Dateline Moscow, Kyiv: Hacktivists, privateers, and patriotic bandits.
Ukraine at D+167: Strike, regrouping, and nuisance-level cyber ops. (CyberWire) Russia continues its efforts to regroup before Ukraine's incipient counteroffensive can gain momentum. Ukraine shows a long-range strike capability, and nuisance-level hacking continues in the hybrid war.
Russia-Ukraine war: List of key events, day 168 (Al Jazeera) As the Russia-Ukraine war enters its 168th day, we take a look at the main developments.
Russia-Ukraine war: Ukrainian special forces 'carried out daring Crimea airbase attack' behind enemy lines (The Telegraph) Ukrainian special forces were behind the daring attack on a Russian airbase 125 miles into occupied Crimea, according to a Kyiv official.
Large explosions rock Russian military air base in Crimea (AP NEWS) Powerful explosions rocked a Russian air base in Crimea and sent towering clouds of smoke over the landscape Tuesday in what may mark an escalation of the war in Ukraine. At least one person was killed and several others were wounded, authorities said.
Explosion Rocks Russian Air Base in Crimea (New York Times) An official said the blast on the Russian-occupied peninsula was the result of a Ukrainian strike. Moscow said only that munitions had exploded. In Washington, President Biden signed a measure giving U.S. approval to Sweden and Finland’s bid to join NATO.
‘Ukrainian missile strikes’ hit Russian air base in Crimea (The Telegraph) One person killed in Novofedorivka, about 125 miles behind the front line, as shocked Russian holidaymakers look on in horror
Russian airbase on western coast of Crimea damaged in explosions (the Guardian) One person killed in Novofedorivka, 110 miles from frontline, after ‘aviation munitions detonated’ in storage area
Vladimir Putin will be rattled by explosions in Crimea (The Telegraph) If blasts are proven to be a Ukrainian attack, the Kremlin will constitute this as an assault on Russia itself
Live Ukraine war: Russia launches Iranian satellite 'to spy on Ukraine' (Telegraph) An Iranian satellite launched by Russia blasted off from Kazakhstan early this morning and went into orbit amid fears Moscow might use it to improve its surveillance of military targets in Ukraine.
Meet DUMPS Forum: A pro-Ukraine, anti-Russia cybercriminal forum | Digital Shadows (Digital Shadows) A new, pro-Ukrainian and anti-Russian and anti-Belarus forum has since been identified, allowing users to get involved in the fight. Check out the details for “DUMPS Forum” in our blog below.
Suspected Russian cyber attack on British soil as firm subjected to ‘daily’ hacks (The Telegraph) GCHQ and police alerted as London-based Currency.com targeted ‘every day for the past three months’ after opposing Ukraine war
Finnish Parliament Website Targeted In Cyber Attack (Barron's) Finland's parliament said Tuesday its website came under cyber attack, as the Nordic country applies for NATO membership following Moscow's invasion of Ukraine.
Finnish parliament website targeted in cyber attack (24 News HD) Finland's parliament said Tuesday its website came under cyber attack, as the Nordic country applies for NATO membership following Moscow's invasion of
NBI launches probe into attack on Finnish Parliament site (Yle) The National Bureau of Investigation (NBI) has launched a probe into the denial of service attack, which allegedly originated from Russia.
Russian hacker warns cyberwarfare will turn deadly (Newsweek) The founder of a Russian hacker group said he aims to make countries that support Ukraine "answer for each of our soldiers."
Ukraine's ex-Defense Minister Mykhailo Yezhel named treason suspect (Newsweek) Yezhel signed off a treaty which authorities said "facilitated" Russia's annexation of Crimea, officials said.
Steven Seagal appears in Ukraine, serving as a Russian spokesperson (Military Times) Steven Seagal visits Ukraine amid prison bombing controversy.
Biden authorizes largest yet weapons package for Ukraine, bringing U.S. commitment to $9.8 billion (CNBC) The Biden administration announced a $1 billion security assistance package for Ukraine on Monday.
The War in Ukraine Is Emancipating Central Europe (Foreign Policy) Countries in the region are finally becoming full members of the EU club thanks to the war.
