Dateline: Hybrid wars in Ukraine, Russia, Israel, and Gaza.
Ukraine at D+607: Hacktivism and trolling online; raids and penal battalions on the ground. (CyberWire) A Russian elite organization becomes a penal battalion as Ukrainian forces continue their push in the south and their raids into occupied Crimea. Hacktivist auxiliaries and intelligence services operate in cyberspace.
Google Maps Disables Live Traffic Data in Israel, Gaza at Military Request (Bloomberg) Israeli army asked tech giant to limit real-time information. Google took similar action in Ukraine during war with Russia.
Hamas frees two Israeli women as US advises delaying ground war to allow talks on captives (AP News) The International Committee of the Red Cross says Hamas militants have released two hostages it had been holding captive in the Gaza Strip.
‘They shot indiscriminately, abducted whoever they could’: Survivors recount horror of kibbutz massacre (The Telegraph) More than 100 bodies found at tiny settlement that was one of the first to be targeted by Hamas terrorists
Did Hamas Ignite a Third Intifada? (Foreign Affairs) The Third Intifada all depends on the West Bank.
War Has Smashed Assumptions About Israeli-Palestinian Conflict (New York Times) Some paradigms taken for granted about Israel and the Palestinians, both in Gaza and the West Bank, have been broken. So has the idea that Washington can ignore the Middle East.
Editors’ Note: Gaza Hospital Coverage (New York Times) The Times’s initial accounts of the blast attributed the claim of Israeli responsibility to Palestinian officials, and noted that the Israeli military said it was investigating the blast. However, the early versions of the coverage relied too heavily on claims by Hamas.
NYT admits error in Gaza hospital report (POLITICO) Early coverage “relied too heavily on claims by Hamas,” the editors' note reads.
How the Media Got the Hospital Explosion Wrong (The Atlantic) Amplifying dubious Hamas claims caused real damage. No wonder public trust in news reporting is so low.
The Hamas Threat of Hostage Execution Videos Looms Large Over Social Media (WIRED) Hamas has threatened to broadcast videos of hostage executions. With the war between Israel and Hamas poised to enter a new phase, are social platforms ready?
A Record of Pure, Predatory Sadism (The Atlantic) Officials in Israel screened footage of the Hamas attack for the press: “What we shared with you, you should know it,” one official said.
Cyber attacks in the Israel-Hamas war (The Cloudflare Blog) Since the October 7 Hamas attack, DDoS attackers have been targeting Israeli newspaper and media websites as well as software companies and financial institutions.
Russia-Ukraine war live: Zelenskiy says he will keep up military pressure on Russian-occupied Crimea (the Guardian) Ukrainian president says military pressure will continue, during video address in Prague that was marred by possible hack attack, says Czech parliament
Russia-Ukraine war at a glance: what we know on day 608 (the Guardian) Sweden says ‘external force or tampering’ broke cable to Estonia; US seeks forfeiture of Russian-owned yacht worth $300m
Russian hackers ramp up attacks on Ukrainian authorities investigating war crimes (Digital Watch Observatory) The objective appears to be to identify war crime suspects.
Ukraine security services involved in hack of Russia’s largest private bank (Record) Ukrainian hackers collaborated with the country's security services, the SBU, to breach Russia's Alfa-Bank.
Hacking against humanity: Are Red Cross cyber rules credible? (CSO Online) Civilian hacking during conflicts can be dangerous for the people caught in them, but new hacking rules provide hope.
Russia spread bedbug panic in France, intelligence services suspect (The Telegraph) Agents investigate whether so-called ‘doppelganger’ articles on social media were faked
Posthumous Honors For Murder Convict Spark Outrage In Russian Town (RadioFreeEurope/RadioLiberty) Schoolchildren in a southern Russian town were brought together at a display to honor local men who died in the war in Ukraine -- including a repeat offender who was convicted of the brutal 2018 murder of an Interior Ministry employee. Relatives and police colleagues of the victim are irate.
A price cap on Russian oil aims to starve Putin of cash. But it's largely been untested. Until now (AP News) Prices for Russian oil have risen well above a price cap imposed by Western allies as part of sanctions over the invasion of Ukraine.
Justice Department and Russian Billionaire Battle Over Seized Superyacht (Wall Street Journal) The DOJ confiscated the 348-foot Amadea as an asset of a sanctioned oligarch. Now, another Russian tycoon says he owns the vessel.
