Dateline
Ukraine at D+251: Managing expectations and defining "military" down. (CyberWire) Managing expectations in the hybrid war, the Wagner Group suggests that an advance of one or hundred meters a day is a reasonable norm in modern war. (It would have been the norm on the Western Front in 1916.) A Killnet DDoS attack against the US Treasury fizzled.
Russia-Ukraine war: List of key events, day 252 (Al Jazeera) As the Russia-Ukraine war enters its 252nd day, we take a look at the main developments.
Ukraine Races to Restore Electricity, Water Supplies After Russian Strikes (Wall Street Journal) Utility crews across Ukraine were working to restore water and electricity supplies after a barrage of Russian missiles a day earlier knocked out service to hundreds of thousands of people.
Russian defense minister insists Ukraine infrastructure is military target (Washington Post) Russian Defense Minister Sergei Shoigu said Tuesday that Russia is targeting critical civilian infrastructure in Ukraine to reduce the country’s military capacity — rebuffing accusations that Moscow is committing war crimes by trying to leave people without power or heat during winter.
Russia deploys hypersonic missiles to Belarus in ‘message to the West’ (The Telegraph) The Kinzhal armament is capable of reaching speeds of up to mach 10 and carrying nuclear warheads
Watch: Ukrainian saboteurs destroy two Ka-52 helicopters at Russian air base (The Telegraph) The daring raid, 500 miles from the Ukrainian border, also severely damaged two other choppers at the Veretye base in the Pskov region
Dramatic video shows why Russian helicopters are sitting ducks in Ukraine (Task & Purpose) If it flies, it dies.
What the US Navy must learn from Ukraine's bold drone attack on Russia's Black Sea Fleet (Task & Purpose) The Navy has long known that swarm attacks by unmanned boats were coming. Now, it’s a reality.
Putin Wants Probe Of Attack On Russian Ships Before Resumption Of Grain Export Deal (RadioFreeEurope/RadioLiberty) The United States has accused Russia of deciding to let the developing world "starve" after pulling out of a UN-brokered deal with Ukraine to export grain.
Ukraine grain export deal back on as Russia resumes participation (Reuters) Russia said on Wednesday it would resume its participation in a deal to free up vital grain exports from war-torn Ukraine after suspending it over the weekend in a move that had threatened to exacerbate hunger across the world.
Russia Says It Will Rejoin Ukraine Grain-Export Deal (Wall Street Journal) Russia said it would resume participation in a deal to allow Ukrainian grain exports, ending a dayslong standoff that threatened the steady flow of such shipments to world markets.
Ukraine Keeps Shipping Grain, Defying Russian Military Threat (Wall Street Journal) Since Russia over the weekend pulled out of a deal to safeguard Ukrainian grain shipments, Turkey and the United Nations have worked closely with Ukraine to keep a so-called grain corridor running smoothly.
Iran is preparing to send additional weapons including ballistic missiles to Russia to use in Ukraine, western officials say (CNN) Iran is preparing to send approximately 1,000 additional weapons, including surface-to-surface short range ballistic missiles and more attack drones, to Russia to use in its war against Ukraine, officials from a western country that closely monitors Iran's weapons program told CNN.
Friction at top of Kremlin as high-profile Putin ally praises 'strong leader' Zelensky (The Telegraph) Wagner founder Yevgeny Prigozhin, a 'significant tool' for Moscow, has dared to privately confront the Russian president in recent weeks
Russia’s Dangerous Decline (Foreign Affairs) The Kremlin won’t go down without a fight.
Why Isn’t Russia a Democracy? (Foreign Policy) The country wasn’t preordained to despotism or a clash with the West.
Russian Military Leaders Discussed Use of Nuclear Weapons, U.S. Officials Say (New York Times) The conversations alarmed the Biden administration because they showed how frustrated Moscow had become over its battlefield setbacks in Ukraine.
