The US cyber offensive against ISIS continues to report inroads against the terrorist group’s finances and command-and-control apparatus. ISIS’s information ops reach will be harder to shorten—hacktivists who find inspiration in the self-proclaimed Caliphate’s online murders have called for death to US drone pilots.
Anonymous has hit the Bank of Greece with a distributed-denial-of-service campaign which they’re calling OpIcarus. The goal is to force the world’s financial institutions to atone for what those in the Guy Fawkes masks characterize as bankers’ crimes against humanity.
Seculert finds more outbound malicious traffic from infected devices than anyone would like to see.
Ransomware continues to hold cybercrime pride-of-place. New techniques and variants aim to stay ahead of defenders. There’s a widespread perception in the underworld that cyber extortion offers easy money.
University of Michigan researchers find several vulnerabilities in Samsung’s SmartThings, the company’s smart home platform. Other IoT issues are also being discussed. Waterfall Security Solutions argues the futility of firewalls for protecting SCADA critical infrastructure. ICS maven Joe Weiss points out that if you think it would be easy to switch control systems to manual operations while recovering from a cyber attack, well, think again. And the US Department of Homeland Security is piloting AKUA’s secure logistics solution for cargo monitoring and tracking.
The US security clearance system may soon undergo a significant shift, moving toward a “FICO-like” insider threat scoring system.
A US judge has required someone to open her fingerprint-secured iPhone pursuant to a search warrant. (Cue Constitutional issues.)