Dateline: Russia's hybrid war against Ukraine.
Ukraine at D+482: Fancy Bear sighting. (CyberWire) Fighting continues as Ukraine's Ministry of Defense says its counteroffensive has hardly begun. GRU cyber operators are found active in Ukrainian mail servers.
Zelenskiy Calls For 'Real Projects' As Allies Pledge Billions To Rebuild War-Torn Ukraine (RadioFreeEurope/RadioLiberty) President Volodymyr Zelenskiy has called on Ukraine's allies to come up with concrete projects for the postwar development of the country as the U.S., the European Union, and Britain pledged billions in reconstruction and recovery funds for Kyiv as it grapples with Russia's 16-month invasion.
Fighting simmers across Ukrainian front as Kyiv’s forces look to advance (Washington Post) Russia launched a wave of drone attacks on several regions of Ukraine early Tuesday, and fighting simmered in key pockets across the long front line as Ukrainian forces continued their push to oust occupying Russian troops.
Moment Ukraine's special forces kill Russians in close-quarters trench fighting (The Telegraph) Putin's soldiers have dug extensive defensive systems meaning fighting has been brutal
The True Purpose of Ukraine’s Counteroffensive (The Atlantic) Kyiv needs to show Russians that the war is not worth fighting.
Russia's antique tanks are finding a second life as VBIEDs (Task & Purpose) A recent video shows a Russian T-54/55 tank laden with explosives being destroyed in a massive explosion while advancing on a Ukrainian outpost.
What Happens if Russia Stashes Nukes in Belarus (The Atlantic) And some news about that Kremlin drone strike
France ‘backs Ukraine’s Nato bid’ to pressure Russia into peace talks (The Telegraph) Emmanuel Macron, the French president, reportedly hopes the about-turn in policy could help end the war
US official says it could take months for allies to give Ukraine F-16s (Defense News) State Department are already doing the paperwork to enable pilot training and approve future third-party transfers.
Pentagon error provides extra $6.2 billion for Ukraine military aid (Military Times) The Pentagon says it overestimated the value of the weapons it has sent to Ukraine by $6.2 billion over the past two years.
Behind Europe’s ammo pledge to Ukraine, some manufacturers grow leery (Defense News) Companies are looking for more guidance from the EU as they balance the need for speedy production with hefty market intervention from Brussels.
Finland's new defence, foreign ministers promise close relationship with US, support for Ukraine (yle) Defence Minister nominee Antti Häkkänen said that a Ukrainian victory is essential for Finland and Europe's security.
BlueDelta Exploits Ukrainian Government Roundcube Mail Servers to Support Espionage Activities (Recorded Future) A new report details a campaign by the threat actor, BlueDelta, likely intended to enable intelligence-gathering to support Russia’s invasion of Ukraine.
APT28 group used three Roundcube exploits (CVE-2020-35730, CVE-2021-44026, CVE-2020-12641) during another espionage campaign (CERT-UA#6805) (CERT-UA) Operational information was received from the participant of the information exchange regarding the detection of network connections between the information and communication system (ICS) of the state organization of Ukraine and the infrastructure associated with the APT28 group.
Russia’s ‘Fancy Bear’ hackers targeted Ukrainian gov’t, military orgs (Record) Hackers with an infamous Russian military cyber group have targeted the Ukrainian government and a company involved in military aviation since Moscow’s invasion of its neighbor began, Ukraine's cyber agency reported Tuesday.
Russian APT Group Caught Hacking Roundcube Email Servers (SecurityWeek) A Russian hacking group has been caught hacking into Roundcube servers to spy on government institutions and military entities in Ukraine.
Russian APT28 hackers breach Ukrainian govt email servers (BleepingComputer) A threat group tracked as APT28 and linked to Russia's General Staff Main Intelligence Directorate (GRU) has breached Roundcube email servers belonging to multiple Ukrainian organizations, including government entities.
Cyberattack hits European Investment Bank (Computing) Hackers have pulled off a cyberattack on the European Investment Bank (EIB), coinciding with recent threats from Russia about destabilising the Western financial system.
