The Wall Street Journal reports that North Korea is engaging in a campaign of online harassment against former DPRK subjects who’ve defected to South Korea. The channels used to menace defectors include email, texts, social media, and voice calls.
The US Cybersecurity and Infrastructure Security Agency warns of widespread use of malicious Microsoft Word documents carrying the KONNI RAT as a payload.
Emotet has experienced a resurgence equipped with new capabilities described by neoRhino. But it appears to be buggy in ways defenders can turn to their advantage. Binary Defense said late Friday that it had found a vulnerability in Emotet that enabled them to develop a kill switch for the Trojan.
The Russophone cyber gang RedCurl continues to pursue business email compromise. SC Media reports a Group-IB tally of victims at fourteen, distributed across Russia, Ukraine, Canada, Germany, the United Kingdom, and Norway. Group-IB thinks RedCurl is a hired gun, possibly working to collect business intelligence on behalf of victims’ competitors.
The New York Times reports that President Trump said he’d “look into” pardoning Edward Snowden.
A US Executive Order issued Friday takes note of ByteDance’s acquisition of Musical.ly and the integration of that acquisition into TikTok. The EO served notice that ByteDance had ninety days to divest itself of TikTok.
Expect Russia to take a close interest in Belarus, where, as the New York Times and others report, post-election unrest continues. The head of the state-run media outlet RT is calling for a Russian invasion of that country.