Ukraine war latest: Russian military leaders 'discussed using tactical nuclear weapons' (The Telegraph) Senior Russian military leaders discussed the use of tactical nuclear weapon in Ukraine, according to numerous senior American officials.
Forget the myths: Here’s how the Cuban Missile Crisis was actually resolved (The Hill) If we are to insist on analogizing 2022 to 1962, the true lesson learned is not the one that the myth-mongers continue hawking.
Most troops deployed for Ukraine response still in Europe (Military Times) Troop levels are expected to remain stable for the foreseeable future.
Russia's Reliance on Iran, Sign of Putin's Isolation (U.S. Department of Defense) Russian President Vladimir Putin is relying on Iran to supply weapons for his war in Ukraine, which is a sign of his isolation, Pentagon Press Secretary Air Force Brig. Gen. Pat Ryder said.
Drone-killing Vampires due in Ukraine next year, Pentagon says (Defense News) The U.S. is aiming to send Ukraine the “Vampire” counter-drone system by mid-2023, with a contract award expected within months, a Pentagon spokesman said.
US Inspectors in Ukraine Won't Be Near the Front, Pentagon Says (Military.com) U.S. defense personnel inspecting foreign weapons shipments inside Ukraine won't be close to the front-line fighting, Pentagon spokesman Brig. Gen. Pat Ryder said Tuesday when questioned over the risk of engaging with Russian forces in the war.
‘We will be relentless’: top US Nazi hunter turns to Ukraine war crimes (the Guardian) Eli Rosenbaum says the US is poised to change its laws so his justice department unit can prosecute Russian war criminals
America Is Already at War with Russia (In Cyber Space) (19FortyFive) The next time Netflix suffers an outage or Google searches aren't working, it might just be hackers from Russia at work.
UK government confirms its intel agency is helping to defend Ukraine (The Record by Recorded Future) The British government has publicly confirmed for the first time that its intelligence and security agency has been contributing to Ukraine’s defense.
U.S. Treasury thwarted attack by Russian hacker group last month-official (Reuters) The U.S. Treasury last month repelled cyber attacks by a pro-Russian hacker group, preventing disruption and confirming the effectiveness of the department's stronger approach to financial system cybersecurity, a U.S. Treasury official said on Tuesday.
How Russia’s war in Ukraine helped the FBI crack one of the biggest cybercrime cases in years (MarketWatch) Investigators nabbed a key figure behind malware program Raccoon Infostealer in the Netherlands after he fled the fighting in Ukraine.
Russian Oligarch and Putin Critic Renounces Citizenship Over Ukraine War (Wall Street Journal) Oleg Tinkov, who founded Russia’s Tinkoff Bank, said he is giving up Russian citizenship after selling a stake in the bank
Attacks, Threats, and Vulnerabilities
Hacked Documents: How Iran Can Track and Control Protesters’ Phones (The Intercept) The documents provide an inside look at an Iranian government program that lets authorities monitor and manipulate people’s phones.
China-Backed APT10 Supercharges Spy Game With Custom Fileless Backdoor (Dark Reading) The sophisticated and ever-evolving threat known as LodeInfo is being deployed against media, diplomatic, government, public sector, and think-tank targets.
macOS Ventura bug disables security software (Malwarebytes) Apple's initial release of macOS 13, named "Ventura," contains a nasty bug that causes important functionality of all third-party security software to fail. Find out what happened, and how to fix it.
Symantec researchers find new malware taking commands from IIS log files (Candid.Technology) Symantec researchers have discovered a new malware dropper that takes commands from the IIS log to deploy malware.
Researchers Disclose Details of Critical 'CosMiss' RCE Flaw Affecting Azure Cosmos DB (The Hacker News) Researchers reveal details of a critical authentication bypass vulnerability in Jupyter Notebooks for Azure Cosmos DB.
