Attacks, Threats, and Vulnerabilities
FoggyWeb: Targeted NOBELIUM malware leads to persistent backdoor (Microsoft Security Blog) In-depth analysis of newly detected NOBELIUM malware: a post-exploitation backdoor that Microsoft Threat Intelligence Center (MSTIC) refers to as FoggyWeb. NOBELIUM uses FoggyWeb to remotely exfiltrate the configuration database of compromised AD FS servers, decrypted token-signing certificate, and token-decryption certificate, as well as to download and execute additional components.
A New Threat to CSP Networks – The Impending “Black Storm" (Nexusguard) Nexusguard Research Team recently theorized that a cyber threat, coined the “Black Storm” attack, could potentially be used by attackers to wreak havoc on CSP (Communications Service Provider) networks.
Controversial Web Host Epik Confirms Customer Data Exposed in Breach (SecurityWeek) Controversial web services provider Epik last week confirmed that sensitive information pertaining to its customers was stolen in a data breach.
Encrypted Messaging App Signal Hit by Brief Outage (SecurityWeek) Encrypted instant messaging app Signal was hit by a brief outage late Sunday that interrupted services on the platform at the same time as localised interruptions on other social media services.
BloodyStealer: new advanced stealer targets accounts of popular online gaming platforms (Kaspersky) Kaspersky researchers have discovered an advanced Trojan, dubbed the BloodyStealer, sold on darknet forums and used to steal gamers’ accounts on popular gaming platforms such as Steam, Epic Games Store, and EA Origin. With features to avoid analysis and detection, a low subscription price, and some interesting capabilities, BloodyStealer is a prime example of the type of threat online gamers face. This, alongside an overview of the game-related products stolen and sold on the darknet, can be found in Kaspersky’s latest report on game-related data threats.
New malware steals Steam, Epic Games Store, and EA Origin accounts (BleepingComputer) A new malware sold on dark web forums is being used by threat actors to steal accounts for multiple gaming platforms, including Steam, Epic Games Store, and EA Origin.
Apple ‘Still Investigating’ Unpatched and Public iPhone Vulnerabilities (Vice) Apple apologized for the delay in responding to the researcher, but experts think Apple needs to do better.
Windows 10 rootkit flaw identified by researchers (Computing) Security firm Eclypsium has uncovered a weakness in the Microsoft Windows Platform Binary Table (WPBT) in Windows 8 and 10
VMware Confirms In-the-Wild Exploitation of vCenter Server Vulnerability (SecurityWeek) VMware has confirmed that the recently patched vCenter Server vulnerability CVE-2021-22005 has been exploited in the wild, and researchers say it has been chained with another flaw.
Malicious 'Safepal Wallet' Firefox add-on stole cryptocurrency (BleepingComputer) A malicious Firefox add-on named "Safepal Wallet" lived on the Mozilla add-ons site for seven months and scammed users by emptying out their wallets. Safepal is a cryptocurrency wallet application capable of securely storing a variety of crypto assets, including Bitcoin, Ethereum, and Litecoin.
Sophos warns of scammers abusing Google Forms (iTWire) It's not news that scammers and other cybercriminals take advantage of Google Forms, but that misuse may be broader than you thought. According to security vendor Sophos, there are at least seven ways that Bad Guys exploit the familiarity of Google forms. 1. Phishing: If you've ever filled i...
Finding 0-days with Jackalope (McAfee) On March 21st, 2021, the McAfee Enterprise Advanced Threat Research (ATR) team released several vulnerabilities it discovered in the Netop Vision Pro Education software, a popular schooling software used by more than 9,000 school systems around the world.
Netacea Index Identifies Top Five Scalper Bot Targets: Graphics Cards, Sneakers Lead List (RealWire) New quarterly report reveals most in-demand goods bought for resale using automated bots
Manchester, UK – 28th September 2021 – Netacea, the bot detection and mitigation specialist, today launches its Top Five Scalper Bots Quarterly Index, a list of leading items targeted by scalper bots globally
Port of Houston Quells Cyber-Attack (Infosecurity Magazine) Major US port targeted by hackers with suspected backing of nation-state
Howard University Returns to In-Person Instruction Amid Cyberattack (Hilltop) Howard University faced a ransomware cybersecurity attack in the first week of September. Since the attack, the University has returned to some normalcy, proceeding with in-person and hybrid classes on Sept. 14.
