Dateline Moscow, Kyiv: A counteroffensive, accompanied by cyber skirmishing.
Ukraine at D+194: Ukraine's counteroffensive, Russian logistic shortfalls, cyber skirmishing. (CyberWire) Ukraine's counteroffensive continues, as Russia's logistical challenges increase. Russian disinformation takes an apparently inward-looking turn. Minor exchanges continue in and around cyberspace.
Russia-Ukraine war: List of key events, day 195 (AL Jazeera) As the Russia-Ukraine war enters its 195th day, we take a look at the main developments.
Prepare bomb shelters and supplies, residents in Crimea told as Ukrainian troops advance (The Telegraph) Kyiv continues counter-offensive to take back control of Russian-held territory in southern Ukraine with Moscow forced to pause referendum
Ukraine pushes back Russian troops in battle for Kherson as village is captured (The Telegraph) Photo posted to social media shows soldiers hoisting the national flag onto a telephone mast as Kyiv retakes Vysokopillya
Russia-Ukraine war: UN nuclear watchdog warns of ‘urgent need’ for action to prevent accident at Zaporizhzhia nuclear plant – live (the Guardian) IAEA says it is ‘gravely concerned’ about situation at nuclear facility in report on security at at Russian-occupied plant
Zelenskiy says Ukraine takes three settlements in south, east (Reuters) President Volodymyr Zelenskiy on Sunday marked progress in a counter-offensive Ukraine that began last week, thanking his forces for taking two settlements in the south, a third in the east, as well as additional territory in the east of the country.
Ukraine-Russia war: Ukrainian forces launch surprise attack in Kharkiv region (The Telegraph) Ukrainian forces have launched a surprise offensive southeast of Kharkiv, unconfirmed reports in Russian and Ukrainian sources have said.
Hackers honeytrap Russian troops into sharing location, base bombed: Report (Newsweek) Ukrainian hackers said they have tricked Russian troops using fake profiles of conventionally attractive women.
Russia-Ukraine war: Ukraine says it has pushed Russian forces back near Kramatorsk; last Zaporizhzhia reactor disconnected after Russian shelling – as it happened (the Guardian) Operator Energoatom says last transmission line cut because of a fire caused by shelling; EU and Ukraine sign aid deal
Ukraine Says Russian Shelling Disconnects Zaporizhzhia Nuclear Plant From Grid (Wall Street Journal) The news is a blow to Ukraine as it struggles to keep its economy afloat and provide energy to residents, while its military units try to roll back Moscow’s advances in the east and south.
Ukraine says nuclear plant offline after Russian shelling (AP NEWS) Europe’s largest nuclear plant was knocked off Ukraine's electricity grid Monday, its last transmission line disconnected because of a fire caused by shelling, the facility’s operator and the U.N.
Zaporizhzhia nuclear plant using emergency back-up to cool reactors after final power line cut (The Telegraph) Experts say risk of catastrophe is ‘accelerating’, with diesel generators soon to be last line of defence in preventing a meltdown
Russia-Ukraine war: residential areas in Mykolaiv hit, says governor; ‘morale and discipline’ problems in Russian forces, says UK – as it happened (the Guardian) Mykolaiv governor says Russian forces damaged homes and three hospitals in strike; UK intelligence says Russian troops hampered by problems
Russia tells UN inspectors rocket performed '180-degree' flip to land at Zaporizhzhia plant (The Telegraph) Kremlin expert insists the weapon made an about-turn in a bid to convince inspectors it had not been fired from Russian-held land
IAEA visit to Ukraine nuclear plant highlights risks (AP NEWS) Inspectors from the International Atomic Energy Agency are used to risky missions — from the radioactive aftermath of the Fukushima disaster in Japan to the politically charged Iranian nuclear program.
US: Russia to buy rockets, artillery shells from North Korea (AP NEWS) The Russian Ministry of Defense is in the process of purchasing millions of rockets and artillery shells from North Korea for its ongoing fight in Ukraine , according to a newly downgraded U.S.
Airpower after Ukraine: The future of air warfare (Atlantic Council) Airpower experts and practitioners examine interim lessons from the war in Ukraine and consider applications for twenty-first century air and space forces.
Wife leaked intel about her husband's military unit to Russia, who then bombed it, says Ukraine's secret service (Yahoo) The Ukrainian forces say they arrested the "traitor" for supplying Russia with secrets about her husband's unit fighting in eastern Ukraine.
Stalin’s labour camps better than Hitler's, says Russian TV personality (The Telegraph) Gulag's were meant to 're-educate' people and not erase a prisoner's personality like the German ones did, says Vladimir Soloviev
Ukraine countering Russian hack attacks effectively says state cybersecurity chief (Yahoo) Ukraine’s response to Russian cyber-attacks has become an integral part of fighting back against the full-scale Russian invasion, the National Coordination Center for Cybersecurity (NCCC) said in a Facebook post on Sept. 2.