Researchers: 'CosMiss' vulnerability affecting Microsoft Azure Cosmos DB could give attacker RCE privileges (SC Media) Orca Security researchers say the vulnerability could have let an attacker have full permissions on a Cosmos DB Jupyter notebook, while Microsoft disputes the impact of the bug, claims its hard to exploit and affects a tiny fraction of Cosmos DB users.
Misconfigurations in Windows Server Led to DDoS Attacks (WinBuzzer) Security researchers say a Windows Server configuration error is dumping packets that allow threat actors to mount DDoS attacks.
Dropbox discloses breach after hacker stole 130 GitHub repositories (BleepingComputer) Dropbox disclosed a security breach after threat actors stole 130 code repositories after gaining access to one of its GitHub accounts using employee credentials stolen in a phishing attack.
LockBit 3.0 gang claims to have stolen data from Thales (Security Affairs) The ransomware group LockBit 3.0 claimed to have stolen data from the French defence and technology group Thales. Thales is a global high-tech leader with more than 81,000 employees worldwide. The Group invests in digital and deep tech innovations – big data, artificial intelligence, connectivity, cybersecurity and quantum – to build a future of trust, […]
France's Thales says hackers claim to have stolen data (Reuters) French defence and technology group Thales said on Tuesday the hacker group LockBit 3.0 claimed to have stolen some of its data and was threatening to publish it.
Bed Bath & Beyond investigating possible data breach (Fox Business) Home goods retailer Bed Bath & Beyond said it has no reason to believe that sensitive or personally identifiable information was accessed through the possible data breach.
Bed Bath & Beyond Investigating Data Breach After Employee Falls for Phishing Attack (SecurityWeek) Bed Bath & Beyond has suffered a data breach after an employee fell victim to a phishing attack.
Flambeau, Inc. Reports Data Breach Impacting 10,447 Individuals (JD Supra) On October 19, 2022, Flambeau, Inc. reported a data breach with the Attorney general of Maine after the company experienced what appears to be a...
Louisiana DPS suffered data breach of third-party administrator exposing heath info of 80,000 inmates (WWLTV) Any state or pre-trial inmates who received off-site medical care from Jan. 1, 2013 to July. 7, 2022 may have had their health info exposed.
Royal Mail data breach sees customer information shared with other users (Tech Monitor) Royal Mail suffered a data breach earlier today after problems with its Click & Drop service. The platform has now been restored.
Royal Mail data breach as customers' information leaked to other users (Sky News) Royal Mail's Click and Drop website was temporarily disabled from 2 to 6pm on Tuesday while engineers work to fix the issue.
U.S. Bank data breach affects about 11,000 customers (Top Class Actions) U.S. Bank has notified around 11,000 of its customers that their personal information was accidentally shared by one of its third-party vendors last month.
Hacker claims to release stolen Davenport schools data (The Quad-City Times) According to Callow, the group has not followed through on the threat and has not yet released any installments of Davenport's data on its multiple platforms.
Buffalo company recovering from cyber attack (News 4 Buffalo) The mining company produces copper products.
Experian tool exposed partial Social Security numbers, putting customers at risk (CyberScoop) The problem with using Social Security numbers to authenticate consumers goes much deeper than Experian, experts say.
NY Post ‘Hacker’ Breaks His Silence, Apologizes for ‘Utmost Betrayal’ (The Daily Beast) In this week’s edition of Confider, we talk with the 25-year-old now-ex staffer behind the “hack” that published racist headlines on the NY Post’s website.
Rogue employee who hacked New York Post apologizes for ‘utmost betrayal’ (the Guardian) Miguel Gonzalez, 25, blames ‘my own stupidity’ for tantrum that led him to post fake sexist and racist headlines on newspaper’s website
Security Patches, Mitigations, and Software Updates
OpenSSL Releases Security Update (CISA) OpenSSL has released a security advisory to address two vulnerabilities, CVE-2022-3602 and CVE-2022-3786, affecting OpenSSL versions 3.0.0 through 3.0.6. Both CVE-2022-3602 and CVE-2022-3786 can cause a denial of service. According to OpenSSL, a cyber threat actor leveraging CVE-2022-3786, "can craft a malicious email address to overflow four attacker-controlled bytes on the stack. This buffer overflow could result in a crash (causing a denial of service) or potentially remote code execution," allowing them to take control of an affected system.