Attacks, Threats, and Vulnerabilities
Canada tells of China-linked ‘spamouflage’ blitz on MPs’ social media (the Guardian) Foreign ministry says bots posted conspiracy theories, lies and abuse as comments on feeds including that of prime minister Justin Trudeau
DoNot Team's New Firebird Backdoor Hits Pakistan and Afghanistan (The Hacker News) Discover the latest cyber threat: DoNot Team's Firebird backdoor targeting Pakistan and Afghanistan.
From Copacabana to Barcelona: The Cross-Continental Threat of Brazilian Banking Malware (Proofpoint) Key Takeaways A new version of Grandoreiro malware from TA2725 targets both Mexico and Spain. Previously this malware has only targeted victims in Brazil and Mexico. Overview Proofpoint research...
Hola Espana: 'Grandoreiro' Trojan Targets Global Banking Customers (Dark Reading) Brasileiro cybercrime has been on the rise. Now, one campaign targeting bank customers has reached beyond the Americas, into Europe.
Alleged covert wiretap on Russian messaging service blown by expired TLS certificate (Record) Researchers said the suspected man-in-the-middle attack was identified when the administrator of jabber.ru, the largest Russian XMPP service, received a notification that one of the servers’ certificates had expired.
Hackers update Cisco IOS XE backdoor to hide infected devices (BleepingComputer) The number of Cisco IOS XE devices detected with a malicious backdoor implant has plummeted from over 50,000 impacted devices to only a few hundred after the attackers updated the backdoor to hide infected systems from scans.
Cisco Finds Second Zero-Day as Number of Hacked Devices Apparently Drops (SecurityWeek) Cisco has found a second zero-day vulnerability that has been exploited in recent attacks as the number of hacked devices has dropped.
Okta could be facing more cyberattacks following customer support hack (TechRadar) A hacker obtained browser session cookies for Okta customers
1Password detects “suspicious activity” in its internal Okta account (Ars Technica) 1Password CTO says investigation found no compromise of user data or sensitive systems.
Okta cybersecurity breach wipes out more than $2 billion in market cap (NBC4 Washington) Okta shares continued their fall Monday after the company said client files had been accessed by an unknown hacker, the latest attempt involving the company.
QNAP takes down server behind widespread brute-force attacks (BleepingComputer) QNAP took down a malicious server used in widespread brute-force attacks targeting Internet-exposed NAS (network-attached storage) devices with weak passwords.
What Would A Cyber-Physical Disruption of Formula One or the Super Bowl Look Like? (Inside Cyber Warfare) Everything an adversary would need is already available through open sources
US energy firm shares how Akira ransomware hacked its systems (BleepingComputer) In a rare display of transparency, US energy services firm BHI Energy details how the Akira ransomware operation breached their networks and stole the data during the attack.
Data Breach (Board of Elections) On Friday, October 20, during a daily morning check-in call with DataNet Systems, DCBOE learned that
DC elections agency warns voting roll may have been stolen (Register) Home of the Republic seemingly hit by Sony/NTT Docomo ransomware crew
Financial info of students, alumni compromised by August data breach, U-M says (Bridge Michigan) University of Michigan students, employees, alumni and others may have had their stolen by an ’unauthorized third party’
American Family Insurance confirms cyberattack is behind IT outages (BleepingComputer) Insurance giant American Family Insurance has confirmed it suffered a cyberattack and shut down portions of its IT systems after customers reported website outages all week.
American Family Insurance Confirms Reports of Cyber Attack, Raising Consumers’ Concerns Over a Possible Data Breach | JD Supra (JD Supra) Last week, American Family Insurance (“American Family”) confirmed that the recent IT issues the company has been dealing with were due to a...
American Family Shuts Down Some Systems to Investigate 'Unusual Activity' (Insurance Journal) American Family Insurance shut down "several business systems" after the insurer said it "detected unusual activity in a portion of its network" In an
American Family Insurance shuts down some systems after unusual activity detected (Wisconsin State Journal) Madison-based American Family Insurance has confirmed it detected "unusual activity" in a portion of its network this week.
UPDATE: Hospitals across Southwestern Ontario impacted by cyber attack (windsornewstoday.ca) A release from hospitals in Windsor, Chatham, and Sarnia said it is investigating to see if any patient information was compromised.
