Dateline: Hybrid wars in Ukraine, Russia, Israel, and Gaza.
Ukraine at D+617: Advantage defense. (CyberWire) In all domains, both kinetic and cyber, the advantage seems to have shifted toward the defense (and toward the robots).
Israel-Hamas war live: US tells Israel that civilians caught in crossfire must be protected (the Guardian) US secretary of state Antony Blinken says Israel has a right to defend itself – but how it does that matters
Satellites and social media offer hints about Israel's ground war strategy in Gaza (NPR) The Israeli military appears to have encircled Gaza City, but so far, it's made only limited forays into the densest urban areas.
WSJ News Exclusive | Russia’s Wagner Group Plans to Send Air Defenses to Hezbollah, U.S. Says (Wall Street Journal) Intelligence suggests that the Russian paramilitary group might provide the SA-22 system of missiles and air-defense guns to the Lebanese militia, American officials say.
The UN Hired an AI Company to Untangle the Israeli-Palestinian Crisis (WIRED) CulturePulse's AI model promises to create a realistic virtual simulation of every Israeli and Palestinian citizen. But don't roll your eyes: It's already been put to the test in other conflict zones.
CEO of X Intervened to Get Hitler Post Taken Down (The Information) Last weekend, staffers at X grew increasingly upset after a Pakistani senator posted a photo of Adolf Hitler on the service with the text “at least now the world know, why he did, what he did,” in reference to the Holocaust. Over the course of several hours, the post drew about a million views, ...
Defense Department Continues to Stress Law of War With Israel (U.S. Department of Defense) As Israel defends itself against ongoing attacks by Hamas, defense officials continue to underscore the importance of following the law of war, the Pentagon press secretary said.
Russia-Ukraine war: List of key events, day 618 (Al Jazeera) As the war enters its 618th day, these are the main developments.
Russian War Report: Russia just lost the most troops in a single battle so far in 2023 (Atlantic Council) In Ukraine, fighting over the strategically important town of Avdiivka has led to heavy Russian losses. Meanwhile, Russian propaganda is targeting the Armenian government.
Ukraine has taken 17,000 Russians off the battlefield without firing a shot, US Army special-ops general says (Business Insider) "That's 17,000 soldiers you didn't have to blow up on the battlefield or destroy," the head of US Army Special Operations Command said in October.
Ukraine’s commander-in-chief on the breakthrough he needs to beat Russia (The Economist) General Valery Zaluzhny admits the war is at a stalemate
ATACMS missiles create new dilemmas for Russian army in Ukraine (Atlantic Council) Two weeks since Ukraine's President Zelenskyy first confirmed delivery of ATACMS missiles from the US, reports continue to mount of highly destructive ATACMS strikes against the Russian army in Ukraine, writes Mykola Bielieskov.
Senior US Republicans urge long-range missiles for Ukraine (Reuters) A group of senior Republicans in the U.S. Congress urged President Joe Biden to send longer-range missiles to Ukraine, in a show of continued support for Kyiv among U.S. lawmakers despite pushback from some conservatives against more aid.
National Armaments Directors Focus on Long-Term Support for Ukraine (U.S. Department of Defense) As the conflict in Ukraine surpassed its 600th day, national armaments directors from more than 40 countries, the European Union and NATO gathered in Brussels to discuss long-term support for Ukraine.
Putin will win unless the West finally commits to Ukrainian victory (Atlantic Council) Russian dictator Vladimir Putin is more confident than ever that time is on his side in Ukraine and believes the Western world ultimately lacks the political will to oppose him, writes Ivan Verstyuk.
Top Ukrainian general’s gloomy view of Russia war fuels military aid debate (POLITICO) Ukraine’s Gen. Valery Zaluzhnyy wants more weapons from the West to break through a “stalemate.”
War in Ukraine Loosens Russia’s Grip on Its Own Backyard (Wall Street Journal) Spooked by the war in Ukraine and the international sanctions that followed, Russia’s neighbors and allies are busy diversifying their relationships, hedging against Moscow by deepening ties with China and the West.
The Dream of a European Security Order With Russia Is Dead (Foreign Policy) How the war ends will determine Europe’s future as much as Ukraine’s.
NATO needs a plan for military and nonmilitary instruments of power to work together (Atlantic Council) The Alliance's planning must include nonmilitary parts of government as well as the private sector to reflect the realities of modern warfare.
AP news site hit by apparent denial-of-service attack (AP News) The Associated Press news website experienced an outage that appeared to be consistent with a denial-of-service attack, a federal criminal act that involves flooding a site with data in order to overwhelm it and knock it offline.