IT defenders race to scope out the threat ahead of OpenSSL patch release (SC Media) The announcement has been noteworthy as this is only the second time OpenSSL has classified a flaw as “critical” since the Heartbleed bug in 2014. It has also been somewhat controversial among the security community, with some questioning whether the OpenSSL project's decision to go public about the vulnerability before the patch gives attackers more opportunities to exploit it.
OpenSSL fixes two high severity vulnerabilities, what you need to know (BleepingComputer) The OpenSSL Project has patched two high-severity security flaws in its open-source cryptographic library used to encrypt communication channels and HTTPS connections.
OpenSSL dodges a security bullet (ZDNET) The critical security vulnerability turned out to be two serious vulnerabilities. Still, they need patching ASAP.
OpenSSL releases fixes for two ‘high’ severity vulnerabilities (The Record by Recorded Future) OpenSSL released patches for two vulnerabilities that caused widespread concern among cybersecurity experts and researchers over the last week.
OpenSSL patches are out – CRITICAL bug downgraded to HIGH, but patch anyway! (Naked Security) That bated-breath OpenSSL update is out! It’s no longer rated CRITICAL, but we advise you to patch ASAP anyway. Here’s why…
Threat Advisory: High Severity OpenSSL Vulnerabilities (Cisco Talos Blog) In late October two new buffer overflow vulnerabilities, CVE-2022-3602 and CVE-2022-3786, were announced in OpenSSL versions 3.0.0 to 3.0.6. These vulnerabilities can be exploited by sending an X.509 certificate with a specially crafted email address, potentially causing a buffer overflow resulting in a crash or
OpenSSL Vulnerability Patch Released (Sectigo® Official) The OpenSSL Project team has released the patch for a significant security vulnerability identified within version 3 of the OpenSSL library.
Clearing the Fog Over the New OpenSSL Vulnerabilities (Rezilion) Two vulnerabilities announced today by the OpenSSL project team are not critical. They are CVE-2022-3602 and CVE-2022-3786.
OpenSSL vulnerability CVE-2022-3602 (Remote Code Execution) and CVE-2022-3786 (Denial of Service) Check Point Research Update (Check Point Software) Initially published: 1:00 pm, Tuesday, 1 November 2022, Eastern Time (ET) Last updated: 4.40 pm, Tuesday, 1 November 2022, Eastern Time (ET) A tense
Undisclosed OpenSSL vulnerability: Free scripts for target scoping (Lightspin) In this post you will be provided with several Python scripts for attempting to find resources with OpenSSL installed in them either directly or as an upstream dependency as part of their software supply chain.
Mitsubishi Electric GT SoftGOT2000 (CISA) 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Mitsubishi Electric Equipment: GT SoftGOT2000 Vulnerabilities: Infinite Loop, OS Command Injection 2. RISK EVALUATION Successful exploitation of these vulnerabilities could create a denial-of-service condition or enable arbitrary code execution.
Trends
More than 60 'nationally significant' attacks in the last year dealt with by National Cyber Security Centre (Sky News) China's evolving technological capabilities will likely be the single biggest factor affecting UK cyber security in the future, says the NCSC.
NCSC looks back on year of ‘profound change’ for cyber (ComputerWeekly.com) The NCSC ramped up its support for UK plc in the past 12 months, but it was events beyond the UK’s borders that proved the most impactful
Cyber-attacks on small firms: The US economy's 'Achilles heel'? (Yahoo) Small businesses play a critical role in the economy but are more vulnerable to cyber-attacks.