Q&A with Gen. Hartman: ‘There are always hunt forward teams deployed’ (Record) Maj. Gen. William Hartman, the head of the Cyber National Mission Force, gives an in-depth interview to the Click Here podcast team about how U.S. forces have helped protect Ukraine's networks from Russian cyberattacks.
Deputy Pentagon Press Secretary Sabrina Singh Holds a Press Briefing (U.S. Department of Defense) Deputy Pentagon Press Secretary Sabrina Singh held a press briefing.
The Treacherous Path to a Better Russia (Foreign Affairs) Ukraine’s future and Putin’s fate.
Kremlin's crackdown on dissent turns Russian courtrooms into instruments of repression (The Telegraph) Lawyers forced to flee as critics of Vladimir Putin's regime face harsh sentences in Soviet-style show trials
‘They Expected Me to Die on My Own’: Life as a Ukrainian P.O.W. (New York Times) Ukrainian captives released in prisoner exchanges say that beatings were common, and that they suffered from woefully inadequate health care and food.
Western companies are still financing the Russian invasion of Ukraine (Atlantic Council) Despite tremendous business interest in Ukraine’s reconstruction and development, a large number of Western companies continue to undermine Kyiv’s efforts by contributing to the Kremlin’s war chest.
Who will pay to rebuild Ukraine after all this death and destruction? It has to be Putin and Russia (the Guardian) The world must convince autocrats that if they attack their neighbours they will ultimately foot the bill for everything, says Denys Shmyhal, prime minister of Ukraine
Ukraine has made west more united than ever, says Zelenskiy (the Guardian) Ukrainian president says his country can become an engine of green growth for decades after the war
Beyond the battlefield: Why we should invest in Ukraine’s democratic future (Atlantic Council) Western military aid has helped Ukraine defend itself against Russia's full-scale invasion, but the West must also support Ukraine's efforts to consolidate the country's democracy, argue Peter Erben and Gio Kobakhidze.
Attacks, Threats, and Vulnerabilities
Why CISOs should be concerned about space-based attacks (CSO Online) Space-based data communications are reliable and useful links for users, but they’re also tempting targets for hackers and other hostile actors. CSOs and CISOs need to be aware of their organization’s exposure.
Critical RCE flaw CVE-2023-20887 in VMware vRealize exploited in the wild (Security Affairs) VMware is warning customers that critical remote code execution vulnerability CVE-2023-20887 is being actively exploited in attacks. VMware is warning customers that a critical remote code execution vulnerability in Aria Operations for Networks (Formerly vRealize Network Insight), tracked as CVE-2023-20887, is being actively exploited in the wild. “VMware has confirmed that exploitation of CVE-2023-20887 has […]
Graphican: Flea Uses New Backdoor in Attacks Targeting Foreign Ministries (Symantec) Backdoor leverages Microsoft Graph API for C&C communication.
Chinese APT15 hackers resurface with new Graphican malware (BleepingComputer) The Chinese state-sponsored hacking group tracked as APT15 has been observed using a novel backdoor named 'Graphican' in a new campaign between late 2022 and early 2023.
Chinese Hacker Group 'Flea' Targets American Ministries with Graphican Backdoor (The Hacker News) Flea, a Chinese state-sponsored actor, strikes foreign affairs ministries and more with the powerful Graphican backdoor.
Condi DDoS Botnet Spreads via TP-Link's CVE-2023-1389 (Fortinet Blog) FortiGuard Labs encountered recent samples of a DDoS-as-a-service botnet calling itself Condi. It attempted to spread by exploiting TP-Link Archer AX21 (AX1800) routers vulnerable to CVE-2023-1389,…
nOAuth: How Microsoft OAuth Misconfiguration Can Lead to Full Account Takeover (Descope) This blog will cover an authentication implementation flaw Descope discovered in Microsoft Azure AD OAuth applications that, when exploited, could lead to full account takeover.
Rorschach Ransomware: What You Need to Know (Dark Reading) Learn how the latest ransomware variant has heightened attack execution speed and what that means for cybersecurity operations.
