McAfee describes an assault on certain high-profile Twitter accounts that's been claimed by Turkish pro-government hacktivist group Ayyildiz Tim. The attackers compromised accounts belonging to influential persons at the World Economic Forum, the UN, and Fox News to send the compromised accounts' contacts direct messages that either evinced support for Pakistani and Turkish causes or phished for account credentials.
RiskIQ reports another phishing campaign, but in this case Turkish enterprises are the victims. An unidentified espionage operator has been prospecting Turkish defense contractors with malicious email attachments that carry the Remcos RAT. Remcos performs a typical array of spyware functions-keylogging, screenshot capture, audio and video recording-as well as common RAT functionality permitting it to manage files and programs. One unusual capability: SOCKS5 proxying, which lets the controller turn victims into network proxies, thereby hiding its real command-and-control server.
Pyongyang is staying busy. Trend Micro reports that the Lazarus Group has evolved toward the use of PowerShell scripts in its ongoing cryptocurrency theft campaign. And Metrolinx, an Ontario transit company, disclosed that it was hit by a North Korean cyberattack. The organization says the attack was routed through Russia, and that neither customer privacy nor safety were compromised, but beyond that they cite security and decline to provide further information.
New Satori variants are said to be out, with fresh botnets.
Her Majesty's Government announces its intent to form a new organization whose mission will be to combat disinformation. Britain's new National Security Communications Unit will operate from the Cabinet Office.
Is your security team equipped to make the very best tactical decisions?
Conducting business in another country and need to know more about international business laws? Want to know some of the biggest threats to the 2018 Winter Olympics or North Korea’s cyber capabilities? You need finished intelligence…from the experts. Join LookingGlass’ Sr. Director of Investigation and Analysis, Olga Polishchuk and Jonathan Tomek, Sr. Director of Research on February 20 @ 2PM ET, as they discuss what your security team needs to make more effective business decisions.
Cyber Security Summits: February 13 in Silicon Valley & Atlanta on February 28(Silicon Valley, California, USA, February 13, 2018) Sr. Level Executives are invited to learn about the latest threats & solutions in Cyber Security from experts from The FBI, Darktrace, IBM and more. Register with promo code cyberwire50 for half off your admission (Regular price $350) https://CyberSummitUSA.com
Energy firms could be targeted by "crippling" cyber-attack within two years(Energy Voice) Oil and Gas companies in charge of critical infrastructure in the UK could be targeted by a “crippling” cyber-attack within the next two years, according to a security chief. In an interview with the Guardian, the head of the National Cyber Security Centre Ciaran Martin said the UK has been fortunate to avoid a category …
Cyber-Security Threats From Russia(Information Security Buzz) In response to Sir Nick Carter’s comments advocating an increase in government spending to combat cyber-security threats from Russia, Piers Wilson, Head of Product Management at Huntsman Security commented below.
Gone Phishing For The Holidays(Akamai Blog) While our team, Akamai's Enterprise Threat Protector Security Research Team, monitored internet traffic throughout the 2017 holiday season, we spotted a wide-spread phishing campaign targeting users through an advertising tactic.
Bluetooth and Personal Protection Device Security Analysis(The Duo Security Bulletin) The Duo Labs team analyzes the Bluetooth security of several different personal protection devices to shed light on how secure these devices are, and if they can be tracked remotely or reveal identifying information.
Industries most at risk of phishing attacks revealed(Help Net Security) A phishing study of six million users shows insurance organizations and not-for-profits lead all other industries with greater than thirty percent of users falling for baseline phishing tests.
Security Patches, Mitigations, and Software Updates
Dell Advising All Customers To Not Install Spectre BIOS Updates(BleepingComputer) The Spectre & Meltdown mess continues with Dell now recommending their customers do not install the BIOS updates that resolve the Spectre (Variant 2) vulnerabilities. These updates have been causing numerous problems for users including performance issues, boot issues, reboot issues, and general system instability.
Security in the enterprise: Things are looking up!(Help Net Security) Cybersecurity is quickly becoming the number one business priority: security tools Jamf, KnowBe4, DigiCert, Cisco Umbrella, Mimecast, Sophos, and CloudFlare all ranked in the top 15 fastest growing apps for the first time.
SecurityScorecard Now Fastest Growing Security Ratings Company(Wards Auto) SecurityScorecard, the leader in security ratings, is celebrating a record 2017 with global sales growth over 110 percent, doubled customer count, and twice as many rated companies in their proprietary database compared to the competition.