Most people overestimate their cyber security abilities (ITWeb) Kaspersky’s assessment tool shows only 11% of people have a high level of cyber security awareness.
Cyber Security Predictions for 2023 | Cyber Security Forecast (Mandiant) Cyber Security Predictions for 2023. This year's report features critical insights from security experts to give you a glimpse into what you can expect in 2023.
Cybersecurity Predictions for a Turbulent 2023 (Proofpoint) This has been another extremely busy year for CISOs. Cyber attacks pummeled organizations across the globe. Ransomware, nation-state actors, and supply chain vulnerabilities were just some of the multiplying threats. A few highlights are noteworthy:
CEO Fired Over Employee Monitoring Among Forrester Privacy Predictions for 2023 (TechNewsWorld) In the coming year, lawmakers will be paying increased attention to workplace monitoring, and whistleblowers may also be demanding monitoring information to support complaints about labor law violations, according to the predictions put together by 10 Forrester analysts.
Predictions for 2023 from the SANS ICS/OT Cybersecurity Survey (OPSWAT) Discover the current state of ICS/OT cybersecurity priorities and 2023 predictions as ranked by over 300 companies in the latest SANS survey.
Marketplace
October’s M&A News Roundup (Infosecurity Magazine) October 2022 saw several high-value M&A transactions take place
Layoffs Mount as Cybersecurity Vendors Hunker Down (Dark Reading) With the vast majority of business leaders expecting a recession in 2023, cybersecurity firms are bolstering their operations and cash flow by laying off workers.
InspireXT announces acquisition of NaturalAI – a conversational Artificial Intelligence platform to expand its solution portfolio (RealWire) Acquisition to offer cutting edge solutions incorporating the power of AI within Supply Chain
SafeBreach Announces SOC 2 Type II Security Certification (SafeBreach) The rigorous certification process validates SafeBreach’s security controls and the protection of customer data across its business.
Twitter Plans to End Ad-Free Article Offering for Blue Subscribers (Wall Street Journal) The move comes as the company’s new owner, Tesla Chief Executive Elon Musk, makes sweeping changes from high-profile firings to product updates since closing the $44 billion deal last week.
Charging Twitter users for blue ticks would be a disaster (New Statesman) Elon Musk’s latest brainwave risks alienating the users Twitter depends on and would expose it to lawsuits.
Twitter’s Top Advertisers Are Being Urged to Avoid Site If Musk Lowers Standards (Bloomberg) Activist groups send letter to Apple, Best Buy, other firms. Organizations warn of hate speech, conspiracy theories.
Elon Musk Is Busy With Twitter (Bloomberg) Golden parachutes, layoffs, poetry, plus Mark Zuckerberg and Treasury market liquidity.
SecureAuth Joins the Identity Defined Security Alliance to Address Identity Security Issues (SecureAuth) Vendor-neutral platform encourages broad collaboration to address today’s identity security challenges IRVINE, Calif. – November 2, 2022 – SecureAuth, a leader in access management and authentication, today announced it is a member of the Identity Defined Security Alliance (IDSA), a vendor-neutral resource for organizations focused on securing digital identities to reduce the risk of an […]
ISANZ awards laud contributions to NZ's cyber defence (Reseller News) Innovative security initiatives, specialist firms and cybersecurity professionals were honoured last night at the Information Security Awards of NZ.
DNSFilter Named Winner of 2022 Black Unicorn Awards (Business Wire) DNSFilter today announced it has been named a winner of the 2022 Black Unicorn Awards. The company was recognized as a Top 10 Baby Black Unicorn Award
Coalfire Recipient of Black Unicorn Award, 11 Additional Awards in 2022 (PR Newswire) Coalfire, the largest global cybersecurity firm, today announced that it is a winner of Cyber Defense Magazine's prestigious Black Unicorn...
Waterfall Security Expands Presence in Australia (PR Newswire) Waterfall Security Solutions, the leader in OT cybersecurity, today announced the opening of its Australian office. The Australian expansion is...