Germany’s Ukraine Problem (Foreign Affairs) Europe’s Largest Country Needs Time to Adjust to a Dangerous New World
Kyiv urges travel ban on Russians as Moscow steps up assault in eastern Ukraine (Reuters) Ukraine's president called on the West to impose a blanket travel ban on Russians, an idea that has found support among some European states but angered Moscow, which pressed on with a fierce military offensive in eastern Ukraine.
United States Obtains Warrant for Seizure of Airplane of Sanctioned Russian Oligarch Andrei Skoch, Worth Over $90 Million (US Department of Justice) The United States of America has been authorized to seize an Airbus A319-100 (the Airbus) owned and controlled by sanctioned Russian oligarch Andrei Skoch, pursuant to a seizure warrant from the U.S. District Court for the Southern District of New York, which found that the airplane is subject to seizure and forfeiture based on probable cause of violation of the federal anti-money laundering laws.
United States Obtains Warrant For Seizure Of Airplane Of Sanctioned Russian Oligarch Andrei Skoch Worth Over $90 Million (US Attorney for the Southern District of New York) Damian Williams, the United States Attorney for the Southern District of New York, Lisa O. Monaco, the Deputy Attorney General of the United States, Michael J. Driscoll, the Assistant Director-in-Charge of the New York Office of the Federal Bureau of Investigation (“FBI”), and Matthew S. Axelrod, Assistant Secretary of Commerce for Export Enforcement, announced today that the United States of America has been authorized to seize an Airbus A319-100 (the “Airbus”) owned and controlled by sanctioned Russian oligarch Andrei Skoch, pursuant to a seizure warrant from the U.S. District Court for the Southern District of New York, which found that the airplane is subject to seizure and forfeiture based on probable cause of violation of the federal anti-money laundering laws.
Attacks, Threats, and Vulnerabilities
Multiple attackers increase pressure on victims, complicate incident response (Sophos News) Sophos’ latest Active Adversary report explores the issue of organizations being hit multiple times by attackers
Researchers uncover sophisticated global Chinese hacking operation (CyberScoop) The Chinese group used six backdoors against industrial plants, research institutes and government agencies, according to Kaspersky.
ÆPIC Leak: Architectural Bug in Intel CPUs Exposes Protected Data (SecurityWeek) Researchers disclose the details of ÆPIC Leak, an architectural bug in Intel CPUs that exposes data protected by SGX.
AMD Processors Expose Sensitive Data to New 'SQUIP' Attack (SecurityWeek) Researchers disclose the details of SQUIP, a side-channel attack targeting the scheduler queues of AMD CPUs.
Abusing Google Sites and Microsoft Azure for Crypto Phishing (Netskope) Summary Throughout 2022, Netskope Threat Labs found that attackers have been creating phishing pages in Google Sites and Microsoft Azure Web App to steal
Life After Death—SmokeLoader Continues to Haunt Using Old Vulnerabilities (Fortinet Blog) FortiGuard Labs examines SmokeLoader, a malware variant that exploits CVE-2017-0199 and CVE-2017-11882 in its deployment chain. Read our analysis blog to learn about the latest sample.…
Malicious code exploiting recent VMware bug publicly available, company warns (The Record by Recorded Future) VMware updated an advisory on Tuesday warning that malicious code exploiting CVE-2022-31656 and CVE-2022-31659 is now publicly available.
NHS 111 System Experiencing Disruption Due to Cyber Attack, System Outage May Impact Services for Several Days (CPO Magazine) A cyber attack has caused what was described as a “major” system outage at the NHS 111 non-emergency medical help line, with hosting firm Advanced saying that there may be disruptions to patient scheduling services for at least several days.
Cyera Finds 'Ghost Data' Expands Threat Surface Making Businesses More Vulnerable to Ransomware Attacks, Compliance Violations (PR Newswire) Cyera, the cloud data security company, is alerting customers to the dangers of ghost data across cloud environments. Cloud data sprawl has led...
Dragos: 125 ransomware attacks on industrial systems in Q2 after Conti shutdown (The Record by Recorded Future) Ransomware attacks on industrial systems continued unabated in Q2 according to Dragos, which counted 125 incidents in the quarter.
Ransomware gangs view journalists as another tool for advancing their goals (Washington Post) In June, security journalists found themselves in a difficult position. A ransomware gang, LockBit, claimed it hacked one of the biggest cyber companies, Mandiant, and threatened to release stolen data. Mandiant answered that it saw no evidence of a breach.
