During the inaugural live episode of the Hacking Humans Podcast May 9th at KB4-CON 2019 in Orlando, the CyberWire announced that its popular show will be renewed for a second season as KnowBe4 renews its sponsorship. Hacking Humans, which airs Thursday mornings US Eastern Time, covers social engineering. Dave Bittner from the CyberWire and Joe Carrigan from the Johns Hopkins Information Security Institute will return as the hosts. Hacking Humans takes listeners behind the scams, phishing schemes, and criminal exploits that make headlines and take a heavy toll on individuals and organizations around the world. The show features interviews with experts on social engineering drawn from industry, law enforcement, university sciences and arts, and, of course, with those practiced in the crafts of influence and deception.
Focusing on response alone is costly. You lose data. You lose infrastructure. You lose human and capital resources that could be productive elsewhere. And you lose your reputation. When you catch threats before they execute, you contain the problem, and the rewards add up. Let Blackberry Cylance help you understand how you can reduce your total cost of security controls, bolster your organization’s security posture, and zero in on what really matters.
BlackWater snoops. TeamViewer hack. Android app behaving badly. Exposed social network data. Effect of US Huawei ban.
Cisco Talos has released a report on the BlackWater cyber espionage campaign. BlackWater is active largely in the Middle East, and it's associated with "persistent threat actor" MuddyWater. BlackWater is, researchers say, unusually evasive, adding three steps to MuddyWater's familiar pattern: "an obfuscated Visual Basic for Applications (VBA) script to establish persistence as a registry key," then a PowerShell stager designed to look like a red-teaming tool, and communication with a different command-and-control server than the one used in the initial attack stages. MuddyWater has been attributed by Mitre and others to Iran.
Remote connectivity solutions provider TeamViewer was indeed compromised in 2016, Spiegel reports, but did not disclose the incident at the time since in the company's view it affected only its infrastructure as opposed to its customers. The attack is attributed to Chinese intelligence services.
Upstream's security lab Secure-D says that VidMate, an Android app with about half a billion downloads, behaves badly. The app allegedly serves adware, subscribes users to paid services, and sucks their mobile data. VidMate told BuzzFeed it was investigating the matter, but declined to say much more than that.
An unsecured AWS database, apparently belonging to Mumbai-based social media marketing outfit Chtrbox, has exposed information on millions of Instagram influencers, celebrities, and brand accounts, TechCrunch reports. The data seem to have been obtained by scraping.
Bravo Emsisoft, which has released a decryptor for JSWorm 2.0 ransomware.
The US continues to be serious about strictures against Huawei, as markets sort out the ban's consequences.
Today's issue includes events affecting China, Ecuador, European Union, Iran, Malaysia, Russia, Sweden, United Arab Emirates, United Kingdom, and United States.
Bring your own context.
Sure it's secure, but does it still work?
"There are challenges when designing a medical device in prioritizing clinical features over cybersecurity features. So for example the No. 1 priority of a pacemaker is that it always continues to keep the patient's heart beating. And when you're designing a pacemaker, that's obviously the most important thing that you need to be designing for the device. Well, how many clinical features can an engineering team put off to the future in return for implementing some security features to ensure that that device is functioning safely? And designing security features into devices, as you can imagine, can be pretty tricky and pretty time-consuming. So there's this constant battle between clinical functionality, interoperability, ease of use for clinicians and actually building security features into these things so that bad guys can't do bad things with them."
—Mike Kijewski, CEO and founder of MedCrypt, on the CyberWire Daily Podcast, 5.17.19.
Reconciling the tension between functionality and security isn't trivial, and with medical devices, it can be a matter of life and death.
According to CyberEdge’s 2019 Cyberthreat Defense Report, 78% of enterprises were victimized by a successful cyberattack last year. Is your organization next? On May 22nd at 2:00 PM ET join LookingGlass’ SVP of Delivery & Support, James Carnall, and CyberEdge’s Co-founder & CEO, Steve Piper, as they review insights from CyberEdge’s sixth-annual research study. They’ll also provide answers to important questions, such as what are the weakest links in current security postures and What the hottest security technologies are in 2019.
In today's podcast, out later this afternoon, we talk with our partners at Cisco Talos, as Craig Williams discusses honeypots on Elasticsearch. Our guest is Dave Venable from Masergy, who describes cyber vulnerabilities at the infrastructure level.
And Recorded Future's podcast, produced in cooperation with the CyberWire, is also up. In this edition, "Investing in Technology, Innovative Leaders, and Yourself," Niloofar Razi Howe, technology executive, entrepreneur, board member, and investor, with service as chief strategy officer for both Endgame and RSA Security, discusses her career and some trends in technology and security.