Researchers Flag Account Takeover Flaw in Microsoft Azure AD OAuth Apps (SecurityWeek) Businesses using ‘Log in with Microsoft’ could be exposed to privilege escalation and full account takeover exploits.
Compromised Domains account for over 50% of Embedded URLs in Malware Phishing Campaigns (Cofense) Compromised Domains account for over 50% of Embedded URLs in Malware Phishing Campaigns. Find out why in our latest blog.
Reddit Hackers Threaten to Leak Stolen Data If Company Doesn’t Pay $4.5 Million, Abandon Fees (Wall Street Journal) Reddit’s users have protested the company’s plan for developer fees.
MOVEit Cyber Attack Has Many More Victims Than Previously Thought; Attackers Experimented With Vulnerability Since 2021 (CPO Magazine) The first rumblings of the MOVEit vulnerability began a little over a week ago, as payroll provider Zellis confirmed that it was the source of a breach that in turn compromised a number of its own clients. At the time, there was speculation that the vulnerability may have been exploited to penetrate many more organizations.
MOVEit hack: Gang claims not to have BBC, BA and Boots data (BBC News) Cyber-criminals say they do not have data belonging to UK organisations thought to be victims of a mass hack.
Clop hacking group claims not to have data of BBC, BA or Boots (Computing) Hacking group tells the BBC it does not have the data of UK household names thought to be victims of attacks on payroll software company.
Understanding and Mitigating the MOVEit Incidents (Imperva) Over the last several weeks, attackers have taken advantage of vulnerabilities in MOVEit, a popular file transfer application developed by Progress. Cyber attackers have successfully performed ransomware and exfiltrated data by uploading web shells into vulnerable MOVEit instances deployed worldwide. This breach poses a significant risk, not just due to its scale but also due […]
Progress Slams Researcher For Tweeting Zero-Day MOVEit Vulnerability (CRN) Progress said a researcher who tweeted a zero-day MOVEit vulnerability “put our customers at increased risk of exploitation.”
Norton Parent Says Employee Data Stolen in MOVEit Ransomware Attack (SecurityWeek) Gen Digital, which owns Avast, Avira, AVG, Norton, and LifeLock, said employee data was compromised in the MOVEit ransomware attack.
PwC and EY impacted by MOVEit cyber attack (Cyber Security Hub) The list of victims related to a cyber attack by ransomware gang Clop against document transfer service MOVEit continues to grow
EY and PwC Among the Many Entities Caught Up in the MOVEit Cybersecurity Breach Ransom (Going Concern) "We immediately launched an investigation into our use of the tool and took urgent steps to safeguard any data," said an EY spokesperson.
100,000 hacked ChatGPT accounts up for sale on the dark web (Bitdefender) In the 12 months running up to May 2023, the login credentials of over 100,000 hacked ChatGPT accounts found their way onto dark web marketplaces.
Six million stolen payment cards found on the dark web — 3.5 million (58%) are from the US (GlobeNewswire News Room) Experts say this is just “a tip of the iceberg” because 63% of cards came bundled with other private information...
Auto Insurance Customers' Personal Data and Documents Exposed Online (vpnMentor) Cybersecurity researcher, Jeremiah Fowler, discovered and reported to vpnMentor a non-password protected database containing over 250k documents related to auto insurance
Schneider Power Meter Vulnerability Opens Door to Power Outages (Dark Reading) A severe security vulnerability allows credentials for the power meters to continuously transmit in cleartext, allowing device takeover.
Hackers warn University of Manchester students’ of imminent data leak (BleepingComputer) The ransomware operation behind a cyberattack on the University of Manchester has begun to email students, warning that their data will soon be leaked after an extortion demand was not paid.
UTMC involved in Fortra data breach (13 ABC) The first known attacks began in late January of this year, and Fortra issued both a security alert and mitigation instructions on February 1.
Mondelez says crooks stole staff data in security breach (Register) 50K-plus employees' personal info swiped after law firm rolled
Hawaii community college targeted in ransomware attack (Nawaii News Now) The Hawaii Island campus learned of the cyberattack June 13.
