The CyberWire Daily Briefing for 1.29.2014

Summary

By The CyberWire Staff

Cyber-rioting flares again in South Asia. Pakistani hacktivists mark India's Constitution Day with attacks on Indian governmental and commercial sites. Bangladeshi fans exercised over a "cricket monopoly" deface the Indian embassy's Website in Qatar.

A Trojanized FileZilla FTP client is stealing FTP login credentials. Its GUI is pretty persuasive, and looks much like the real thing.

A cross-platform Java-based botnet, exploiting known vulnerabilities and affecting Windows, Mac, and Linux machines, is driving denial-of-service traffic.

Dr. Web finds an Android Trojan bootkit and thinks it may infect up to 350,000 devices worldwide. Kaspersky reports that Android Jelly Bean 4.3's VPN bypass bug also affects the most recent Android operating system, KitKat 4.4. Trustwave demonstrates a proof-of-concept Android exploit that tracks swipes and steals PINs.

Rovio, despite preemptive protestations of innocence, finds its Website hit by hackers outraged that security agencies may have tracked them playing Angry Birds. (The larger issue is leaky mobile apps.)

It's easy to focus on data loss in recent retail breaches, but don't overlook the effect such episodes have on customer experience.

Mozilla patches Thunderbird bypass vulnerability.

Reuters and Silicon Valley Business Journal are reporting that Thoma Bravo is preparing Blue Coat for sale. HP and Oracle are thought to be suitors; the price may be $2B.

SpyEye banking Trojan creator A.A. Panin pleads guilty; details emerge on how he was caught.

Snowden has a good day: Senator Feinstein sees no evidence he's a Russian spy, and two Norwegian MPs put him in for a Nobel.

Notes.

Today's issue includes events affecting Bangladesh, Belgium, China, Finland, France, Germany, India, Indonesia, Israel, Pakistan, Qatar, Russia, Singapore, Switzerland, United Kingdom, and United States..

Industry Events

For a complete running list of events, please visit the Event Tracker.

Upcoming Events

Cybertech — Cyber Security Conference and Exhibition (Tel Aviv, Israel, Jan 27 - 29, 2014) Cybertech Israel, the first event of its kind, will present world-leading companies in the field of cyber defense alongside young companies that offer unique solutions to advance the discipline of cyber security. The conference will focus on commercial problem-solving strategies and solutions for cyber infrastructure experts across multiple sectors: energy, utilities, finance, defense, R&D, manufacturing, service sectors, health, government, telecommunications, transportation and more.

2014 Cybersecurity Innovation Forum (Baltimore, Maryland, USA, Jan 28 - 30, 2014) The 2014 Cybersecurity Innovation Forum (CIF) is a three-day event, sponsored by the National Cybersecurity Center of Excellence (NCCoE) with DHS, NIST, and NSA as primary participating organizations. The CIF will cover the existing threat landscape and provide presentations and keynotes on current and emerging practices, technologies and standards. The 2014 CIF will provide action-oriented outputs to fuel voluntary principle-driven consensus-based standards efforts, create opportunities for industry growth and drive research activities, and define use cases for subsequent exploration, which in turn will feed back into the subsequent CIF's, continually evolving the state of the art.

Cyber Training Forum at NGA (Springfield, Virginia, USA, Feb 4, 2014) The 2014 Cyber Security Training Forum (CSTF) will take place at the NGA East Campus in Springfield, VA. This event is designed to provide education and training to the NGA Workforce, the Intelligence Community, and Industry. The CSTF will include keynotes, breakout sessions, and cyber security demonstrations from industry.

Security Analyst Summit 2014 (Punta Cana, Dominican Republic, Feb 9 - 13, 2014) The Kaspersky Security Analyst Summit (SAS) is an annual event connecting anti-malware researchers and developers, global law enforcement agencies and CERTs and members of the security research community. The goal is to learn, debate, share and showcase cutting-edge research, new technologies and discuss ways to improve collaboration in the fight against cyber-crime.

The Insider Threat: Protecting Data and Managing Risk (Online, Feb 11, 2014) As recent events have demonstrated, the threats from inside government have the potential to be more harmful than the hacking activities of our enemies. Protecting sensitive government information from unauthorized disclosures by insiders, whether intentional or due to negligence, is becoming a huge priority across the board. No matter how sophisticated your training program is, some employees will intentionally or unintentionally commit the negligent discharge of classified information.

Free OWASP Training and Meet Up (San Francisco, California, USA, Feb 24, 2014) OWASP is hosting a special security boot camp for all conference-goers: RSA Conference, Bsides SF, and TrustyCon as well as local developers. The training is recommended for developers who want to learn more about securing their code as well as security professionals who want to become acquainted with the latest web vulnerabilities.

RSA Conference USA (San Francisco, California, USA, Feb 24 - 28, 2014) Hundreds of game-changing interactions will give you an unparalleled diversity of industry insight and information based on best practices, real implementation stories, and detailed case studies. Each year, educational sessions feature new and returning educational tracks you won't find anywhere else.

Nellis AFB - Technology & Cyber Security Expo (Las Vegas, Nevada, USA, Feb 26, 2014) For over 12 years, the Armed Forces Communications & Electronics Association (AFCEA) - Las Vegas Chapter and FBC have been co-hosting the Annual Information Technology Expo at Nellis AFB. As was the case last year, the 2014 event will once again have a Cyber Security theme. This is an excellent opportunity for any technology or cyber company to meet with the personnel at Nellis AFB, as well as the local AFCEA members.

cybergamut Technical Tuesday: Virtualization Technologies in Cyberwarfare (Columbia, Maryland, USA, Mar 11, 2014) Virtualization is often talked about in the context of cloud computing, cost savings and enterprise environments. In this talk, Jason Syversen of Siege Technologies will introduce Intel, AMD and ARM virtualization architectures and describe novel approaches to implementing virtualization technology / hypervisors for offensive and defensive cyber security applications. Case studies will be presented for malware detection, reverse engineering, code protection, security testing, stealthy code and other applications.

Reducing the Nation's Cyber Risk: White House Insights on the President's Critical Infrastructure Framework (New York, New York, USA, Mar 11, 2014) The Fordham School of Professional and Continuing Studies and the Fordham Computer and Information Science Department present this informative panel, open and free to the public.

Cybersecurity Tax Credits Webinar (Online, Mar 11, 2014) Learn about tax credits designed to help your cybersecurity company grow in Maryland. Details will be presented by Jeffrey Wells, Executive Director of Cyber Development and Mark Vulcan, Esq., CPA, Program Manager, Tax Incentives for the Maryland Department of Business & Economic Development. 2-3:00 p.m. EDT.

Sponsor & Support

Grow your brand, generate leads, and fill your funnel.

With the industry’s largest B2B podcast network, popular newsletters, and influential readers and listens all over the world, companies trust the CyberWire to get the message out. Learn more.