Get your copy of the definitive guide to threat intelligence.
We brought together a team of experts and wrote the definitive guide to everything you need to know about threat intelligence. Whether you work in vulnerability management, incident response, or another part of cybersecurity, our book has something for you. Get your free copy of “The Threat Intelligence Handbook” now.
October 29, 2019.
By the CyberWire staff
An unattributed cyberattack against Georgian targets has taken down some two-thousand websites and the national television station, according to the BBC.
Microsoft yesterday reported finding indications that Russia's GRU ("Strontium," in Microsoft's internal lexicon, "Fancy Bear" and "APT28" to others) has resumed targeting networks of anti-doping agencies that police international sports. Fancy Bear was active against anti-doping groups during the last Olympiad, when officials disqualified Russian teams for widespread use of performance-enhancing drugs. Microsoft's notice suggests that Moscow has neither forgotten nor forgiven, and that organizations connected with what's called "the Olympic Movement" can expect more hostile attention in cyberspace through next summer's Tokyo games. Japanese authorities have been aware of, and preparing for, cyber threats to the games since 2015 at least.
Johannesburg has declined to pay the ransom the Shadow Kill Hackers demanded, and has called upon international support to help with recovery, SowetanLIVE reports.
Menlo Security says the Adwind jRAT has grown stealthier.
The US Federal Communications Commission has proposed rules that would prevent recipients of Universal Service Funds (USF) from using that money to "purchase equipment or services from companies that threaten national security." The measure, which the FCC will vote on this November 19th, isn't restricted to any particular companies or countries, but the Commission specifically calls out Huawei and ZTE as examples of the companies it has in mind. USF money is designed to support rural telecommunications infrastructure.
Pwn2Own, Dark Reading says, will add industrial control systems to its bug-hunting target list this January.
Today's issue includes events affecting Australia, Belgium, China, Georgia, India, Luxembourg, Japan, Netherlands, Russia, South Africa, United Kingdom, United States.
Bring your own context.
That phishing stuff, it's old hat, yesterday's news, right? We mean, who's gonna fall for that "I am here widdow of Nigerian prince" schtick anymore? Misspellings, nonstandard grammar, loose idiomatic control...everybody's onto phishing. Right? Right?
"But that's not what phishing email are anymore. They're hyperfocused on improved spelling, improved grammar, and they are becoming more psychologically focused, where they're trying to get you to react rather than just saying, hey, maybe you can get a million dollars, or hey, it's your bank; maybe you should call us. They're really trying to play on things like - it's, hey, this is your boss; I need something urgently. Or this is your financial institution. Your account's been hacked; we need you to click here right now and update your account information. They're really getting good at that psychological component."
—David Dufour of Webroot, on the CyberWire Daily Podcast, 10.25.19.
Oh...OK, so not right. The phishbait is better than ever.
According to Coalfire’s latest report on FedRAMP, U.S. agencies spent $6.5B in cloud services in FY2018, an impressive 32 percent year-over-year increase, with the vast majority of Federal cloud migration still to come. SaaS/PaaS/IaaS providers can gain access to this market with significantly less investment in both time and cost by taking advantage of automation and recent FedRAMP program updates. Learn how.
IMAGINE, A MISI salon-style bespoke dinner event(Columbia, Maryland, United States, November 1, 2019) IMAGINE a world where more young women can see themselves in the faces of the legendary women of science & technology – and say, "Yes I can!" The event on November 1 is a fundraiser in support of the region's unique and inclusive STEM program and will be held at the DreamPort Facility in Columbia Maryland. While its focus is on the under-represented young women, young men are also included in MISI's STEM programs.
