AT&T Cybersecurity Insights Report: Security at the Speed of 5G
AT&T Cybersecurity teamed up with 451 Research to survey organizations on their 5G security plans. Download today and see organizations’ 5G cybersecurity preparedness responses followed by gap analysis on what’s possibly being overlooked plus recommendations for strengthening 5G security efforts.
December 2, 2019.
By the CyberWire staff
France's national cyber authority ANSSI (Agence nationale de la sécurité des systèmes d'information) hasn't ruled out "neutralizing" the threat actors responsible for the November 15th ransomware attack on a major Rouen medical center, Bloomberg reports. ANSSI has authorities and capabilities regular law enforcement agencies lack. The attack has been widely attributed to the Russian gang TA505.
Reuters notes that Facebook, in the first "correction notice" of its kind, has marked a user's post with “Facebook is legally required to tell you that the Singapore government says this post has false information.”
MixCloud, the widely used music-streaming service, confirmed over the weekend that it had been breached, with information on some twenty-one-million users apparently for sale in a dark web souk. ZDNet reports that the data include "usernames, email addresses, hashed password strings, users' country of origin, registration dates, last login dates, and IP addresses." MixCLoud emphasized in its disclosure that it does not store full paycard information.
Much advice is circulating about the threats lurking in holiday shopping. USAToday offers a rogues' gallery of potentially backdoored consumer electronics, and ESET reviews safety advice for online shoppers: be wary of gift cards and special offers received by email. Electronic greeting cards are also being used as malware vectors—Bleeping Computer describes one ongoing Thanksgiving-themed campaign. And "Grinchbots" are said, by NBC News, to be scalping the best online deals. It's an international problem: Computing says that about seven-thousand victims of Cyber Monday credit card fraud are expected in the UK alone.
Today's issue includes events affecting Australia, Azerbaijan, Brazil, China, European Union, France, Germany, India, Iran, Kazakhstan, Netherlands, Panama, Russia, Singapore, Ukraine, United Kingdom, United States.
Bring your own context.
It can be easy to focus on national cyber resilience at the expense of paying attention to state, provincial, or local resilience. Shall we consider the case of Rhode Island, the smallest (in area) of the fifty US states?
"Yes. So the Rhode Island State Police has a very capable computer crime unit that responds and investigates cybersecurity incidents and help companies and organizations defend from cyber threats as much as they can. A few years back, they also established a joint cyber task force. This taskforce brings together members of the Rhode Island State Police crime unit that I just mentioned with individuals representing higher education, hospital, finance, utility, defense, the Rhode Island National Guard. And we provide a forum, similarly to what we do at the Pell Center, to share information, provide analysis and update on cyber threats. But it's also a way for the organization to meet the first responders, the law enforcement officials that would be coming in if there was a major incident. The group also oversees educational initiatives, tabletop exercises. They have a great cyber range. So there is a lot of different ways for the community to engage through this joint cyber task force."
—Francesca Spidalieri, cybersecurity consultant at Hathaway Global Strategies and senior fellow of cyber leadership in the Pell Center at Salve Regina University, on the CyberWire Daily Podcast, 11.27.19.
In some respects, resilience, like politics, is local.
Without proper context, cyber threat intelligence is useless.
The appearance of new threats and security challenges requires effective tools for their timely identification and in-depth analysis. Without proper contextualization, intelligence is completely useless. Context™ – Cyber Threat Intelligence Platform for enterprises and government agencies delivers cyber threat intelligence harvested from millions of data points from the Deep and Dark Web, combined with data science for objective and actionable insights.
NXTWORK 2019 EMEA(London, United Kingdom, December 3 - 4, 2019) Join us at NXTWORK 2019 in London to learn, share, and collaborate with GameChangers from companies across the networking industry. This year’s event features keynotes from Juniper executives, breakout sessions, as well as various opportunities for certification testing and training.
5 scams to watch out for this shopping season(WeLiveSecurity) Black Friday and Cyber Monday are just around the corner and scammers are gearing up to flood you with bogus offers. Here are some of the most common types of shopping scams you should watch out for.
New Ransomware Targets Removable And Attached Drives(neoRhino IT Solutions) There's a new and unusual ransomware strain making the rounds that you should be aware of. Called 'AnteFrigus,' it is primarily distributed via 'malvertising' that redirects users to the RIG exploit kit. One of the most unusual features of this...
Cyber-fraudsters increasingly collecting users’ selfies and IDs(Planet Biometrics News) In the third quarter of 2019, Kaspersky experts have detected a surge in fraud related to the stealing of personal and confidential documents through photos and selfies (often required for registration or identification purposes). In phishing emails, seemingly from payment systems and banks, users were asked under various pretexts to confirm their identity by going to a special page and uploading a selfie alongside a photo of the ID document.
Webroot: Don't be a security scrooge this holiday season(KGUN) The holiday season brings travel, giving back, shopping for our friends and family, and preparing for the New Year. But with all the holiday cheer, we may find ourselves becoming less cautious, especially when it comes to online safety
Facebook Says Outages Have Been Resolved(Wall Street Journal) Facebook said it identified the cause of a widespread outage of its Facebook, Messenger and Instagram platforms and had started restoring full access to affected users.