Russia’s War on Ukraine Deepens International Cyber-Defense Cooperation (Wall Street Journal) U.S.-led efforts to help Ukraine blunt Russian cyberattacks have fueled interest in broader international cooperation.
SSU shuts down 2 bot farms that spread destructive content in Ukraine (Kyiv Post) The SSU Cyber Department has dismantled another 2 bot farms: in Kyiv region and in Odesa. The ‘bot army’ of almost 7,000 accounts was used to spread destructive content aiming to...
NATO Countries Hit With Unprecedented Cyber Attacks (GovTech) Montenegro, Estonia and new NATO applicant Finland are just three of the countries being hit hard by sophisticated cyber attacks. What’s happening and who’s next?
Minister: Aiding Ukraine in cyber development helps Estonia too (ERR) Estonia's aid to Ukraine in building up that country's e-governance and cyber-security capabilities works both ways, since Estonia can learn a lot from Ukraine's experience since the current conflict began, IT and Foreign Trade Minister Kristjan Järvan said, following the signing of a digital memorandum of cooperation between the two countries this week.
FBI and French officials arrive in Montenegro to investigate ransomware attack (The Record by Recorded Future) Government officials in Montenegro have attributed the wide-ranging ransomware attack to the criminal group operating the Cuba ransomware.
Hackers Create Traffic Jam in Moscow by Ordering Dozens of Taxis at Once Through App (Vice) Attackers attempted to disrupt ride-hailing app service on Thursday, the company confirmed.
‘My time has come’: Chechen warlord Ramzan Kadyrov says he wants to quit (The Telegraph) President of Chechnya, and one of Vladimir Putin’s biggest supporters, declares he doesn’t want to ‘outstay’ his welcome
History's bookends: Putin reversed many Gorbachev reforms (AP NEWS) One stood for freedom, openness, peace and closer ties with the outside world. The other is jailing critics, muzzling journalists, pushing his country deeper into isolation and waging Europe’s bloodiest conflict since World War II.
Gorbachev buried in Moscow in funeral snubbed by Putin (AP NEWS) Russians who came for a last look at former Soviet leader Mikhail Gorbachev on Saturday mourned both the man and his policies that gave them hope. President Vladimir Putin claimed to be too busy to attend.
Gorbachev funeral: Mourners gather in 'silent protest against Kremlin' but no sign of Putin (The Telegraph) Hungary's Viktor Orban was highest profile leader to be attending the ceremony, with Gorbachev denied a state funeral
How U.S. Grand Strategy Is Changed by Ukraine (Foreign Policy) Six months into Russia’s war, seven thinkers outline its impact on foreign policy.
How Liz Truss will channel the 'Iron Lady' in Ukraine (The Telegraph) Boris Johnson's unwavering support for Ukraine will be a hard act to follow, but it’s a challenge the new PM will relish
Time to Rethink America’s Nuclear Strategy (Foreign Affairs) How to learn the right lessons from the Cold War.
Growing Recorded Future in Ukraine (Recorded Future) Recorded Future immediately took a very strong stance regarding the Russian invasion of Ukraine. We have tried to support Ukraine in every way we can, with Recorded Future now being used across institutions of Ukraine in support of cyber defense.
UK forces crypto exchanges to report suspected sanction breaches (the Guardian) New rules in response to Russia’s invasion of Ukraine cover all notionally valuable digital assets
Is Russia’s Economy on the Brink? (Foreign Affairs) Moscow’s struggle to sustain its war in Ukraine.
Ukraine PM asks EU for missile and air defence, offers gas supplies (Reuters) Ukraine's Prime Minister Denys Shmyhal urged the European Union on Monday to supply Kyiv with more weapons and equipment while offering to help out with gas deliveries to reduce the bloc's dependence on Russia.
Russia demands sanctions are lifted before it resumes gas supplies (The Telegraph) Russia will not restart gas supplies to Europe through a key pipeline until western sanctions are lifted, the Kremlin has warned.
Russia says gas pipeline suspended indefinitely; G7 nations agree price cap for Russian oil – as it happened (the Guardian) State-owned Gazprom announces NordStream 1 pipeline to stay out of action citing turbine engine damage. This blog is now closed
European natural gas prices surge 36% after Russia halts Nord Stream 1 flows indefinitely (Markets Insider) Europe's economic crisis deepened Monday as Russia further squeezed energy supplies to the continent, with German electricity prices soaring 23%.
Putin has declared all-out energy war on Europe – rationing is inevitable (The Telegraph) The panic is palpable as Europe is effectively placed on a war footing
The euro just dropped below $0.99 for the first time in 20 years after Russia halted gas flows (Markets Insider) Russia has halted the flow of natural gas through a key pipeline, sending prices skyrocketing and driving up the risk of a eurozone recession.
‘End the energy sanctions against Russia because we are on our knees,’ says Matteo Salvini (The Telegraph) The far-Right Italian election hopeful said the situation was making Moscow richer as anti-EU protests took place in the Czech Republic
The EU Settles on a ‘Soft Ban’ on Russian Tourists—For Now (World Politics Review) European Union bureaucrats are busy figuring out how to implement an agreement to end visa facilitation for Russian tourists.