Security firm's apology letter over using "hoodie hacker" photo leaves internet in splits (TimesNow) Malwarebytes declared on Twitter that they have a "zero-tolerance policy" when it comes to images of hooded hackers.
Bishop Fox adds Former Palo Alto Networks and RSA Senior Executive as Chief Revenue Officer (Yahoo) 20-year cybersecurity sales veteran brings track record of growing and establishing global security leaders PHOENIX, Nov. 01, 2022 (GLOBE NEWSWIRE) -- Bishop Fox, the leading authority in offensive security, today announced the addition of Brian de Lemos as the company’s new Chief Revenue Officer (CRO). Most recently VP of Global Sales for Palo Alto Networks Unit 42, de Lemos holds more than 20 years of experience in leading global security organizations and driving growth. de Lemos will report
Products, Services, and Solutions
Infosec products of the month: October 2022 (Help Net Security) The featured infosec products this month are from: ABBYY, ARMO, Array, AuditBoard, AuthenticID, AwareGO, Code42, Corelight, and more.
Seagate Government Solutions and Cigent Deliver Advanced Cybersecurity Protection for SSD Storage (PR Newswire) Seagate Government Solutions (SGS) is pleased to announce our partnership with Cigent® Technology, Inc. to introduce the Barracuda 515 M.2...
eSentire Announces Global Partnership with Lacework to Reduce Cloud… (eSentire) Learn more about how eSentire’s global partnership with Lacework allows organizations to protect their cloud workloads, containers, applications, and Kubernetes with 24/7 Multi-Signal MDR and Cloud Security Posture Management (CSPM) services.
Critical Start Launches New Managed SIEM Service (Critical Start) Our new Managed SIEM offering goes above and beyond industry requirements to help maximize the value of SIEM investments.
Tanium Launches Software Bill of Materials for Unprecedented Visibility to Combat Supply-Chain Threats (Business Wire) Tanium, the industry’s only provider of converged endpoint management (XEM), today launched the Tanium Software Bill of Materials (SBOM) to help organ
How to Use Tanium Software Bill of Materials (SBOM) to Protect Your Organization From OpenSSL v3 Vulnerability (Tanium) Open-source toolkit developers announce two “High” severity vulnerabilities in OpenSSL v3, and Tanium has the solution to help.
Socure Launches New Account Validation Solution (Socure) Socure Account Intelligence instantly verifies domestic bank account status and ownership, prior to ACH payment transactions or funds disbursement. Read more.
Leading Pentest Provider Cobalt and NTT DATA Enable Digital Businesses (PRWeb) Cobalt, leading Pentest-as-a-Service (PtaaS) company modernizing the traditional pentesting model, today announced a partnership with NTT DATA, a digital b
Forescout Launches Continuum Timeline to Better Support Asset Compliance, Incident Investigations and Risk Reduction (Forescout) Organizations can now easily query, investigate and leverage historical data continuously collected about connected assets across their digital terrain. SAN JOSE, Calif., November 1, 2022 – Forescout Technologies, the global leader in automated cybersecurity, today released its latest Continuum platform update which includes Forescout Continuum Timeline, a new cloud-native solution that provides comprehensive long-term […]
Forescout Launches Forescout Assist to Empower Organizations with 24/7 Threat Detection, Investigation and Response Expertise and Capabilities (Forescout) New subscription service combines machine automation and human expertise to identify high priority threats and risks, and provide recommended remediation SAN JOSE, Calif., November 1, 2022 – Forescout Technologies, Inc., the global leader in automated cybersecurity, today launched Forescout Assist for Healthcare and Forescout Assist for OT/ICS, new subscription services that provide organizations’ IT […]
Resecurity® Brings Cyber Threat Intelligence to the Oracle Cloud Marketplace (PR Newswire) Resecurity, Inc. (USA), a Los Angeles-based cybersecurity company protecting Fortune 500 companies worldwide, announced that its award-winning...
