Cyber Attacks, Threats, and Vulnerabilities
Iran-Based Threat Actor Exploits VPN Vulnerabilities (CISA) This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques.
Iranian Hackers Said To Target US Agencies, Cos. Via VPNs (Law360) Iran-based hackers are targeting U.S. federal agencies and businesses in the health care, technology, financial, insurance and media sectors using vulnerabilities in virtual private networks used more often during the pandemic, U.S. authorities warned on Tuesday.
Американская компания помогла Лукашенко блокировать интернет в Беларуси (ГОЛОС АМЕРИКИ) Власти страны использовали IT-специалистов из России и США для установления цензуры в Сети. Американские законодатели призвали к расследованию произошедшего
CrowdStrike: Chinese hacking groups are bullying telecoms as 2020 goes on (CyberScoop) Chinese hacking groups have zeroed in on the telecommunications sector in the first half of this year, according to CrowdStrike research.
China Backs New Vatican Hacking, Cyber Firm Recorded Future Says (Bloomberg Law) Hackers alleged to be backed by China have renewed efforts to penetrate a Vatican email server even after the attacks became public, in a push to spy on sensitive negotiations between the two states, a new cybersecurity report says.
Chinese database details 2.4 million influential people, their kids, addresses, and how to press their buttons (Register) Compiled using mostly open-source intel, shines a light on extent of China’s surveillance activities
Hate Speech on Facebook Is Pushing Ethiopia Dangerously Close to a Genocide (Vice) Ethnic violence set off by the assassination of a popular singer has been supercharged by hate speech and incitements shared widely on the platform.
Kim Kardashian to freeze Facebook, Instagram accounts in #StopHateForProfit campaign (Axios) She said the platforms were spreading "hate, propaganda and misinformation."
'Toxic' Conspiracy Theories in Cyberspace Pose Growing Violence Threat (The Crime Report) Social media companies "must take more responsibility" to counter fake news and conspiracy theories promoted on their networks or risk helping to fuel extremist violence, says a counterterrorism expert.
MobileIron Research Reveals QR Codes Pose Significant Security Risks to Enterprises and End Users (Mobileiron.com) Majority of Respondents Scan QR Codes Despite Security Risks
Uncovering MultiTerra: A Highly Sophisticated Botnet Built to Take Revenue from Legitimate CTV and Mobile Players (DoubleVerify) DoubleVerify’s Fraud Lab team recently uncovered and shut down an aggressive botnet we labeled “MultiTerra” because it operates across mobile and CTV environments.
()
()
Surge in DDoS attacks targeting education and academic sector (BleepingComputer) As education institutions across the world moved to online learning, cyber threat disruptions have amplified more than ever. Malware, vulnerability exploits, distributed denial-of-service (DDoS), phishing attacks have all struck this sector, increasing in frequency over the past two months.
Canadian and U.S. corporate networks at risk from vulnerable connected devices, says new Palo Alto Networks study (Yahoo) Study found that connected teddy bears, coffee makers and connected cars are posing new challenges to security teamsTORONTO, Sept. 16, 2020 /CNW/ -- Smart teddy bears, implanted heart monitors, connected cars and other connected devices are regularly connecting to corporate networks, prompting technology
Pepperstone hit in 'sophisticated and multifaceted' cyber attack (Australian Financial Review) Australian based derivatives and forex broker hit in a second targeted attack by cyber criminals.
Hackers post stolen data from prominent trucking company following cyber-attack (CDLLife) Stolen data from one of Canada’s largest trucking companies was posted online by a group of hackers last week. Manitoulin Transport became aware of the ransomware attack on July 31st after employees reported system access issues, but the stolen information was not leaked online until Friday, September 11th.
Spectrum Health Warns of “Vishing” Scam (Spectrum Health Newsroom) Grand Rapids, Mich., Sept. 14, 2020 – Spectrum Health has received reports from patients and Priority Health members that they are receiving calls from individuals pretending to be from Spectrum Health or Priority Health. Callers try to extract personal information such as member numbers and other protected health information. Spectrum Health officials confirm these calls …
()
Staples data breach caused by bug in order tracking system (BleepingComputer) The reason for the recent notification from Staples to some of its customers about exposed order details was caused by insufficient protections for retrieving shopper information from current and past orders.
