Get your copy of the definitive guide to threat intelligence.
We brought together a team of experts and wrote the definitive guide to everything you need to know about threat intelligence. Whether you work in vulnerability management, incident response, or another part of cybersecurity, our book has something for you. Get your free copy of “The Threat Intelligence Handbook” now.
February 15, 2019.
By the CyberWire staff
GandCrab ransomware is being pushed through a two-year-old hole in the Connectwise Manage plug-in for Kaseya VSA, Infosecurity Magazine reports. A patch has long been available, but far-from universally applied. MSPs are particularly affected.
The Washington Post says the US Federal Trade Commission is negotiating a multi-billion-dollar settlement with Facebook over privacy issues.
Big Tech continues to receive pressure over content moderation. US Representative Adam Schiff (Democrat of California) sent Facebook CEO Mark Zuckerberg a letter requesting that the social network remove anti-vaccination content from its platform. Bloomberg says Google received a similar letter. Facebook responded in a tentatively favorable way. Nothing yet from Google.
Rather than a ban on Huawei or other manufacturers, Reuters reports, European telecommunications providers say they'd prefer an EU-wide security testing system that would address threats as they were found and before they were introduced into 5G networks.
This would seem obvious, but the point apparently needed to be made. According to CNN, the US Democratic National Committee's security chief has told potential Presidential candidates that you don't have to actually declare your candidacy to become a hackers' target.
A leading (alleged) Apophis Squad skid, Mr. Timothy Dalton Vaughn (noms-de-hack “HDGZero,” “WantedByFeds,” and “Xavier Farbel.”) was indicted by the Feds after his identity was compromised via a hacked gaming site. One of his alleged confederates, Mr. George Duke-Cohan (noms-de hack too colorless to warrant mention) was also indicted. Their alleged activities included swatting, DDoS, doxing, bomb threats, the whole sad customary run of skid lulz.
Today's issue includes events affecting Australia, China, European Union, Germany, Italy, Malta, Moldova, NATO/OTAN, Russia, Ukraine, United Kingdom, United States.
A quick reminder: this Monday, February 18th, is Presidents' Day, and as is our custom on US Federal holidays, we won't publish either the Daily News Briefing or the Daily Podcast. Both will be back, as usual, on Tuesday. Enjoy the holiday if you're here in the US.
Earn Your Master’s in Cybersecurity from Georgetown
Looking to advance your cybersecurity career? Check out Georgetown University's graduate program in Cybersecurity Risk Management. Ideal for working professionals, our program offers flexible options to take classes online, on campus, or through a combination of both—so you don’t have to interrupt your career to earn your degree. You'll leave the program with the expertise you need to effectively manage risks and navigate today’s increasingly complex cyber threats. Explore the program.
Cyber Security Summits: February 13th in Atlanta and on April 2nd in Denver(Atlanta, Georgia, United States, February 13 - April 2, 2019) Register for reduced admission to the Cyber Security Summit with promo code cyberwire19 for $95 admission ($350 without code). Sr. Level Executives are invited to learn about the latest threats & solutions in Cyber Security from experts from The FBI, U.S. Secret Service, Darktrace and more. Passes are limited, secure yours today: www.CyberSummitUSA.com
Rapid Prototyping Event: The Needles in the Haystack(Columbia, Maryland, United States, February 26 - 28, 2019) DreamPort, in conjunction with the Maryland Innovation & Security Institute and USCYBERCOM, is hosting a Rapid Protoyping Event in which we hope to find a solution that can not only 'map' the network in the traditional sense but provide inferences as to the most important servers, workstations or hardware devices. Once these assets are identified they could be isolated, replicated or studied closely via live forensics.
CYBERTACOS RSA(San Francisco, California, United States, March 4, 2019) Join us for ALL YOU CAN EAT FREE TACOS! What better way to start your week at RSA? On Monday, March 4, CYBERTACOS is coming back to San Francisco as part of RSA. Join us from 7:00-10:00pm for networking, food and drinks.
Register for the RSA Conference 2019 today!(San Francisco, California, United States, March 4 - 8, 2019) Be part of an empowered global community at RSA Conference 2019, March 4 – 8 in San Francisco. With the latest cybersecurity solutions, countless experts and more, it’s easy to see why RSAC is infosec’s leading event.
Old Phantom Crypter upends malicious document tools(Sophos News) As the new year began, the makers of tools that generate the malicious documents used in social engineering spam attacks threw out the rule book and started fresh with an entirely new batch of Offi…
Cyber attack on Malta's Bank of Valletta(Star Online) Malta's largest bank was the target of a cyber attack Wednesday, with hackers attempting to withdraw €13mil (RM59.7mil), Prime Minister Joseph Muscat said.
