An open-source ransomware project forms the basis of a new family of ransomware, desuCrypt and its Deuscrypt variant, now being widely distributed in criminal souks. Researcher Michael Gillespie has developed a decryptor for infected files.
Fortinet reports that SpriteCoin, a bogus cryptocurrency that's nothing more than phishbait that leads to ransomware, not only encrypts victims' files, but, after they pay the ransom (only Monero is accepted) then installs malware that parses images, harvests certificates, and activates web cameras.
IoT devices containing ARC chipsets are turning up in Satori botnets, which indicates that botnet controllers have significantly increased the number of maverick devices they can rope into their herd.
Intel tells users to disregard its recent Spectre patch. A new, less troublesome version is due out soon.
Farsight Security has issued a study of how Internationalized Domain Names (IDNs) can use non-Latin characters from, say the Greek or Cyrillic alphabets, to craft sites that impersonate urls that use the more familiar Roman characters. Spoofed sites are used for more persuasive phishing. Thus a Cyrillic мягкий знак ("myagkii znak") softsign, "ь," can be used to spell "faceьook," which might fool the casual eyes of users normally alert to the urls they follow. Companies whose sites have been impersonated in this way include Apple, Adobe, Amazon, Bank of America, Cisco, Coinbase, Credit Suisse, eBay, Bittrex, Google, Microsoft, Netflix, New York Times, Twitter, Walmart, Yahoo, Wikipedia, YouTube, and Yandex.
ISIS seeks to inspire lone wolf terrorists (and frighten infidels) with the slogan "We are in your home."
Is your security team equipped to make the very best tactical decisions?
Conducting business in another country and need to know more about international business laws? Want to know some of the biggest threats to the 2018 Winter Olympics or North Korea’s cyber capabilities? You need finished intelligence…from the experts. Join LookingGlass’ Sr. Director of Investigation and Analysis, Olga Polishchuk and Jonathan Tomek, Sr. Director of Research on February 20 @ 2PM ET, as they discuss what your security team needs to make more effective business decisions.
Cyber Security Summits: February 13 in Silicon Valley & Atlanta on February 28(Silicon Valley, California, USA, February 13, 2018) Sr. Level Executives are invited to learn about the latest threats & solutions in Cyber Security from experts from The FBI, Darktrace, IBM and more. Register with promo code cyberwire50 for half off your admission (Regular price $350) https://CyberSummitUSA.com
Should Investors Worry About A Stock Exchange Hack?(ValueWalk) After a cyber breach was found in one of the largest stock exchange in the Middle East relating to lax password management, the culprit has been found. Should investors be concerned? Oops: Stock exchange forgets to change password from factory …
Hacker Makes Off With Nearly £300K Stellar Lumens In BlackWallet Theft(Information Security Buzz) A hacker hijacked BlackWallet to steal nearly £300K from Bitcoin rival Stellar Lumen; an incident that Ilia Kolochenko, CEO of web security company High Tech Bridge commented below. Ilia Kolochenko, CEO at High Tech Bridge: “Unfortunately, startups in digital currencies and other blockchain technologies often ignore or underestimate information security and privacy fundamentals. They operate on …
OTX Trends Part 2: Malware(AlienVault) This is the second of a three part series on trends identified by AlienVault.Part 1 focused on the exploits tracked by OTX. This blog will talk about the malware, and Part 3 will discuss trends we’re seeing in threat actors.Which malware should I be most concerned about?Most security incidents that a security team will respond to involve malware. We took a look at three sources of malware telemetry to help prioritise popular malware families:
A silver bullet for the attacker(Securelist) We confront hundreds of thousands of new threats every day and we can see that threat actors are on a constant lookout for new attack opportunities. According to our research, connecting a software license management token to a computer may open a hidden remote access channel for an attacker.
The Most Terrifying Personal Data Hacks of All Time(The Most Terrifying Personal Data Hacks of All Time) The danger of major hacks grows every year. See the worst personal data breaches ever and make sure you haven't already fallen prey to some of these issues.
Security Patches, Mitigations, and Software Updates
A Spyware Company Audaciously Offers ‘Cyber Nukes’(Motherboard) Aglaya, one of the many firms trying to jump on the surveillance gold-rush, is now offering ridiculous capabilities that it compares to a nuclear strike, including at trade shows attended by government agencies.
