Attacks, Threats, and Vulnerabilities
Operation GhostShell: Novel RAT Targets Global Aerospace and Telecoms Firms (Cybereason) The highly-targeted attacks against aerospace and telecoms firms by new Iranian threat actor MalKamak includes newly discovered malware that evaded security tools since 2018 and abuses Dropbox services for command and control...
BlackBerry ties malware campaign targeting victims in India to Chinese cyberespionage group | ZDNet (ZDNet) According to researchers with BlackBerry, the notorious Chinese cyberespionage group APT41 is using COVID phishing lures to target victims in India.
Drawing a Dragon: Connecting the Dots to Find APT41 (BlackBerry) APT41 is a prolific Chinese state-sponsored cyberthreat group that has conducted malware campaigns related to espionage and financially motivated criminal activity dating as far back as 2012. This threat group has targeted organizations around the world, in verticals such as travel, telecommunications, healthcare, news and education.
To the moon and hack: Fake SafeMoon app drops malware to spy on you (WeLiveSecurity) Scammers are impersonating the SafeMoon cryptocurrency app, using a fake update to lure Discord users to a website that distributes a well-known RAT.
Facebook Blames Engineering Error of ‘Our Own Making’ for Global Outage (Wall Street Journal) The social-media giant said the problem arose Monday when Facebook engineers were trying to do routine maintenance on a data center.
Facebook Blames Outage on Faulty Router Configuration (Threatpost) One easily disproved conspiracy theory linked the ~six-hour outage to a supposed data breach tied to a Sept. 22 hacker forum ad for 1.5B Facebook user records.
More details about the October 4 outage (Facebook Engineering) Now that our platforms are up and running after yesterday’s outage, we are sharing more detail on what happened and what we've learned.
UEFI threats moving to the ESP: Introducing ESPecter bootkit (WeLiveSecurity) ESET researchers discover and analyze ESPecter, a previously undocumented UEFI bootkit with roots that go back all the way to at least 2012.
Security researchers find another UEFI bootkit used for cyber-espionage (The Record by Recorded Future) ESET has discovered a new UEFI bootkit named ESPecter, used in targeted attacks since 2012.
Honeywell Experion PKS Vulnerabilities Found by Claroty (Claroty) Claroty Team82 discloses some details on three Honeywell Experion PKS vulnerabilities that enabled DCS remote code execution.
Misconfigured Airflows Leak Thousands of Credentials from Popular Services (Intezer) Misconfigured Apache Airflows expose credentials for popular services including Slack, PayPal and AWS. Airflow is the #1 rated open-source workflow project.
Newly discovered code injection vulnerability in Yamale (JFrog) Yamale, schema validator for YAML files. Attackers can bypass security and run arbitrary code. See the details, fix and recommendations from the JFrog security team.
Syniverse quietly reveals 5-year data breach (FierceWireless) Syniverse, which bills itself as the “world’s most connected company,” disclosed in a September 27 SEC filing that it was the target of a security breach.
Massive Twitch data breach sees hackers release source code, contributor payouts, and unannounced software (pcgamer) 125GB of spreadsheets, code and confidential data.
Twitch source code and business data leaked on 4chan (The Record by Recorded Future) Individuals claiming to be part of the Anonymous hacker collective have leaked the source code and business data of video streaming platform Twitch via a torrent file posted on the 4chan discussion board earlier today.
Telegraph left 10 TB database with subscriber details unsecured (Computing) Data exposed included users' full names, email addresses, URL requests and authentication tokens
Chase Bank Heavily Targeted Via XBALTI Phishing Kit (SecurityWeek) During the three months from mid-May to mid-August 2021, researchers detected a 300% increase in phishing URLs within their own telemetry targeting Chase Bank
Report: Phishing – The Thrill of the Chase! (Cyren) Cyren threat researchers provide an end-to-end view of a successful phishing campaign (targeting consumers of a large American bank)
In wake of Sandhills Global cyber attack, what attacks do you need to watch out for? (KLKN-TV) Cybersecurity experts continue to investigate the attack on Sandhills Global. They’re seeing if hackers were able to access client data. “Client data” can mean a lot of things, and someone being able to access it is a fairly broad threat. Schrock Innovations technician Kayne Jensen explains, “It just means that somewhere along the line, someone has...