LogRhythm Unveils Integration with the Gigamon Hawk Deep Observability Pipeline (Fast Mode) LogRhythm Announces Integration with the Gigamon Hawk Deep Observability Pipeline
Netacea | Netacea launches bot intelligence service (RealWire) Business Logic Intelligence Service will offer insight into bots based on Netacea’s ongoing research into bot marketplaces and dark web chatter
Manchester, UK – 2nd November 2022—Netacea, the bot detection and mitigation specialist and provider of the world’s first agentless threat detection platform, today announces the launch of its Business Logic Intelligence Service (BLIS)
Seychelles launches digital ID platform from WISeKey for government, private sector (Biometric Update |) The Seychelles has reached a launch for its WISeKey-developed digital ID, which will be used for access to digital government, healthcare, and tourism services.
TuxCare Solutions Featured on IndustrialCyber.co (Business Wire) TuxCare, a global innovator in enterprise-grade cybersecurity for Linux, today announced it joined IndustrialCyber.co, a leading industry consortium a
ExtraHop Accelerates Security Operations with High Fidelity Network Intelligence Through New Integration with Splunk SOAR (iTWire) Security teams can now seamlessly increase the speed of investigations with more reliable threat intelligence COMPANY NEWS: ExtraHop, the leader in cloud-native network intelligence, has announced a new integration between Reveal(x), its network detection and response (NDR) platform, and Splunk SOAR...
Bitdefender Launches Industry’s First Chat Protection Feature for Mobile-Based Instant Messaging Applications (Bitdefender) New Scam Alert Technology Detects Malicious Links and Notifies Users During Conversations Over WhatsApp, Facebook Messenger,Telegram and Discord
Technologies, Techniques, and Standards
CISA Upgrades to TLP 2.0 (CISA) Today, CISA officially upgraded to Traffic Light Protocol (TLP) 2.0, which facilitates greater information sharing and collaboration. CISA made this upgrade in accordance with the recommendation from the Forum of Incident Response and Security Teams to upgrade to TLP 2.0 by January 2023. Key TLP 2.0 updates:
CYBER101 – Cyber Mission Force (U.S. Cyber Command) The Cyber Mission Force (CMF) is U.S. Cyber Command’s (USCYBERCOM) action arm. CMF teams execute the command’s mission to direct, synchronize and coordinate cyberspace operations in defense of U.S. national interests.
CISA, NSA Unveil Recommended Security Practices for Software Suppliers (Executive Gov) Looking for the latest Government Contracting News? Read about CISA, NSA Unveil Recommended Security Practices for Software Suppliers.
ESF Partners, NSA, and CISA Release Software Supply Chain Guidance for Suppliers (National Security Agency/Central Security Service) The National Security Agency (NSA), the Cybersecurity and Infrastructure Security Agency (CISA), and Office of the Director of National Intelligence (ODNI) released Securing the Software Supply Chain:
Amid election conspiracy theories, CISA says there's no credible threat to voting equipment (CyberScoop) CISA Director Jen Easterly said the administration is "concerned" about foreign influence during the upcoming elections.
Election security has improved since 2016 (Washington Post) In election security, there’s a gap between technical reality and political reality
You can up software supply chain security by implementing these measures (Help Net Security) Recent cyberthreats have highlighted security gaps in the software supply chain, and enterprises must ensure trust and security.
Microsoft president offers cybersecurity tips for small businesses (Baton Rouge Business Report) If Microsoft president Brad Smith were running a small business, the first thing he says he'd do to assess cybersecurity risk doesn’t cost anything, Inc. reports.
Design and Innovation
Following Log4j: Supporting the developer community to secure IT (Help Net Security) Log4j’s vulnerability has highlighted just how much modern software relies on open-source projects and what can go wrong.