Cyber attack cripples Pott. County computers (The Mercury) Pott County officials said Monday that a cyber attack on the county government’s computers has shut down many of its systems for more than a week and is still causing
DMV Warns of Text Message Scam (Pasadena Now) Daily Newsmagazine and City Guide to Pasadena, California featuring local news, breaking news, events, weather, sports news, schools news, shopping, restaurants and more from Pasadena Now
From Iceland — Google Thought Icelandic Photo App Was A Cyber-Attack (The Reykjavik Grapevine) According to Vísir, the popularity of a new Icelandic photo app, Lightsnap, caused Google to shut down new registrations with...
How does your kid’s identity get stolen? (Avast) Explaining five behaviors that make it easy for your kid’s identity to be stolen. Here's how to prevent the identity theft of kids.
Vulnerability Summary for the Week of September 20, 2021 (CISA) The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. NVD is sponsored by CISA. In some cases, the vulnerabilities in the bulletin may not yet have assigned CVSS scores. Please visit NVD for updated vulnerability entries, which include CVSS scores once they are available.
Security Patches, Mitigations, and Software Updates
Chrome 94 Update Patches Actively Exploited Zero-Day Vulnerability (SecurityWeek) Google has shipped an urgent Chrome update to address yet another zero-day vulnerability that has been actively exploited in attacks.
Microsoft adds novel feature to Exchange servers to allow it to deploy emergency temporary fixes (The Record by Recorded Future) Microsoft will roll out tomorrow a new security feature for its Exchange email servers named the Emergency Mitigation (EM) service that can automatically install temporary mitigations to block attacks until Microsoft is ready to release official patches.
Trends
Demographics of Cybercrime Report (Malwarebytes) This is a story of inequality online. It is a story of women feeling dramatically less safe and less private on the Internet than men. It is a story of how Black people, Indigenous populations, and all people of color see some of the barriers they already face in the physical world transposed into cyberspace. It is a story of how money (or its absence) changes our sense of safety, and how education can prepare some for a safer, more private experience online.
Data Governance Trends: Predictions, pitfalls and technologies for the future of digital work (Egnyte) Remote work isn’t going away anytime soon, nor is the long list of apps and tools employees rely on to store data and collaborate on projects.
The 2021 Healthcare and Pharmaceutical Industry Cyber Threat Landscape Report (Intsights) IntSights’ original coverage of underground criminal forums with supplemented coverage from other sources such as media and vendor reporting on state-sponsored attacks
Healthcare Employee Cybersecurity Training is Lacking, Report Finds (Health IT Security) A new report shows employee security awareness is lacking, exposing a major gap in healthcare employee cybersecurity training.
Disconnecting the robocall fraudsters (TelecomTV) Above: Total Number of Fraudulent Robocalls Received by Mobile Subscriber in 2021, Split by 8 Key Regions: 106 Billion in totalUnsolicited robocalls just won’t…
Software Buyers Will Increase Spending in 2022, with 86% of Buyers Using Peer Reviews to Make Decisions, Says G2 Survey (PR Newswire) A new study from G2, the largest software marketplace used by more than 60M software buyers annually, reveals that faster decision making,...
Synopsys Publishes BSIMM12 Study Highlighting Notable Growth in Open Source, Cloud, and Container Security Efforts (Stockhouse) Synopsys, Inc. (Nasdaq: SNPS) today published BSIMM12, the latest version of the Building Security In Maturity Model (BSIMM) report, created to help organizations plan, execute, measure, and improve their software security initiatives.
State of Cybersecurity 2021 (CompTIA) The latest cybersecurity research from CompTIA explores cybersecurity policy, processes, people and products
CSC Finds Majority of World’s Largest Companies Susceptible to Phishing and Brand Abuse Due to Improper Domain Security (CSC) Despite 60% surge in dangerous third-party domain registrations, domain security is an underutilized security component to curb phishing and related ransomware attacks
Government breaches - can you trust the US Government with your data? (Comparitech) In 2020, the US government suffered 87 data breaches that affected over 3.3 million people. Based on an average cost of $146 per affected record, we estimate that these breaches cost government entities almost $487 million last year alone. Despite a 25 percent year-on-year decrease in the number of breaches targeting government entities (down from […]
Marketplace
Coalition Closes $205 Million Series E, Valuing the Cyber Insurance Provider At More Than $3.5 Billion (Coalition) Durable Capital, T. Rowe Price and Whale Rock Capital co-lead new round to accelerate Coalition’s mission to solve cyber risk
UK-Based Threat Detection Firm SenseOn Raises $20 Million (SecurityWeek) SenseOn has raised $20 million in Series A funding led by Eight Roads Ventures to scale its AI-based cybersecurity platform business
Waterland-backed Enreach acquires OSS Networks (Private Equity Wire) Enreach, a pan-European unified communications (UC) brand and portfolio company of Waterland Private Equity (Waterland), is acquiring OSS Networks.