Associated Press hit by Anonymous Sudan DDoS attack? (Tech Monitor) News agency the Associated Press, or AP, may have suffered a cyberattack, with hacking gang Anonymous Sudan claiming a successful DDoS breach.
Kremlin spread rumour Putin had died to ‘test his popularity’ (The Telegraph) Ukrainian intelligence claim purposeful spread of fake news helps gauge ‘reactions of individuals, the elite and the media’
Hunt For Answers Continues Over Chinese Ship's Suspected Role In Damaging Baltic Pipeline
(RadioFreeEurope/RadioLiberty) Finnish investigators say a Chinese vessel, which is currently making its way to China through Russian waters, damaged the Balticconnector pipeline that brings gas between Finland and Estonia. Was it an accident or another example of sabotage in the Baltic Sea?
The US sanctions more foreign firms in a bid to choke off Russia's supplies for its war in Ukraine (AP News) Secretary of State Antony Blinken says the U.S. has imposed a new round of sanctions targeting Russia over its invasion of Ukraine.
Attacks, Threats, and Vulnerabilities
Spy Module Discovered in WhatsApp Mods (Infosecurity Magazine) Kaspersky said that between October 5 and 31 alone, it intercepted over 340,000 attacks
Combatting Kimsuky and Safeguarding National Intelligence (AttackIQ) In the covert realm of cyberspace, a formidable adversary has emerged – a state-sponsored, North Korean group known as Kimsuky. Their clandestine operations are not motivated by profit, but by the pursuit of state secrets and strategic intelligence for the Democratic People’s Republic of Korea (DPKR).
Critical Vulnerability: Exploitation of Apache ActiveMQ CVE-2023-46604 (Huntress) CVE-2023-46604 is a critical remote code execution vulnerability in Apache ActiveMQ. Patch now to avoid any potential adversary exploitation.
Suspected Exploitation of Apache ActiveMQ CVE-2023-46604 (Rapid7) On October 27, Rapid7 Managed Detection & Response identified suspected exploitation of Apache ActiveMQ CVE-2023-46604 in 2 separate customer environments.
Looney Tunables Vulnerability Exploited by Kinsing (Aquasec) We intercepted Kinsing's experimental incursions into cloud environments and have uncovered their efforts to manipulate the Looney Tunables vulnerability.
Critical Apache ActiveMQ Vulnerability Exploited to Deliver Ransomware (SecurityWeek) A recently patched Apache ActiveMQ vulnerability tracked as CVE-2023-46604 is being exploited to deliver ransomware.
HelloKitty ransomware now exploiting Apache ActiveMQ flaw in attacks (BleepingComputer) A remote code execution (RCE) flaw impacting Apache ActiveMQ has been under active exploitation by threat actors who use HelloKitty ransomware payloads.
Okta hit by third-party data breach exposing employee information (BleepingComputer) Okta is warning nearly 5,000 current and former employees that their personal information was exposed after a third-party vendor was breached.
5,000 Okta employees' data accessed in a third-party breach (Register) The hits keep on coming for troubled ID management biz
Nearly 5,000 Okta employees affected by third-party data breach (Record) Almost 5,000 Okta employees were affected by a data breach following a cyberattack on a third-party provider used by the company for healthcare services.
Mortgage giant Mr. Cooper hit by cyberattack impacting IT systems (BleepingComputer) U.S. mortgage lending giant Mr. Cooper was breached in a cyberattack that caused the company to shut down IT systems, including access to their online payment portal.
Mortgage and loan giant Mr. Cooper blames cyberattack for ongoing outage (TechCrunch) The home loan and mortgage refinancing giant has more than 4.1 million customers, according to the company's website.
Infamous ransomware group takes credit for cyberattack against SW Ontario hospitals (Windsor Star) Windsor Regional Hospital CEO David Musyj said the blackmailers are part of well-organized operation.
What to know about cybercrime group Daixin Team (Windsor Star) The cybercrime organization believed to be responsible for the blackmail attack at five southwestern Ontario hospitals is known as Daixin Team, a ransomware and data extortion group notorious for their strikes against the public health sector.
Toronto Public Library Website Update (Toronto Public Library) We are actively addressing a cybersecurity incident that came to our attention on Saturday, October 28.
Ace Hardware says 1,202 devices were hit during cyberattack (BleepingComputer) Ace Hardware confirmed that a cyberattack is preventing local stores and customers from placing orders as the company works to restore 196 servers.
Hackers behind CCSD cyberattack contact FOX5, share confidential student info (Fox5 Vegas) Hackers sent screenshots to prove they had student information including that of a 7-year-old girl. FOX5 called the phone number included and spoke with girl's mom.
