Get your copy of the definitive guide to threat intelligence.
We brought together a team of experts and wrote the definitive guide to everything you need to know about threat intelligence. Whether you work in vulnerability management, incident response, or another part of cybersecurity, our book has something for you. Get your free copy of “The Threat Intelligence Handbook” now.
January 28, 2019.
By the CyberWire staff
Citizen Lab reports that people approached two of its researchers to express interest in their work on commercial intercept tools, specifically those produced by the NSO Group. Those who made the approach represented themselves as socially conscious investors associated with "FlameTech" and "CPW-Consulting," both of which appear to be fictions. Citizen Lab worked with the AP to expose what they characterize as an approach similar to what might be expected from private security firms. They stress they have no evidence NSO Group was involved in the approach. The University of Toronto-based Lab had been investigating possible use of NSO Group tools against murdered Saudi dissident Jamal Khashoggi.
Transparency activists at Distributed Denial of Secrets have released a very large set of documents produced by prominent Russians—politicians, oligarchs, journalists, and religious leaders—Rappler and others report.
Ukraine's cyber police say they're seeing an upsurge in Russian phishing aimed at disrupting upcoming elections, Reuters reports. Russia says it's never done anything of the kind, anywhere, to anyone.
Russia and China blocked a US-sponsored attempt to gain UN recognition of Juan Guaidó as Venezuela's acting president in place of Chavista incumbent Maduro, whom the National Assembly declared constitutionally ineligible for office, Reuters says. Reuters also reports deniable Russian military contractors in Venezuela. Hybrid operations may ensue.
The Daily Motion has sustained a credential-stuffing attack, ZDNet reports.
The US Federal Government reopened for business today, at least for now. The Washington Post says the first order of that business is looking for hackers.
Today's issue includes events affecting Australia, Canada, China, Czech Republic, France, Israel, Japan, Liberia, Philippines, Romania, Russia, Rwanda, Saudi Arabia, Singapore, Turkey, Uganda, Ukraine, United Kingdom, United Nations, United States, and Venezuela.
Experiencing poor performance with your legacy antivirus? Try CB Defense.
Does your legacy antivirus slow down end user endpoints? Try Carbon Black's lightweight, next-generation antivirus + endpoint detection and response solution in your environment for free!
Compare CB Defense to your current solution using real-world scenarios, and see how operations transform across your security and IT teams. After you've finished your 15-day trial, you'll have everything you need to build a business case and make the switch. Gain superior protection, simplified operations, and actionable visibility today.
DreamPort Event: The Red Hat Ansible Tower Workshop(Columbia, Maryland, United States, February 7, 2019) DreamPort, in conjunction with the Maryland Innovation & Security Institute and USCYBERCOM is hosting the Red Hat Ansible Tower Workshop. This workshop will enable you to create playbooks, while building in security. Automation features will save time, empower junior staff, offload senior staff and automate your most tedious tasks!
Cyber Job Fair, Feb 13, San Antonio(San Antonio, Texas, United States, February 13, 2019) Cleared and non-cleared cybersecurity pros make your next career move at the Cyber Job Fair, February 13 in San Antonio. Meet leading cyber employers including AF Civilian Service, CNF Tech, Lockheed Martin, and more. Visit ClearedJobs.Net or CyberSecJobs.com for details.
CYBERTACOS RSA(San Francisco, California, United States, March 4, 2019) Join us for ALL YOU CAN EAT FREE TACOS! What better way to start your week at RSA? On Monday, March 4, CYBERTACOS is coming back to San Francisco as part of RSA. Join us from 7:00-10:00pm for networking, food and drinks.
Global Cyber Innovation Summit(Baltimore, Maryland, United States, May 1 - 2, 2019) This unique, invitation-only forum brings together a preeminent group of leading Global 2000 CISO executives, cyber technology innovators, policy thought leaders, and members of the cyber investment community to catalyze the industry into creating more effective cyber defenses. Request an invitation today.
APNewsBreak: Undercover agents target cybersecurity watchdog(The Seattle Times) The researchers who reported that Israeli software was used to spy on Washington Post journalist Jamal Khashoggi's inner circle before his gruesome death are being targeted in turn by international undercover operatives, The Associated Press has...
Statement from Citizen Lab Director on Attempted Operations Against Researchers(The Citizen Lab) Over the last month, two Citizen Lab staff members were contacted by two separate individuals in what appears to be an attempt to compromise our work. Each of the contacts purported to show an interest in the staff members’ personal, non-Citizen Lab related interests, and presented themselves as serious and professional.
