As we expected, the UK voted yesterday to exit the European Union, a vote that not only means Prime Minister Cameron’s government will be out by October at the latest, but that will have far-reaching policy and market implications for cyber security as well.
GhostSquad hacktivists, hitherto largely associated with Anonymous operations against governments and banks, offer ISIS support by releasing a database containing personal data of US military personnel. The release comes as US Cyber Command takes an increasingly active combat support role in operations against ISIS. (Some observers recommend that anti-ISIS cyber ops, and information operations against the self-proclaimed Caliphate, be specific, granular, and tightly crafted for targets and audiences.)
Motherboard and others give Guccifer 2.0’s communications a good close reading. Consensus is forming that the lone hacker story about the DNC compromise doesn’t really hold water. Signs still point to Moscow. A former DNC researcher thinks Fancy Bear and Cozy Bear don’t know much about opposition research—he would make “Lazy Bear” the third bear in this story.
Neutrino is serving CryptXXX to visitors of anime site jkanime. The campaign mostly affects users in Latin America, particularly Mexico. Ransomware remains the most worrisome form of cybercrime affecting enterprises.
But older threats persist, too. LizardSquad (“cyber-yobs,” as Naked Security calls the skids) may have subjected another gaming site to a DDoS attack. The venerable Conficker wad of worms remains the number-one malware family. The Necurs botnet (used to spread Dridex and Locky) is back after a three-week hiatus.