How Europe Can Avoid a Deep Freeze (Foreign Affairs) Only energy independence from Russia can stave off disaster.
Africa’s Ukraine Dilemma (Foreign Affairs) The continent is caught between Russia and the West.
Russia sentences investigative reporter to 22 years for ‘treason’ (Washington Post) A Russian court sentenced former investigative journalist Ivan Safronov to 22 years in prison on charges of treason, a grim resolution of one of the most high-profile prosecutions of a journalist in Russia in years.
Russia sanctions 25 more Americans, including Penn, Stiller (AP NEWS) Russia imposed personal sanctions Monday on 25 Americans, including actors Sean Penn and Ben Stiller, in response to U.S. sanctions against Russians stemming from the conflict in Ukraine. U.S.
Attacks, Threats, and Vulnerabilities
Worok: The big picture (WeLiveSecurity) ESET Research has uncovered Worok, a new cyberespionage group that targets high-profile organizations based in Asia and operating in various sectors.
WSJ News Exclusive | Islamic State Turns to NFTs to Spread Terror Message (Wall Street Journal) National-security analysts see a potentially dangerous platform for recruiting and funding.
Kimsuky APT continues to build attack infra, targets more countries in APAC (Manila Standard) Nearly 10 years since Kaspersky experts unmasked an active cyberespionage campaign primarily targeting South Korean think-tanks, the state-sponsored group dubbed
Hacker group claims it accessed data from Israeli education sites (Jerusalem Post) The hacker group presented itself as a group protesting what it called "the dirty government" of Prime Minister Yair Lapid.
China accuses U.S. of cyberattacks on university that allegedly does military research (CBS News) "The United States should immediately stop using its advantages to steal secrets," said Foreign Ministry spokesperson Mao Ning on Monday.
‘Stop stealing’: China slams US over alleged Trojan virus hacking (South China Morning Post) Probe report cites cyber spy arm of US National Security Agency as source of extensive data-stealing attack on networks across China.
U.S. hacked China 10,000 times, stole 140GB of critical data: Report (CGTN) An investigation over cyberattacks against a Chinese university found the NSA has been hacking China for years.
Exclusive: Evidence shows US’ NSA behind attack on email system of leading Chinese aviation university (Global Times) The email system of a university in Northwest China’s Shaanxi Province – well-known for its aviation, aerospace and navigation studies – was found to have been attacked by the US’ National Security Agency (NSA), the Global Times learned from a source on Monday.
Argentina's judiciary hit by cyberattack (Digital Journal) The focus of hackers on the civil services is unsurprising given the amount of personal data held.
Dev backdoors own malware to steal data from other hackers (BleepingComputer) Cybercriminals using Prynt Stealer to collect data from victims are being swindled by the malware developer, who also receives a copy of the info over Telegram messaging service.
The Prynt Stealer malware contains a secret backdoor. Crooks steal data from other cybercriminals (Security Affairs) The information-stealing malware Prynt Stealer contains a backdoor that allows stealing the data it has infiltrated from victims. Zscaler researchers discovered Telegram channel-based backdoor in the information stealing malware, Prynt Stealer, which allows to secretly steal a copy of the data exfiltrated from the victims. “Zscaler ThreatLabz researchers have uncovered the Prynt Stealer builder, also […]
BlackCat ransomware claims attack on Italian energy agency (BleepingComputer) The BlackCat/ALPHV ransomware gang claimed responsibility for an attack that hit the systems of Italy's energy agency Gestore dei Servizi Energetici SpA (GSE) over the weekend.
Fake Antivirus and Cleaner Apps Caught Installing SharkBot Android Banking Trojan (The Hacker News) A new version of the notorious SharkBot Android banking trojan has once again made its way into the Google Play Store.
SharkBot malware sneaks back on Google Play to steal your logins (BleepingComputer) A new and upgraded version of the SharkBot malware has returned to Google's Play Store, targeting banking logins of Android users through apps that have tens of thousands of installations.
EvilProxy Phishing-as-a-Service with MFA Bypass Emerged in Dark Web (Resecurity) Following the recent Twilio hack leading to the leakage of 2FA (OTP) codes, cybercriminals continue to upgrade their attack arsenal to orchestrate advanced phishing campaigns targeting users worldwide. Resecurity has recently identified a new Phishing-as-a-Service (PhaaS) called EvilProxy advertised in the Dark Web. On some sources the alternative name is Moloch, which has some connection to a phishing-kit developed by several notable underground actors who targeted the financial institutions and e-commerce sector before.
New EvilProxy service lets all hackers use advanced phishing tactics (BleepingComputer) A reverse-proxy Phishing-as-a-Service (PaaS) platform called EvilProxy has emerged, promising to steal authentication tokens to bypass multi-factor authentication (MFA) on Apple, Google, Facebook, Microsoft, Twitter, GitHub, GoDaddy, and even PyPI.