ENTTEC Lighting Controllers (Update A) (CISA) 1. EXECUTIVE SUMMARY
CVSS v3 8.8
ATTENTION: Exploitable remotely/low skill level to exploit/public exploits are available
Vendor: ENTTEC
Equipment: Datagate Mk2, Storm 24, Pixelator, E-Streamer Mk2
Vulnerabilities: Use of Hard-coded Cryptographic Key, Cross-site Scripting, Improper Access Control, Incorrect Permission Assignment for Critical Resource
2.
Security Patches, Mitigations, and Software Updates
Adobe releases out-of-band security update for Adobe Media Encoder (BleepingComputer) Adobe has released an out-of-band security update for Adobe Media Encoder that fixes three 'Important' security vulnerabilities.
Cyber Trends
Trend Micro Study Finds 39% of Employees Access Corporate Data on Personal Devices (PR Newswire) Trend Micro Incorporated (TYO: 4704; TSE: 4704), the leader in cloud security, today released survey results that show smart home devices and...
DDoS Attacks Increase by 151% in First Half of 2020 (BusinessWire) Latest research from Neustar reveals rise in intensity, sophistication and volume of DDoS attacks amid seismic changes driven by COVID-19 pandemic
()
()
A new study by SecureAge reveals many consumers feel privacy takes priority over prevention (SecureAge Technology) Most US consumers believe in the effectiveness of contact tracing apps to curb the spread of Covid-19, yet a majority are concerned about personal data collection. SecureAge Technology, a leading ... Read More
Gartner Says By 2023, 65% of the World’s Population Will Have Its Personal Data Covered Under Modern Privacy Regulations (Gartner) Gartner says by 2023, 65% of the world’s population will have its personal #data covered under modern #privacy regulations. Read more here. #CISO #CyberSecurity #GartnerSEC
CTV fraud skyrockets worldwide (Campaign) Connected-TV apps have seen a spike in fraud even as overall fraud has declined from 2019, according to a DoubleVerify report.
Australians and Danes afraid of cyber attacks more than Covid-19 (Atlas VPN) The year 2020 presented us with a new challenge—Covid-19, which has impacted the majority of the world. Nevertheless, according to data presented by the Atlas VPN team, 70% of Australians and 66% of Danes named cyber attacks as the primary threat to their countries when asked about top global risks.
Marketplace
Momentum Cyber's look at the state of the sector (The CyberWire) Cybersecurity is "virus resistant," Momentum Cyber argues in their report on the first half of 2020. A hot market in the first quarter cooled off when COVID-19 pushed the markets toward caution during the second quarter, but on balance the first half was strong. Cyber is too fully embedded not just in commerce, but in daily life, to be affected in the long-term by the pandemic Slowing activity means pent-up demand.
Devo Technology Raises $60M Series D (Crunchbase News) Along with the funding news, the company announced that former LogMeIn COO Marc van Zadelhoff will join the Cambridge, Massachusetts-based company as its new CEO.
Medigate Raises $30M in Series B Financing to Meet Rising Demand for Healthcare IoT Security (BusinessWire) Medigate announced $30M in Series B financing to meet rising demand for healthcare IoT security.
Bellevue-based Polyverse raises $16M Series A (Puget Sound Business Journal) Polyverse has 40 employees, mostly in Bellevue, and has plans to hire aggressively across functions — particularly in engineering.
Avertium Enhances LogRhythm Expertise with Acquisition of 1440 Security (PR Newswire) Avertium, an industry-leading managed security and strategic consulting partner to mid-to-large enterprises, today announced the acquisition of...
Secureworks to Acquire Montreal-based Delve (Global Atlanta) Atlanta-based software firm Secureworks is acquiring Delve Laboratories Inc., founded in Montreal, to upgrade its cloud security portfolio. Delve has an artificial intelligence solution that scans companies’ network assets for vulnerabilities, letting them know which weak points to address first. The Delve solution will be integrated into Secureworks’ Red Cloak platform this quarter. The deal is […]
Francisco-Backed Sandvine Nixes Belarus Deal, Citing Abuses (Bloomberg) Company’s equipment used to block internet during election. Investigation determines ‘custom code’ inserted into products.
