The CyberWire is pleased to announce that a new regular feature, our Research Saturday podcast, will launch tomorrow. Every week we'll feature research into cyber threats, vulnerabilities, and mitigations—any topics relevant to operating safely and securely in cyberspace. In our inaugural edition we speak with Deepen Desai from ZScaler about their research into Cobian RAT. There's no justice, but in this case that may not be entirely a bad thing: the RAT has a backdoor, allowing the original author to gain access and control over all of the installations in the wild. So the bad guys who go for this free tool are being played by the alpha bad guy.
Scotland's Parliament continues to work against a long-running cyber campaign against Holyrood.
A misconfigured cloud database compiled by TargetSmart, a political campaign data broker, has exposed information about Alaska voters online. TargetSmart blames a third-party vendor.
Equifax has confirmed that a known but unpatched Apache Struts vulnerability lies at the root of the breach it disclosed last week. General outrage mounts, as the Equifax CEO is summoned to Capitol Hill amidst comparisons of his company to Enron. The Federal Trade Commission has, as expected, opened its own investigation.
The Equifax breach has prompted calls for more regulation of data collection—Bruce Schneier calls it a problem the market can't solve.
Eugene Kaspersky has also accepted an invitation to testify before Congress. He maintains this week's ban on his eponymous company's security software by the US Department of Homeland Security is unfair, that they've been caught up in a Russo-American geopolitical squabble.
The US Navy has dispatched a cyber investigation team to look into the USS McCain's collision with a merchant ship near Singapore. No evidence of hacking is so far known, but absence of evidence isn't (yet) being taken as evidence of absence.
WikiLeaks is doing some trolling of US DCI Pompeo over Pompeo's complaint to Harvard that the university's offer of a Kennedy School fellowship to Chelsea Manning disgracefully honored someone who betrayed the US and the warrior ethos. WikiLeak's Assange thinks the outrage selective. (Harvard has since withdrawn its offer.) Assange's trolling gets some enthusiastic meta-trolling from RT.
Today's issue includes events affecting Argentina, Australia, China, India, Iraq, Russia, Syria, Ukraine, United Kingdom, United States, and and Venezuela.
Threat actors are always looking for the easiest, fastest, and most inexpensive way to get what they want – enter third party breaches. How can organizations prioritize their efforts to reduce third party risk? Learn more in a webinar with LookingGlass Cyber Solutions’ Senior Sales Engineer Ryan Curran on Thursday, September 14 @ 2pm ET. Ryan will discuss how to tell if your vendors are already compromised, and how to use threat intelligence for actionable intelligence on your vendors’ vulnerabilities. Sign up now.