Security Patches, Mitigations, and Software Updates
ASUS warns router customers: Patch now, or block all inbound requests (Naked Security) “Do as we say, not as we do!” – The patches took ages to come out, but don’t let that lure you into taking ages to install them.
Asus Patches Highly Critical WiFi Router Flaws (SecurityWeek) ASUS patched nine WiFi router security bugs, including a highly critical vulnerability (CVE-2018-1160) that exposes users to code execution attacks
CISA Releases Two Industrial Control Systems Advisories (Cybersecurity and Infrastructure Security Agency CISA) CISA released two Industrial Control Systems (ICS) advisories on June 20, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.
Trends
New Research from Abnormal Highlights 10X Increase in BEC Attacks in… (Abnormal) European organizations experienced a greater volume and frequency of BEC attacks over the last year, as compared to organizations in the United States.
Trellix Detects China-Affiliated APT Groups Behind Most Nation-State Threat Activity (Business Wire) The CyberThreat Report Unveils Financial, Telecom, and Energy Sectors Increasingly Under Attack
2023 Phishing Benchmarking Report For North America (KnowBe4) With the root cause of the majority of data breaches being traced to the human factor, security leaders who continue to invest solely on technology-based security layers run the risk of overlooking a best practice proven to reduce their vulnerability: security awareness training coupled with frequent simulated social engineering testing.
The State Of Employee Experience 2023 (eLearning Industry) We explore upcoming corporate culture trends and how employee experience can be improved via training and employee engagement.
Threat Labs Report — Manufacturing 2023 (Netskope) The segment highlighted in this report is enterprise users in manufacturing.
CFTC Commissioner Warns Hackers in 2023 'More Coordinated, Innovative, and Resourced' (BeInCrypto) CFTC Commissioner Christy Goldsmith Romero highlights the growing threat of cyber hackers and their increasing coordination and innovation.
Axiad and ESG Survey: 82% of Respondents Indicate Passwordless Authentication is a Top Five Priority (PR Newswire) Axiad, a leading provider of organization-wide passwordless orchestration, today announced the results of its Passwordless Authentication...
Global CISO Survey Finds Digital-First Economy Introduces Unforeseen Risks for 89% of CISOs (PR Newswire) Salt Security, the leading API security company, today released key findings of the new "State of the CISO 2023" report. Conducted by Global...
Infographic | Electric Industry Cybersecurity: Lessons Learned from the Frontlines (Dragos) Get the infographic to see how to improve your cybersecurity posture against incidents that impacted the electric industry in the past year. Download the infographic →
OpenText Cybersecurity 2023 Global Managed Security Survey: Tool Consolidation is More Than a Trend, it’s a Demand (OpenText Blogs) Results of a recent Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) survey confirm tool sprawl is a primary concern for businesses.
Marketplace
Raytheon rebrands as RTX (Defense News) The name change is the latest of several adjustments undertaken by the military tech company in recent years.
NineID Raises $2.6M to Build a Secure Bridge Between the Digital and Physical Worlds of Corporate Security (Dark Reading) After raising $1.4 million in 2022 and successfully launching its product, award-winning Belgian access management start-up NineID announced raising another $1.2 million, successfully closing its $2.6 million seed round.
2 Cybersecurity Stocks You Can Buy and Hold for the Next Decade (The Motley Fool) CrowdStrike and Fortinet are growing fast and are well-positioned for the future.
India Inc has 40,000 cybersecurity job openings right now. Here's how much you stand to earn (The Economic Times) The top job roles identified in the research study includes IT auditor, Information Security analyst, Network/IT Security Engineer/Specialist, Security Testing/Penetration Tester, and Computer Forensics analyst, with a base pay ranging from 3 to 6 lakhs for 0-3 years of experience.
How startups are tackling SA’s cybercrime epidemic (TechCabal) Cybercrime attacks are becoming a fairly regular occurrence in South Africa, with some research pegging the cost at R2.2 billion annually.
