Chancellor Merkel yesterday replaced Gerhard Schindler as head of Germany’s foreign intelligence service, the Bundesnachrichtendienst (BND). The shift seems prompted by Bundestag inquiries concluding that the BND was too cooperative with allied nations’ surveillance operations.
The Budeswehr has also announced plans to organize a military cyber capability for Germany.
The US FBI is investigating—and taking seriously—a “hit list” of some 3600 New Yorkers published by the newly announced United Cyber Caliphate (UCC). Observers scorn the UCC’s technical hacking capabilities, but its ability to inspire murder is another matter altogether.
A nuclear plant in the Bavarian town of Gundremmingen has discovered malware in some of its systems. The infections are the venerable and well-known Conficker and W32.Ramnit. Both appear to have been contained without doing damage or compromising safety. (Indeed, they may have been in place for some time.) Infections have also been found on removable storage media at the plant, which suggests a possible infection vector.
BAE Systems warns that malware used in the Bangladesh Bank heist is part of a toolkit with broader uses: we can expect to see it again.
Facebook users are being targeted by a social engineering campaign that draws users to a malicious video file. ESET recommends removing “make a GIF” Chrome extensions.
Microsoft researchers track the Platinum espionage group, which since 2009 has hit targets in Asia using hot patching to avoid detection.
Analysts mull the disappointing SecureWorks IPO and wonder whether security industry consolidation will dry up venture funding for start-ups.