Rock County ‘cyber event’ was a ransomware attack (GazetteXtra) JANESVILLE – A recent “cyber event” on Rock County was a malicious ransomware attack by criminal actors, County Administrator Josh Smith confirmed Monday.
CISA Adds One Known Exploited Vulnerability to Catalog (Cybersecurity and Infrastructure Security Agency | CISA) CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.
CVE-2023-20273 Cisco IOS XE Web UI Unspecified Vulnerability
Vulnerability Summary for the Week of October 16, 2023 (Cybersecurity and Infrastructure Security Agency | CISA) High Vulnerabilities Primary Vendor -- Product Description Published
Security Patches, Mitigations, and Software Updates
CISA Updates Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities (Cybersecurity and Infrastructure Security Agency | CISA) Today, CISA updated its guidance addressing two vulnerabilities, CVE-2023-20198 and CVE-2023-20273, affecting Cisco’s Internetworking Operating System (IOS) XE Software Web User Interface (UI).
SolarWinds fixed three critical RCE flaws in its Access Rights Manager product (Security Affairs) Researchers discovered three critical remote code execution vulnerabilities in the SolarWinds Access Rights Manager (ARM) product.
Citrix warns admins to patch NetScaler CVE-2023-4966 bug immediately (BleepingComputer) Citrix warned admins today to secure all NetScaler ADC and Gateway appliances immediately against ongoing attacks exploiting the CVE-2023-4966 vulnerability.
Amazon is making it easier and safer for you to access your account with passwordless sign-in (US About Amazon) Passkeys offer an easy and more secure way to sign in to your Amazon account.
Amazon enables passwordless passkeys on iOS and the web (The Verge) Will you turn on passkeys for Amazon?
Face Search Engine PimEyes Blocks Searches of Children’s Faces (New York Times) The change came in response to worries that the service could be used nefariously by a stranger.
Trends
New Report from Abnormal: The State of Email Security in an AI World (Abnormal) The report reveals security leaders’ greatest concerns about the growing threat of generative AI in the enterprise, particularly via the email vector
The State of Email Security in an AI-Powered World (Abnormal) Discover how cybersecurity leaders are adapting to an increasingly AI-driven threat landscape in this report.
Cyber Insurance Report: Breach Frequency Down, Breach Severity Up (Tripwire) The past half-decade has been a particularly tumultuous one for cybersecurity. However, a new report from cyber insurance provider Coalition suggests that things are beginning to stabilize.
The most common cyber claims in Canada (Canadian Underwriter) Ransomware continues to be one of top cyber threats to Canadian businesses, even though wire transfer fraud incidents are more expensive.
CYFIRMA Industries Report : FINANCE October 2023 (CYFIRMA) EXECUTIVE SUMMARY The CYFIRMA Industries Report delivers original cybersecurity insights and telemetry-driven statistics of global industries, covering one sector each...
How Much Does Your Information Cost? | Cofense (Cofense) Your data is worth more than you think. Learn how much information stolen by Malware families cost on the dark web, and what to do if your data is compromised.
1 in 5 Digital Trust Executives Lack Confidence in their Organizations' Programs to Protect Data (PR Newswire) Of executives involved in their organizations' digital trust programs — which manage data protection, privacy and/or governance — 21% lacked...
Onyxia Cyber Survey Finds 60% of CISOs Measure Their Security Programs At Least Once a Month (PR Newswire) Onyxia Cyber, the industry-leading provider of AI-driven Cybersecurity Management solutions, has released the results from a...
Zerto Research Report Finds Companies Lack a Comprehensive Ransomware Strategy (Zerto) Gain some insights from Zerto 2023 Ransomware Strategy Survey, conducted at VMware Explore US in August 2023. It found a lack of comprehensive ransomware strategies among companies.
2023 Elastic Global Threat Report (Elastic) Read the 2023 Elastic Global Threat report for trends in malware, endpoint, and cloud security with recommendations for security teams, analysts, and CISOs.
Fourth Annual IT Security Report from Devolutions Unveils Latest Trends in the SMB Fight Against Cyber Threats (GlobeNewswire News Room) The fourth annual IT Security Report from Devolutions unveils the latest trends in the SMB fight against cyber threats....
NordVPN study: Privacy policy awareness (NordVPN) NordVPN study shows that it takes one working day to read the privacy policies of the most visited websites in the US and a week for the 96 websites visited monthly.