CrowdStrike CSO & Former FBI Exec Joins CLEAR’s Board of Directors (Executive Gov) Looking for the latest Government Contracting News? Read about CrowdStrike CSO & Former FBI Exec Joins CLEAR’s Board of Directors.
Lodestone Adds Security Veteran Francisco Donoso as Chief Technology Officer (Yahoo Finance) LEWISVILLE, Texas, June 20, 2023--Francisco Donoso joins Lodestone as CTO where he will lead the company’s technical strategy and guide the development of new products and services.
Products, Services, and Solutions
Orca Security Expands Partnership with Google Cloud to Comprehensively Secure Organizations’ Cloud Estates (Orca Security) Orca Security Platform Expands Value for Google Cloud Customers Through Integrations with Google Chronicle, Security Command Center and VirusTotal
Google Cloud Launches Anti-Money-Laundering Tool for Banks, Betting on the Power of AI (Wall Street Journal) The company is looking to set itself apart from a crowded field of surveillance platforms by reducing the amount of human input in the process of screening for money-laundering risks
CMS Distribution & Network and Security Device Automation vendor BackBox (CMS Distribution) BackBox and CMS Distribution to Bring Network and Security Device Automation to Customers in UK and Ireland Markets For the First Time
IRONSCALES Revolutionizes Email Security with Powerful New Generative AI Capabilities (IRONSCALES) Email security leader, IRONSCALES, unveils Themis Co-pilot for Microsoft Outlook: The first ICES solution with a fully generative AI phishing model, PhishLLM.
NinjaOne Is Rated #1 in Remote Monitoring and Management for the 17th Consecutive Quarter (NinjaOne) Read first-hand accounts of how Ninja's products and superior support help companies deliver fast and effective IT management.
Canva Secures the Cloud with SentinelOne® (Business Wire) Design software maker leverages autonomous platform to keep endpoints, workloads and remote workforce safe
ThriveDX Launches Cyber Academy for Enterprise to Address Skills Shortages (Infosecurity Magazine) The Cyber Academy Solution for Addressing the Cybersecurity Talent Shortage and Promoting Diversity & Inclusion
Maxeon Solar Technologies Standardizes on the Zscaler Zero Trust Exchange to Secure Employees Across 100+ Countries (GlobeNewswire News Room) Global Leading Manufacturer of Solar Cells and Panels is Utilizing the Zscaler Cloud Security Platform to Accelerate its Digital Transformation Initiative...
ESET Announces ESET PROTECT Elite, an All-in-One XDR Offering for Businesses and Channel Partners (PR Newswire) ESET, a global leader in cybersecurity, today announced that it has expanded its unified cybersecurity platform, ESET PROTECT, with a new...
Silobreaker to Unveil New Geopolitical Threat Intelligence Capabilities With RANE at Infosecurity Europe 2023 (Business Wire) Integration provides threat intel teams with an early warning system for geopolitical events that could trigger cyberattacks
Regulus Cyber unveils Ring ARM-V, an EW system to protect vehicles and troops from drones (Breaking Defense) Company CEO Yonatan Zur described the spoofing system, which the firm says has been in operation for a couple years, to Breaking Defense.
Ambassador Labs Doubles Down on Security and Docker Partnership (GlobeNewswire News Room) New compliance and security measures for EdgeStack; Telepresence integration with Docker Compose fuels development productivity...
NordPass to launch passkey support on mobile devices (GlobeNewswire News Room) On Wednesday, NordPass announced it will offer customers an improved passkey experience throughout the upcoming...
Tumult Labs Helps Wikimedia Foundation Ensure Privacy of Detailed Data Usage Metrics (GlobeNewswire News Room) Differential Privacy Pioneer Supports Need to Share Granular, Country-level Data Publicly for the First Time without Compromising Privacy...
Corvus Insurance Launches Incentive Program to Improve Policyholder Security through Deeper Engagement (Business Wire) Policyholders who partner with the Corvus Signal™ risk prevention solution receive a discount on their claim retention.