Hospital cyber attack investigation continues (Daily Journal) Johnson Memorial Health’s information technology team and the FBI are trying to get to the bottom of a weekend cyber attack that crippled the hospital’s computer network. The hackers gained access to the hospital’s network at 10:31 p.m. Friday and installed ransomware by 10:33 p.m. The hospital’s IT team discovered the attack within about 15
US clothing brand Next Level Apparel reports phishing-related data breach (The Daily Swig) Exposed data includes payment card and driver’s license numbers
Denial Of Service: Are Your Radio and TV Stations Vulnerable? (Radio & Television Business Report) Monday's big service outages for social media giants Facebook, Instagram and WhatsApp are tied to a denial of service (DNS) issue. It's not a cybercrime, but it is a huge threat to broadcast TV and radio. How can one prevent it? Cyber security expert Steve Morgan's upcoming Forecast 2022 appearance couldn't be more timely to tackle the subject.
Hackers Demand Millions from Allen ISD, the Latest District Targeted by Cybercriminals (Dallas Observer) Allen ISD is squaring off with hackers who are demanding payment of up to $10 million.
Hackers threaten Allen ISD families after cyberattack (FOX 4 News Dallas-Fort Worth) Allen ISD was hit by a cyberattack last month that briefly disrupted its computer systems. Now, some parents and employees are getting emails saying their data will be posted if the district does not pay millions of dollars.
Eskenazi Health now says some patient, employee information stolen in cyber attack (Indianapolis Star) Eskenazi officials initially said that they did not think personal information was taken in August cyberattack.
Anonymous Leaks Data from Texas GOP (GovInfoSecurity) Hacktivist collective Anonymous has for the third time carried out an attack involving Washington-based domain name registrar and web hosting service Epik,
Medtronic Insulin Pump Devices Recalled Due to Serious Risks (GovInfoSecurity) The Food and Drug Administration on Tuesday issued a warning notifying patients that medical device maker Medtronic has expanded a recall of remote controllers for certain wireless insulin pumps.
COUGHLIN & GERHART, LLP ("C&G") - NOTICE OF DATA BREACH (PR Newswire) Coughlin & Gerhart ("C&G"), is providing notice of a recent data privacy event that may have affected certain personal information. The...
Recordkeepers 'Prime Targets' for Cybercriminals (Financial Advisor IQ) The reams of demographic and personal financial information about plan participants that retirement plan recordkeepers have make them “prime targets for cybercriminals," according to Cerulli Associates.
Webroot names its “Nastiest Malware of 2021” (Enterprise Times) Webroot has named its “Nastiest Malware of 2021” despite three months left in the year. It’s generally a mix of high profile and well-known malware that has been around for some time. Not all of them are active, with Webroot opining that some will “absolutely return from the underworld”.
Security Patches, Mitigations, and Software Updates
Google Patches Over 50 Serious Vulnerabilities in Android (SecurityWeek) Google on Monday announced the availability of new security patches for Android, aimed at addressing more than 50 vulnerabilities in the mobile operating system.
Apache HTTP Server Project patches exploited zero-day vulnerability (ZDNet) The critical vulnerability is being actively exploited in the wild.
Mitsubishi Electric GOT and Tension Controller (CISA) 1. EXECUTIVE SUMMARY
CVSS v3 7.5
ATTENTION: Exploitable remotely/low attack complexity
Vendor: Mitsubishi Electric
Equipment: GOT and Tension Controller
Vulnerabilities: Improper Handling of Exceptional Conditions, Improper Input Validation
2. RISK EVALUATION
Successful exploitation of these vulnerabilities could allow an attacker to cause a denial-of-service condition by sending specially crafted packets.