The Boy Who Cried Ransomware: The Trustworthiness of Ransomware Groups | Digital Shadows (Digital Shadows) In our latest blog, learn how our Photon Research Team tackles the latest threats from Russian ransomware groups in the form of untrustworthiness.
Vulnerability Summary for the Week of August 1, 2022 (CISA) The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. NVD is sponsored by CISA. In some cases, the vulnerabilities in the bulletin may not yet have assigned CVSS scores. Please visit NVD for updated vulnerability entries, which include CVSS scores once they are available.
Security Patches, Mitigations, and Software Updates
Already Exploited Zero-Day Headlines Microsoft Patch Tuesday (SecurityWeek) Microsoft on Tuesday released a critical-severity bulletin to warn of a newly discovered zero-day attack exploiting a remote code execution vulnerability in its flagship Windows operating system.
Microsoft August 2022 Patch Tuesday fixes exploited zero-day, 121 flaws (BleepingComputer) Today is Microsoft's August 2022 Patch Tuesday, and with it comes fixes for the actively exploited 'DogWalk' zero-day vulnerability and a total of 121 flaws.
IBM Patches High-Severity Vulnerabilities in Cloud, Voice, Security Products (SecurityWeek) IBM has released patches for multiple high-severity vulnerabilities in Netezza for Cloud Pak for Data, Voice Gateway, and SiteProtector system.
Adobe Patch Tuesday: Code Execution Flaws in Acrobat, Reader (SecurityWeek) Adobe has released patches for at least 25 documented security vulnerabilities that expose Windows and macOS users to malicious hacker attacks.
ICS Patch Tuesday: Siemens, Schneider Electric Fix Only 11 Vulnerabilities (SecurityWeek) Siemens and Schneider Electric have only released 8 advisories this Patch Tuesday — they describe 11 vulnerabilities, some of which will never get patched.
VMSA-2022-0022 (VMware) VMware has released security updates to address multiple vulnerabilities in vRealize Operations. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
Emerson OpenBSI (CISA) 1. EXECUTIVE SUMMARY CVSS v3 9.6 ATTENTION: Exploitable remotely/low attack complexity Vendor: Emerson Equipment: OpenBSI Vulnerabilities: Use of Broken or Risky Cryptographic Algorithm, Use of Hard-coded Cryptographic Key CISA is aware of a public report, “OT:ICEFALL,” that details vulnerabilities found in multiple operational technology (OT) vendors.
Emerson ControlWave (CISA) 1. EXECUTIVE SUMMARY CVSS v3 9.1 ATTENTION: Exploitable remotely/low attack complexity Vendor: Emerson Equipment: ControlWave Vulnerabilities: Insufficient Verification of Data Authenticity CISA is aware of a public report, known as “OT:ICEFALL,” that details vulnerabilities found in multiple operational technology (OT) vendors.
Mitsubishi Electric GT SoftGOT2000 (CISA) 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Mitsubishi Electric Equipment: GT SoftGOT2000 Vulnerabilities: Infinite Loop, OS Command Injection 2. RISK EVALUATION Successful exploitation of these vulnerabilities could create a denial-of-service condition or enable arbitrary code execution.
Trends
1,980 Data Breaches Were Reported in 2022 H1 and 60% Were the Result of Hacking (Flashpoint) Today, Flashpoint releases the State of Data Breach Intelligence: 2022 Midyear Edition, which covers publicly disclosed compromise events first reported between January 1, 2022 and June 30, 2022.
New Research Finds 73% of Organizations Have Significantly Increased Their Software Supply Chain Security Efforts as a Result of Log4Shell, SolarWinds, and Kaseya (Synopsys) Study conducted by Enterprise Strategy Group highlights the prevalence of software supply chain risks in cloud-native applications
Titania | New Report Reveals Exploitable Network Misconfigurations Cost Organizations 9% of Total Annual Revenue (RealWire) Titania Research Suggests Disconnect Between Network Security Perception and Reality; Firewalls Prioritized Over Switches and Routers
Q2 2022 Threat Landscape: Ransomware Returns, Healthcare Hit (Kroll) In Q2 2022, Kroll observed a 90% increase in the number of healthcare organizations targeted in comparison with Q1 2022.Find out more in Kroll’s Threat Landscape report.