Cyber Security Summits: November 6 in Boston and November 21 in Houston(Boston, Massachusetts, United States, November 6, 2019) Register for reduced admission to the Cyber Security Summit with promo code cyberwire19 for $95 admission ($350 without code). Sr. Level Executives are invited to learn about the latest threats & solutions in Cyber Security from experts from The FBI, Google, IBM, Verizon, Center for Internet Security and more. Breakfast, Lunch & Cocktail Reception are included with your admission. Your full day’s attendance will earn you 6 CEUs. Passes are limited, secure yours today: www.CyberSummitUSA.com
NXTWORK 2019(Las Vegas, Nevada, United States, November 11 - 13, 2019) Join us at NXTWORK 2019 to learn, share, and collaborate with GameChangers from companies across the networking industry. This year’s event features keynotes from Juniper executives, as well as special guest speaker Earvin “Magic” Johnson, along with 40+ breakouts and master classes led by Distinguished Engineers, as well as various opportunities for certification testing and training.
American Cancer Society hit by credit card stealing malware(TechCrunch) The American Cancer Society’s online store has become the latest victim of credit card-stealing malware. Security researcher Willem de Groot found the malware on the organization’s store website, buried in obfuscated code designed to look like legitimate analytics code. The code was des…
California blackouts hit cellphone service, fraying a lifeline(Silicon Valley Business Journal) For years, state and federal regulators have pressed the cellular companies to better reinforce their networks for emergencies. The Federal Communications Commission said Monday that it was conducting “a comprehensive review of the wireless industry’s voluntary commitment to promote resilient wireless communications during disasters.”
Vulnerability Summary for the Week of October 21, 2019(CISA) The CISA Weekly Vulnerability Summary Bulletin is created using information from the NIST NVD. In some cases, the vulnerabilities in the Bulletin may not yet have assigned CVSS scores. Please visit NVD for updated vulnerability entries, which include CVSS scores once they are available.
Why Startups Desperately Need CISO Guidance(CISO Series) As a preview for the 10-29-19 episode of CISO/Security Vendor Relationship Podcast, Mike Johnson interviews Roger Hale, CISO in residence for YL Ventures about his new role.
FCC proposes rules requiring telcos remove Huawei, ZTE equipment(TechCrunch) The Federal Communications Commission said it will move ahead with proposals to ban telecommunications giants from using Huawei and ZTE networking equipment, which the agency says poses a “national security threat.” The two-part proposal revealed Monday would first bar telecoms giants f…
BlackBerry Says Competitor Poached High-Level Officer(Law360) BlackBerry Corp. filed a complaint late Friday in Delaware Chancery Court alleging one of its former high-ranking officers had violated a noncompete clause by taking a job with protection services software company SentinelOne, in what BlackBerry claims is a continuing effort to poach its talent.
For a complete running list of events, please visit the Event Tracker on the CyberWire website.
National Security Leaders Symposium(Naples, Florida, USA, October 27 - 29, 2019) If there is anything that unifies CISOs, change is the one constant. For 2019, the focus is on the rapid evolution of the security industry, the rising tide of visibility on security organizations, and...
NTCA 2019 Cybersecurity Summit(Salt Lake City, Utah, USA, October 27 - 29, 2019) The rural broadband industry, leading experts and critical stakeholders will be gathering at the NTCA 2019 Cybersecurity Summit to hear about managing cyber risk and current threat intelligence. This event...
IS2C Security Conference(Orlando, Florida, USA, October 28 - 30, 2019) (ISC)² Security Congress brings together a global community of cybersecurity professionals. The event offers 175+ educational and thought-leadership sessions, and fosters collaboration with other forward-thinking...
SecureWorld Denver(Denver, Colorado, USA, October 29 - 30, 2019) Connecting, informing, and developing leaders in cybersecurity. For the past 17 years, SecureWorld conferences have provided more content and facilitated more professional connections than any other event...
CYBERSEC EXPO 2019(Katowice, Poland, October 29 - 30, 2019) CYBERSEC EXPO 2019 is a first of its kind two-day trade fair focused exclusively on the cybersecurity technology. It brings global expertise on the emerging cybersecurity threats and gives access to the...
SPONSOR & SUPPORT
Grow your brand and reach new customers.
Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.
Be a part of the CyberWire story.
People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.