We launched Research Saturday this weekend, a new weekly podcast that concentrates on current research in cybersecurity. The first edition was a conversation about the Cobian RAT with Deepen Desai, senior director of security research and operations at Zscaler. Give it a listen here.
Germany jittery over pre-election Russian influence ops. ISIS claims London bombing; sees opportunity in hurricanes. Equifax updates.
As Germany prepares for Sunday's federal elections, the country remains on high alert for last-minute Russian election meddling.
State-sponsored activity is also observed in Switzerland and Singapore, but without direct attribution. (Some aspects of the attacks, however, remind some of Turla.)
ISIS has claimed responsibility for Friday's fizzled but damaging bombing in London's tube. The ISIS "soldier" suspected in the attack is in custody. Social media chatter from the group seeks to inspire attacks on hurricane aid centers in the US, soft targets with a lot of concentrated potential victims. In Syria a rival jihadist group that seemed destined to replace ISIS, Hayat Tahrir al-Sham, appears to be fragmenting as jihadist extremism metastasizes outside its core region.
Effects of the Equifax breach continue to expand, as do investigations. Some 400,000 individuals in the UK have been affected, as have an unknown number of Canadians. Canadian authorities have opened an investigation, as have more US states. The incident is now explained unambiguously as exploitation of a known but unpatched Apache Struts vulnerability.
The faux-grey hats of OurMine have gone after Vevo, breaching the video service and offering to leak 3.12TB of stolen data, most of which strike observers as fairly anodyne. The motive for the attack seems to be revenge for disrespect and consequent wounded self-regard: OurMine says they hacked Vevo because a Vevo employee was rude to an OurMine member on LinkedIn.
Cisco reports Avast's CCleaner (version 5.33) was infected with a multistage backdoor, apparently introduced in the supply chain.
Today's issue includes events affecting Australia, Canada, China, European Union, Germany, Israel, Democratic Peoples Republic of Korea, Republic of Korea, Qatar, Russia, Saudi Arabia, Singapore, Slovakia, Spain, Switzerland, Syria, United Kingdom, and United States.
A note to our readers: We're spending tomorrow with our friends and neighbors at the Johns Hopkins University, as we attend the 4th annual Cyber Security Conference for Executives. Watch for live-tweets tomorrow and coverage this week.
We all know the consequences of a third party data breach; one vulnerability can cost your organization millions. But do you know what security measures to implement to successfully reduce your attack surface and prevent third party risk? Learn how in LookingGlass Cyber Solutions' webinar featuring VP of Intelligence Operations Eric Olson and Forrester Senior Analyst Nick Hayes on Wednesday, October 18, 1:30pm ET. Sign up now.
In today's podcast we get to know a new expert from our partners at Booz Allen Hamilton, as we chat with Chris Poulin. He leads Internet-of-things security strategy in Booz Allen’s Dark Labs, where he also dabbles in machine intelligence. Poulin joins Booz Allen from IBM, where he led their X-Force research teams and built the first prototype Watson for cybersecurity.