As a finalist for this year's Maryland Cybersecurity Industry Resource Award, we're also up for the People's Choice Award, and we'd appreciate your support. You can vote here through March 22 (you don't need to be in Maryland, or even in the US, to do so). Thanks to all who've voted for us so far.
D&B breach exposes third-party corporate contact information. Lazarus Group may be back in the bank robbing business. DDoS of Netherlands voting info sites. US indicts four in Yahoo! breach.
Dun & Bradstreet sustained a data breach that exposed contact information for some 33.7 million persons employed by companies and US government agencies. D&B acquired the database when it bought NetProspex in 2015.
Symantec has fingered the Lazarus Group for a wave of bank fraud in thirty-one countries. The Lazarus Group is widely believed to be a criminal operation run by and on behalf of the Kim regime in North Korea. It's been implicated as a suspect in the Bangladesh Bank fraud and Sony hacking cases.
Tensions between Turkey and EU members Germany and the Netherlands appear to have been manifested online, most recently in a distributed denial-of-service attack two Dutch voter information sites suffered yesterday.
The US Justice Department has indicted four men in connection with the Yahoo! breaches. Three are in Russia (Dmitry Aleksandrovich Dokuchaev, Igor Anatolyevich Sushchin, and Alexsey Alexseyevich Belan), the fourth in Canada (Karim Baratov). Baratov and Belan are described as "criminal hackers," but Dokuchaev and Sushchin are said to be FSB officers. Major Dokuchaev is in trouble with both the US and Russia: he appears to be one of the FSB officers currently facing charges for treasonously providing information to "Americans." Dokuchaev worked in the FSB's Center 18, responsible for liaison with the US FBI in matters touching cyber law enforcement. Police in Montréal have Baratov in custody, and he will probably wind up before a US court. The others are being named and shamed.
Kim Dotcom continues to live large, driving New Zealand crazy.
Today's issue includes events affecting Brazil, Canada, Chile, China, Kenya, Democratic Peoples Republic of Korea, Mexico, Netherlands, New Zealand, Poland, Russia, Turkey, and United States.
In today's podcast, we talk to Markus Rauschecker (from our partners at the University of Maryland Center for Health and Homeland Security) who has some thoughts on the increased role of cyber lawyers in mergers and acquisitions. (That's "cyber lawyers," as in lawyers who have a cybersecurity practice, not virtual or robotic attorneys, although those may be coming eventually as well. At least cyberparalegals?) We also have a guest, Tim Bandos from Digital Guardian, who offers insight into defense against state-sponsored threats and hacktivism.
Special editions of the podcast are also up. See Perspectives, Pitches, and Predictions from RSA, and an overview of artificial intelligence as it's applied to security. And see also Cylance's video (taken in partnership with the CyberWire): opinions from the conference floor.