CISA Adds One Known Exploited Vulnerability to Catalog (Cybersecurity and Infrastructure Security Agency | CISA) CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.
CVE-2023-46604 Apache ActiveMQ Deserialization of Untrusted Data Vulnerability
Security Patches, Mitigations, and Software Updates
Cisco Patches 27 Vulnerabilities in Network Security Products (SecurityWeek) Cisco has released software updates to address 27 vulnerabilities in Cisco ASA, FMC, and FTD security products.
Atlassian Releases Security Advisory for Confluence Data Center and Server | CISA (Cybersecurity and Infrastructure Security Agency CISA) Atlassian released a security advisory to address a vulnerability (CVE-2023-22518) affecting Confluence Data Center and Server. A cyber actor could exploit this vulnerability to obtain sensitive information.
CISA Releases Six Industrial Control Systems Advisories | CISA (Cybersecurity and Infrastructure Security Agency CISA) CISA released six Industrial Control Systems (ICS) advisories on November 2, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.
Trends
Vulnerability Exploitation: 3 Trends from Our Biannual Review (ReliaQuest) The ReliaQuest Threat Research Team uncovers research on the threats associated with vulnerabilities in Q2 and Q3 2023.
APT QUARTERLY HIGHLIGHTS - Q3 : 2023 (CYFIRMA) EXECUTIVE SUMMARY The third quarter of 2023 witnessed a surge in the dynamic and ever-evolving activities of Advanced Persistent Threat...
Marketplace
Former SpaceX Engineers Raise $8 Million to Launch AI Security Firm Wraithwatch (SecurityWeek) Former SpaceX cybersecurity engineers launched Wraithwatch, an AI-based security firm that received $8 million in seed funding.
FusionAuth Snags $65 Million Investment for Customer Identity Tech (SecurityWeek) Colorado startup raises new capital from Updata Partners to build out its customer authentication and authorization technology.
The AI Deals Enriching Silicon Valley’s Tech Giants (Wall Street Journal) Microsoft, Amazon and Google are getting billions in revenue from providing expensive cloud services to the startups they are backing.
Island Adds Accomplished Industry Veteran Matt Fairbanks as Chief Marketing Officer (Island) Island adds Matt Fairbanks as Chief Marketing Officer (CMO) and appoints Ellen Roeckl to Chief Communications Officer (CCO)
Illumio Hires Veteran Of Tanium, Palo Alto Networks As Channel Chief (CRN) Illumio announced it has hired Todd Palmer from Tanium as its new channel chief.
Forcepoint Announces Five New Executive Appointments for Global Governments and Critical Infrastructure Business (Yahoo Finance) Forcepoint Global Governments and Critical Infrastructure (G2CI) today announced the appointment of five cybersecurity industry veterans to its executive team. The company has named Joseph Bell as Chief Information Security Officer, Karen Clark as Chief Human Resources Officer, James Wallace as Chief Legal Officer, Jason Facer as interim Chief Financial Officer, and Greg Higham as interim Chief Information Officer.
Products, Services, and Solutions
Enzoic unveils BIN Monitoring to reduce credit card fraud (Help Net Security) Enzoic' BIN Monitoring service is designed to help banks and credit unions prevent card fraud through real-time exposure data.
AhnLab launches cloud-based XDR platform | Korea News Plus (Korea News Plus) The Korea News Plus: Insider info on Korea / 경제뉴스의 인사이더, 코리아뉴스플러스
Technologies, Techniques, and Standards
After Major Cloud Hacks, Microsoft Unveils ‘Secure Future Initiative’ (SecurityWeek) Redmond's new security initiative promises faster patches, better management of signing keys and products with a higher default security bar.
Microsoft Does Damage Control With Its New ‘Secure Future Initiative’ (WIRED) Following a string of serious security incidents, Microsoft says it has a plan to deal with escalating threats from cybercriminals and state-backed hackers.
Deputy Secretary of Defense Kathleen Hicks Announces Publication of Data, Analytics and AI (U.S. Department of Defense) Deputy Defense Secretary Kathleen Hicks announced the release of the 2023 DOD Data, Analytics and AI Adoption Strategy.
Deputy Secretary of Defense Dr. Kathleen Hicks Holds a Press Briefing to Discuss the State (U.S. Department of Defense) Deputy Defense Secretary Kathleen Hicks held a press briefing to discuss the state of artificial intelligence in the Defense Department.
Linux Foundation, ISC2 and OpenSSF Collaborate to Target Secure Code Development (Open Source Security Foundation) Linux Foundation Training & Certification, ISC2, and Open Source Security Foundation (OpenSSF) today announced a new collaboration to empower the open source cybersecurity community through secure software development, knowledge sharing, education, certification and much more. Together, the three organizations will lead the way to secure software development and lifecycle management for open source code.
