Telegram has "stabilized" its service after sustaining a very large distributed denial-of-service attack, Reuters reports. The DDoS attack traffic originated largely from Chinese IP addresses, and circumstantial evidence points to Chinese government attempts to disrupt the use of the secure messaging service by protestors in Hong Kong. According to Bloomberg, controversial legislation that would facilitate extraditions to China proper from the semi-autonomous city has prompted very widespread street protests in Hong Kong.
Recorded Future describes an influence campaign they're calling "Fishwrap." Fishwrap repackages genuine but old news as fresh ("breaking"). It's therefore not really fake, but rather misleading. The stories themselves don't appear to be altered, and even retain their original dates, but a flurry of tweets distributing a story from, say, 2016 gives the old news current impact. And Fishwrap generally doesn't violate platforms' terms of service, either. So far there's no attribution, but the effort seems to represent the systematic adoption of a relatively obvious but hitherto unusual tactic.
A ransomware infestation at one of its Belgian facilities has disrupted production at aircraft-parts manufacturer ASCO, ZDNet reports. About a thousand workers have been furloughed; plants in Belgium, Germany, Canada, and the US are temporarily closed.
Representative Tom Graves (Republican of Georgia) is reintroducing a hack-back bill to the US Congress, with bipartisan support. Cyberscoop notes that intelligence and law enforcement agencies remain cool to the idea.
Why do enterprises fail to patch known, high-consequence vulnerabilities, like BlueKeep? Avast calls it "update inertia." It's all in your heads, IT.