Emerson WirelessHART Gateway (CISA) 1. EXECUTIVE SUMMARY
CVSS v3 8.0
ATTENTION: Exploitable remotely/low attack complexity
Vendor: Emerson
Equipment: WirelessHART Gateway
Vulnerabilities: Missing Authentication for Critical Function, Improper Input Validation, Improper Limitation of a Pathname to a Restricted Directory, Write-what-where Condition, Improper Neutralization of Special Elements used in an OS Command, Exposure of Sensitive Information to an Unauthorized Actor
Moxa MXview Network Management Software (CISA) 1. EXECUTIVE SUMMARY
CVSS v3 10.0
ATTENTION: Exploitable remotely/low attack complexity
Vendor: Moxa
Equipment: MXview Network Management Software
Vulnerabilities: Path Traversal, Use of Hard-coded Password, Unprotected Transport of Credentials, Injection, Improper Access Control
2.
Moxa MXview Network Management Software (CISA) 1. EXECUTIVE SUMMARY
CVSS v3 10.0
ATTENTION: Exploitable remotely/low attack complexity
Vendor: Moxa
Equipment: MXview Network Management Software
Vulnerabilities: Path Traversal, Use of Hard-coded Password, Unprotected Transport of Credentials, Injection, Improper Access Control
2.
Honeywell Experion PKS and ACE Controllers (CISA) 1. EXECUTIVE SUMMARY
CVSS v3 10.0
ATTENTION: Exploitable remotely/low attack complexity
Vendor: Honeywell
Equipment: Experion Process Knowledge System (PKS) C200, C200E, C300 and ACE Controllers
Vulnerabilities: Unrestricted Upload of File with Dangerous Type, Relative Path Traversal, Improper Neutralization of Special Elements in Output Used by a Downstream Component
2.
Medtronic MiniMed MMT-500/MMT-503 Remote Controllers (Update A) (CISA) 1. EXECUTIVE SUMMARY
CVSS v3 5.3
Vendor: Medtronic
--------- Begin Update A Part 1 of 3 --------
Trends
Why the M&A Boom of 2021 Could Be a Data Security Bust (Infosecurity Magazine) Addressing data dangers as soon as possible should be a fundamental part of the M&A process
Data Governance Trends Report - CIO Wish List (Egnyte) See why ransomware is a top data security concern for large companies, and read opinions on how AI can solve challenges in security and compliance.
2021 Data Governance Trends: Predictions, pitfalls and technologies for the future of digital work (Egnyte) Remote work isn’t going away anytime soon, nor is the long list of apps and tools employees rely on to store data and collaborate on projects.
Global Ransomware Report - September 2021 (BlackFog) September had a slow start with the bulk of what we uncovered being reported in the latter half of the month. For the first time this year the total reported number was lower than that of 2020, however, given the trends this year it’s likely that many of the incidents have yet to be disclosed publicly. We tracked 24 incidents including the Department of Justice in South Africa, two major U.S. farming cooperatives, and multinational electronics giant JVCKenwood.
As battle against cybercrime continues during Cybersecurity Awareness Month, Check Point Research reports 40% increase in cyberattacks (Yahoo) Globally in 2021, 1 out of every 61 organizations is impacted by ransomware each week
Marketplace
Adaptive Shield Raises $30M for SaaS Security Posture Management (SecurityWeek) Israeli startup Adaptive Shield raises new funding to expand technology that automates the security and management of SaaS applications.
Cloud Security Company Orca Raises $550 Million in Extended Series C Round (SecurityWeek) Cloud security company Orca has raised $550 million in an extended Series C round, at a valuation of $1.8 billion.
Secure Data Collaboration Firm Duality Technologies Raises $30 Million (SecurityWeek) Privacy-focused data collaboration solutions provider Duality Technologies today announced that it has raised $30 million in Series B funding.