Twitter COO Anthony Noto Resigns, Stock Slides(Zero Hedge) Confirming Monday's rumor, moments ago Twitter announced that Anthony Noto notified the company on January 22, 2018 that he is resigning from his position as Twitter's #2 executive and Chief Operating Officer in order to accept the chief executive officer role at another company. Immediately afterwards, SoFi announced that Noto will be appointed as the company's CEO, while Tom Hutton remains chairman.
Cooley Adds 3 Cybersecurity Experts in 3 Cities(New York Law Journal) Two practice leaders at Norton Rose Fulbright as well as another partner from fellow global legal giant Dentons are heading to Cooley in Denver New York and Washington D.C.
Radware Expands Cloud Security and Global Footprint(NASDAQ.com) Radware® (NASDAQ:RDWR), a leading provider of cyber security and application delivery solutions, is rapidly expanding the capacity of all its scrubbing centers, which increases the global mitigation capacity of Radware cloud security network to more than 3.5Tbps of traffic and over 6 Billion packets per second (PPS).
Fortinet Takes Insurance Giant icare to the Cloud(CSO Online) CSO offers the latest information and best practices on business continuity and data protection, best practices for prevention of social engineering scams, malware and breaches, and tips and advice abut security careers and leadership.
DuckDuckGo offers new privacy extension and app(Help Net Security) Duck Duck Go, the company behind the eponymous privacy-minded Internet search engine, has announced a new browser extension and mobile app: DuckDuckGo Privacy Essentials.
Here's what the military's 'flight simulator' for cyber warfare might look like(Cyberscoop) The U.S. Army is experimenting with all different types of training for its cyber commands, including the creation of virtual classrooms for its “cyberwarriors.” Next week, the military will host its second industry day to hear private companies pitch their ideas for an open contract to develop the persistent cyber training exercise, or PCTE.
Cyber cops arrest duo for embezzling crores(MIllennium Post) Two persons were arrested by Bidhannagar Cyber Crime police station for siphoning a few crores from the bank account of a jute and cotton manufacturing company situated at Salt Lake Sector V....
For a complete running list of events, please visit the Event Tracker on the CyberWire website.
CYBERTACOS(Arlington, Virginia, USA, January 24, 2018) CYBERTACOS is back and becoming one of the DC metro area’s biggest cybersecurity networking events! Register today and join us for networking, food and drinks. This event includes a 45-minute meet the...
ATARC Federal CISO Summit(Washington, DC, USA, January 25, 2018) This educational, one-day symposium will discuss the security challenges faced by Federal Chief Information Security Officers and examine the lessons learned and best practices used to secure the information...
Connected Medical Device and IoT Security Summit(Baltimore, Maryland, USA, January 25 - 26, 2018) We are at a critical juncture in Healthcare. As an industry, we must combat these threats in multiple dimensions and on many fronts. The Summit will bring together healthcare, medical device, and security...
CyberUSA(San Antonio, Texas, USA, January 29 - 30, 2018) The CyberUSA Conference will be held in San Antonio, TX at the Henry B. Gonzalez Convention Center on Tuesday, January 30, 2018. A welcome reception will be held on the evening of Monday, January 29, 2018.
Legal CIO(New York, New York, USA, January 31 - February 1, 2018) LegalCIO: Formerly the Law Firm Chief Information and Technology Officers Forum, combines cutting-edge updates on legal technologies with the chance to exchange practical guidance and discuss daily challenges...
Security Titans(Scottsdale, Arizona, USA, February 23, 2018) Security Titans is a ground-breaking event, bringing the biggest names in Information Security together - all in one day, on a single stage to give the nation's cyber security industry access to the very...
European Cybersecurity Forum – CYBERSEC Brussels(Brussels, Belgium, February 27, 2018) CYBERSEC Forum is an unique opportunity to meet and discuss the current issues of cyber disruption and ever-changing landscape of cybersecurity related threats. Our mission is to foster the building of...
SINET ITSEF 2018(Silicon Valley, California, USA, March 7 - 8, 2018) Bridging the gap between Silicon Valley and the Beltway. SINET – Silicon Valley provides a venue where entrepreneurs can meet and interact directly with leaders of government, business and the investment...
SPONSOR & SUPPORT
Grow your brand and reach new customers.
Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.
Be a part of the CyberWire story.
People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.