Marketplace
Rockwell Automation to acquire Chicago-based cybersecurity company (Milwaukee Business News) Rockwell Automation plans to acquire Chicago-based Verve Industrial Protection, a cybersecurity software and services company.
Island Raises $100 Million In Series C Funding; Increases Valuation to $1.5 Billion (Island) Island Raises $100M In Series C Funding, increasing Valuation to $1.5B. Led by Prysm Capital & joined by Canapi Ventures & existing venture partners
Censys Secures $75M in New Funding (PR Newswire) Censys, the leading Internet Intelligence Platform for Threat Hunting and Exposure Management, today announced it secured $75M in new funding....
Adlumin Closes $70M Series B, Fueling its Mission of Bringing Enterprise-Grade Security to Mid-Market Organizations (Business Wire) SYN Ventures Leads Investment in the Security Operations Platform and Managed Detection and Response Provider Making Sophisticated Security Attainable
Security solutions provider Keyfactor picks up investment from Sixth Street Growth (PE Hub) The investment puts Keyfactor at a valuation of about $1.3 billion.
Polkadot Blockchain Developer to Eliminate About 30% of Staff (Bloomberg) Parity Technologies will cut a total of about 100 employees. Blockchain infrastructure firm will focus on technology.
IBM and AWS leap deeper into bed for AI love affair (diginomica) AWS is the latest partner for veteran tech giant IBM. But where does that leave the latter on AI? We ask IBM Consulting’s AI chief.
ThreatQuotient’s Private Intelligence Sharing Community Invites Cybersecurity Practitioners to Apply for Membership (Business Wire) ThreatQ Community has over 100 existing members, made up of trusted and experienced professionals contributing to crowdsourced security intelligence aimed at strengthening the community’s defenses
DISA looks to the open market for secure web browsing contract (Nextgov.com) A contracting notice indicates that the Defense Department is looking to compete the service that protects its systems from web-based attacks.
ClearDATA Named to Inc.’s Second Annual Power Partner Awards (GlobeNewswire News Room) Roundup highlights B2B partners that support startups across all business functions and empower growth...
Swiss Re’s Podmore takes senior cyber broker role at Aon (Insurance Insider) Aon has appointed Alex Podmore as senior cyber broker.
Plume Strengthens Executive Leadership Team with Key Appointments in Marketing and Revenue (PR Newswire) Network services and consumer experience pioneer, Plume® today announced the appointment of two new executives to its leadership...
Toni Townes-Whitley Elected as the New CEO of SAIC (HS Today) Toni Townes-Whitley became CEO and was elected to SAIC’s Board of Directors last week.
Jagdish Mahapatra Joins ColorTokens as Senior Vice President of Sales (PR Newswire) ColorTokens Inc., a leading Unified Zero Trust Platform provider, today announced the appointment of Jagdish Mahapatra as the company's Senior...
Cymulate Expands Sales Leadership Team to Drive Growth in EMEA and APAC Global Markets (Business Wire) Mikko Jarvinen joins as Vice President of Sales, Europe, Middle East, Africa, while Ben Fitzpatrick comes aboard as Vice President of Sales, Asia Pacific and Japan.
Tanium Welcomes Tony Beller as Senior Vice President of Global Partner Sales (Tanium) KIRKLAND, WA, October 24, 2023 – Tanium, the industry’s only provider of Converged Endpoint Management (XEM), today announced the arrival of industry veteran Tony Beller to its award-winning channel team. As senior vice president of global partner sales, Beller will be responsible for leading the company’s next phase of channel growth and expanding a robust […]
Products, Services, and Solutions
Swimlane Launches First of Its Kind Security Automation Ecosystem to Protect Financial Institutions (Swimlane) Financial institutions will be able to automate fraud protection, compliance, and transaction and credit line monitoring.
Data Theorem Introduces Industry's First CNAPP Workflow Optimizations for Attack Path Analysis and Protection of APIs and Software Supply Chains (Data Theorem) Cloud Secure CNAPP Adds ML-Based Hacker Toolkits and Visualizations to Improve Discovery of Data Breaches in First-Party APIs and Third-Party Software Supply Chain Assets
Versa Transforms Branch and Campus Networks with Industry’s First Software-Defined LAN to Natively Provide Zero Trust and IoT Security (Versa Networks) Versa Secure SD-LAN Combines Switching, Routing, Security and Network Services While Enabling Switches and Access Points to Become Zero Trust Enforcement Points
Microsoft opens up Security Copilot for early access (Register) Copilotization of all things continues... as helper offers incident reports to share with the boss and more
Centific and Prove Identity partner to bridge cybersecurity and fraud protection gap (Help Net Security) Centific and Prove Identity collaborate to offer businesses enhanced digital security and seamless customer experiences.
