Reports of a cyber incident at India's Kudankulam Nuclear Power Plant have been confirmed. Reuters quotes a statement from the Nuclear Power Corp of India Ltd. acknowledging that it had found malware on a computer connected to administrative systems, but that control systems were unaffected. Various sources say the malware was DTrack, an information-stealer associated with North Korea's Lazarus Group. DTrack has recently affected Indian financial and research institutions.
Facebook yesterday announced that it had taken down thirty-five accounts, fifty-three Pages, seven Groups and five Instagram accounts for coordinated inauthenticity. All originated in Russia, and have been connected to Russian oligarch Yevgeniy Prigozhin ("Putin's chef"). Their messaging focused on Africa, specifically on Madagascar, the Central African Republic, Mozambique, the Democratic Republic of the Congo, the Ivory Coast, and Cameroon. The campaigns' objective was election influence, generally aligned with Russian regional objectives.
Ars Technica reports that Facebook has cancelled accounts belonging to NSO Group personnel. The action follows Facebook subsidiary WhatsApp's lawsuit against NSO Group.
Twitter has decided that it won't try to fact-check or police paid political content. The social medium will simply no longer accept political ads. The exclusion affects ads for candidates and issues, but not voter registration drives.
In the US, NIST has asked for comments on proposed cryptographic standards.
Credit rating company Moody's made a presentation at EnergyTech 2019 on the credit and financial implications of cyber risk. Control Global welcomed Moody's perspective as providing those responsible for control system security "a key to the boardroom."