Get your copy of the definitive guide to threat intelligence.
We brought together a team of experts and wrote the definitive guide to everything you need to know about threat intelligence. Whether you work in vulnerability management, incident response, or another part of cybersecurity, our book has something for you. Get your free copy of “The Threat Intelligence Handbook” now.
August 15, 2019.
By the CyberWire staff
Huawei, which has been working hard to dominate IT markets in Africa, has embedded technicians in the governments of Zambia and Uganda to help those governments organize and operate extensive domestic surveillance programs, the Wall Street Journal reports. Huawei denies any impropriety: the company has “never been engaged in ‘hacking’ activities,” a Huawei spokesman told the Journal in a written statement. “Huawei rejects completely these unfounded and inaccurate allegations against our business operations. Our internal investigation shows clearly that Huawei and its employees have not been engaged in any of the activities alleged. We have neither the contracts, nor the capabilities, to do so.” Others see Huawei as exporting China's proven domestic surveillance template.
Credit cards skimmers on gas pumps can now be spotted with a tool, "Bluetana," soon to be made available to police. KrebsOnSecurity describes the tool's ability to detect Bluetooth card skimmers. Bluetana emerged from joint research by the University of California San Diego and the University of Illinois Urbana-Champaign, with technical input from the US Secret Service, There are legitimate devices that can squawk like card skimmers, so Bluetana helps tell police that they should take a second look.
US prosecutors signal their intention to file more charges against accused Capital One hacker "erratic."
Emsisoft's Fabian Wosar is a fugitive from injustice. He tells the Micky that he has to keep moving to stay clear of the goons who are angry with him for his work on ransomware decryptors. He's cost them a lot of money.
Today's issue includes events affecting Bulgaria, Canada, China, European Union, Iran, Democratic Peoples Republic of Korea, Russia, South Africa, Uganda, Ukraine, United Kingdom, United States, and Zambia.
Bring your own context.
A proposed State Department cybersecurity desk, a Bureau of Cyberspace Security and Emerging Technologies, is on hold in Congress right now, but it may not be for much longer.
"You know, if you think about the Trump administration, one of their hallmarks is - one of his hallmarks is let's avoid excessive regulation. Let's avoid big government. So nonetheless, though, we have a new group being created, which, mind you, I think is a good thing. I think both sides of the aisle would agree that getting sort of a uniform approach to these many issues that comprise cybersecurity, the digital economy, et cetera, are all good. The problem is how to make that happen. The proposed new organization would have, as I understand it, 80 employees with only about a $28 million budget. That's not a lot of money to fundamentally impact online activity."
—Michael Overly, partner at Foley & Lardner LLP, on the CyberWire Daily Podcast, 8.13.19.
Skirmishing aside, the issues the bureau would address command broad bipartisan support. The hold is on because a member of the New York delegation thinks the proposed bureau focuses too much on security to the detriment of its other mission, fostering online commerce. It's worth noting that this sort of dual mission is familiar. The Department of Homeland Security's customs mission, for example, includes not only a charge to stop smuggling, but to foster legitimate commerce as well.
What are the best practices and tools for SecOps in 2019?
Read the 2019 SANS Security Operations Survey report for key insights & strategies from principal SANS Instructor Christopher Crowley & SANS Director of Emerging Technologies John Pescatore. Download your copy now.
And Hacking Humans is up. In this episode, "Swamping search results for reputation management," Dave shares the story of a small community hospital dealing with a ransomware attack. Joe reviews the different types of extortion emails. The catch of the day is an inheritance scam from Canada. Carole Theriault interviews Craig Silverman from Buzzfeed about online reputation management companies.
Cyber Warrior Women Summer Social: Sip and Paint(Columbia, MD, United States, August 21, 2019) Join the Cybersecurity Association of Maryland, Inc. (CAMI) for the annual Cyber Warrior Women Summer Social, an all-about-fun-and-networking event! We're adding an artistic element to this year's event with a wine glass painting exercise. No previous art experience required.
Second Annual DataTribe Challenge(Online, October 1, 2019) Register now for a chance to be DataTribe's next world-class company. Finalists will split a $20,000 prize, and the winner may receive $2m in funding from DataTribe. Contestants have until October 1st to apply at www.datatribe.com/challenge.
Cyber Attacks, Threats, and Vulnerabilities
Huawei Technicians Helped African Governments Spy on Political Opponents(Wall Street Journal) Employees embedded with cybersecurity forces in Uganda and Zambia intercepted encrypted communications and used cell data to track opponents, according to a Wall Street Journal investigation. Huawei said it “rejects completely the unfounded and inaccurate allegations.”