Criterion Systems, Inc. Acquires SAGE Black (Criterion Systems) Criterion Systems, Inc. (Criterion) announced today it has acquired SAGE Black Consulting and Contracting, LLC (SAGE Black), a government contractor providing a full spectrum of software engineering services to the GEOINT/SIGINT, space, and cyber domains with a growing Artificial Intelligence/Machine Learning (AI/ML) presence. SAGE Black operates as a wholly-owned subsidiary of Criterion and Criterion Chief Financial Officer Steve Mast serves as president of the subsidiary. Rock Hall Partners represented SAGE Black for the transaction, the terms of which were not released.
Thoma Bravo Completes Strategic Investment in Intel 471 (PR Newswire) Thoma Bravo, a leading software investment firm, today announced the completion of its strategic investment in Intel 471, the premier provider...
Herjavec Group Majority Owner Raises $1.75B for More Acquisitions (MSSP Alert) Private equity firm Apax Partners, the majority owner of Herjavec Group (a Top 250 MSSP) preps new $1.75 billion fund for more acquisitions.
Lockheed scores US Army contract for major electronic warfare, intel and cyber platform (C4ISRNet) The contract will support additional prototyping and proof of concept for the Terrestrial Layer System-Brigade Combat Team.
Peraton Receives $109M Award for Full-Spectrum Cyberspace Operations (PR Newswire) Peraton has been selected by U.S. Cyber Command (USCYBERCOM) to bolster Department of Defense (DoD) cyber expertise, including delivering...
Apple Joins Cyber Readiness Institute as Co-Chair (Cyber Readiness Institute) Investment to Bolster Global Small Business Cybersecurity Education and Protection Sept. 28, 2021 (New York)—The Cyber Readiness Institute (CRI) is pleased to welcome Apple as a Co-Chair of the organization. Apple joins CRI to further our mission to help small and medium-sized businesses (SMBs) as critical components of global supply chains improve their cyber readiness and become more […]
Palantir Stock Seen Gaining From SPAC Investments But Payback Could Take Years (News Nation USA) Palantir Technologies' (PLTR) efforts to grow the commercial side of its business show promise but will likely take years to materialize, an analyst says.
ThreatConnect Expands Into South Africa, Partnering With Leading MSSP (BusinessWire) ThreatConnect has entered a strategic partnership with BUI, Microsoft’s largest Security and Consulting Partner in South Africa.
Amnesty is calling on the DIT to reclassify spyware (Amnesty) We are Amnesty International UK. We are ordinary people from across the world standing up for humanity and human rights.
F-Secure Becomes Cybersecurity Awareness Month 2021 Champion (News Powered by Cision) F-Secure joins collaborative effort as new research finds more consumers than ever are taking
Iris Powered By Generali Supports Cybersecurity Awareness Month (PR Newswire) Iris® Identity & Cyber Protection powered by Generali ("Iris"), provider of a proprietary identity and cyber protection platform, today...
Huawei Strengthens Contribution and Cooperation in Indonesia Cyber Security (Huawei) Huawei Indonesia has reaffirmed its commitment to supporting cyber security knowledge sharing through the renewal of the MoU on cyber security cooperation yesterday with Indonesia’s highest cyber security body National Cyber and Crypto Agency of the Republic of Indonesia (BSSN).
SAIC Taps Kevin Brown as CISO (WashingtonExec) Science Applications International Corp. has appointed Kevin Brown as chief information security officer. Brown leads the company’s cybersecurity strategy
Splunk Hires Former Citibank Exec as CISO (Datamation) Splunk is turning to a former EVP and head of global information security at Citibank to oversee all facets of its IS posture:
Former GDIT Exec Chris Hegedus Named Senior Executive Adviser at Booz Allen (GovCon Wire) Looking for the latest GovCon News? Check out our story: Chris Hegedus Named Senior Executive Advisor at Booz Allen. Click to read more!