Marketplace
Pegasus Spyware Maker NSO Has 22 Clients in the European Union. And It's Not Alone (Haaretz) Members of the European Parliament Committee of Inquiry came to Israel to investigate Pegasus, and were surprised to discover contracts with their countries of origin. In Europe's bustling spyware market, these are NSO’s biggest competitors
Black Dragon Capital Launches International Cybersecurity Coalition (Hstoday) The team includes, among others, General (Ret.) Keith B. Alexander, who formerly served as Director of the National Security Agency (NSA).
Privya Emerges From Stealth With Data Privacy Code Scanning Platform (SecurityWeek) Israeli startup Privya raises $6 million in seed funding for its data privacy code scanning platform.
James Foster on Taking ZeroFox Public in Hard Economic Times (Bank Info Security) James Foster has been swimming against the current for months, taking ZeroFox public by merging with a special purpose acquisition company despite the worsening
QinetiQ's big-picture thinking with Avantus in the fold (Washington Technology) The British defense tech maker explains to "Lombard Street" (London's Wall Street equivalent) why they see this $590 million transaction as making sense for the U.S. expansion strategy.
John Watters on Why Google and Mandiant Are Better Together (GovInfo Security) Watters Can't Wait to Combine Google Analytics With Mandiant Intelligence Engine
BlackBerry Cyber Insurance Study Reveals Businesses Hope for Greater Assistance in Paying Ransomware Demands (PR Newswire) BlackBerry Limited (NYSE: BB) (TSX: BB) and Corvus Insurance today released the BlackBerry Cyber Insurance Coverage study, showing businesses...
Cyber insurance getting harder to obtain (ComputerWeekly.com) Organisations looking to shore up their security postures face more and more barriers to obtaining cyber insurance.
Number of Firms Unable to Access Cyber-Insurance Set to Double (Infosecurity Magazine) Even those with policies may see coverage greatly reduced
The number of organizations unable to afford adequate cyber insurance cover is set to double in 2023 (Continuity Central) The number of organizations that will be either unable to afford cyber insurance, be declined cover, or experience significant coverage limitations is set to double in 2023, warns Huntsman Security.
GDIT Wins $267M Army National Guard Cyber Contract (WashingtonExec) General Dynamics Information Technology has won the $267 million Guard Enterprise Cyber Operations Support contract to support the Army National Guard.
JupiterOne Appoints Former Splunk CEO to Board of Directors (PR Newswire) JupiterOne, the industry's leading provider of cyber asset attack surface management (CAASM) technology, today announced the appointment of...
Proofpoint names new VP for Southeast Asia and Korea (Human Resources Director) His arrival comes as Proofpoint aims to be a leader in offering people-centric cyber security solutions
Cymulate Adds Top Females to its Executive Team (PR Newswire) Cymulate, the market leader in Extended Security Posture Management (XSPM), today announced two C-level executive appointments to bolster the...
Products, Services, and Solutions
Cybrary Unveils Next Generation Interactive, Hands-On Training Experience to Upskill Cybersecurity Professionals (PR Newswire) Black Hat 2022 -- Cybrary, the leading training platform for cybersecurity professionals, today announced a major evolution of its offerings...
cloudIT Announces Partnership with Versa Networks to Deliver Industry-Leading SASE to Growing Client Base (EIN News) cloudIT, LLC, recognized year after year as one of the highest performing and innovative Managed Service Providers in the U.S.,
IGEL Introduces IGEL Disaster Recovery Program for Rapid Response to Ransomware and other Cyber-Impacted Stoppages (IGEL) IGEL, provider of the managed endpoint operating system for secure access to any digital workspace, today announced the introduction of the IGEL Disaster Recovery Program. Through this new program, organizations can quickly regain control of…
Nozomi Networks Adds 9 New Partners as it Expands its MSSP Program to Include Regional Service Providers (Nozomi Networks) Nozomi Networks Inc., the leader in OT & IoT security, today announced its MSSP Partner Program has added 9 new members.
Lacework Strengthens Threat Detection To Uncover More Malicious Activity and Speed Investigation at Scale (PR Newswire) Lacework®, the data-driven cloud security company, today announced new capabilities that enable organizations to uncover more critical threats...
SentinelOne Partners with Armis for Unparalleled Asset Intelligence (Armis) SentinelOne, an autonomous cybersecurity platform company, today announced a new integration with Armis.