How Hacktivism Led to Discovering Digital Arms Dealers(CSO Online) Under Surveillance: Investigating digital arms dealers is a documentary that globe hops from France to Libya, Syria, London and ends pointing a finger at a digital arms dealer in the USA. Entire countries are monitored for voices of dissent against their government, places where bloggers are tortured and killed for telling the truth, for fighting for freedom. These mass surveillance systems would not have been uncovered had it not been for hacktivists. (#OpBullAmesys)
Mac users affected by ‘Shlayer Trojan’ dropped via a Steganography-based Ad Payload; Confiant and Malwarebytes report(Security Boulevard) Recently, Confiant and Malwarebytes analyzed a steganography based payload which was utilized by a “malvertizer” dubbed “VeryMal” by the two firms, to infect Macs. According to the firms, the attempted attack ad was viewed on as many as 5 million Macs. This campaign was active from 11th January 2019 until 13th January 2019. Confiant detected The post Mac users affected by ‘Shlayer Trojan’ dropped via a Steganography-based Ad Payload; Confiant and Malwarebytes report appeared first on Packt Hub.
Singapore says personal details of 14,200 HIV patients were posted online(TechCrunch) For the second time inside a year, private health information belonging to people in Singapore has been compromised. Following a hack disclosed last summer that affected the patient records of up to 1.5 million citizens, Singapore’s Ministry of Health revealed today that personal details and …
Has the fight over privacy changed at all in 2019?(TechCrunch) Few issues divide the tech community quite like privacy. Much of Silicon Valley’s wealth has been built on data-driven advertising platforms, and yet, there remain constant concerns about the invasiveness of those platforms. Such concerns have intensified in just the last few weeks as France’s priv…
Thycotic research reveals IT security pros suffering image problem(Intelligent CIO Middle East) The majority of UK IT security professionals feel they’re suffering from an image problem among fellow workers, according to new research commissioned by Thycotic, a provider of privileged access management (PAM) solutions for more than 10,000 organisations worldwide. Nearly two thirds of respondents (63%) feel that their security teams are either viewed as the company […]
The new Two Minutes Hate(TechCrunch) You see it first on Facebook or Twitter. Something contemptible: an image, or a video, or a tweet. One accompanied by a furious, snarky caption, highlighting just how awful and unacceptable it is, a dunk fueled by rage. The outrage rises within you. How can it not? You’re primed for outrage. …
Davos Edition: China-US Contest 'Problem of Our Time'(Atlantic Council) DAVOS, SWITZERLAND – Former U.S. National Security Adviser Stephen Hadley poses the most significant question hovering over the global future as the World Economic Forum's annual meeting opens here Monday. "Can the United States and China be...
Vodafone Halts Purchase Of Huawei Equipment(Nasdaq) Vodafone Group plc (VOD, VOD.L) said Friday it is suspending the purchase of components made by Chinese tech giant Huawei Technologies Co. Ltd. for its core telecom networks.
Without proof, is Huawei still a national security threat?(TechCrunch) It’s Huawei vs. the U.S., the U.K., Canada, Australia, New Zealand, and most of Europe and Japan. It’s almost as if the world’s biggest surveillance superpowers don’t want Huawei cell tower and networking router equipment inside critical networks in their countries, amid con…
Tech Playing Defense at Davos(The Information) Towards the end of 2018, as Facebook, Google, Twitter, Tesla and others were trying to put major scandals behind them, tech executives started talking privately about setting a new tone in 2019. This was the year companies would start talking about great new products and innovation again, going ...
Thales eSecurity spins out nCipher(ComputerWeekly.com) After just over a decade, Thales eSecurity has announced that it has spun out HSM specialist nCipher, the UK based encryption firm it acquired for $100m in 2008
Internet pioneer Dr Paul Vixie on pushing back against cyber crime(TechCentral.ie) This week TechCentral editor Niall Kitson meets with the inventor of the Domain Name System Dr Paul Vixie to talk about how his company Farsight Security is changing the way we handle online security. To never miss an episode of TechRadio subscribe, comment and rate us on iTunes, Soundcloud, Stitcher, Spreacker, iHeartRadio or paste the [&hellip
The Pentagon’s Cybersecurity Is Falling Behind(Bloomberg) The U.S. military’s cybersecurity capabilities aren’t advancing fast enough to stay ahead of the “onslaught of multipronged” attacks envisioned by adversaries, the Pentagon’s combat testing office is warning.
Utilities Brace For FERC Scrutiny Of Vendor Cybersecurity(Law360) U.S. utility companies are preparing to satisfy new rules from the Federal Energy Regulatory Commission that transfer cybersecurity standards onto third-party vendors, an area expected to be an enforcement priority in the coming year with regulators and defense officials identifying contracted services as weak links in the nation's power grid.