It’s Way Too Easy to Get a .gov Domain Name(KrebsOnSecurity) Many readers probably believe they can trust links and emails coming from U.S. federal government domain names, or else assume there are at least more stringent verification requirements involved in obtaining a .gov domain versus a commercial one ending in .com or .org.
New phone scam targets businesses(Johnson City Press) Someone with a new phone scam has area businesses in its sights by trying to convince an employee their boss is stealing from the establishment.
“Businesses have received calls –
An update on recent content and account questions(Newsroom | TikTok) By Eric Han, Head of Safety, TikTok USThere has been significant interest and confusion regarding a user's two TikTok accounts and her viral video talking about the Uighur community in China. In this
Post NordVPN Data Exposure: Using Domain Threat Intelligence to Prevent MitM Attacks(CircleID) NordVPN admitted last month that its data center located in Finland was hacked on March 5, 2018. While the virtual private network (VPN) service provider claimed it learned of the incident as early as April 13, 2019, it only confirmed the compromise last month after reports that its expired Transport Layer Security (TLS) certificate and its private key were leaked.
Contract for Web Can't Fix Privacy Problems If Security Isn't Included(Decipher) As the inventor of the World Wide Web, Tim Berners-Lee proposed the [Contract for the Web](https://contractfortheweb.org/) as a way to address problems such as misinformation, mass surveillance and censorship online, but the list is not a realistic blueprint for action.
USA – Iran: Cyber war part of hybrid war(Modern Diplomacy) Tensions are runing high again after a lull of several weeks in an open propaganda battle and a psychological war between the United States and its allies, on the one hand, and the Islamic Republic of Iran (IRI), on the other. Apparently, the current situation could hardly be described as a lull as Washington, with […]
When China Rules the Web(Foreign Affairs) China is set to remake cyberspace in its own image. That will make the Internet less open and allow Beijing to reap vast economic, diplomatic, and security benefits that once flowed to Washington.
Germany to debate China's role in 5G(ECNS) Germany's ruling Christian Democratic Union unanimously voted to hold a debate in the Bundestag on the involvement of foreign suppliers in the country's network infrastructure.
Stopping Grinch BOTS(US House of Representatives) “Allowing grinch bots to rig prices and squeeze consumers during the holiday season hurts American families, small business owners, product makers and entrepreneurs. We will not allow this market manipulation to go unchecked.”
Defector spy not of enough interest to be a threat, intelligence agencies say(news.com.au) A Chinese defector - claiming to be a former spy - reportedly had never been considered enough of a threat to attract any interest from intelligence agencies. The Daily Telegraph reports advice given to the government's National Security Committee of Cabinet claimed Mr Wang had not been deemed a foreign agent at a level that…
Government plans WhatsApp security systems audit(The Times of India) India Business News: The government wants to conduct an audit and inspection of security systems and processes of Facebook-owned instant messenger WhatsApp over the Pegasu
WhatsApp snooping: Questions on how India tackling data breach(Sify) The WhatsApp snooping row that involves privacy infringement of 121 Indian users out of 1,400 globally via third-party Israeli Pegasus spyware is now witnessing serious questions on the part of the government in handling such a crucial matter in the absence of a robust digital legal framework.
Huawei plans legal challenge to latest US pressure: report(Space Daily) Chinese telecoms giant Huawei is preparing a legal counterpunch against new moves by American regulators to bar the company from accessing $8.5 billion in US federal funds for services and equipment, a report said Friday.
For a complete running list of events, please visit the Event Tracker on the CyberWire website.
WSJ Pro Cybersecurity Executive Forum(New York, New York, USA, December 3, 2019) Cybersecurity risks are rapidly changing, so this year’s forum and masterclasses have been redesigned to focus on timely topics including: lessons from the most recent major hacks, what and how to report...
International Security Expo 2019(London, England, UK, December 3 - 4, 2019) International Security Expo, formerly UK Security Expo showcases over 1,000 of the latest innovative security products to help you improve your security. Featured over the 2 days are 13 free to attend,...
Insider Threat Program Development & Management Training(College Park, Maryland, USA, December 3 - 4, 2019) The Insider Threat Defense Group will hold its highly sought after and very affordable Insider Threat Program (ITP) Development & Management Course, at the University of Maryland College Park Campus.
Dallas Cybersecurity Conference(Dallas, Texas, USA, December 4, 2019) Data Connectors brings together security professionals to discuss mitigating risk and improving their overall security posture. Eight industry speakers, an FBI/NSA/DHS keynote speaker, and a CISO Panel...
CISO Leadership Forum(Austin, Texas, USA, December 4 - 5, 2019) Forget the typical conference, which may or may not focus on the latest industry buzz, vendor specific pitches or trendy new development. Our learning sessions are vendor agnostic only as we focus on peer-to-peer...
SPONSOR & SUPPORT
Grow your brand and reach new customers.
Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.
Be a part of the CyberWire story.
People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.