Research and Development
This scientist is trying to create an accessible, unhackable voting machine (MIT Technology Review) Some experts believe that the pursuit is misguided, because no computer could ever be unhackable. Juan Gilbert was undeterred.
Legislation, Policy, and Regulation
FACT SHEET: The Second International Counter Ransomware Initiative Summit (The White House) The White House brought together 36 countries, and the EU, for the Second International Counter Ransomware Initiative (CRI) Summit October 31-November 1,
White House moves to bolster global push against ransomware (SC Media) The White House is seeking to advance global cooperation between governments and the private sector in combating ransomware operations as it spearheads the two-day International Counter Ransomware Summit, CyberScoop reports.
World leaders make fresh vows to fight global ransomware threat (The Record by Recorded Future) A coalition of government cybersecurity leaders from nearly 40 countries on Tuesday reaffirmed to work together to stamp out ransomware attacks, launching several new efforts meant to better combat the rising global threat.
Ransomware costs top $1 billion as White House inks new threat-sharing initiative (CyberScoop) The Treasury Department released its finding as the White House wraps up an international summit on fighting the ransomware problem.
The Federal Communications Commission (again) sets its sights on cybersecurity (JD Supra) The field of regulators interested in the cybersecurity practices of private companies is getting crowded, with the Federal Communications Commission...
White House invites dozens of nations for ransomware summit (CBS News) The White House is bringing together three dozen nations, the European Union and private-sector companies for a two-day summit that looks at how best to combat ransomware attacks.
Kioxia warns of potential cost of US chip policy over China (Register) Nice NAND industry you have there, would be a shame if something happened to it
TSA’s New Cyber Directive for Freight & Passenger Railroad Carriers are the Agency’s Latest Move to Keep the Nation on Track (JD Supra) In its continued efforts to enhance the cybersecurity of transportation and other critical infrastructure systems across the country, the...
Election Misinformation Targeting Diverse Communities Drives Calls for Collaboration (Nextgov.com) Nonprofit groups have stated that federal officials need to do more to directly engage with their efforts on the ground.
Interview: FCC commissioner says government should ban TikTok (Axios) It's the strongest language Carr has used to-date to urge action on TikTok.
Businesses Seek to Soften SEC Cyber Rules (Wall Street Journal) Lobbying groups and companies are expressing concern over public disclosure requirements.
Litigation, Investigation, and Law Enforcement
Government by Gmail catches up with UK minister (Register) Home Secretary 'nominally in charge' of nation's security apologizes for breach of tech protocols
Ransomware Trends in Bank Secrecy Act Data between July 2021 and December 2021 (US Treasury Financial Crimes Enforcement Network) Russia-Related Malware Dominates Ransomware Landscape
US Treasury: Financial institutions reported $1.2 billion in ransomware losses in 2021 (The Record by Recorded Future) United States financial institutions reported a record year for ransomware attacks and payments in 2021 – driven by malware variants believed to be linked to Russia.
Russian Hacker Behind Massive Data Breach Released From U.S. Prison (RadioFreeEurope/RadioLiberty) A Russian hacker who was convicted for his leading role in one of the largest data thefts in U.S. history has been released from prison after serving most of his 12-year sentence.
Mondelez, Zurich settle $100m+ NotPetya insurance lawsuit (Register) Deal could 'upend the entire cyber-insurance ecosystem and make it almost impossible to get meaningful cyber coverage'
Former employee admits defrauding Apple of $17 million (ABC News) Federal prosecutors say a former Apple employee pleaded guilty Tuesday to defrauding the tech giant out of more than $17 million over seven years
The secret police: Inside the app Minnesota police used to collect data on journalists at protests (MIT Technology Review) Intrepid Response is a little-known but powerful app that lets police quickly upload and share information across agencies. But what happens to the information it collects?
NSA Watchdog Concluded One Analyst’s Surveillance Project Went Too Far (Bloomberg) Newly unearthed inspector general’s report is coda to Snowden-era controversy over NSA surveillance methods.