Lockheed Martin Awards POC $31M Secure Data Storage Contract (Valdosta Daily Times) Lockheed Martin recently awarded POC a multi-phase development, production, and sustainment firm fixed price contract to provide secure, advanced data storage systems in support of new-production F-16s.
Apple is starting a war over privacy with iOS 14 – publishers are naive if they think it will back down (The Conversation) Facebook relies on targeted ads for a large proportion of its income, and reacted with fury over Apple's new privacy opt-in.
China’s ByteDance to Keep Majority TikTok Stake in Oracle Deal Under U.S. Consideration (Wall Street Journal) The proposal being reviewed by national-security regulators has China’s ByteDance retaining a majority stake in its TikTok app with Oracle as a technology partner and minority holder in a U.S.-based company.
Microsoft’s Failure to Land TikTok Raises Questions Over What’s Next for CEO Nadella (Wall Street Journal) Microsoft CEO Satya Nadella suffered a rare defeat in his company’s failed pursuit of viral video app TikTok. That doesn’t mean he’s done hunting for the tech giant’s next big thing.
Charles River Associates (CRA) Announces Strategic Alliance with Tanium (BusinessWire) Charles River Associates (NASDAQ: CRAI), a worldwide leader in providing economic, financial, and management consulting services, today announced that
Securonix Adds C-Suite and Product Engineering Leadership to Further Bolster Record Growth (BusinessWire) Company Appoints Brett Bowman as Chief Financial Officer; Dilshan Ratnayake as Chief People Officer
Illusive Networks Names Claire Trimble Chief Marketing Officer (PR Newswire) Illusive Networks®, the leader in active cyber defense and deception technology, today announced that Claire Trimble has joined the company as...
Anomali Strengthens Leadership Team as it Enters Rapid Growth Phase, Cybersecurity Industry Veterans to Drive Threat Intelligence Innovation, Marketing and Sales Strategies (GlobeNewswire) As Enterprise Adoption of Threat Intelligence Hits Mainstream, Anomali Expands Customer Ranks to 1,500
Products, Services, and Solutions
Exabeam and Code42 Announce Strategic Partnership to Detect and Respond to Risk from Insider Threats (Exabeam) Joint solution integrates detection, automated investigations and incident response capabilities to reduce risks caused by compromised, negligent or[...]
The Onapsis Platform for Cybersecurity and Compliance Now an SAP Endorsed App Available on SAP® App Center (BusinessWire) Onapsis, the leader in mission-critical application cybersecurity and compliance, announced today that The Onapsis Platform for Cybersecurity and Comp
OneLogin Launches Accelerate: Global Partner Program to Advance Enterprise Business Growth (OneLogin) Program Offers Growth and Profitability Opportunities Across OneLogin Partner Ecosystem
NeuroLab Selects Acuant to Verify Personal Data of COVID-19 Patients and Streamline Mobile Testing Operations (PR Newswire) Acuant, a leading global provider of identity verification, today announced that NeuroLab BI is using Acuant technology to verify the personal...
Twitter debuts US election hub to help people navigate voting in 2020 (TechCrunch) Twitter debuted its election hub on Tuesday, introducing a set of tools to help Americans prepare for the most uncertain election in modern U.S. history. The platform will add a new “US Elections” tab in the Explore menu, where the trending tab and other curated topic lists live. That t…
libC Technologies and CYSEC launch SwissPKI on ARCA (Cysec Systems) libC Technologies, provider of solutions and services in the areas of IT security and software development and CYSEC, the European leader in confidential computing, have combined their respective technology expertise to integrate SwissPKI TM, the Public Infrastructure Key Infrastructure, onto the ARCA secure execution environment, using Kubernetes.
Ostendio MyVCM Auditor Connect Marketplace Grows with Maloney + Novotny LLC (PR Newswire) Ostendio Inc., a leading provider of integrated risk management software, and Maloney + Novotny LLC, an accounting and business advisory firm,...
Appvance Empowers New AI-Driven Testing Practice From PwC Australia (PR Newswire) Appvance, the inventor and leader in AI-driven testing technology announced today that it has formed a strategic partnership with PwC Australia....
Kindite strengthens data protection partnership with Microsoft (Afcacia) Kindite, a provider of data-in-use protection solutions, has announced it has achieved a Co-Sell Ready partner status with Microsoft.
