute meet the...
ATARC Federal CISO Summit(Washington, DC, USA, January 25, 2018) This educational, one-day symposium will discuss the security challenges faced by Federal Chief Information Security Officers and examine the lessons learned and best practices used to secure the information...
Connected Medical Device and IoT Security Summit(Baltimore, Maryland, USA, January 25 - 26, 2018) We are at a critical juncture in Healthcare. As an industry, we must combat these threats in multiple dimensions and on many fronts. The Summit will bring together healthcare, medical device, and security...
CyberUSA(San Antonio, Texas, USA, January 29 - 30, 2018) The CyberUSA Conference will be held in San Antonio, TX at the Henry B. Gonzalez Convention Center on Tuesday, January 30, 2018. A welcome reception will be held on the evening of Monday, January 29, 2018.
Security Titans(Scottsdale, Arizona, USA, February 23, 2018) Security Titans is a ground-breaking event, bringing the biggest names in Information Security together - all in one day, on a single stage to give the nation's cyber security industry access to the very...
European Cybersecurity Forum – CYBERSEC Brussels(Brussels, Belgium, February 27, 2018) CYBERSEC Forum is an unique opportunity to meet and discuss the current issues of cyber disruption and ever-changing landscape of cybersecurity related threats. Our mission is to foster the building of...
SINET ITSEF 2018(Silicon Valley, California, USA, March 7 - 8, 2018) Bridging the gap between Silicon Valley and the Beltway. SINET – Silicon Valley provides a venue where entrepreneurs can meet and interact directly with leaders of government, business and the investment...
SPONSOR & SUPPORT
Grow your brand and reach new customers.
Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.
Be a part of the CyberWire story.
People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.