Ransomware and Cyber Extortion Guide 2023 (CyberCX) This guide provides practical tools for people at all levels of an organisation to understand and manage the risk posed by ransomware and cyber extortion.
How US can get and stay ahead of adversaries on intelligence data (C4ISRNet) Opinion: Data is playing an increasingly critical role in intelligence community operations and mission support.
DHS to lean further into AI with generative pilots (Federal News Network) Eric Hysen, the agency’s chief information officer and first chief AI officer, said the goal is to give employees access to new tools and technologies to deal with the ever-growing number of…
DHS lays out new ‘cybersecurity readiness’ metrics for contractors (Federal News Network) DHS plans to use its own approach for evaluating contractor cybersecurity rather than adopting the Pentagon’s CMMC program.
Why penetration testing is critical to every robust cyber security strategy (Innovation News Network) Find out more about how penetration testing can help companies stay ahead with modern cyber security strategies.
Lock Aadhaar: Now you can easily lock Aadhaar Card sitting at home, the method is very easy (informalnewz) How to Lock Aadhaar: UIDAI gives you many such features, with the help of which you can keep your Aadhaar card and its related details safe. One such feature is Aadhaar Lock, with the help of which you can lock your biometrics. You can also unlock it if needed. Let us know how you can
CISA Launches Critical Infrastructure Security and Resilience Month 2023 (Cybersecurity and Infrastructure Security Agency | CISA) This November CISA is asking everyone to “Resolve to be Resilient”
Design and Innovation
Microsoft Vows to Revamp Security Products After Repeated Hacks (Bloomberg) Tech giant plans to use AI to scan code, find vulnerabilities. Announcement comes after government push on software security.
A new world of security: Microsoft’s Secure Future Initiative (Microsoft On the Issues) In recent months, we’ve concluded within Microsoft that the increasing speed, scale, and sophistication of cyberattacks call for a new response. Therefore, we’re launching today across the company a new initiative to pursue our next generation of cybersecurity protection – what we’re calling our Secure Future Initiative (SFI).
State Of Generative AI Survey [2023] | Portal26 (Portal26) Welcome to Portal26’s State of Generative AI Survey. The survey—conducted in partnership with CensusWide—polled 400+ C-suite and IT professionals, Its results depict an environment in which companies are optimistic about the potential of Generative AI, yet struggle to gain visibility into the operations of their AI programs, creating significant risks around governance, data security and … State Of Generative AI Survey [2023] | Portal26 Read More »
Announcing Microsoft Secure Future Initiative to advance security engineering (Microsoft Security) Today Microsoft’s Vice Chair and President Brad Smith shared insight on the global cybersecurity landscape and introduced our Secure Future Initiative. These engineering advances anticipate future cyberthreats, such as increasing digital attacks on identity systems. They also address how we will continue to build secure foundations necessary for the AI era and beyond.
Research and Development
Revolutionizing quantum technologies with photons made from quantum dots (Advanced Science News) Harnessing quantum dots to produce low-energy single photons for applications in secure communications and quantum computing.
Legislation, Policy, and Regulation
EU urged to drop new law that could allow member states to intercept and decrypt global web traffic (Record) More than 100 of the world’s most respected cybersecurity experts have written to European Union lawmakers to warn that a proposed legal reform that may soon become law could fundamentally undermine security online.
Elon Musk tells Sunak AI will mean people no longer need to work (The Telegraph) Elon Musk told Rishi Sunak on Thursday that artificial intelligence will one day eradicate the need for jobs.
Joe Biden Wants US Government Algorithms Tested for Potential Harm Against Citizens (WIRED) Draft rules from the White House would require federal agencies to assess AI systems currently in use in law enforcement, health care, and other areas—and to shut down any algorithms doing harm.
Biden’s Elusive AI Whisperer Finally Goes On the Record. Here's His Warning. (POLITICO) Bruce Reed had seen the pitfalls of letting Big Tech run roughshod over government. He is determined not to make the same mistakes on AI.
Biden's AI order didn't go far enough to address fairness, but it's a good first step, advocates say (CNBC) After the Biden administration unveiled its new AI executive order on Monday, a frenzy of industry leaders dug in to the implications of the landmark action.
Biden’s nominee for national cyber director outlines his vision for role (Washington Post) President Biden’s pick for the second permanent national cyber director, Harry Coker, said he would work to “ensure collaboration is the North Star” for his office if confirmed, noting that collaboration is “what motivates me to return to public service” during his nomination hearing on Thursday.