Brinqa Announces Strategic Partnership with Checkmarx Delivering the Industry’s Most Complete Application Security Solution (Business Wire) Integration enables organizations to build world-class application security programs addressing modern security challenges
CyberGRX Enables Microsoft to Expedite Risk Management Across Key Cloud Projects (Business Wire) Long-standing collaboration supports Microsoft customers in managing third-party risk
Halcyon Partners with Revelstoke to Enable Ransomware Resilience and Automate Incident Response (Business Wire) New Integration Provides Organizations with Multi-layered Defense That Minimizes Threat of Ransomware Attacks
TrustCloud Launches TrustHQ for Atlassian, upgrading Jira to become the central hub for all GRC activities (TrustCloud) TrustHQ™ for Atlassian creates, syncs and prioritizes tasks from TrustCloud with tickets in Jira, so employees can complete and track their GRC workflows
Noname Security Announces New API Security Testing Solution to Leave No API Untested (Noname Security) Noname Security announced the general availability of Active Testing V2 to help organizations leave no API untested.
New Baffle Manager 2.0 Delivers Rapidly Deployable and Highly Automated Enterprise Data Security Platform (GlobeNewswire News Room) New User Interface, Automation and Integrations Protect Data in Applications, Analytics and AI Workflows in Less than 30 Minutes, and Simplify Ongoing...
Building on the Success of Its Award-Winning Consumer Personal Data Removal Offering, Optery Helps Businesses Thwart Employee and Executive Attacks with Optery for Business (GlobeNewswire News Room) Optery assists IT security teams with scrubbing employees’ personal information from the web to reduce threats to the business...
Kandji Brings Okta Device Trust to Apple Devices with New Integration (GlobeNewswire News Room) Kandji’s Industry-Leading Apple Device Management Solution Combined with the Okta Identity Engine Delivers Superior Compliance and Security to Empower the...
Appdome Revolutionizes the Way Mobile Brands Defeat Mobile Bots (PR Newswire) Appdome, the mobile app economy's one stop shop for mobile app defense, today announced the launch of its new MOBILEBot™ Defense solution. This...
Appdome Unveils Gen5 Mobile Defense Framework for Mobile Applications and Brands Globally (PR Newswire) Appdome, the one-stop-shop for mobile app defense, today announced the release of Generation 5 of its in-app mobile defense framework, the core...
Appfire Meets Highest International Cybersecurity and Compliance Standards with Two ISO Certifications and SOC 2, Type 1 Recognition (PR Newswire) Appfire, the leading global provider of software that enhances, extends, and connects the world's leading platforms such as Atlassian,...
QuSecure Earns Validation in Amazon Web Services Partner Network (APN); QuProtect Awarded AWS Qualified Software Certification (Business Wire) QuSecure Also Achieves AWS Public Sector Partner Program Designation Recognizing its Expertise Leveraging AWS to Deliver Innovative Post-Quantum Cryptography Solutions
Vaultree: Cybersecurity Visionary Recognized as 2023 World Economic Forum Technology Pioneer (Business Wire) Vaultree, a global leader and trusted partner in cybersecurity, today proudly announces its recognition as a 2023 Technology Pioneer by the World Economic Forum (WEF).
Technologies, Techniques, and Standards
Cybercrime: Reporting Mechanisms Vary, and Agencies Face Challenges in Developing Metrics (US Government Accountability Office) Cybercrime, such as hacking and ransomware attacks, is increasing in the United States—leading to billions of dollars in losses and threatening public...
What Are IoT Botnet Attacks and How Can You Prevent Them? (MUO) Internet of Things devices need proper security measures in place too. Here's why hackers attack IoT tech and what you can do about it.
Why you should skip a VPN and identity-theft monitoring (Washington Post) We answer your questions about the best choices for digital photo storage and more
Design and Innovation
DarkBERT AI Can Fight Cyber Crimes: Trained On The Dark Web (TechJuice) In an unprecedented move, a group of South Korean academics developed an LLM trained exclusively on information from the dark web, DarkBERT.
The Pentagon’s Ambitious AI Plans Look Less and Less Like ChatGPT (Defense One) The military needs tools that can structure data, deliver insights, and be trusted.