Corvus Insurance Welcomes Madhu Tadikonda as President (BusinessWire) Corvus Insurance, the leading provider of smart commercial insurance products powered by AI-driven risk data, today welcomed Madhu Tadikonda as its fi
MIT Exec and Trusted Computing Expert Thomas Hardjono Joins iComply - iComply Investor Services (iComply Investor Services) Hardjono serves as Technical Director of the MIT Trust::Data Consortium and as CTO of MIT Connection Science
PKWARE Expands Senior Leadership Team with Appointment of Kathy Myhand as Vice President of People (PKWARE) PKWARE, a global leader in automated data security, announced it has named Kathy Myhand as vice president of people.
Products, Services, and Solutions
Zero Trust Comes to Industry's Broadest Cybersecurity Platform (PR Newswire) Zero Trust is a term frequently touted but rarely implemented authentically by cybersecurity providers. Trend Micro Incorporated (TYO: 4704;...
Cloudflare Is Taking a Shot at Email Security (Wired) The internet infrastructure company wants to protect your inbox from targeted threats, starting with the launch of two new tools.
Cloudflare Introduces Email Security Tools (SecurityWeek) Cloudflare announces email security solutions, including free tools for creating custom email addresses and preventing spoofing and phishing, as well as an Advanced Email Security Suite.
Cloudflare Is Taking a Shot at Email Security (Wired) The internet infrastructure company wants to protect your inbox from targeted threats, starting with the launch of two new tools.
Guardicore Collaborates with Amdocs to Elevate Globe Telecom’s Cloud Security (BusinessWire) Guardicore announced a strategic engagement with Amdocs to implement its Centra Security Platform at Globe Telecom.
Absolute Software Announces General Availability of Enhanced Geolocation Capabilities (Yahoo Finance) Absolute Software™ (NASDAQ:ABST) (TSX:ABST), a leader in next generation Endpoint Resilience™ solutions, today announced the release of enhanced geolocation capabilities, enabling enterprise and education organizations to strengthen device and data protections in today’s work and learn-from-anywhere environments, and balance the need for increased security with end user privacy. With users and devices more mobile and distributed
USPS Selects Lumen for Network Modernization Contract (Yahoo Finance) Lumen Technologies (NYSE: LUMN) announced that it was recently selected by the U.S. Postal Service (USPS) to strengthen and modernize its network services that support more than 32,000 post offices and mail processing sites around the country.
Veriff Partners with SimpliFi to Provide Trusted and Secure Identity Verification for Instant Card Issuance (News Powered by Cision) Identity verification technology enables SimpliFi customers to seamlessly issue virtual or physical
Aunalytics Unveils Secure Managed Services with Integrated Security (GlobeNewswire News Room) Next-Generation Technology Suite Delivers Secure Managed IT to Power Business...
AVD Security Has Developed An Edge Cutting Encryption Software That Protects Files From Unwanted People (EIN) AVD Security has made an encryption software called Cyphertop that helps people protect their files from being hacked and is the only system that in invulnerable to quantum hacking.
Fime partners with eftpos on migration to next-gen eCommerce payment authentication. (Fime Group) September 28, 2021
New Invicti Research Reveals Proof-Based Scanning Automatically Confirms 94% of Direct-Impact Vulnerabilities with 99.98% Accuracy (PR Newswire) Invicti Security™, a global innovator in application security, today announced the results of an extensive analysis of six years' worth of...
Alert Logic and AVANT Expand Cybersecurity Adoption with Exclusive New Master Distributor Agreement (PR Newswire) Alert Logic today announced a new exclusive Master Distributor Agreement with AVANT to advance the adoption of Managed Detection and Response...
deepwatch Announces Managed Detection and Response Solution for Mid-Sized Enterprises to Defend Against Cyber Threats (BusinessWire) deepwatch, the leader in advanced managed detection and response (MDR) security, today announced a managed detection and response solution for medium
Fugue Announces Unified Infrastructure as Code and Cloud Runtime Security (Fugue) Fugue announces Fugue IaC to enable cloud engineering and security teams to use the same policies for infrastructure as code and the cloud runtime.
Improving threat detection and response in AWS with Sophos XDR (Sophos News) Chasing attacks through cloud environments can be tough if you don’t know what to look out for – and sometimes, even if you do. That’s why Sophos Cloud Workload Protection with XDR (Extended …
Owl XD Guardian XML Cross Domain Solution Completes LBSA Testing, Baseline Listed (GlobeNewswire News Room) Transforms Coalition Network Security with Exportable, Certified Streaming CDS...