[ANALYSIS] Turkey’s critical defense projects under cyber attack (Turkish Minute) Chinese cybersecurity firm NSFOCUS has released a report detailing cyber attacks by a new advanced persistent threat (APT) hacking group called Muren Shark that is targeting Turkish defense industry projects. The report details which institutions and defense industry projects in Turkey were targeted by the hackers.
TikTok denies data breach following leak of user data (Security Affairs) Threat actors published a sample of data allegedly stolen from TikTok, but the company denies it was breached. The hacking collective AgainstTheWest recently published a post on Breach Forums message board claiming to have hacked TikTok and stolen source code and user data. The group published screenshots of an alleged stolen data, it claims to […]
TikTok rejects reports of data breach (Computing) Troy Hunt, founder of Haveibeenpwnd, said evidence is 'so far pretty inconclusive'
Linux devices 'increasingly' under attack from hackers, warn security researchers (ZDNET) Ransomware groups want to make as much money as possible - that means they're going after more varied targets.
Q & A: What comes after Hydra, the darknet marketplace that changed everything? (The Record by Recorded Future) Hydra was a darknet superstore. It started out as an online illegal drug site and morphed into a billion-dollar business with codes of conduct, customer support, and legal and medical services. It had started offering money laundering services when German authorities finally shut it down in April. Now people are asking: who or what will replace it?
Alleged Iranian threat actors leak the code of their CodeRAT malware (Security Affairs) The author of the remote access trojan (RAT) CodeRAT has leaked the source code of its malware on GitHub. The development team behind the remote access trojan (RAT) CodeRAT has leaked the source code of its malware on GitHub after the SafeBreach Labs researchers recently analyzed a new targeted attack aimed at Farsi-speaking code developers. […]
Samsung says some U.S. customer data was exposed in July breach (Reuters) Samsung Electronics Co suffered a cybersecurity breach in late July that exposed personal information of some customers in the United States, the company said on Friday.
Samsung suffers second data breach of year; here's what was exposed (Newsweek) Samsung said that the recent data breach did not reveal consumers' Social Security numbers or credit and debit card information.
Samsung discloses data breach after July hack (BleepingComputer) Electronics giant Samsung has confirmed a new data breach today after some of its U.S. systems were hacked to steal customer data.
Samsung says customer data stolen in July data breach (TechCrunch) The technology giant said the incident occurred in late-July.
Malicious DNS traffic targets corporate and personal devices (Help Net Security) This Help Net Security video uncovers how malicious DNS traffic affects people on the other end of the internet connection.
KeyBank customers information possibly at risk after third-party data breach (WPXI) Cleveland-based KeyBank says hackers stole personal data including Social Security numbers, addresses and account numbers of an unspecified number of its home mortgage customers.
Runtime Attacks In-Memory Require a Different Response (Morphisec) Traditional security solutions like EDR and NGAV aren't effective against the growing threat of fileless in-memory runtime attacks. So what is?
Paralysed French hospital fights cyber attack as hackers lower ransom demand (RFI) A hospital southeast of Paris has been crippled by an ongoing cyberattack, drastically reducing the number of patients who can be admitted and forcing a return to pre-digital workflows. Security experts…
More than 20,000 SSNs stolen during ransomware attack on San Francisco 49ers (The Record by Recorded Future) The San Francisco 49ers began sending breach notification letters out yesterday to more than 20,000 people who had their SSNs leaked during a ransomware attack on Super Bowl Sunday.
‘Disgusted’: Dockers fans fume over ticketing data breach (The West Australian) Fans have been left reeling after their personal information and ticket barcodes were sent to the wrong members, resulting in a grovelling apology from the club.
Fremantle apologise for AFL data breach (Bega District News) Fremantle have apologised for an embarrassing ticketing data breach that resulted in the personal details of members being...
IRS Says It Exposed Some Confidential Taxpayer Data on Website (Wall Street Journal) The IRS revealed it had inadvertently disclosed information about more than 100,000 taxpayers in a database available on its website.
IRS mistakenly published confidential info for roughly 120K taxpayers (Security Affairs) The Internal Revenue Service (IRS) mistakenly leaked confidential information for approximately 120,000 taxpayers. Bad news for approximately 120,000 taxpayers who filed a form 990-T as part of their tax returns, the Internal Revenue Service has accidentally leaked their confidential information. Form 990-T is a form that a tax exempt organization files with the IRS to report its unrelated business income and to figure the tax owed on that income. On Friday, the IRS announced it has […]
Everything We Know About the Axie Infinity Breach (Votiro) Axie Infinity lost $600+ million in a 2022 breach. Here is a look at the attack and how they plan to move forward with zero-trust security.
Baker & Taylor Home Page (Baker and Taylor) Update as of 9/01/2022: Thank you again for your patience, kind words, and partnership as we recover from last week’s ransomware attack. Our team has been working around the clock to return to normal operations.