Deep Instinct Prevention for Storage fills gaps in data protection left by legacy tools (Help Net Security) Deep Instinct Prevention for Storage provides organizations with a holistic approach for storage security across public clouds.
Unit21 Real-Time Monitoring empowers users to identify potential fraud (Help Net Security) Unit21 Real-Time Monitoring provides a holistic view of transactions, enabling thorough evaluation to identify potential fraud.
Deep Instinct Launches Prevention-First Approach to Storage Protection (Business Wire) Deep Instinct Prevention for Storage fills the gap left by legacy tools, equipping teams with >99% efficacy in preventing unknown threats from reaching data, wherever it is stored
Intercede unveils secure FIDO authentication solution with Yubico collaboration (IT Brief Australia) Intercede has introduced a secure FIDO authentication solution in partnership with tech firm Yubico, a move set to revolutionise business log-ins.
WatchGuard Launches MDR Service, Helps MSPs Accelerate Cybersecurity Service Delivery (GlobeNewswire News Room) Amid rising customer demand for MDR, the new offering allows MSPs to offer 24/7 threat detection and response services to customers without the burden of...
72% of consumers are apprehensive about the potential misuse of their health information by external entities (PR Newswire) Today Cassie, the consent management platform serving Fortune 500 companies globally, unveiled a new research report about consumer's level of...
Radware Launches Enhanced Program for Managed Security Service Providers (GlobeNewswire News Room) Combines a high margin data center protection and application security service offering with low cost of entry...
BlackDice and Landatel Partner to Bring AI-Powered Cybersecurity Solutions to Small Businesses (GlobeNewswire News Room) BlackDice Holdings Corp. ("BlackDice," or the “Company”), an emerging player in AI-powered cybersecurity for the Telecom industry, has partnered with Landatel, a leading provider of telecommunications networks solutions in more than 70 countries.
Automox Launches New AVR as the Fastest Way to Ingest and Remediate Thousands of Vulnerabilities Across Operating Systems and Third-Party Software (GlobeNewswire News Room) The new version of Automox’s vaunted Automated Vulnerability Remediation delivers end-to-end CVE-prioritized remediation of thousands of vulnerabilities...
What’s new: GoTo announces nearly 60 powerful security features, new integrations, and AI advancements to meet evolving digital workplace needs (GoTo) GoTo announces IT Asset Management, Logitech integration, AI advancements, and more, driving continued innovation for remote IT support
ProcessUnity Achieves ISO/IEC 27001 Certification for Information Security Management Controls (Business Wire) Leader in helping organizations manage third-party risk verifies its data security practices with compliance for critical industry standards
Veeam and Sophos Unite with Strategic Partnership to Advance Security of Business-Critical Backups with Managed Detection and Response for Cyber Resiliency (Veeam Software) Veeam and Sophos Unite with Strategic Partnership to Advance Security of Business-Critical Backups with Managed Detection and Response for Cyber Resiliency
SecurityScorecard Achieves FedRAMP® Ready Designation to Enable U.S. Federal Agencies with Supply Chain Risk Management, Critical Infrastructure Monitoring, and Regulatory Oversight (SecurityScorecard) White House National Cybersecurity Strategy mandates a ‘data-driven’ approach. TSA partnership is a model for U.S. federal agencies with oversight of critical infrastructure.
SentinelOne® Bolsters Threat Intelligence Capabilities with Singularity™ Threat Intelligence (Business Wire) New solution expands company’s ability to deliver deep insights needed to proactively protect against threats and mitigate risk
Delinea Announces Industry-First, Intelligent Automated Auditing to Reduce Risk, Simplify the Compliance Process, and Improve Security Postures (PR Newswire) Delinea, a leading provider of solutions that seamlessly extend Privileged Access Management (PAM), today announced its planned release of...
Privacera Announces the General Availability of Its Generative AI Governance Solution Providing a Unified Platform for Data and AI Security (PR Newswire) Privacera, the AI and data security governance company founded by the creators of Apache Ranger™ and the industry's first comprehensive...