Darktrace and HackerOne Partner to Add AI to Attack Resistance (PR Newswire) Black Hat USA 2022 – Darktrace, a global leader in cyber security artificial intelligence (AI), and HackerOne, the leader in Attack Resistance...
SecurityScorecard Helps CISOs See, Resolve and Communicate Cyber… (SecurityScorecard) SecurityScorecard’s Professional Services team can help any customer manage cybersecurity risk in concert with the industry’s largest and most comprehensive global, cyber risk data set, setting the industry standard for how cyber risk is quantified, measured and reduced. SecurityScorecard’s suite…
Traceable AI Addresses API-based Data Security and Fraud Attacks in Latest Platform Update (PR Newswire) Traceable AI, the industry's leading API security and observability company, today announced enhanced capabilities to address more specific...
Xcitium Launches ZeroThreat to Prevent Increasing Ransomware Attacks (Yahoo) The patented technology is the only solution on the market that entirely eliminates damage by isolating threats
Halo Security Launches Full Attack Surface Management Platform Led By Veterans of Intel and McAfee (Business Wire) TrustedSite, a leading provider of vulnerability scanning and certification, officially launched Halo Security at Black Hat USA. The company’s attack
ESET Celebrates Back to School with Cybersecurity Discounts (Yahoo) As families across the country prepare for the 2022-2023 school year, ESET has announced a new discount for students on its world-class digital security solutions – in effect now through September 15. To ensure that students and their parents have the tools needed to keep their technology safe, ESET is offering 30% off its consumer cybersecurity solutions for children in elementary, middle and high school. College students can receive 50% off these best-in-class solutions by using their ID.me lo
Nucleus Security Achieves FedRAMP in Process While Accelerating Federal Adoption (Yahoo) Adoption of NucleusGov accelerates within the federal government with FedRAMP in-process status achieved.
Microsoft, NSW Govt expand partnership to bolster cybersecurity, cloud (CRN Australia) Touts key government wins with channel partners.
Superloop launches cybersecurity platform for Australian schools (CRN Australia) “CyberEdge” helps optimise, secure and manage networks.
Cybereason Launches Industry’s First MDR Mobile App, Putting the Power of the SOC at Defenders’ Fingertips (Cybereason) Cybereason, the XDR company, today launched the Cybereason Managed Detection and Response (MDR) Mobile App that allows Defenders the power of a security operations center (SOC) at their fingertips. With the Cybereason MDR Mobile App, Defenders can further reduce the mean-time-to remediation by suspending an attack’s lateral movement directly from their mobile device.
Zerto Joins AWS ISV Workload Migration Partner Program to Accelerate Adoption of its Cloud Data Management and Protection Solutions (Business Wire) Zerto, a Hewlett Packard Enterprise company, today announced it joined the Amazon Web Services (AWS) ISV Workload Migration Partner Program, allowing
DNSFilter Provides a Better Secure Web Gateway with Guardian (Business Wire) AI-Powered DNS Layer Security Leader Acquires Firewall + VPN Technology; Disrupts SWG Market
Code42 Incydr Restricts Insider Access and Stops Data Exfiltration of PII, Regulated and Sensitive Data with Nullafi Partnership (Business Wire) Code42 Software, Inc., the Insider Risk Management (IRM) leader, today announced that it is working with Nullafi, a leader in real-time sensitive data
Verizon Business selected to transform Astellas Pharma’s global network infrastructure (Verizon) Japan's Astellas Pharma, one of the largest healthcare companies in the world, is working with Verizon Business to transform its entire global network.
New Bishop Fox Emulation Uses Zero Trust Segmentation to Stop Ransomware Attacks in Less Than 10 Minutes (GlobeNewswire News Room) Illumio Core stopped attacks from spreading across hybrid IT 4 times faster than detection and response alone...
Deepfence ThreatMapper 1.4 Unveils Open Source Threat Graph to Visualize Cloud Native Threat Landscape (Business Wire) Deepfence, a pioneer in the emerging security observability and protection space, today announced the 1.4 release of its open source project ThreatMap
Tidal Cyber Launches Threat-Informed Defense Platform (Tidal Cyber) August 10, 2022- Tidal Cyber today announced general availability of the Tidal Community Edition threat-informed defense platform.