Technologies, Techniques, and Standards
NIST to begin publishing Cybersecurity Practice Guide in 2022 (FedScoop) The National Institute of Standards and Technology plans to publish various volumes of its forthcoming Cybersecurity Practice Guide throughout 2022 and beyond. A description of the practical steps needed to implement the cyber reference designs for zero-trust security, the guide will be the end result of NIST’s Implementing a Zero Trust Architecture Project. NIST’s Cybersecurity […]
4 Experts Comment – Deloitte Calls For Integration Of Cybersec And ERM Functions At Federal Agencies (Information Security Buzz) The Partnership for Public Service and Deloitte released a report Thursday How Integrating Enterprise Risk Management Can Strengthen Federal Cybersecurity, based on working sessions with ERM and cybersecurity experts in spring of this year.
Five Common Mistakes When Addressing Data Security (CPO Magazne) Even before the pandemic, data breaches were a common occurrence, with prominent companies suffering attacks that were regularly reported and analyzed.
An Intro to Fuzzing (AKA Fuzz Testing) (Bishop Fox) Learn everything you need to know about fuzzing, including who should fuzz, what types of fuzzers exist, how to write a good harness, and more.
Research Highlights Significant Evolution in Email Security (Dark Reading) Email security is in transition, from on-premises to the cloud, from inline to API-based, and from stand-alone to integrated into XDR. New research from Omdia highlights where the market is today, and where it is heading.
Design and Innovation
The pandemic is testing the limits of face recognition (MIT Technology Review) Government use of face ID systems exploded during the pandemic—but tying it to critical services has left some people locked out at the moment they needed help the most.
A hamster has been trading cryptocurrencies in a cage rigged to automatically buy and sell tokens since June - and it's currently outperforming the S&P 500 (Business Insider) The top cyptocurrencies currently held by the hamster include Tron, Ripple's XRP, cardano's ada, and ether.
Research and Development
IRS’ Criminal Investigators Want Help Breaking into Physical Crypto Wallets (Nextgov.com) The agency’s digital forensics unit is looking for a small business to help make routine processes out of some nascent research into related hardware hacking techniques.
Academia
NC A&T receives NSA grant to study artificial intelligence (Triad Business Journal) Three faculty researchers in North Carolina Agricultural and Technical State University’s College of Engineering were awarded a two-year, $493,957 grant to research how to modernize artificial intelligence systems that are vulnerable to unexpected behaviors and attacks in order to protect data.
UW-Whitewater adds new cybersecurity degree (Yahoo) Sep. 27—WHITEWATER — In 2017, Dan Stein, the Department of Homeland Security's branch chief for cybersecurity education, visited UW-Whitewater to encourage the school to develop a cybersecurity program to help the industry. The university evidently took the speech to heart because just four years later, the university created the Cybersecurity Center for Business. The center helps provide ...
Speakers, ‘Capture the Flag’ competition to highlight Purdue University Global Cybersecurity Awareness Month activities (Purdue University) Purdue University Global will commemorate Cybersecurity Awareness Month with a variety of activities throughout October and is inviting the public to participate and increase cybersecurity awareness personally and professionally.
Security Demands Challenge Air Force, Defense Contractor Collaboration With Academia (Air Force Magazine) Partnerships between the Air Force and academia are needed to deliver cutting-edge technology to the warfighter, but security issues can arise, experts say.
Legislation, Policy, and Regulation
Taliban takes on ISKP, its most serious foe in Afghanistan (Al Jazeera) Afghan group cracks down on ISKP (ISIS-K) members after a series of attacks, but experts say it won’t be an easy task.
Newly-formed international alliances vow to improve cybersecurity, in moves China sees as affront (CyberScoop) A coalition of four nations — Australia, India, Japan and the U.S. — has committed to promoting cybersecurity standards and practices as one of their chief goals, in one of several recent moves from countries widely viewed as a counter to China in cyberspace and elsewhere.
EU enhances Ukraine’s cyber defense (Ukrinform) The second wave of cybersecurity exercises funded by the European Union took place in Kyiv on September 20-22, involving Ukraine’s main public stakeholders in the area of cybersecurity. — Ukrinform.
Kremlin says NATO expansion in Ukraine is a 'red line' for Putin (Reuters) The Kremlin warned on Monday that any expansion of NATO military infrastructure in Ukraine would cross one of President Vladimir Putin's "red lines", and Belarus said it had agreed to take action with Moscow to counter growing NATO activity.
In Russia, Apple and Google Staff Get Muscled Up By the State (Wired) When US tech companies opened offices there, it was supposed to mitigate oppression. Instead those workers are now vulnerable to threats from local authorities.