Review of a Danabot Infection(H3 Collective) Proofpoint first identified DanaBot in May of 2018. Armed with basic Trojan and info stealing functionality, DanaBot works to gather sensitive banking information from unsuspecting users for fraud and other criminal activity. Since its inception, the Trojan has worked on adding affiliates, increasing its geotargeting, and expanding its functionality through modularity. In this blog, I’m …
Credit Karma glitch exposed users to other people’s accounts(TechCrunch) Users of credit monitoring site Credit Karma have complained that they were served other people’s account information when they logged in. Many took to a Reddit thread and complained on Twitter about the apparent security lapse. “First time logging in it gave me my information, but as s…
Cyberchology: the Human Factor(ESET) Every organisation is now a digital business. Driven by developments in technology, companies have digitised their services and offerings to meet the ever-growing demand from consumers. However, evolution also comes with its own risk, and in this case, it is a significant rise in cybercrime that is extremely diverse and unpredictable.
Patch Tuesday, August 2019 Edition(KrebsOnSecurity) Most Microsoft Windows (ab)users probably welcome the monthly ritual of applying security updates about as much as they look forward to going to the dentist: It always seems like you were there just yesterday, and you never quite know how it’s all going to turn out.
The Economic Value of DNS Security(Global Cyber Alliance) Our research has shown that DNS firewalls could have mitigated one-third of the incidents we studied and could have prevented $10 billion in losses in those incidents.
SAIC Wins $14 Million U.S. Marine Corps Cyberspace Operations Contract(Yahoo) Science Applications International Corp. (SAIC) won a $14 million contract with Naval Information Warfare Center Pacific supporting the U.S. Marine Corps Forces Cyberspace Command to provide full spectrum cyberspace support. “We are proud to continue our partnership with and help ensure our Marines
Meet Bluetana, the Scourge of Pump Skimmers(KrebsOnSecurity) “Bluetana,” a new mobile app that looks for Bluetooth-based payment card skimmers hidden inside gas pumps, is helping police and state employees more rapidly and accurately locate compromised fuel stations across the nation, a study released this week suggests.
‘Private’ and ‘hidden’ mean different things to Facebook(TechCrunch) Facebook’s leadership made a pretty heavy-handed indications this year that it believes Facebook Groups are the future of the app, they announced all of this alongside their odd declaration that “The future is private.” Now, Facebook is changing the language describing the visibil…
Hacking off the hackers: WVU programmed to fill cybersecurity jobs with NSF award(My Buckhannon) When West Virginia University first offered cybersecurity classes in 2003, the gravest fear of a casual Internet user might have been opening an infected email attachment that erased computer files or reset their homepage. And who could forget landing on some dodgy website that would generate a never-ending array of pesky popup windows Those problems …
Task Force Takes On Russian Election Interference(NPR.org) In an exclusive interview with NPR, the head of the National Security Agency talks about how the online battle waged against ISIS is informing the fight against Russia ahead of the 2020 elections.
Huawei Covertly to Sell Smartphones in U.S.(Washington Free Beacon) China's Huawei Technologies, the world's No. 2 smartphone maker, covertly planned to sell its smartphones in the U.S. disguised as non-Huawei devices.
MICROCHIPS Act(The Office of US Senator Mike Crapo) The U.S. is involved in asymmetric warfare and what amounts to a technological space race with China, which is seeking to dominate an over $1.5 trillion electronics industry through state investment, subsidies and intellectual property (IP) theft.
For a complete running list of events, please visit the Event Tracker on the CyberWire website.
AcceleRISE(Minneapolis, Minnesota, USA, August 14 - 16, 2019) Prepare for your future. Designed for young industry professionals like yourself, and presented by SIA, AcceleRISE brings together tomorrow’s security leaders for two-plus days of idea sharing, coaching,
The conference, hosted by SIA’s RISE community for young professionals and those new to the industry, will present blended learning sessions featuring a mix of keynotes, panel sessions, team building exercises, peer networking and workshops.
PCI Security Standards 2019 Latin America Forum(São Paulo, Brazil, August 15, 2019) Don’t miss the data security event of the year for the payment card industry. We provide you with the information and tools to help secure payment data. We lead a global, cross industry effort to increase...
Austin Cybersecurity Conference(Austin, Texas, USA, August 15, 2019) Data Connectors brings together security professionals to discuss mitigating risk and improving their overall security posture. Eight industry speakers, an FBI/NSA/DHS keynote speaker, and a CISO Panel...
SecureWorld Bay Area(Santa Clara, California, USA, August 21, 2019) Connecting, informing, and developing leaders in cybersecurity. For the past 17 years, SecureWorld conferences have provided more content and facilitated more professional connections than any other event...
Pittsburgh Cybersecurity Conference(Pittsburgh, Pennsylvania, USA, August 22, 2019) Data Connectors brings together security professionals to discuss mitigating risk and improving their overall security posture. Eight industry speakers, an FBI/NSA/DHS keynote speaker, and a CISO Panel...
SPONSOR & SUPPORT
Grow your brand and reach new customers.
Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.
Be a part of the CyberWire story.
People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.