Cloud security leader Zscaler bets on generative AI as future of zero trust (VentureBeat) Zscaler made new product and service announcements this week reflecting an aggressive growth strategy and intent to monetize generative AI.
Academia
Automation Alley and Oakland University to open DOE-funded Cybersecurity Center (Oakland University News) Automation Alley has been awarded $2 million from the U.S. Department of Energy’s (DOE) Office of Cybersecurity, Energy Security, and Emergency Response (CESER) to create a university-based cybersecurity center in Michigan.
Eastern Michigan University receives $1.6 million for new cybersecurity initiative (WDIV) The gift came from the GameAbove, an alumni and supporter-led philanthropic group that funds programs and numerous initiatives at the university.
Legislation, Policy, and Regulation
EU capitals want media law carve-out to spy on reporters (POLITICO) National governments want to keep their spyware options open in new media law.
India hosts technical briefing for 20 outreach nations in Vienna as Wassenaar Arrangement plenary chair (Big News Network.com) As the plenary chair of Wassenaar Arrangement India hosted a technical briefing for over 20 Outreach Partner countries and Participating States at its Enhanced
Vacant White House cyber post draws concern amid global software breach (Nextgov.com) In the aftermath of a global cyberattack exposing personal data on millions of Americans, calls are growing for the White House to fill the top slot at the Office of the National Cyber Director.
New DOJ unit will focus on prosecuting nation-state cybercrime (Record) The new section within the National Security Division will expand how the DOJ fights cybercrime that originates in foreign countries, Assistant Attorney General Matthew Olsen said.
DOJ establishes cybercrime enforcement unit as U.S. warnings mount over Chinese hacking (CyberScoop) Assistant Attorney General for National Security Matt Olsen said the center will speed up disruption campaigns and prosecutions.
Justice Department debuts a cyber-only section, aimed at boosting disruption and prosecution (Washington Post) The federal government just got a new cyber player: a section of the Justice Department wholly devoted to disrupting and prosecuting cyberthreats to national security.
Lawmakers Push to Strengthen Nuclear Cyber in Upcoming NDAA (Meritalk) Three members of the House Armed Services Committee unveiled a bipartisan measure late last week aimed at strengthening cybersecurity practices for the United States’ nuclear weapons system, and aim to advance that measure in legislation this week.
States Are Rushing to Regulate Deepfakes as AI Goes Mainstream (Bloomberg) Images of former President Donald Trump hugging and kissing Dr. Anthony Fauci, his ex-chief medical adviser. Pornographic depictions of Hollywood actresses and internet influencers. A photo of an explosion at the Pentagon.
Litigation, Investigation, and Law Enforcement
Four officials suspended after Guardian Fund ‘cyberattack’ (Witness) Insiders say an investigation identified the alleged thieves accused of siphoning money from the fund.
WSJ News Exclusive | U.S. Tracked Huawei, ZTE Workers at Suspected Chinese Spy Sites in Cuba (Wall Street Journal) Intelligence bolstered suspicions that China’s telecom giants might be playing a role in the expansion of Beijing’s eavesdropping capabilities on the island.
Crypto hack alarms ramp up as authorities crack down after $3.7 billion stolen (The Hill) The rapid growth of cryptocurrency theft over the past few years has become a major concern for U.S. authorities, who are ramping up efforts to crack down on hackers and illicit crypto schemes. Jus…
J.B. Hunt sues tech company over cybersecurity (5newsonline.com) The Arkansas company is accusing Avtex Solutions over an “elementary mistake.”
WA alleges Bellevue’s T-Mobile is uncooperative in data security probe (Seattle Times) T-Mobile is not fully cooperating with an investigation into its data security practices, the Washington state Attorney General’s Office alleged in a recent lawsuit.
FTC Proposes Settlement With Genetic Testing Company Over Unsecured Health Data (Health IT Security) The FTC charged that 1Health.io, also known as Vitagene, deceived customers about the deletion of their data, left health data unsecured, and changed its privacy policy retroactively without notifying consumers.