Adaptive Shield Receives $30M Series A Investment from Insight Partners to Help Businesses Gain Control of All their SaaS Investments (PR Newswire) Adaptive Shield, the leading SaaS Security Posture Management (SSPM) company, today announced a $30M series A round of financing led by New...
Adaptive Shield Receives $30M Series A Investment from Insight Partners to Help Businesses Gain Control of All their SaaS Investments (Adaptive Shield) This $30 million round A investment will enable Adaptive Shield to meet growing demand for Security Posture Management Solutions that eliminate misconfigurations across any SaaS platform including Office 365, Salesforce, Slack, GitHub and Workday
Accenture Acquires Advoco, Scaling Capabilities for Intelligent Asset Management Solutions (BusinessWire) Accenture has acquired Advoco, a leading software-as-a-service suite for enterprise asset management (EAM).
Temasek leads $550M Series C extension into Orca Security, which aims for further international foothold (TechCrunch) This is the third in a quick succession of funding that Orca Security received in the past 12 months.
Ramp hits $300 million valuation in Series A raise: sources (The Block) Ramp has closed a $30 million Series A fundraise led by British venture capital firm Balderton Capital, according to three people.
Exabeam Announces 2021 Partner of the Year Award Winners at Spotlight21 Annual User Conference (Exabeam) Google Cloud customers can now easily procure security solutions to drive consistent security outcomes across their SOC
Votiro Named Winner in the 2021 CyberSecurity Breakthrough Awards (BusinessWire) Votiro named Overall Enterprise Email Security Solution of the Year by the 2021 CyberSecurity Breakthrough Awards.
Peraton wins $2.69 billion data center and cloud contract from Homeland Security (Data Center Dynamics) Contract actually awarded to Perspecta, which merged with Peraton earlier this year
Palantir Stock Is Surging on a Big Army Contract Win (Barron's) Palantir stock is rising after hours because the company won a contract to supply data and analytics software to the Army.
KnowBe4 Makes Great Strides Towards Becoming a More Sustainable Organization (The Bakersfield Californian) Tampa Bay, FL, Oct. 05, 2021 (GLOBE NEWSWIRE) -- KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, today announced that it is making great
Open Systems Adds New C-Level Executives as Security Services and Managed Detection and Response (MDR) Adoption Grows (BusinessWire) Open Systems expanded its executive team with Michael Davis and Chris Raniere as the company’s Chief Architect and Chief Revenue Officer (CRO).
BitTitan Names Joseph Nguyen Director of Information Security (Yahoo Finance) BitTitan®, a global leader in migrations and managed services automation with a family of solutions including MigrationWiz®, Voleer® and Perspectium®, today announced Joseph Nguyen as the company’s first director of information security. In this role, Nguyen will oversee security operations across all BitTitan products and departments. He will spearhead additional security governance initiatives to monitor and enforce company-wide security policies and procedur
TrueFort Appoints Matthew Voss VP of Research and Development (BusinessWire) Matthew has more than 20 years of enterprise security and IT experience with Goldman Sachs, Dun & Bradstreet and Wellington Management Company.
Malwarebytes Lands Top Global Sales Leader, Amy Appleyard (PR Newswire) MalwarebytesTM, a global leader in real-time cyberprotection, announced the addition of Amy Appleyard as the new senior vice president of...
Mandiant Taps Security Vet Dee Dee Acquista To Lead Channels (CRN) Mandiant has brought in former Proofpoint, SentinelOne and Beyond Trust channel chief Dee Dee Acquista to deepen the company’s presence beyond the large enterprise.
Former Jacobs Exec Vernon Saunders Joins SAIC as SVP, National Intelligence - Executive Gov (Executive Gov) SAIC has named two-time Wash100 Award winner Vernon Saunders as the senior vice president of nationa
Horace Jones Named President of CyberPoint (PR Newswire) CyberPoint International announced today that Horace Jones, Jr. assumed the role of President of CyberPoint. Jones, with over 20 years of...
