FireEye is connecting a long-running DNS-hijacking campaign that’s affected enterprises worldwide, many of them private-sector infrastructure companies and Middle Eastern governments, to Iran, SecurityWeek reports. The attribution is tentative and, as usual, circumstantial, and FireEye notes that there may be more than one threat group at work, but their report concludes “with moderate confidence” that the operation is “conducted by persons based in Iran and that the activity aligns with Iranian government interests.”
Amazon’s Ring smart doorbell cum security system seems to involve more natural intelligence than users might have expected. The Intercept reports that video feeds from Ring’s home cameras are being watched, analyzed, and possibly shared by human watchstanders and company executives in mostly Ukrainian development shops. Ring told TechCrunch that this mischaracterizes what happened, and that Ring only used less-private neighborhood watch video for training purposes. However the story develops, it again suggests the backward-striking potential of networked security devices.
Polish authorities have made two arrests in an espionage case linked to Huawei. The Wall Street Journal reports that the suspects, who haven’t been publicly identified, are Huawei’s sales director for Poland (a Chinese national) and a former deputy head of IT security for Poland’s Internal Security Agency (a Polish citizen). Both have entered a plea of not guilty.
Those interested in the Russian media’s take on Kaspersky’s role in the Hal Martin case may consult RT and Sputnik. The executive summary? Schadenfreude: NSA’s security is sad, and Fort Meade owes Kaspersky thanks. Maybe even an apology.