Cryptocurrency mining shows no signs of slacking off, although its focus has shifted from Bitcoin to Monero. The XMRig campaign has now infected more than fifteen-million users with unwanted mining software. XMRig misuses url-shortener Bitly to hide red flags from users it seeks to induce to click malicious ads.
Other mining campaigns are in full swing. Dr. Web reports that Windows systems running some versions of the Cleverance Mobile SMARTS Server, a legitimate Russian product that automates various industrial and logistical processes, are being infected with malicious DLL files that mine Monero. Trend Micro is following a similar campaign against Apache Struts and DotNetNuke servers. Palo Alto Networks is tracking a mass effort to infect individual users through file-sharing sites. PandaSecurity describes WannaMine, fileless malware used in smash-and-grab attacks.
The miners aren't a relatively harmless nuisance, CrowdStrike warns. Mining is so computationally intensive that it routinely renders affected CPUs unusable.
Parliament is dissatisfied with what many MPs take to be Twitter's evasiveness over how its platform may have been used to influence the UK's Brexit vote. Facebook reports its introspective conclusion that Russian "agents" were found behind one-hundred-twenty-nine promoted events during the election cycle.
Dutch intelligence services are reported to have penetrated Cozy Bear before the FSB threat actor hit the US Democratic National Committee. They shared warnings with their American colleagues.
Symantec, SAP, and McAfee are reported to have submitted source code for inspection by Russian security organs. Such inspection was apparently a precondition for doing business in Russia.
Today's issue includes events affecting Australia, Austria, China, Egypt, European Union, India, Indonesia, Netherlands, Pakistan, Russia, Solomon Islands, Thailand, Turkey, United Kingdom, United States, and Vietnam.
Is your security team equipped to make the very best tactical decisions?
Conducting business in another country and need to know more about international business laws? Want to know some of the biggest threats to the 2018 Winter Olympics or North Korea’s cyber capabilities? You need finished intelligence…from the experts. Join LookingGlass’ Sr. Director of Investigation and Analysis, Olga Polishchuk and Jonathan Tomek, Sr. Director of Research on February 20 @ 2PM ET, as they discuss what your security team needs to make more effective business decisions.
Cyber Security Summits: February 13 in Silicon Valley & Atlanta on February 28(Silicon Valley, California, USA, February 13, 2018) Sr. Level Executives are invited to learn about the latest threats & solutions in Cyber Security from experts from The FBI, Darktrace, IBM and more. Register with promo code cyberwire50 for half off your admission (Regular price $350) https://CyberSummitUSA.com
Dridex Banking Trojan Phishing Campaign Ties To Necurs(Information Security Buzz) It’s being reported that the operators of the the venerable Necurs botnet appear to be up to their old tricks, including targeting victims with a variety of phishing campaigns designed to infect them with banking malware, ransomware and cryptocurrency fever as well as to generate profits via dating website referrals. Andy Norton, Director of Threat Intelligence at Lastline commented below. …
Fraudster almost got $900K from Harris County(Houston Chronicle) Federal and local law enforcement are investigating the attempted theft of nearly $900,000 from Harris County by someone posing as a contractor doing repairs after Hurricane Harvey.
What is creating confusion in the cyber insurance market?(Canadian Underwriter) The lack of understanding around what is covered and how products are priced continues to sow confusion in the cyber insurance market. Robin Shufelt, assistant vice president of technology and cyber with The Sovereign General Insurance Company (a member of…
Raytheon Execs Defend Forcepoint, Promise Growth(Aviation Week) Wall Street analysts peppered Raytheon Chairman and CEO Tom Kennedy and CFO Toby O’Brien with questions Jan. 25 after subsidiary Forcepoint reported a loss of $8 million in the fourth quarter of 2017.
3 Cybersecurity Stocks to Look at in 2018(Madison) The cybersecurity industry saw impressive growth last year as corporations scrambled to get their houses in order following a series of serious breaches throughout the year. For example, the economic
Carahsoft to Resell Secureworks Threat Intell Products, Services to Public Sector(ExecutiveBiz) Carahsoft and Dell Technologies‘ Secureworks subsidiary have partnered to offer a suite of threat intelligence products and services to the public sector government contract acquisition vehicles. Secureworks said Wednesday its offerings are designed to help organizations avoid breaches and are now available to agencies through Carahsoft’s positions on the General Services Administration Schedule 70 and NASA‘s Solutions Enterprise-Wide Procurement contract. Carahsoft...
Center for Long-Term Cybersecurity Announces 2018 Research Grantees(CLTC) The UC Berkeley Center for Long-Term Cybersecurity (CLTC) is proud to announce the recipients of our 2018 research grants. In total, 37 different groups of researchers will share a total of over $1 million in funding to support a broad range of initiatives related to cybersecurity and other emerging issues at the intersection of technology and society.
Facebook: Russian agents created 129 U.S. election events(Reuters) Facebook Inc said Russian agents created 129 events on the social media network during the 2016 U.S. election campaign, according to testimony to Congress, shedding more light on Russia's purported disinformation drive aimed at voters.
For a complete running list of events, please visit the Event Tracker on the CyberWire website.
Newly Noted Events
Cyber Security Summit: Silicon Valley(San Jose, California, USA, February 13, 2018) This event is an exclusive conference connecting Senior Level Executives responsible for protecting their companies’ critical data with innovative solution providers & renowned information security experts.
CyberUSA(San Antonio, Texas, USA, January 29 - 30, 2018) The CyberUSA Conference will be held in San Antonio, TX at the Henry B. Gonzalez Convention Center on Tuesday, January 30, 2018. A welcome reception will be held on the evening of Monday, January 29, 2018.
Legal CIO(New York, New York, USA, January 31 - February 1, 2018) LegalCIO: Formerly the Law Firm Chief Information and Technology Officers Forum, combines cutting-edge updates on legal technologies with the chance to exchange practical guidance and discuss daily challenges...
Security Titans(Scottsdale, Arizona, USA, February 23, 2018) Security Titans is a ground-breaking event, bringing the biggest names in Information Security together - all in one day, on a single stage to give the nation's cyber security industry access to the very...
European Cybersecurity Forum – CYBERSEC Brussels(Brussels, Belgium, February 27, 2018) CYBERSEC Forum is an unique opportunity to meet and discuss the current issues of cyber disruption and ever-changing landscape of cybersecurity related threats. Our mission is to foster the building of...
SINET ITSEF 2018(Silicon Valley, California, USA, March 7 - 8, 2018) Bridging the gap between Silicon Valley and the Beltway. SINET – Silicon Valley provides a venue where entrepreneurs can meet and interact directly with leaders of government, business and the investment...
SPONSOR & SUPPORT
Grow your brand and reach new customers.
Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.
Be a part of the CyberWire story.
People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.