Lacework Announces Enterprise Multicloud Platform Updates (PR Newswire) Lacework, the data-driven cloud security company, today announced a series of updates that expand the platform's enterprise-grade capabilities...
PlainID and BigID Partner to Build a Resilient Data Protection Framework (PR Newswire) PlainID, the Authorization Company™, today announces their strategic partnership with leading data security company BigID, teaming up to...
Judy Security Launches Next-Generation Control Center, Elevating MSP and MSSP Cybersecurity Management (PR Newswire) Judy Security, a leading provider of simple and affordable all-in-one cybersecurity for SMBs, today announced Judy Control Center. The...
Cohesity and Red Hat Enter Strategic Collaboration to Embed Red Hat Enterprise Linux into the Cohesity Data Cloud (Business Wire) Cohesity will adopt Red Hat Enterprise Linux as the operating system foundation for the Cohesity Data Cloud to help advance innovations in data security and management
Technologies, Techniques, and Standards
Phishing Guidance: Stopping the Attack Cycle at Phase One (Cybersecurity and Infrastructure Security Agency | CISA) Social engineering is the attempt to trick someone into revealing information (e.g., a password) or taking an action that can be used to compromise systems or networks.
Closing the Gap Between Exposed and Exploited (BlueVoyant) Cisco disclosed a zero-day vulnerability with a maximum severity rating on October 16. Find out how BlueVoyant responded.
How to ask the board and C-suite for security funding (CSO Online) Cybersecurity funding is inextricably coupled with enterprise risk management as boards of directors take on more responsibility for purchasing decisions.
The Great CVSS Bake Off: Testing How CVSS v4 Performs Versus v3 (Orca Security) In this article, we compare the new CVSS version 4 with the old version 3.1 and explain key differences between the two.
Design and Innovation
Companies Look to Human Moderators to Keep AI Apps in Line (Wall Street Journal) Borrowing from social-media platforms, software maker Intuit is hiring content moderators to help keep toxic language and other bad behavior off its AI systems.
How gen-AI is getting faster and learning to admit it doesn't know (Computing) The arrival of user-friendly large language models has shoved the possibilities of generative AI firmly into the public consciousness, suddenly adding whole new dimensions to search, information retrieval, translation, programming, art, design and writing.
This new data poisoning tool lets artists fight back against generative AI (MIT Technology Review) The tool, called Nightshade, messes up training data in ways that could cause serious damage to image-generating AI models.
Research and Development
Next-Generation Cybersecurity Defenses Coalesce for Space Systems (Satellite Today) Experts are optimistic about the future of cybersecurity as it relates to space, despite growing concern over the modern threat environment.
Academia
CISA Awards CYBER.ORG $6.8M in Funding for K-12 Cyber Education (Cybersecurity and Infrastructure Security Agency) The Cybersecurity and Infrastructure Security Agency (CISA) awarded $6.8 million in funding through the Cybersecurity Education and Training Assistance Program (CETAP) to the nonprofit CYBER.ORG, a cybersecurity workforce development organization.
UWF expands free cybersecurity training program amid statewide job openings (WEAR) Florida is number four in the nation for the most openings in cybersecurity with nearly 40,000 jobs, according to Statista.This has led the U
UNLV expanding free cybersecurity assistance to small businesses amid high-profile hacks - The Nevada Independent (The Nevada Independent) The university received $3 million in grants to bolster its cybersecurity training and consulting. MGM, Caesars and the Clark County School District have recently been victims of cyberattacks.
Legislation, Policy, and Regulation
Ahead of top Chinese diplomat’s U.S. visit, Five Eyes officials call attention to Chinese hacking (Washington Post) China’s top diplomat will be in Washington later this week amid a bid to restart re-engagement between Beijing and the United States, and a group of Western nation spy leaders are warning about Chinese hacking.
Spies Bring Their China Warnings in From the Cold (Bloomberg) We live in a world where an informal chat on LinkedIn can harm national security.
EU Parliament set to request involvement in cybersecurity certification schemes (Euractiv) All major political groups are expected to get behind amendments requiring the adoption of cybersecurity certification schemes to be rubberstamped by the European Parliament.
How resilient is UK Critical National Infrastructure to cyber-attack? (UK Parliament) The UK is the third most targeted country in the world for cyber-attacks, after the US and Ukraine.