Lockton Financial Services adds new cyber leadership for Pacific region (ReinsuranceNe.ws) Lockton Financial Services (LFS), a division of the global re/insurance brokerage focused on the financial services industry, has announced the additions
Former Manhattan DA's Office Cybercrime Prosecutor Joins Cipriani & Werner's Prestigious Cyber Team (NBC15) Cybercrime and Identity theft are global problems that affect all organizations and individuals. As a veteran of the Manhattan District Attorney's Office Cybercrime & Identity Theft Bureau, Daniel Haier led many cutting-edge, award-winning investigations with national impact, and he is ready to help protect Cipriani & Werner's clients and guide them through the complex steps necessary to prevent and recover from data breach incidents.
Versa Networks Expands Executive Leadership Team to Continue Global Expansion and Meeting Accelerating Worldwide Demand for Versa SASE (BusinessWire) Versa Networks, the leader in Secure Access Service Edge (SASE), today announced it has named former Medallia and NetSuite financial executive Lalit K
Edge Microsegmentation Startup Byos Appoints New Chief Operating Officer and Director of Enterprise Sales (BusinessWire) Byos (www.byos.io), the startup bringing edge microsegmentation solutions to the market, announced today that Rob Valiton will become its new Chief Op
Products, Services, and Solutions
e92plus Partners with Accedian to Drive Network Performance and Security Optimisation (Yahoo Finance) e92plus, the home of cybersecurity for the UK channel, today announced a partnership with Accedian, a leader in performance analytics, cybersecurity threat detection and end-user experience solutions, to enhance its current offerings to include security and service assurance offerings from Accedian.
WatchGuard | WatchGuard’s New Mid-Range Firewalls Deliver the High Performance for Organisations to Protect Against Encrypted Malware (RealWire) New Firebox M Series combines security, performance, flexibility and visibility for the WatchGuard Unified Security Platform™
5 October 2021 – WatchGuard® Technologies has announced the release of its new Firebox M290, M390, M590, and M690 unified threat management appliances for small and midsize businesses
CrowdStrike and UiPath Partner to Secure Robot-led Processes via Integration (Crowdstrike) CrowdStrike has partnered with UiPath to deliver a new level of security protection and visibility with the UiPath Robotic Process Automation (RPA) platform and the CrowdStrike Falcon® platform.
Fletch Officially Launches Out of Beta, With Their First Two Security Offerings Available for Free (Newswire) The cybersecurity answer engine will quickly provide critical answers to help organizations get and stay ahead of cybercriminals with no data plumbing required
Qualys Offers Free Ransomware Risk Assessment & Remediation Service (PR Newswire) Qualys, Inc. (NASDAQ: QLYS), a pioneer and leading provider of disruptive cloud-based IT, security and compliance solutions, today announced...
Assess Your Risk From Ransomware Attacks, Powered by Qualys Research (Qualys Security Blog) Ransomware attacks are among the most significant cyber threats facing businesses today. Recent warnings about Conti ransomware, issued by a joint cybersecurity advisory from the U.S.
Egnyte Empowers Companies of all Sizes to Fight Back Against Ransomwar (PRWeb) Today, Egnyte, a leader in cloud content security and governance, announced new offerings designed to enable companies of all sizes to defend agains
Mandiant Accelerates Operational Use of its Leading Threat Intelligence with First-of-their-kind SaaS Offerings (BusinessWire) Leveraging Mandiant's threat intelligence, new SaaS-based solutions allow organizations to detect the presence of active IOCs to test their readiness.
Lookout Is the First Mobile Security Solution on the Inaugural StateRAMP Authorized Vendor List (1011 Now) Lookout, Inc., the leader in endpoint-to-cloud security, today announced that Lookout Mobile Endpoint Security has been named the first mobile security solution on the inaugural StateRAMP Authorized Vendor List. Lookout Mobile Endpoint Security, a component of the Lookout Security Platform, protects iOS, Android and ChromeOS endpoints from phishing, app, device and network threats. Lookout is the leading supplier of mobile endpoint security to the public sector.
