What if your security solution could provide zero doubt?
A foundation of artificial intelligence delivers smart, simple, and secure solutions that change how organizations approach endpoint security. Cylance provides full-spectrum, predictive threat prevention and visibility across the enterprise to combat the everyday - as well as the most notorious and advanced - cyberattacks. Let Cylance help you understand how you can create real confidence in your organization’s security posture and zero in on what really matters.
February 5, 2019.
By the CyberWire staff
Facebook has banned four ethnic militias in Myanmar, members of the "Northern Alliance," in a continuing effort to purge advocacy of violence from its platform. Some Myanmar officials were banned earlier for the same reason.
Cisco’s Talos research group has identified a targeted campaign against supporters of Tibetan independence (including the Tibetan government-in-exile) that installs the ExileRat remote access Trojan. The vector is a malicious PowerPoint file. The attack shares command-and-control infrastructure with the LuckyCat Android malware earlier used against Tibetan activists. The researchers think espionage, not criminal gain, is the goal. Talos doesn’t say as much, but signs point to China.
Check Point has found a new Linux backdoor, “SpeakUp,” which can run on several Linux distributions, and on the related MacOS. The Trojan, thought to be possibly the work of a Russian-speaking coder, is said to evade most current security products. Check Point thinks its current activity is a sign of much bigger campaigns to come.
Buzzfeed reports that some Members of Parliament in the UK have been hacked for phone and email contacts. Investigation is underway.
Bangladesh Bank is suing Manilla-based Rizal Commercial Banking Corporation (and others) for $81 million lost in a 2016 caper that abused the SWIFT transfer system, the Wall Street Journal reports. The Washington Post thinks recovery will be difficult. Consensus holds North Korea responsible for the theft.
The Nordic Page reports that Norway’s PST intelligence service has added Huawei to its threat list. Reuters quotes Chinese officials as calling the move “ridiculous.”
Today's edition of the CyberWire reports events affecting Bangladesh, China, Denmark, European Union, Democratic Peoples Republic of Korea, Myanmar, NATO/OTAN, Nigeria, Norway, Philippines, Russia, United Kingdom, United States.
Vendors, suppliers, and independent subsidiaries are gaining more access to your network and sensitive data because today’s business models include outsourcing of non-mission critical programs and tasks, which brings a new world of risk to your organization. In this webinar, LookingGlass Product Manager, Brandon Dobrec and Security Ledger Editor-in-Chief, Paul Roberts will discuss what you need to assess vendors in the modern cyber environment, providing you with the right map to assess your external risk.
Cyber Job Fair, Feb 13, San Antonio(San Antonio, Texas, United States, February 13, 2019) Cleared and non-cleared cybersecurity pros make your next career move at the Cyber Job Fair, February 13 in San Antonio. Meet leading cyber employers including AF Civilian Service, CNF Tech, Lockheed Martin, and more. Visit ClearedJobs.Net or CyberSecJobs.com for details.
Cyber Security Summits: February 13th in Atlanta and on April 2nd in Denver(Atlanta, Georgia, United States, February 13 - April 2, 2019) Register for reduced admission to the Cyber Security Summit with promo code cyberwire19 for $95 admission ($350 without code). Sr. Level Executives are invited to learn about the latest threats & solutions in Cyber Security from experts from The FBI, U.S. Secret Service, Darktrace and more. Passes are limited, secure yours today: www.CyberSummitUSA.com
Rapid Prototyping Event: The Needles in the Haystack(Columbia, Maryland, United States, February 26 - 28, 2019) DreamPort, in conjunction with the Maryland Innovation & Security Institute and USCYBERCOM, is hosting a Rapid Protoyping Event in which we hope to find a solution that can not only 'map' the network in the traditional sense but provide inferences as to the most important servers, workstations or hardware devices. Once these assets are identified they could be isolated, replicated or studied closely via live forensics.
Global Cyber Innovation Summit(Baltimore, Maryland, United States, May 1 - 2, 2019) This unique, invitation-only forum brings together a preeminent group of leading Global 2000 CISO executives, cyber technology innovators, policy thought leaders, and members of the cyber investment community to catalyze the industry into creating more effective cyber defenses. Request an invitation today.
Cyber Attacks, Threats, and Vulnerabilities
Facebook bans four armed groups in Myanmar(TechCrunch) Facebook is taking action in Myanmar, the Southeast Asian country where the social network has been used to incite racial tension and violence, after it banned four armed groups from its service. The U.S. company said in a blog post that it has booted the groups — the Arakan Army (AA), the My…
ExileRat Targeting Tibetan Supporters via Malicious PowerPoint Docs(BleepingComputer) A targeted attack against pro-Tibetan supporters has been discovered that installs the ExileRat remote access Trojan through malicious PowerPoint attachments. Once infected, the RAT will allow attackers to retrieve information, execute commands, and steal data from the infected computers.