Why is access to Ameli no longer possible from FranceConnect? (Gearrice) According to them, in a letter published on August 12, the direction of Health Insurance indicates to suspend the use of this access button due to weaknesses
LAUSD hit by hackers in apparent cyber attack (FOX 11 Los Angeles) LAUSD reveals hackers targeted the district in an apparent cyber attack. Officials suspect the incident was "criminal in nature."
Los Angeles Unified Targeted by Ransomware Atta (Los Angeles Unified School District) Los Angeles Unified detected unusual activity in its Information Technology systems over the weekend, which after initial review, can be confirmed as an external cyber attack on our Information Technology assets. Since the identification of the incident, which is likely criminal in nature, we continue to assess the situation with law enforcement agencies. While the investigation continues, Los Angeles Unified has swiftly implemented a response protocol to mitigate Districtwide disruptions, including access to email, computer systems and applications. This communication is being published after extensive, required vetting and approval by a number of entities and agencies.
Privacy advocates unhappy with Fog Reveal App pattern-of-life tracker (USA Herald) The Fog Reveal app is being used by police agencies nationwide without a search warrant. And there are definite privacy issues.
Microsoft mistakenly rated Chromium, Electron, as malware (Register) Windows Defender update fixed the mess after a weekend of false positive weirdness
Attackers empty victims’ wallets ahead of iPhone 14 debut (ITWeb) Kaspersky has detected a slew of phishing pages claiming to be selling the 14 iPhone.
Security Patches, Mitigations, and Software Updates
Mozilla Releases Security Update for Thunderbird (CISA) Mozilla has released security update to address a vulnerability in Thunderbird. An attacker could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review the Mozilla security advisory for Thunderbird 102.2.1 and apply the necessary updates.
Google Chrome emergency update fixes new zero-day used in attacks (BleepingComputer) Google has released Chrome 105.0.5195.102 for Windows, Mac, and Linux users to address a single high-severity security flaw, the sixth Chrome zero-day exploited in attacks patched this year.
[Update: Fix is live] Windows Defender is reporting a false-positive threat 'Behavior:Win32/Hive.ZY'; it's nothing to be worried about (Windows Central) This morning, many people worldwide experienced Microsoft Defender warning them of a recurring virus threat. It's a false positive, and your computer is OK.
Microsoft releases fix for Behavior:Win32/Hive.ZY error in Windows Defender (Windows Latest) A Microsoft official confirmed widespread reports of Google Chrome, Chromium Edge, Discord and several other apps getting flagged as “Behavior:Win32/Hive.ZY” by Microsoft’s in-built antivirus ‘Windows Defender’. In a statement, the tech giant confirmed that it’s working on a fix which will be rolled out to everyone in the next few hours. So what exactly is …
Microsoft Defender falsely detects Win32/Hive.ZY in Google Chrome, Electron apps (BleepingComputer) A bad Microsoft Defender signature update mistakenly detects Google Chrome, Microsoft Edge, Discord, and other Electron apps as 'Win32/Hive.ZY' each time the apps are opened in Windows.
Trends
Domain spoofing on the rise as cybercriminals see some crypto sites as a ‘perfect target’ (Fortune) With governments cracking down on ransomware, major crypto websites have become targets for phishing attacks.
Cybercrime Underground More Dangerous Than Organizations Realize, Threat Intelligence Firm Warns (MSSP Alert) A majority of respondents to Kela’s survey say they wouldn't be surprised to find their organization's data on the cybercrime underground.
Food Processing Special Report Reveals Increasing Concern of Cyber Attacks for Food & Beverage Industry (Dragos) Dragos & Fortinet partnered with Food Processing Magazine to analyze the cybersecurity maturity & awareness of food & beverage manufacturers. View the results.
Canada's agriculture industry warned going high tech means protecting against cyberattacks (CBC) As farming becomes more reliant on advanced technology and smart devices, the risk of cyberattacks on individuals and the industry grows, experts say, warning that could impact Canada's food security.
Proofpoint research reveals 79% of top Saudi companies are putting customers at risk (ACE Times) Receiving fraudulent emails
Companies underestimate number of SaaS applications in their environment (Help Net Security) Most organizations are underestimating the number of SaaS applications that exist within their environment, according to Axonius.
Marketplace
Aussie security ISV Devicie raises $14 million series A round (CRN Australia) Led by CyberCX and US equiry firm Insight Partners.
Bitwarden Announces $100 Million Growth Investment Led by PSG to Further its Mission to Empower Businesses and Individuals to Stay Safe Online (Business Wire) Bitwarden, a leading open-source password manager for both individuals and businesses, announced today that it has secured a $100 million minority gro
BitSight set to snap up TPRM tool ThirdParty Trust (FinTech Global) BitSight, a security rating platform, is set to acquire ThirdPartyTrust, a company that has developed a third-party risk management tool.