Proposed FAR Revisions Aim to Standardize Cybersecurity Requirements Across Agencies and Add Incident Reporting Obligations for Contractors (JD Supra) On October 3, the Department of Defense, General Services Administration, and the National Aeronautics and Space Administration published two sets of...
Banks 'flying blind' without cumulative data on regulatory proposals (American Banker) Trade groups, analysts and some regulators want more data on how various regulatory changes and proposals would impact the banking sector in totality. But regulatory agencies have yet to take on such a project and private sector groups say the task is beyond their capabilities.
What to Know About New Federal and State Cyber Rules (Wall Street Journal) New stiffer rules from the New York State Department of Financial Services and ones that go into effect in December from the U.S. Securities and Exchange Commission are of the same spirit but have key practical differences.
Wyden, Eshoo, Lesko Reintroduce Bipartisan, Bicameral Legislation to Prevent Domestic Abusers from Targeting Survivors with Technology (U.S. Senator Ron Wyden of Oregon) U.S. Senator Ron Wyden, D-Ore, and U.S. Representatives Anna G. Eshoo, D-Calif., and Debbie Lesko, R-Arizona, today reintroduced their bipartisan, bicameral legislation to help prevent domestic abusers from using technology to stalk, harass or control survivors.
His Job Was to Make Instagram Safe for Teens. His 14-Year-Old Showed Him What the App Was Really Like. (Wall Street Journal) When a Meta security expert told Mark Zuckerberg that Instagram’s approach to protecting teens wasn’t working, the CEO didn’t reply. Now the former insider is set to tell Congress about the predatory behavior.
Litigation, Investigation, and Law Enforcement
SolarWinds Is A Game Changer - You Cannot Sugarcoat Cybersecurity (Forbes) The SEC prosecution of SolarWinds and its CISO is a game changer for how cybersecurity will be handled and reported on by listed businesses.
Sam Bankman-Fried Is Convicted in FTX Collapse (Wall Street Journal) A New York federal jury found him guilty of stealing billions of dollars from the crypto exchange’s customers.
Sam Bankman-Fried found guilty on all seven counts (TechCrunch) Sam Bankman-Fried, the co-founder and former CEO of crypto exchange FTX and trading firm Alameda Research, has been found guilty on all seven counts
SBF verdict: Jury finds FTX founder guilty on all counts in Manhattan criminal fraud trial (Business Insider) FTX founder Sam Bankman-Fried was found guilty of all 7 charges after a 5-week fraud trial in Manhattan. SBF faces a prison sentence up to 110 years.
Closing time for Sam Bankman-Fried (The Verge) An underwhelming finale to a feeble defense.
Sam Bankman-Fried found guilty of defrauding FTX customers out of billions (the Guardian) The prosecutor said that ‘while the cryptocurrency industry might be new … this kind of corruption is as old as time’
A Year After Sam Bankman-Fried's Downfall, Solana and Other FTX Holdings Are Flying High (Coindesk) The FTX founder's downfall began on Nov. 2, 2022 – a year ago Thursday – when CoinDesk published a big scoop. Jurors are poised to begin deliberating his fate on the anniversary of that story, at a time when the SOL tokens FTX owns just got $1 billion more valuable.
The Bombshell Evidence That Led to Sam Bankman-Fried’s Conviction (TIME) Sam Bankman-Fried was found guilty on all counts in his fraud trial and could spend 120 years in prison. Here’s how events unfolded, according to his inner circle.
Live Updates: The Trial of FTX Founder Sam Bankman-Fried, the Verdict (WIRED) When Sam Bankman-Fried’s FTX crypto exchange collapsed, customers lost billions of dollars. After a bruising trial in New York, the jury is set to deliver its verdict.
Fake Nudes of Real Students Cause an Uproar at a New Jersey High School (Wall Street Journal) After boys shared faked pornographic images made of female classmates, both the school and the local police began investigating.
Russian Reshipping Service ‘SWAT USA Drop’ Exposed (KrebsOnSecurity) One of the largest cybercrime services for laundering stolen merchandise was hacked recently, exposing its internal operations, finances and organizational structure. Here’s a closer look at the Russia-based SWAT USA Drop Service, which currently employs more than 1,200 people across…
Court construes claims in cybersecurity patent dispute (Virginia Lawyers Weekly) Listen to this article Where the parties disputed the construction of 10 claim terms in five cybersecurity patents that relate to systems and methods for evaluating packets of information travelling through a network, they were construed by the court. Background Centripetal Networks LLC sued Palo Alto Networks Inc., or PAN, alleging infringement of five cybersecurity […]