ExileRAT shares C2 with LuckyCat, targets Tibet(Talos Blog) Cisco Talos recently observed a malware campaign delivering a malicious Microsoft PowerPoint document using a mailing list run by the Central Tibetan Administration (CTA), an organization officially representing the Tibetan government-in-exile.
Crooks Continue to Exploit GoDaddy Hole(KrebsOnSecurity) Godaddy.com, the world’s largest domain name registrar, recently addressed an authentication weakness that cybercriminals were using to blast out spam through legitimate, dormant domains.
Super Bowl Ads Tackle AI and Cyber Security(Security Boulevard) Super Bowl LIII just concluded and the Patriots are now tied for the most Super Bowl victories in NFL history alongside the Pittsburgh Steelers. And Tom Brady is now the oldest quarterback to ever win... The post Super Bowl Ads Tackle AI and Cyber Security appeared first on CyberArk.
Mobile security startup Guardsquare raises $29 million investment(CISO MAG) The company claims that its technology is already embedded in more than quarter of Android apps and its software products are used across various industries, like financial services, e-commerce, public sector enterprises, telecommunication, gaming, and media.
Falk Herrmann appointed new CEO of Rohde & Schwarz Cybersecurity(Rohde & Schwarz) On January 1, 2019, Dr. Falk Herrmann became the new CEO of Rohde & Schwarz Cybersecurity GmbH. Prior to taking on this position, the internationally experienced manager was CTO of the Security global business unit of Bosch Sicherheitssysteme GmbH.
NIST narrows field of post-quantum crypto contenders(GCN) For the second round of its competition, the National Institute of Standards and Technology has chosen 26 algorithms that may help protect electronic information from attack by quantum-enabled computers.
Abusing Bias Part One: Infrastructure(Posts By SpecterOps Team Members) I think about my social engineering skills as a byproduct of living a rebellious life. My friends were busy when I wanted to travel the…
What Is NATO Really Doing in Cyberspace?(War on the Rocks) Two years ago, I received orders to NATO and arrived at Supreme Headquarters Allied Powers Europe in Mons, Belgium in July 2017, thinking this would be my
PH needs better cyber defense(Philippine Canadian Inquirer) There is a pressing need to improve the country’s cyber security, Department of National Defense (DND) Secretary Delfin Lorenzana said Monday.
Norway Intelligence Service Adds Huawei on National Security Threat List(The Nordic Page) The police security service (PST) believes that state-owned computer network operations will pose a persistent threat to Norway, and warns against companies such as the telegigant Huawei. PST chief Benedicte Bjørnland presented PST’s annual threat assessment on Tuesday with Minister of Justice Tor Mikkel Wara . At the press conference, Bjørnland draws particular attention to …
Общество с ограниченной ответственностью «Эппл Рус»(ФЕДЕРАЛЬНАЯ СЛУЖБА ПО НАДЗОРУ В СФЕРЕ СВЯЗИ, ИНФОРМАЦИОННЫХ ТЕХНОЛОГИЙ И МАССОВЫХ КОММУНИКАЦИЙ) с целью: - осуществления и выполнения возложенных законодательством на ООО «Эппл Рус» функций, полномочий и обязанностей;
For a complete running list of events, please visit the Event Tracker on the CyberWire website.
CPX Americas 360 2019(Las Vegas, Nevada, USA, February 4 - 6, 2019) CPX 360 promises to be the premier cyber security summit. CPX 360 is where you’ll receive up-to-the-minute intelligence about global threats and other vital topics from the world’s leading cyber security...
QuBit Conference Belgrade 2019(Belgrade, Romania, February 7, 2019) QuBit is a Cybersecurity Community Event connecting the East and West. We create a unique way to meet the best and the brightest minds in the information security fields across multiple industries, and...
National Security Technology Forum and Exposition (NSTFX)(San Diego, California, USA, February 12, 2019) AFCEA International and the University of California, San Diego are proud to host a new and innovative event entitled “The National Security Technology Forum and Exposition (NSTFX)”. NSTFX will bring...
3rd Next Generation Cyber Security for Utilities(Denver, Colorado, USA, February 13 - 14, 2019) With the value of damages caused by cyber-attacks growing rapidly every year, adopting a new and comprehensive approach to cyber security for utilities is more important than ever. Among essential facilities...
SPONSOR & SUPPORT
Grow your brand and reach new customers.
Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.
Be a part of the CyberWire story.
People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.