Keeper Security Celebrates Cybersecurity Awareness Month by Rolling Out A New Cyberthreat Resource Center (WOWT) As ransomware and other password related data breaches become more pervasive, education on risk mitigation remains critical to protect against future attacks
MonetaGo Teams With IBM to Bring Secure Financing to ASEAN (BusinessWire) Following the recent news surrounding the launch of the global Secure Financing solution, MonetaGo announced that the company has teamed with IBM and
ExtraHop Introduces New Proactive Threat Hunting and Network Assurance Services (BusinessWire) ExtraHop, the leader in cloud-native network detection and response (NDR), today announced expanded Reveal(x) Advisor services that provide threat det
Palo Alto Networks adds new features to Prisma SASE for hybrid work setup (Back End News) Palo Alto Networks introduced Prisma SASE, bringing together Prisma Access and Prisma SD-WAN into an integrated cloud-delivered service with network security and next-generation SD-WAN. It was desi…
Ingram Micro Australia adds Sophos cybersecurity solutions to portfolio (Channel Life) The combination of Sophos’ solutions and our aggregated security services and solutions – spanning consulting to delivery – will meet the needs and opportunities in the market.
Forcepoint adds new tiers in partner program refresh (ARN) Forcepoint has added new top tiers to its global partner program aimed at rewarding those “delivering the highest levels of technical skills and services”.
Swimlane Launches First Cloud-Based, Low-Code Security Automation Platform (BusinessWire) Unlocking automation beyond the SOC by delivering a platform that serves as the system of record for the entire security organization
SnykCon 2021 Gathers Thousands of Developers to Advance the Global DevSecOps Movement (PR Newswire) Snyk, the leader in developer security, today announced at its flagship event, SnykCon 2021, new product innovations and partnerships as well...
Cynerio Launches First IoT Device Security Solution for Small and Rura (PRWeb) Cynerio, the leading provider of healthcare IoT cybersecurity, today announced the launch of Cynerio Now!, the first healthcare industry specific solution to hel
Arcules Expands Access Control Support Through Integration with Keep By Feenics Access Control Platform (PRWeb) Arcules, the leading provider of unified, intelligent security-as-a-service solutions, today announced its strategic integration with Feenics, a cloud-base
Arcules Achieves SOC 2 Compliance as Part of its Continual Focus on Cybersecurity (PRWeb) Arcules, the leading provider of unified, intelligent security-as-a-service solutions, today announced that it has completed its System and Organization
Best Ransomware Removal and Recovery Services (eSecurityPlanet) An arrangement with a ransomware recovery service could be the thing that keeps you in business after a ransomware attack.
Technologies, Techniques, and Standards
ICS Security Experts Share Tales From the Trenches - Part 2 (SecurityWeek) Experts share interesting stories from the field of industrial control systems (ICS) cybersecurity, which can also provide useful information and insight for practitioners
How to Recover From a Ransomware Attack (eSecurityPlanet) Even if you're not properly prepared, there are still things you can do to recover from a ransomware attack.
Be Cyber Smart: How to Own Your Role in Protecting Cyberspace (PerimeterX) In today’s digital era, digital businesses must be cyber smart. Get top tips for keeping your company and your customers safe online.
7 Ways to Detect Fraud on Black Friday & Cyber Monday (SEON) As the summer ends merchants worldwide start preparing for the biggest event of online commerce - Black Friday and Cyber Monday.
Legislation, Policy, and Regulation
NATO Must 'Step Up' For Aspirant Members, Not Bow To Russia: Stoltenberg (Breaking Defense) “The whole idea that you know, it's a provocation to Russia that small neighbors join NATO is absolutely wrong. That's the provocation — that anyone is saying that,” Stoltenberg said.
NSO backs international spyware regulations (i24NEWS) Scandal-hit NSO takes allegations 'extremely seriously'
Corbella: If Trudeau allows Huawei into Canada's 5G network all 38 million Canadians could be held hostage (Calgary Herald) If Huawei is allowed to supply Canada's 5G network, our country and our allies will be at risk.