Inside The Fight For One Of The World's Biggest Antivirus Companies(BuzzFeed) Kaspersky Lab is under fire in the US over concerns that it could provide its clients' private — and at times secret — information to the Russian government. A new investigation by Russian news site Meduza, published here exclusively in English, goes inside the battle for control of the company — a battle sources say was won by the side allied with Russian security services.
Is The Worst Over For IBM?(Seeking Alpha) The strong performance in the fourth quarter was driven by demand for the new IBM z14 mainframe. However, it remains to be seen if IBM will be able to sustain t
Weidenhammer, KnowBE4 form partnership(Reading Eagle) Weidenhammer has partnered with KnowBe4 Security Awareness, the Wyomissing-based technology solution company said in a press release.KnowBe4 is a pro
Fortinet Vet Named Bitdefender Global Channel Chief(Channel Partners) Joe Sykora has more than 20 years of experience in the security industry, previously serving as Fortinet's vice president of Americas channels, sales operations and advanced technologies; and before that he founded, built and sold his own systems integration company.
Strategic Cyber Ventures Board Names Hank Thomas as New CEO(Business Insider) Strategic Cyber Ventures (SCV), the industry's first cybersecurity focused venture capital firm led by cybersecurity operators, announced today that its Board of Directors has appointed Hank Thomas as Chief Executive Officer (CEO) effective immediately. Thomas, co-founder of SCV, previously served as Chief Operating Officer (COO) and a member of SCV's Board of Directors.
For a moonshot, you need more than just the moon(CSO Online) At one time, we were challenged to ask not what our country could do for us but what we could do for our country. It is time that the leading organizations in digital technology come together once again to ask the same.
Daines Upset Over FISA Reauthorization Bill(AM 1450 KMMS) Senator Steve Daines is upset about legislation to reauthorize the Foreign Intelligence Surveillance Act, without fixing the necessary reforms needed to protect Americans’ Fourth Amendment rights.
For a complete running list of events, please visit the Event Tracker on the CyberWire website.
Newly Noted Events
Legal CIO(New York, New York, USA, January 31 - February 1, 2018) LegalCIO: Formerly the Law Firm Chief Information and Technology Officers Forum, combines cutting-edge updates on legal technologies with the chance to exchange practical guidance and discuss daily challenges...
DistribuTECH(San Antonio, Texas, USA, January 23 - 25, 2018) The 15-track conference brings industry thought leaders from all over the world opportunities to network, share knowledge and problem solve with worldwide utilities and product and service providers. Among...
CYBERTACOS(Arlington, Virginia, USA, January 24, 2018) CYBERTACOS is back and becoming one of the DC metro area’s biggest cybersecurity networking events! Register today and join us for networking, food and drinks. This event includes a 45-minute meet the...
ATARC Federal CISO Summit(Washington, DC, USA, January 25, 2018) This educational, one-day symposium will discuss the security challenges faced by Federal Chief Information Security Officers and examine the lessons learned and best practices used to secure the information...
Connected Medical Device and IoT Security Summit(Baltimore, Maryland, USA, January 25 - 26, 2018) We are at a critical juncture in Healthcare. As an industry, we must combat these threats in multiple dimensions and on many fronts. The Summit will bring together healthcare, medical device, and security...
CyberUSA(San Antonio, Texas, USA, January 29 - 30, 2018) The CyberUSA Conference will be held in San Antonio, TX at the Henry B. Gonzalez Convention Center on Tuesday, January 30, 2018. A welcome reception will be held on the evening of Monday, January 29, 2018.
Security Titans(Scottsdale, Arizona, USA, February 23, 2018) Security Titans is a ground-breaking event, bringing the biggest names in Information Security together - all in one day, on a single stage to give the nation's cyber security industry access to the very...
European Cybersecurity Forum – CYBERSEC Brussels(Brussels, Belgium, February 27, 2018) CYBERSEC Forum is an unique opportunity to meet and discuss the current issues of cyber disruption and ever-changing landscape of cybersecurity related threats. Our mission is to foster the building of...
SINET ITSEF 2018(Silicon Valley, California, USA, March 7 - 8, 2018) Bridging the gap between Silicon Valley and the Beltway. SINET – Silicon Valley provides a venue where entrepreneurs can meet and interact directly with leaders of government, business and the investment...
SPONSOR & SUPPORT
Grow your brand and reach new customers.
Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.
Be a part of the CyberWire story.
People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.