Reduce fraud, minimize the attack surface and save millions of dollars.
Let Resecurity collaborate across your vulnerability and risk, threat intelligence, penetration testing and broader security teams to quickly reduce fraud, minimize the attack surface and shut down ongoing attacks, ultimately saving your company millions of dollars. We constantly research the latest techniques and tradecrafts of cybercriminals and nation-state actors, and analyze massive amounts of data in order to stay ahead of the bad actors.
November 26, 2019.
By the CyberWire staff
Facebook and Twitter warned yesterday that users may have unwittingly compromised personal information to two data-harvesting apps downloaded from Google Play: Giant Square and Photofy, by developers One Audience and Mobiburn, reports CNBC.
Nursing homes affected by a ransomware attack against Virtual Care Provider, a company that provides the care facilities with a range of IT and security services, have received their ransom demands. Those demands, CBS News says, amount to $14 million. The infection vector appears to have been a protracted series of phishing emails carrying malicious attachments.
The US Department of Energy has released its unclassified evaluation of its cybersecurity program. The inspectors found a variety of familiar, recurring issues at energy installations, including several facilities managed by the National Nuclear Security Administration. Among those issues is a persistent failure to patch.
Sony Pictures was hacked five years ago this week. Principal responsibility for the attack was widely and convincingly attributed (by the US Government and others) to the North Korean government. But the Hollywood Reporter recounts skepticism from film business people who were around Sony Pictures at the time who continue to wonder what happened. Here's the US Department of Justice statement about accused Lazarus Group figure Park Jin Hyok for his role in the Sony attack and other capers.
The US Cybersecurity and Infrastructure Security Agency has issued some advice on how to shop safely during the holiday season. In the US that season opens with Thanksgiving; the shopping season hits the following day, Black Friday.
Today's issue includes events affecting China, European Union, Finland, Iran, Democratic Peoples Republic of Korea, Qatar, Russia, Singapore, United States, and Vietnam.
Bring your own context.
The Willie-Suttonesque reasons ransomware extortionists are getting better at their malign game.
"What's happening is, because it's a bigger target with more money at stake, they've gotten more sophisticated tools. And now you can go on the dark web and have ransomware as a service, literally 24-by-7. They - you go buy it for, you know, under a hundred bucks, and you can then target that however you would like and at whom you would ever like. And so it's really gotten more dangerous in terms of that, and that's why the overall numbers are a little bit misleading."
—Bill Connor, president and CEO at SonicWall, on the CyberWire Daily Podcast, 11.21.19.
Executives are the backdoor into your organization. Who’s patching that?
Every day, companies are under cyberattack and the personal lives of executives are a weak spot. For too long corporate teams have been unable to protect the executives in their personal lives due to privacy laws/implications and SEC impacts. BlackCloak provides a Concierge Cybersecurity™ solution for these evolving threats and offers a customized cloak of protection to protect corporate executives in their personal lives. Enlist BlackCloak for your executive cyber protection.
Cyber Security Summits: November 21 in Houston and December 5 in Los Angeles(Houston, Texas, United States, November 21, 2019) Register for reduced admission to the Cyber Security Summit with promo code cyberwire19 for $95 admission ($350 without code). Sr. Level Executives are invited to learn about the latest threats & solutions in Cyber Security from experts from The US Department of Homeland Security, The FBI, US Department of Justice, Verizon, Center for Internet Security and more. Breakfast, Lunch & Cocktail Reception are included with your admission. Your full day’s attendance will earn you 6 CPEs / CEUs. Passes are limited, secure yours today: www.CyberSummitUSA.com
NXTWORK 2019 EMEA(London, United Kingdom, December 3 - 4, 2019) Join us at NXTWORK 2019 in London to learn, share, and collaborate with GameChangers from companies across the networking industry. This year’s event features keynotes from Juniper executives, breakout sessions, as well as various opportunities for certification testing and training.
Vulnerability Summary for the Week of November 18, 2019(CISA) The CISA Weekly Vulnerability Summary Bulletin is created using information from the NIST NVD. In some cases, the vulnerabilities in the Bulletin may not yet have assigned CVSS scores. Please visit NVD for updated vulnerability entries, which include CVSS scores once they are available.
Detectify raises additional €21M for its ethical hacker network(TechCrunch) Detectify, the Sweden-born cybersecurity startup that offers a website vulnerability scanner powered by the crowd, has raised €21 million in further funding. Leading the round is London-based VC firm Balderton Capital, with participation from existing investors Paua Ventures, Inventure and Insight …
Dell to explore sale of RSA Security(TechCentral) Dell Technologies is exploring a sale of RSA Security, a cybersecurity business it hopes could fetch at least US$1-billion, including debt, according to people familiar with the matter.