National Cyber Adviser Lays Out Goals for Upcoming 30 Nation Meeting on Ransomware (Nextgov.com) Top cyber officials highlighted the importance of defensive measures as lawmakers move on related initiatives, including a bill to identify systemically important critical infrastructure.
NSC’s Neuberger: National sense of urgency is spurring more cybersecurity action (The Record by Recorded Future) The Biden administration is trying to take advantage of the nation’s newfound focus on cybersecurity in the wake of epic supply chain hacks and ransomware incidents to make substantive changes in the nation’s cyber defenses.
Biden's top cybersecurity official admits Russia isn't backing off (Washington Post) Russia hasn’t significantly changed its behavior in cyberspace since President Biden’s warning to Russian President Vladimir Putin, Cybersecurity and Infrastructure Security Agency Director Jen Easterly said at a Washington Post Live event yesterday.
Top US Cyber Officials Say Ransomware Is Here to Stay (GovInfoSecurity) Some of the highest-ranking cybersecurity officials in the U.S. government discussed the pervasive threat of ransomware on Tuesday, likening it to a clear issue of
NSA director expects to be facing ransomware attacks 'every single day' in five years (TheHill) National Security Agency (NSA) Director Paul Nakasone predicted Tuesday that the rate of ransomware attacks will not slow down in the next five years, and said efforts to counter those threats must remain constant a
Nakasone Now Sees Ransomware, Influence Ops As 'National Security' Threats (Breaking Defense) "We aim to convey that, 'Hello, we are from the government, and we're here to help' is not a scary idea," the general joked, alluding to a famous quote by former President Reagan.
DoD official credits private sector with helping more quickly mitigate SolarWinds intrusion (C4ISRNet) A tip from a private actor allowed the NSA and Cyber Command to end adversary access to networks.
Mandia Alerted NSA on FireEye's SolarWinds Breach (Dark Reading) "National security" concerns led former CEO Kevin Mandia to call the NSA when FireEye discovered its breach in late 2020.
Mandiant CEO Sees 'Coordinated National, Global Response' As Next Advance In Cybersecurity (Breaking Defense) "Academics will sit back and say, 'Well, if you just did that and that and that, you would have avoided it.' But if there's no way to impose risk or consequences for [threat actors] doing it, your day is coming," Mandia said.
NSA's Rob Joyce Explains 'Sand and Friction' Security Strategy (SecurityWeek) NSA cybersecurity director Rob Joyce offers a candid assessment of the nation-state threat landscape and argues that adding “sand and friction” to adversary operations is a winning strategy
Senators Debut Sprawling Bill to Overhaul FISMA, Boost CISA Authority (MeriTalk) The Democratic and Republican leaders of the Senate Homeland Security and Governmental Affairs Committee have unveiled their long-awaited legislation to update the 2014 Federal Information Security Modernization Act that provides cybersecurity marching orders to Federal civilian agencies.
Bipartisan Senate Bill Seeks to Update FISMA (Executive Gov) Two senators have introduced a bipartisan bill that would reform a law governing information technol
FISMA reform bill would require CISA to assign advisers to work with agency CIOs (FedScoop) The Cybersecurity and Infrastructure Security Agency would be required to appoint cybersecurity advisers from its department to work with each federal agency CIO if draft FISMA reform legislation passes into law in its current form. Each adviser would be responsible for providing ongoing assistance and advice to their assigned CIO and act as the designated […]
Facebook Whistleblower’s Testimony Builds Momentum for Tougher Tech Laws (Wall Street Journal) Frances Haugen detailed to a Senate panel the internal documents she gathered showing a range of negative impacts from the company’s products—revelations that senators said would build momentum for tougher regulations on Big Tech.
Facebook harms children and weakens democracy: ex-employee (BBC News) Mark Zuckerberg denies claims, heard in the US Senate, that Facebook puts profits before people.