New Syxsense Zero Trust Delivers Industry’s First End-To-End Solution for Zero Trust Network Access (Business Wire) Black Hat USA – Syxsense, a global leader in Unified Security and Endpoint Management solutions, today announced Syxsense Zero Trust, a new module wit
Technologies, Techniques, and Standards
One year later, CISA Director Jen Easterly has big plans for her agency's private sector work (Axios) The Joint Cyber Defense Collaborative is marking its one year this week.
Cybersecurity and Technology Industry Leaders Launch Open-Source Project to Help Organizations Detect and Stop Cyberattacks Faster and More Effectively (Splunk) A coalition of cybersecurity and technology leaders announced an open-source effort to break down data silos that impede security teams. The Open Cybersecurity Schema Framework (OCSF) project, revealed today at Black Hat USA 2022, will help organizations detect, investigate and stop cyberattacks faster and more effectively.
Phishing: The contagion killing businesses and what you can do to prevent attacks (Fast Company) A multi-layered security approach with technical defenses combined with some cyber common sense can go a long way in protecting your organization from phishing scams and schemes.
Walking the Line: GitOps and Shift Left Security (Synopsys) As organizations adopt modern software development processes, developers are empowered to quickly develop and release their applications by deploying them to the cloud. Security teams are challenged keeping up with the growth and speed of continuous integration/continuous deployment (CI/CD) cycles and their dynamic components.
Human Threat Hunters Are Essential to Thwarting Zero-Day Attacks (Dark Reading) Machine-learning algorithms alone may miss signs of a successful attack on your organization.
Leaders convene in Wiesbaden to discuss cyber's role in defense (US Army) Cyber security professionals from a wide variety of backgrounds had the opportunity to network, discuss challenges, and work toward...
New Bishop Fox Emulation Uses Zero Trust Segmentation to Stop Ransomware Attacks in Less Than 10 Minutes (Illumio) Illumio Core stopped attacks from spreading across hybrid IT 4 times faster than detection and response alone
Design and Innovation
How an Armenian startup plans to use a new innovation to tackle the billion-dollar phishing industry (TechCrunch) So-called “Domain-based Message Authentication, Reporting, and Conformance,” or DMARC, is a technical standard that is designed to protect the senders and recipients of email from spam, spoofing and phishing. Before you fall asleep, it’s worth pointing out that this is a booming tech sector.
Microsoft Publishes Office Symbols to Improve Bug Hunting (SecurityWeek) Microsoft starts publishing Office symbols to help bug hunters find and report security issues in Office products.
Research and Development
NTT Research and NTT Corporation Engage in Breakthrough Research at Crypto 2022 (Business Wire) NTT Research announced members of its Cryptography & Information Security (CIS) Lab authored or co-authored 17 papers being delivered at Crypto 2022.
Legislation, Policy, and Regulation
Cyber expert: US-Israel homeland security cyber defense cooperation spiking (Jerusalem Post) There is an “increasingly pressing need for effective data protection in today’s uncertain world,” and Israel has a special role in meeting this need.
Why experts have hope in the federal privacy bill – even if it doesn't pass (The Record by Recorded Future) The American Data Privacy and Protection Act has bipartisan support that could transcend this year.
New York is first state to require CLE course in cybersecurity (ABA Journal) Lawyers in New York will have to take at least a one-hour cybersecurity course as part of their continuing legal education requirements beginning in July 2023.
Litigation, Investigation, and Law Enforcement
‘Greek Watergate’ wiretap scandal throws government into turmoil (Washington Post) Recent revelations that Greek intelligence tapped an opposition leader’s phone have left the embattled prime minister, Kyriakos Mitsotakis, struggling to fend off a mounting scandal ahead of next year’s elections.
EU Court Expands Definition of Sensitive Data, Prompting Legal Concerns for Companies (Wall Street Journal) The ruling will require companies to protect data that indirectly relates to sensitive information such as health or sexual orientation.
FBI, Justice Department Routinely Prosecute Misuse of Classified Documents (VOA) Previous investigations have targeted a former national security adviser and a former CIA director
Former Twitter employee is convicted in Saudi spy case (Reuters) A former Twitter Inc manager accused of spying for Saudi Arabia was convicted on Tuesday on six criminal counts, including acting as an agent for the country and trying to disguise a payment from an official tied to Saudi's royal family.