Clearwater completes acquisition of cyber consultancy CynergisTek (Consulting) Clearwater Compliance, a healthcare-focused cybersecurity and risk consulting firm, has completed its acquisition of CynergisTek, an Austin, TX-based cybersecurity consultancy.
Broadcom CEO Hock Tan says VMware deal is 'making good progress’ (CRN Australia) In talks with business regulators globally.
UK clears $8.1B merger between NortonLifeLock and Avast (TechCrunch) According to the CMA, everyone has become less reliant on NortonLifeLock or Avast.
CyberKnight Announces Strategic Partnership with Owl Cyber Defense at 2022 MENA Information Security Conference (GlobeNewswire News Room) Partnership with CyberKnight extends Owl Cyber Defense’s Middle East strategy to increase market coverage and revenue growth by addressing cybersecurity...
PlainID, The Authorization Company™, Announces thought leadership collaboration with The Cyber Hut (PR Newswire) PlainID, the Authorization Company™, announces today the release of "Build vs Buy: Guide to Evaluating Authorization" in collaboration with...
Under pressure, security firm Cloudflare drops Kiwi Farms website (Washington Post) Company’s CEO says the firm had detected imminent threats and that law enforcement could not keep up with them
Twitter account Libs of TikTok blamed for harassment of children’s hospitals (Washington Post) Employees are warning colleagues to take action against the anti-LGBTQ account, saying it’s ‘only a matter of time’ before its posts lead to violence
Group-IB Named Largest and Most Experienced Incident Response Retainer Provider (PR Newswire) Group-IB, one of the global leaders in cybersecurity, has been named the largest and most experienced Incident Response Retainer (IRR) provider...
Tech Firms Race to Hire Policy Leaders, Triggering Ripple Effects Across Washington (The Information) Policy leaders are in short supply thanks to new hiring demand from big tech and crypto firms as both industries barrel toward regulatory showdowns. Venture capital firm Andreessen Horowitz is on the hunt for someone to lead policy and government affairs for its crypto practice, according to a ...
Tech Companies Tilt Power in Their Favor With Performance Reviews (The Information) Nearly six months ago, Shopify promised staffers it would raise everyone’s salary, hoping to keep people from jumping ship as their share-based pay slumped along with the company’s stock price. Instead, after a hastily assembled performance review process, the e-commerce software giant decided ...
No cyber insurance for state attacks is 'responsible' - Lloyd's of London (Computing) Lloyd's of London has said it will no longer pay out in the case of state-backed attacks.
Huawei’s Meng Wanzhou asserts continued investment, hard work amid struggles (South China Morning Post) The message from Huawei’s chief financial officer provided a sharp contrast to her father Ren Zhengfei’s recent leaked memo, which painted a gloomy picture of a world heading into economic recession.
Peter Eckersley, co-creator of Let’s Encrypt, dies at just 43 (Naked Security) This site, like millions of others, has a certificate from Let’s Encrypt. Farewell, Peter Eckersley, PhD, who helped make it all possible.
OneSpan Appoints New Chief Financial Officer Jorge Martell (OneSpan) Finance executive with 20 years of experience joins OneSpan to help drive growth
Encrypted app Signal just hired one of Big Tech’s sharpest critics (Washington Post) Meredith Whittaker, the former Google manager, is Signal’s first president. She is out to convince users to pay for the free app.
Why Are Cyber Forensics Professionals in Demand in 2022? (Cybersecurity Exchange) Cyber Forensics professionals help businesses and law enforcement tackle cybercrime. Learn how to build your career as a cyber forensics analyst.
Overly Honest Clearance Applicant Says He's Used Weed More than 1,000 Times and Has No Plans to Stop (ClearanceJobs) Submitting an SF-86 if you have no intention to stop using drugs or even take a cleared job is never a good move.
Products, Services, and Solutions
Exclusive: Trustwave strengthens cybersecurity as threats ramp up (SecurityBrief Australia) As a recognised global cyber defender that stops cyber threats all day, every day, Trustwave enables its clients to conduct their business securely.
Microsoft’s new Defender solutions to improve cybersecurity (Technology Record) Microsoft has introduced two new solutions – Microsoft Defender Threat Intelligence and Microsoft Defender External Attack Surface Management – to help businesses view their IT networks from the perspective of cybercriminals so they can identify security risks and protect themselves against attacks.
HelpSystems Acquires Outflank, Further Empowering Customers to Thwart Cyberattacks with Advanced Adversary Simulation Services, Offensive Security Tooling, and Training Services (Business Wire) HelpSystems announced today the acquisition of Outflank, a well-regarded IT security leader with deep expertise in adversary simulation; specialist cy
Proofpoint Reimagines Risk and Resilience for Outstanding Holistic Enterprise Security (PR Newswire) While cybercriminals previously relied on vulnerabilities in centralized information technology (IT) infrastructures, attackers now use social...