Zuckerberg Responds to Claims That Facebook Prioritizes Profit as ‘Just Not True’ (Bloomberg) CEO says recent press coverage ‘misrepresents’ company. Comments come hours after Facebook whistle-blower testifies.
Whistle-Blower Decries Facebook’s ‘Free Pass’ for Bad Behavior (Bloomberg) Facebook puts profits over safety, insider tells lawmakers. Internal documents show company knew about harms, didn’t act.
The Facebook whistleblower says its algorithms are dangerous. Here’s why. (MIT Technology Review) Frances Haugen’s testimony at the Senate hearing today raised serious questions about how Facebook’s algorithms work—and echoes many findings from our previous investigation.
Full authority for Army’s only active-duty information operations unit transfers to Army Cyber Command (DVIDS) Full authority for the Army's only active-duty information operations (IO) unit -- the 1st IO Command (Land) -- was reassigned to U.S. Army Cyber Command (ARCYBER) in a transition of authority ceremony at Fort Belvoir, Va., Oct. 1, 2021.
California Legislature Passes New Key Privacy Laws, Expected to Be Signed Next Week (JD Supra) California lawmakers wrapped up this year’s legislative session, passing roughly 900 bills this year. Among those were only a few privacy initiatives,...
Upcoming summit: Safeguarding Indiana against cyber threats (News at IU) The summit will bring together cybersecurity researchers and leaders to discuss collaborative ways to address cyber threats in the state and beyond.
Litigation, Investigation, and Law Enforcement
The Big Picture: The government is failing to follow its own rules (Computing) Computing is the leading information resource for UK technology decision makers, providing the latest market news and hard-hitting opinion.
Whistleblower's SEC complaint: Facebook knew platform was used to "promote human trafficking and domestic servitude" (CBS News) For the first time, read the whistleblower's complaints to the SEC that led to 60 Minutes' report on Facebook.
Why Putin’s Money Eludes Offshore Investigators (Bloomberg) The Pandora Papers’ findings suggest that Russian kleptocrats are relying less on the West as a financial haven.
Secret Money, Swanky Real Estate and a Monte Carlo Mystery (Washington Post) Documents tie woman allegedly in secret, years-long relationship with Putin to luxury Monaco apartment
Russia to seek hefty Facebook fine even after content was deleted (Reuters) Russia said on Tuesday that Facebook had complied with its demands to delete some banned content, but that Moscow would still seek to fine the social media group 5-10% of its annual turnover in Russia due to repeated legal violations.
What Facebook’s six-hour outage has shown us – and the Federal Trade Commission (FTC) (teiss) A lawsuit accusing Facebook of monopolizing the social media space, and a former product manager accusing FB of socially irresponsible practices, seems too much.
Huawei hopes US decision on Meng Wanzhou heralds new era in relations (the Guardian) US justice department suspended fraud charges against chief financial officer of Chinese telecoms giant
Fiona Hill, former Russia advisor to Trump and a staunch critic, dismisses the idea that Putin has compromising material on him (Yahoo) Fiona Hill told the Daily Beast that Putin was almost certainly playing on Trump's weaknesses, but using public rather than secret information.
Identity Theft Resource Center to Share Latest Data Breach Analysis With U.S. Senate Commerce Committee; Number of Data Breaches in 2021 Surpasses all of 2020 (WFMZ) Today, the Identity Theft Resource Center® (ITRC), a nationally recognized nonprofit organization established to support victims of identity crime, released its U.S. data
Northwestern patient sues Elekta over data breach that hit 170 health systems (Becker's Hospital Review) A former patient of Chicago-based Northwestern Memorial HealthCare filed a class action lawsuit against Elekta over an April data breach that affected 170 health systems, according to court documents obtained by Becker's.
Post Office Ltd breaches GDPR rules responding to Haworth consultation (Keighley News) Post Office Ltd has admitted to a GDPR data breach involving people who objected the plans to close Haworth Post Office.