Proofpoint Completes the Acquisition of ObserveIT(Yahoo) Proofpoint, Inc., (PFPT), a leading cybersecurity and compliance company, today announced it has completed its acquisition of ObserveIT, the leading insider threat management platform. “More than 30% of all data breaches are the result of insider threats and only a people-centric approach to data security
Former DHS CIO Zangardi Joins Leidos(Defense Daily) Leidos on Monday said that John Zangardi, who resigned from the Department of Homeland Security in mid-November after two years as chief information office
Qualys Brings its Vulnerability Management Solution to the Next Level(Dark Reading) Introducing VMDR: Vulnerability Management, Detection, and Response. VMDR delivers a continuous cycle of protection from a single pane of glass with built-in orchestration workflows and real-time vulnerability detection to prioritize, remediate, and audit across hybrid IT environments.
Shop Safely(CISA) The holiday season is a prime time for hackers, scammers, and online thieves. While millions of Americans will be online looking for the best gifts and Cyber Monday deals, hackers will be looking to take advantage of unsuspecting shoppers by searching for weaknesses in their devices or internet connections or attempting to extract personal and financial information through fake websites or charities.
These 4 Tips Will Make You Fluent in Cyber Risk(ZeroNorth) Understanding the Security Gap According to a recent report by the Advanced Cyber Security Center, 91% of organizations say their boards believe cybersecurity presents some level of business risk. However, 64% of those respondents also agreed the role of their company’s board in digital transformation initiatives is an early-stage or maturing partnership. These numbers highlight …
Cyberwarriors lack planning tools. That could change.(Fifth Domain) Cyberwarriors still don't have a robust cyber-planning tool that spans across all services and teams within U.S. Cyber Command. The Air Force and Strategic Capabilities Office is continuing DARPA's work to change that.
Ohio gears up cyber-soldiers for virtual defense tactics in 2020(Crain's Cleveland Business) From Bloomberg: Cyberattacks in Ohio have disrupted airport flight displays, led to the shutdown of a help line during a winter storm and cut off access to police investigation reports temporarily. The Buckeye State is fighting back.
Apple Settles Allegations of U.S. Sanctions Violations (Wall Street Journal) The technology giant allegedly violated U.S. sanctions by hosting, selling and facilitating the transfer of software applications from a Slovenian software company that was previously blacklisted by the U.S., according to the Office of Foreign Assets Control
Five Years Later, Who Really Hacked Sony?(The Hollywood Reporter) The massive cyberattack just before Thanksgiving 2014 crippled a studio, embarrassed executives and reshaped Hollywood. The FBI blamed a North Korea scheme to retaliate for the comedy 'The Interview,’ but many whose lives were upended have doubts. Says Seth Rogen: "The fact that [co-director Evan Goldberg and I] were never really specifically targeted always raised suspicions in my head."
For a complete running list of events, please visit the Event Tracker on the CyberWire website.
ENISA Maritime Cybersecurity Workshop(Lisbon, Portugal, November 26, 2019) The ENISA Maritime Cybersecurity Workshop will be a full-day event and will take place at EMSA's Headquarters in Lisbon, Portugal. The workshop will include presentations and discussions around the topic...
WSJ Pro Cybersecurity Executive Forum(New York, New York, USA, December 3, 2019) Cybersecurity risks are rapidly changing, so this year’s forum and masterclasses have been redesigned to focus on timely topics including: lessons from the most recent major hacks, what and how to report...
International Security Expo 2019(London, England, UK, December 3 - 4, 2019) International Security Expo, formerly UK Security Expo showcases over 1,000 of the latest innovative security products to help you improve your security. Featured over the 2 days are 13 free to attend,...
Insider Threat Program Development & Management Training(College Park, Maryland, USA, December 3 - 4, 2019) The Insider Threat Defense Group will hold its highly sought after and very affordable Insider Threat Program (ITP) Development & Management Course, at the University of Maryland College Park Campus.
Dallas Cybersecurity Conference(Dallas, Texas, USA, December 4, 2019) Data Connectors brings together security professionals to discuss mitigating risk and improving their overall security posture. Eight industry speakers, an FBI/NSA/DHS keynote speaker, and a CISO Panel...
SPONSOR & SUPPORT
Grow your brand and reach new customers.
Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.
Be a part of the CyberWire story.
People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.