NVIDIA and Dell merged into a new Data Center Platform for Zero Trust and AI (Gearrice) Recently NVIDIA and Dell announced a new platform that is available to everyone, with which data centers prepare for the era of Artificial Intelligence (AI),
Active Insurance Pioneer Coalition Launches in UK Cyber Insurance Market (PR Newswire) Coalition, the world's first Active Insurance provider and a leading cyber insurer, commenced trading in the UK effective 1 September. Backed...
Infosec products of the month: August 2022 (Help Net Security) The featured infosec products this month are from: AuditBoard, Claroty, Concentric AI, Cymulate, Deepfence, Drata, Fortinet, and more.
Technologies, Techniques, and Standards
Supply Chain Security: Has the Next SolarWinds Already Happened? (DevOps.com) For software development organizations, addressing amorphous software supply chain threats and attacks is a bridge too far.
NSA, CISA release compendium of security practices for software developers (FedScoop) Agencies worked with industry to develop recommendations on everything from adding security features to conducting source code reviews.
Feds push for developers to take lead in securing software supply chain (Cybersecurity Dive) The guidelines from CISA and the NSA come amid a growing movement to “shift left” and evaluate software security earlier in the development cycle.
New guidance on software supply chain attacks released (Computing) Linux Foundation's OpenSFF releases npm security guide while US agencies NSA and CISA advise on hardening the component supply chain
Feds, npm Issue Supply Chain Security Guidance to Avert Another SolarWinds (Dark Reading) The US government and the Open Source Security Foundation have released guidance to shore up software supply chain security, and now it's up to developers to act.
Understanding NIST 800-171 and What it Means for Your Organization (PreVeil) This blog will explain what you need to know about the NIST 800-171 standard and best practices for achieving compliance.
The Ultimate Guide to Endpoint Security for Your Organization (Cybersecurity Exchange) Endpoint security is the process of protecting a network's endpoints. Employing endpoint security measures safeguard your data from unauthorized access.
What Is DNS Security? Why It Matters for Your Business (G2) Domain Name System (DNS) security is an essential part of a powerful cybersecurity posture. Learn why it's important and how you can achieve it.
Amazon’s Delay for ‘The Rings of Power’ Reviews on Prime Video Part of New Initiative to Filter Out Trolls (EXCLUSIVE) (Variety) Amazon has introduced a new weapon in the battle against internet trolls: delays. Starting around the time of the launch of the distaff baseball dramedy “A League of Their Own,” which p…
What Is Your Security Team Profile? Prevention, Detection, or Risk Management (The Hacker News) Most mature enterprises with plenty of resources are also interested in automating, customizing, and scaling up their red team activities.
NARA looks to double down on email records approach with texts, other messages (Federal News Network) NARA is looking at expanding the “Capstone” email retention approach to text messages, chat and other digital forms of communications.
How Just-in-Time privilege elevation prevents data breaches and lateral movement (Help Net Security) A PAM framework that enforces the principle of least privilege with Just-in-Time (JIT) privilege elevation, is crucial to reduce risk.
Research and Development
Algorithmic Warfare: Government Seeking Quantum-Proof Encryption (National Defense) Once matured, quantum technology is expected to create a shift in the defense world due to the large volume of data it will be able to quickly process. While that can lead to great advances in science and technology, it can also empower those seeking to break into encrypted communications.
The existential threat of quantum computing – interview (Cybernews) Quantum computers will open doors to otherwise impossible breakthroughs. At the same time, they might render our security defenses useless.
UB philosopher claims AI will “never” rule the world (Niagara Gazette) BUFFALO — Elon Musk in 2020 said that artificial intelligence (AI) within five years would surpass human intelligence on its way to becoming “an immortal dictator” over humanity. But a
Oxford physicist says quantum computing is overhyped scam (Computing) Greedy physicists have exaggerated progress, he claims
Academia
How a University Used DNSFilter to up Its Security Game (ITPro Today) Indiana Wesleyan University deployed DNSFilter for threat detection and content filtering. Learn about how the tool has worked to protect two user groups: employees and students.
47% of Educational Institutions Experienced a Cyberattack on their Cloud Infrastructure in 2022 (PR Newswire) Netwrix, a cybersecurity vendor that makes data security easy, today announced additional findings for the education sector from its global...
Legislation, Policy, and Regulation
China orders tech companies to ID users who spread fake news (Register) PLUS: Australia mints a physical crypto-coin; Alibaba Cloud claims world's biggest DC; India’s space airbags; and more
Iranian authorities plan to use facial recognition to enforce new hijab law (the Guardian) Government says it will use technology on public transport in crackdown on women’s dress
NZSIS, GCSB Minister to visit all Five Eyes partners (RNZ) Minister for NZSIS and GCSB Andrew Little is set to visit all four other members of the Five Eyes intelligence partnership this month.
Britain Readies Tough Cyber Rules for Telecoms Operators (Wall Street Journal) The new rules would impose strict penalties and require cyber best practices. They will be heading to Parliament for ratification.
UK Data Regulator Tackles Porn Sites Over Children’s Access (Bloomberg) Stance marks a U-turn for UK data protection regulator. Adult sites will be required to prevent children’s access.