Klaussner hit by cyber attack(GoUpstate) Klaussner Home Furnishings suffered a cyber attack this week that affected some of its operations, the company said in a statement released Thursday night.
5G Security Concerns and Huawei(The Mac Observer) As the rollout of 5G comes ever closer, there has been an increased focus on Huawei's role, with Western country's accusing it of spying.
Analysis | Why 5G Phones Are New Focus of Freakouts About Huawei(Washington Post) For years, consumers and service providers have been looking ahead to 5G, the next generation of wireless networks, as the solution to growing demands for mobile data and the gateway to a world full of connected toasters, self-driving cars and robot surgeons. But just as its rollout was gathering speed, a wave of alarms were sounded. Would 5G bring new levels of connectivity or unprecedented risks? Many of the suspicions center on Huawei Technologies Co., China’s largest tech company, which was
UkrInform: Klimkin at Warsaw conference urges to counter Russia’s cyber threats(KyivPost) Ukrainian Foreign Minister Pavlo Klimkin called for close cooperation to counter the challenges and hybrid threats that Russia creates for the whole world. The minister said this while speaking at a conference on Peace and Security in the Middle East held in Warsaw, Poland, on February 14, the press service of the Ukrainian Foreign Ministry …
The US is about to Balkanise the internet(South China Morning Post) Former British cybersecurity chief says there is no evidence Huawei has taken part in spying activities, and US expert believes data centres, not physical equipment, are key
Germany to Let NATO Use its Cyber Skills(SecurityWeek) Germany is to join the ranks of NATO countries making its cyber warfare skills available to the alliance to help fight hacking and electronic warfare, officials said.
Defense Officials Testify on SOCOM and Cybercom(DVIDS) Owen West, assistant defense secretary for special operations and low-intensity conflict; Army Gen. Raymond Thomas III, commander of U.S. Special Operations Command; and Army Gen. Paul Nakasone, commander of U.S. Cyber Command, testify at a Senate Armed Services Committee hearing on U.S. Special Operations Command and U.S. Cyber Command in Washington, Feb. 14, 2019.
William Barr confirmed to lead the Justice Department(TechCrunch) On Thursday, the Senate voted to confirm Trump nominee William Barr as the next head of the Justice Department. Barr was nominated to replace former Attorney General Jeff Sessions who fell out of favor with the Trump administration and resigned last year. Barr will step in for acting Attorney Gener…
Air Force Vet Aided Iranian Intelligence(ClearanceJobs) Former Tech Sergeant Monica Witt defected to Iran in 2013 and has been actively engaged with Iran intelligence targeting U.S. intelligence personnel
Bomb Threat Hoaxer Exposed by Hacked Gaming Site(KrebsOnSecurity) Federal authorities this week arrested a North Carolina man who allegedly ran with a group of online hooligans that attacked Web sites (including this one), took requests on Twitter to call in bomb threats to thousands of schools, and tried to frame various online gaming sites as the culprits.
Don’t Blame Employees who fall for a BEC scam! -(Trend Micro) The BBC reports that a media company based in Scotland is now suing a former employee who fell for a Business Email Compromise (BEC) scam. In the scam, the employee received emails which appeared to be from the managing director and requested wire transfers. The employee worked with her line manager on the first payment...
For a complete running list of events, please visit the Event Tracker on the CyberWire website.
BSides Huntsville(Huntsville, Alabama, USA, February 15 - 16, 2019) The fun and cheap way to earn CEU's. Instead of paying way too much to listen to some guy in a suit try and sell you something, you can pay just a few bucks to hear actual programmers and hackers talk...
Border Security: Physical Wall vs. Virtual Wall(Arlington, Virginia, USA, February 18, 2019) Marymount University ISACA Student Group (MUISG) has its CyberNight at MU scheduled for 9 March 2019 from 6-8pm. Panelists will discuss Border Security: Physical vs Virtual Wall. This is an educational...
Insider Threat Program Development-Management Training Course(Herndon, Virginia, USA, February 18 - 19, 2019) Insider Threat Defense announced it will hold its highly sought after 2 day Insider Threat Program Development-Management Training Course, in Herndon, VA, on February 19-208, 2019. This 2 day training...
CPX Europe 360 2019(Vienna, Austria, February 18 - 20, 2019) CPX 360 - the industry’s premier cyber security summit and expo - brings together the world’s leading cyber security experts to one venue. Gain a deep understanding of current challenges cyber security...
Cybersecurity, Privacy & Trust: A Media Perspective(San Francisco, California, United States, February 21, 2019) As cyberattacks escalate and public awareness around data privacy and security risks increases, companies are grappling with how to comply with regulations and restore consumer trust. From rethinking how...
SPONSOR & SUPPORT
Grow your brand and reach new customers.
Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.
Be a part of the CyberWire story.
People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.