U.S. to open program to replace Huawei equipment in U.S networks (Reuters) The U.S. Federal Communications Commission (FCC) on Monday said it would open a $1.9 billion program to reimburse mostly rural U.S. telecom carriers for removing network equipment made by Chinese companies deemed national security threats like Huawei [RIC:RIC:HWT.UL] and ZTE Corp .
US instructs carriers on programme to remove Huawei and ZTE equipment (South China Morning Post) Started under Trump administration, a US$1.9 billion ‘rip and replace’ programme continues under Joe Biden.
FCC details $1.9 billion program to rip out Huawei and ZTE gear in the US (ZDNet) Carriers with under 10 million customers as well as some schools, libraries, and health care providers can apply for FCC funding to dispose of Chinese-vendor network equipment from October 29.
Senators aim to increase oversight of cryptocurrency mining with new bill (TheHill) Sens. Maggie Hassan (D-N.H.) and Joni Ernst (R-Iowa) introduced legislation Monday intended to increase oversight of cryptocurrency mining overseas.
GSA loses 3 technology execs; DHS, Air Force, FDA gain new ones | Federal News Network (Federal News Network) The Transportation Department and the FDA have new chief information officers, while the Air Force and the Homeland Security Department have new chief technology officers.
NY Health Dept. Exec Picked To Head HHS Privacy Efforts (Law360) A top executive at the New York State Department of Health and former compliance attorney at Mayer Brown LLP has been tapped to lead the arm of the U.S. Department of Health and Human Services charged with overseeing health privacy violations, the regulator said Monday.
Litigation, Investigation, and Law Enforcement
China Wields New Legal Weapon to Fight Claims of Intellectual Property Theft (Wall Street Journal) Chinese technology giants have seized on a new legal tactic to fight claims of intellectual property theft, raising concerns in the U.S. that Beijing’s promises to strictly enforce patent and copyright laws will be undermined by Chinese courts.
Crypto Guru Pleads Guilty to Advising North Korea on Blockchain Technology (Wall Street Journal) Virgil Griffith was charged with conspiring to violate a federal law prohibiting U.S. citizens from exporting technology to the communist country.
EU: Russia Behind ‘Ghostwriter’ Campaign Targeting Germany (Threatpost) It's not the first time that the disinformation/spearphishing campaign, which originally smeared NATO, has been linked to Russia.
The return of Huawei CFO Meng Wanzhou has become a nationalist moment for China (Quartz) State media used her return as proof that the fate of Chinese citizens is closely intertwined with that of the Communist Party.
Beijing Claims Victory Over Huawei Executive’s Return (Wall Street Journal) Chinese media played down China’s release of two Canadian citizens that came minutes after Huawei executive Meng Wanzhou boarded her flight home.
Clearview AI drops subpoenas of its critics (POLITICO) The Clearview decision represents a major win for civil society groups and researchers.
Google Pushes to Overturn EU’s $5 Billion Antitrust Decision on Android (Wall Street Journal) Alphabet’s Google argued that its Android operating system for mobile devices has boosted competition rather than stifled it.
London’s Met Police is expanding its use of facial recognition technology (WIRED UK) The Metropolitan Police is buying a new facial recognition system that will supercharge its surveillance technology capabilities
Met Police to buy retrospective facial recognition technology (Computing) The Met will buy LFR system as part of a £3 million deal with Japanese firm NEC Corporation
Among Those Who Marched Into the Capitol on Jan. 6: An F.B.I. Informant (New York Times) A member of the far-right Proud Boys texted his F.B.I. handler during the assault, but maintained the group had no plan in advance to enter the Capitol and disrupt the election certification.
ExpressVPN CIO Gets Loyalty and Ethics Questioned by Edward Snowden (ClearanceJobs) Hard to trust the ExpressVPN CIO when he accepted a deferred prosecution agreement for “violations of U.S. export control, computer fraud and access device fraud laws."
China's Xiaomi hires expert over Lithuania censorship claim (Reuters) China's Xiaomi Corp said on Monday it was engaging a third-party expert to assess allegations by Lithuania that its smartphones carry built-in censorship capabilities.
U.S. deports convicted Russian hacker to Russia -TASS (Reuters) A Russian hacker, sentenced in June 2020 to nine years in a U.S. jail for cyber crimes, was detained at a Moscow airport on Tuesday after being deported by the United States, the TASS news agency quoted Russia's Interior Ministry as saying.
US arrests 33 BEC scammers linked to Nigerian crime syndicate (The Record by Recorded Future) The FBI has arrested 33 individuals across Texas for a series of cybercrime-related activities, including BEC and romance scams.