Semafor Exclusive: Biden will crack down on Chinese tech with a new executive order (Medium) Semafor launches this fall, but this piece of news couldn’t wait. To get tech coverage from Reed Albergotti, sign up for his newsletter and…
Concerns emerge over proposed SEC cyber incident disclosure changes (SC Media) Facing increased breaches on its systems and among its members, the Securities and Exchange Commission (SEC) is considering how it will better handle cyber threats.
White House expects CR ahead of fiscal 2023, seeks $47B in emergency spending (Federal News Network) The Biden administration, expecting Congress will need more time to pass a comprehensive spending package for fiscal 2023, is requesting $47 billion in emergency funds to last through the end of the…
Army electronic warfare office seeks to adapt now for future threats (Defense News) The U.S. Army is reinvigorating its networks, sensors, electronic warfare arsenal and related tools following decades of counterterrorism operations.
State Department is offering big rewards for info on hackers, to uncertain ends (Washington Post) Behind the curtains of a State Department program offering millions of dollars for tips
Litigation, Investigation, and Law Enforcement
How Fake GPS Coordinates Are Leading to Lawlessness on the High Seas (New York Times) A technology enabling the transmission of fake locations to carry out murky or even illegal business operations could have profound implications for the enforcement of international law.
Hackers stole CERB benefits of at least 12,700 Canadians, alleges class-action lawsuit (Vancouver Is Awesome) A retired police officer from B.C. is leading the class action lawsuit against the Government of Canada after he claims he was among thousands of Canadians victimized by hackers
Microsoft Challenges Intelligence Agency's $1B Task Order to Amazon (Nextgov.com) The National Geospatial-Intelligence Agency went down the sole-source route, which of course led to a protest.
'NSO accusations were part of international disinformation campaign' (Israeli Hayom) Findings by researcher Irina Zuckerman show that the "espionage affair" involving the Israeli cyber company was the result of an initiative of certain entities who want to harm Israel, including Qatar. Soon after, her account is closed by Twitter and she says attempts to silence her stem from political motives.
Socialite, Widow, Jeweller, Spy: How a GRU Agent Charmed Her Way Into NATO Circles in Italy (bellingcat) A Russian spy with an unconventional Peruvian backstory, and a chaotic private life, managed to befriend and engage numerous staff and officers at a NATO base in Italy, a Bellingcat investigation has found.
Russian spy cosied up to one of UK’s richest families as she tried to infiltrate British establishment (The Telegraph) Lady Judith McAlpine, of the wealthy construction family, says she didn't trust the woman who later charmed her way into Nato naval HQ
Copyright infringement: Delhi HC directs Telegram to disclose info of users involved (The Indian Express) Telegram had argued that under its privacy policy, unless a person is declared a terror suspect, user information could not be disclosed.
Zuckerberg Targeted by House GOP Eager to Probe Hunter Biden (Bloomberg) Republicans instruct Meta CEO to preserve 2020 FBI warnings. Letter previews GOP focus if they take control of the House.
FTC seeking prior approval of Meta Platforms deals (NASDAQ:META) (SeekingAlpha) The Federal Trade Commission will continue to pursue its case personally against Meta Platforms (META) CEO Mark Zuckerberg over the company's planned acquisition of VR app maker Within
Ex-spies banned from arms exports for UAE hack-for-hire work (Register) From hero to zero-day ... to plain zero
Twitter can’t afford to be one of the world’s most influential websites (Washington Post) A document from whistleblower Peiter Zatko that details the company’s failings in policing misinformation shows what happens when a business model fails
Mudge's lawyer: 'Whistleblowing is a growth industry' (The Record by Recorded Future) A Q&A with Whistleblower Aid co-founder John Napier Tye, who is representing Mudge in his action against Twitter.
Violence-as-a-Service: Brickings, Firebombings & Shootings for Hire (KrebsOnSecurity) A 21-year-old New Jersey man has been arrested and charged with stalking in connection with a federal investigation into groups of cybercriminals who are settling scores by hiring people to carry out physical attacks on their rivals. Prosecutors say the…
United States of America v. PATRICK MCGOVERN-ALLEN (United States District Court for the Eastern District of Pennsylvania) I, the complainant in this case, state that the following is true to the best of my knowledge and belief.
Irish watchdog fines Instagram 405M euros in teen data case (KSAT) Irish regulators are slapping Instagram with a big fine after an investigation found the social media platform mishandled teenagers’ personal data.
Walmart is facing a class action suit for allegedly violating an Illinois privacy law by using surveillance cameras and Clearview AI's facial recognition database (Business Insider) Walmart is facing a class action lawsuit over its alleged use of surveillance cameras and Clearview AI's facial recognition database.
FBI agent Timothy Thibault hid intel from whistleblower on Hunter and the ‘Big Guy’ Joe Biden (New York Post) In the interests of national security, it was the FBI’s duty to investigate credible evidence suggesting the future president may have been compromised.