Akamai director on how to prevent rise in cryptocurrency mining attacks(Intelligent CIO Middle East) Opinion piece from Richard Meeus, Security Technology and Strategy Director at Akamai Coin-mining malware isn’t a new threat. Although it has received increased attention over recent months following the fluctuations in the value of bitcoin and other digital currencies, it has roots dating back to 2011. The term ‘coin-mining malware’ is used to refer to malware […]
What the Pentagon could learn from unicorns(Defense News) The promise of Silicon Valley is built on unicorns — startup companies valued at more than $1 billion — where the payoff is big enough that venture capitalists are willing to funnel a lot of money toward unproven technologies.
The facts about Facebook(TechCrunch) This is a critical reading of Facebook founder Mark Zuckerberg’s article in the WSJ on Thursday, also entitled The Facts About Facebook. Yes Mark, you’re right; Facebook turns 15 next month. What a long time you’ve been in the social media business! We’re curious as to whet…
Baylor Seeks to Educate, Raise Awareness of Data Privacy and Cyber Security(Baylor University) WACO, Texas (Jan. 25, 2019) – On Monday, Jan. 28, Baylor University will kick off a weeklong awareness campaign in conjunction with Data Privacy Day, an international effort launched by the National Cyber Security Alliance (NCSA) to educate people about the importance of respecting privacy, safeguarding data and enabling trust.
Microsoft calls for new rules amid tech scrutiny(Reuters) Microsoft CEO Satya Nadella tried to calm growing concerns about facial recognition and other artificial intelligence during a sit-down talk at the World Economic Forum in Davos as experts warned more needs to be done to protect digital privacy.
User of the world’s biggest DDoS-for-hire website? Police say...(HOTforSecurity) When police shut down the notorious website webstresser.org last year and arrested its administrators, a clear message was sent to the site's 151,000 users: you're next. Until its takedown, webstresser.org was believed to the world's biggest marketplace for the... #DDoSforhire #Europol #Webstresser
Cops catch $15m crypto-crook(Naked Security) A man has been arrested a year after stealing €10m ($15m) of the IoT-focused cryptocurrency IOTA using bogus software that tricked users.
Three Charged for Working With Serial Swatter(KrebsOnSecurity) The U.S. Justice Department has filed criminal charges against three U.S. men accused of swatting, or making hoax reports of bomb threats or murders in a bid to trigger a heavily armed police response to a target’s address. Investigators say the men, aged 19 to 23, all carried out the attacks with the help of Tyler Barriss, a convicted serial swatter whose last stunt in late 2018 cost a Kansas man his life.
For a complete running list of events, please visit the Event Tracker on the CyberWire website.
Newly Noted Events
National Cyber League Spring Season(Various, February 25 - March 24, 2019) The NCL is a defensive and offensive puzzle-based, capture-the-flag style cybersecurity competition. Its virtual training ground helps high school and college students prepare and test themselves against...
Community College Cyber Summit (3CS)(Bossier City, Louisiana, USA, July 30 - August 1, 2019) The 2019 Community College Cyber Summit (3CS) at Bossier Parish Community College in Louisiana marks the sixth annual edition of 3CS. 3CS is the only national academic conference focused on cybersecurity...
Cyber Security X Chicago(Chicago, Illinois, USA, September 25 - 26, 2019) Cyber Security X Chicago is part of the fastest growing cyber security event series, providing events that uniquely cover the entire security landscape. The event will offer invaluable security insight...
Cyber Security X Atlanta(Atlanta, Georgia, USA, November 20 - 21, 2019) Cyber Security X Atlanta is part of the fastest growing cyber security event series, providing events that uniquely cover the entire security landscape. The event will offer invaluable security insight...
Zero Trust Technology Showcase(Columbia, Maryland, USA, January 28, 2019) Register for the Zero Trust Technology Showcase. The working group, mainly consisting of US Government employees, will be organized into four teams to include teams exploring data, networking, analytics...
CPX Americas 360 2019(Las Vegas, Nevada, USA, February 4 - 6, 2019) CPX 360 promises to be the premier cyber security summit. CPX 360 is where you’ll receive up-to-the-minute intelligence about global threats and other vital topics from the world’s leading cyber security...
QuBit Conference Belgrade 2019(Belgrade, Romania, February 7, 2019) QuBit is a Cybersecurity Community Event connecting the East and West. We create a unique way to meet the best and the brightest minds in the information security fields across multiple industries, and...
National Security Technology Forum and Exposition (NSTFX)(San Diego, California, USA, February 12, 2019) AFCEA International and the University of California, San Diego are proud to host a new and innovative event entitled “The National Security Technology Forum and Exposition (NSTFX)”. NSTFX will bring...
SPONSOR & SUPPORT
Grow your brand and reach new customers.
Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.
Be a part of the CyberWire story.
People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.