Britain’s Big AI Summit Is a Doom-Obsessed Mess (WIRED) UK prime minister Rishi Sunak’s global summit on AI governance will focus on extreme scenarios of algorithms causing harm. Many British AI experts would rather he focus on near-term problems.
CEO of China's Weibo tests new real-name policy on his own account (Reuters) The chief executive of China's Weibo on Friday confirmed that China may start denying anonymity to online commentators on politics and finance by requiring them to display their names on their accounts, telling users the policy was incoming.
CISA Releases New Resource to Help Small and Medium-Sized Businesses Develop Supply Chain Resilience Plans (Cybersecurity and Infrastructure Security Agency) The Cybersecurity and Infrastructure Security Agency (CISA) released a new resource guide today, Empowering Small and Medium-Sized Businesses (SMB): A Resource Guide for Developing a Resilient Supply Chain Risk Management Plan, which provides Information and Communications Technology (ICT) SMBs with a starting point develop and tailor a supply chain risk management (SCRM) plan that meets the needs of their business.
Empowering Small and Medium-Sized Businesses (Cybersecurity and Infrastructure Security Agency | CISA) A Resource Guide that provides a valuable starting point for SMBs to develop and tailor an ICT SCRM plan that meets the needs of their business.
CISA to Update National Cyber Incident Response Plan in 2024; Eric Goldstein Quoted (Executive Gov) Looking for the latest Government Contracting News? Read about CISA to Update National Cyber Incident Response Plan in 2024; Eric Goldstein Quoted.
As Congress idles, key lawmakers retain sense of urgency on surveillance law (Record) Section 702 of the Foreign Intelligence Surveillance Act (FISA) will sunset on January 1 without congressional action. Several committee chairman are pushing ahead with bills to renew the controversial law.
Litigation, Investigation, and Law Enforcement
Former NSA worker pleads guilty to trying to sell US secrets to Russia (AP News) A former National Security Agency employee from Colorado has pleaded guilty to trying to sell classified information to Russia.
Ex-NSA employee admits trying to sell top-secret information to Russia (Axios) A former National Security Agency employee admitted trying to sell classified national security information to Russia, according to a plea deal Monday.
China's crackdown on cyber scams in Southeast Asia ensnares thousands but leaves the networks intact (AP News) Tens of thousands of people, many of them Chinese, have been caught up in cyber scams based in Southeast Asia.
12 people arrested for bank malware scam, youngest being just 17 (The Independent Singapore News) Their malicious programs resulted in unauthorized transactions from victims' bank accounts.
Spain arrests 34 cybercriminals who stole data of 4 million people (BleepingComputer) The Spanish National Police have dismantled a cybercriminal organization that carried out a variety of computer scams to steal and monetize the data of over four million people.
Police Disrupt Ragnar Locker Ransomware Group (Infosecurity Magazine) Prolific variant frequently targeted critical infrastructure
Ragnar Locker Ransomware Boss Arrested in Paris (Dark Reading) Cops track down ransomware developer and seize Ragnar Locker infrastructure and data-leak site, Europol says.
E-Root marketplace credential-selling admin extradited to US (Register) There was a young man from Moldova, who the Feds just want to roll over, but with 20 inside, and nowhere to hide, he just wants it all to be over
DOJ Civil Cyber-Fraud Initiative False Claim (National Law Review) US Department of Justice Civil Cyber Fraud Initiative CCF Initiative employs False Claims Act FCA to hold entities that put US information at risk accountable
NJ Man Hired Online to Firebomb, Shoot at Homes Gets 13 Years in Prison (KrebsOnSecurity) A 22-year-old New Jersey man has been sentenced to more than 13 years in prison for participating in a firebombing and a shooting at homes in Pennsylvania last year. Patrick McGovern-Allen was the subject of a Sept. 4, 2022 story…
Flagstar Bank Hit With Latest MOVEit Suit Faulting Cybersecurity (Bloomberg Law) Flagstar Bank faces proposed class action claims alleging it failed to adequately protect customers’ sensitive data from the Clop-MOVEit ransomware hack and then slow-walked its notification to the 837,000 it impacted.
Automakers and Suppliers Spar Over Car Data (Wall Street Journal) Car-parts makers, rental companies, repair shops and insurers are battling with manufacturers over a coming European regulation that would allow more companies to profit from car data, divvying up valuable information about drivers habits and car functions.