New Acronis SCS Solution Protects Public Sector Telework & Endpoint Devices (PR Newswire) Today Acronis SCS, an American cyber protection and edge data security company serving the US public sector, announced the launch of Acronis...
QD.TEK deploys BroadForward Next Generation Diameter Signaling Controller and Firewall at MobiFone (PR Newswire) Today, MobiFone and QD.TEK announced that the BroadForward Diameter Signaling Controller (BroadForward DSC) and BroadForward Diameter Firewall...
Dashlane unveils new feature to help businesses enhance password security (TechRadar) New tool allows IT admins to identify which employees have poor password habits
Guardsquare Introduces New Community; Connecting Mobile Application Developers and ProGuard Users to Encourage Networking and Showcasing Expertise - Security Boulevard (Security Boulevard) Mobile Application Security Platform Launches Home Base for Quality Support and Collaboration Among Application Developers and Guardsquare Experts Leuven,
Thycotic Automates and Extends Privileged Access Security in DevOps Environments (PR Newswire) Thycotic, provider of privileged access management (PAM) solutions to more than 10,000 organizations, including 25 of the Fortune 100, today...
Introducing Mandiant Solutions – Augmenting and Automating Security Teams with Industry-Leading Cyber Security Expertise and Threat Intelligence (BusinessWire) FireEye forms Mandiant Solutions group to bring new, controls-agnostic offerings to market that are applicable to every security team.
Spirent Federal Announces M-code Updates (Odessa American) Spirent Federal Systems, the nation’s leading provider of GPS and GNSS simulators, announced today the release of SimMNSA 2.0. This release adds advanced scenario controls that enable full recreation of government test vectors while retaining the simple key and fly option of the initial release.
ESET launches the latest version of its Mobile Security solution (Security Brief) “With this latest version of ESET Mobile Security, we want to ensure our users feel completely secure when performing financial transactions on their devices, in addition to being protected from malware and phishing attempts.
Technologies, Techniques, and Standards
MITRE releases emulation plan for FIN6 hacking group, more to follow (ZDNet) New MITRE project to provide free emulation plans that mimic major threat actors in order to train and help defenders.
()
What newsrooms can learn from threat modeling at Facebook (The Verge) Facebook’s ex-security chief explains how newsrooms can deal with threats to democracy.
Design and Innovation
Updating software in flight? The Air Force may be close (C4ISRNET) The U.S. Air Force will soon announce that the service can update an aircraft’s software while in flight, the Air Force’s chief software officer said Tuesday.
Research and Development
Israel’s QEDIT awarded $2 million funding in DARPA cryptography research program (CTECH) The research project is geared towards harnessing advanced cryptography to preserve the integrity of complex software programs
Academia
Air Force Association Announces Boeing's Continued Support of CyberPatriot as Cyber Silver Sponsor (PR Newswire) The Air Force Association's (AFA) CyberPatriot program announced today that The Boeing Company will continue its support of the program for the...
Legislation, Policy, and Regulation
The military is providing an unexpected and powerful line of defense against Russian interference (Washington Post) As evidence grows that the Trump administration is pressuring intelligence agencies to tailor their reporting for political purposes, the U.S. military is providing an unexpected and powerful line of defense.
An Opportunity for Strengthening U.S.-Australian Cyber Cooperation (Lawfare) As Australia invests in a new cybersecurity posture, the U.S. has the opportunity to nourish an alliance and respond to Chinese pressure.
Explained: The nature of the cyber security threat from China (The Indian Express) The working of the authoritarian regime in which the communist party, government, and military, as well as the worlds of business and academia are closely linked, provide a unique advantage to Beijing compared with democracies around the world.
Huawei fails to gain security clearance in the Czech Republic (Expats.cz) The Chinese company has not gained security clearance necessary to participate in selected public tenders in the Czech Republic
Canadian telcos may need to fight to get Huawei equipment compensation (Telecoms Tech News) Canada’s telecoms operators may be in for a fight to get compensation if the government bans Huawei’s equipment.
How to Handle WeChat’s Threat Smartly (Foreign Policy) Targeted responses can achieve more than blanket bans.
China’s ByteDance to Keep Majority TikTok Stake in Oracle Deal Under U.S. Consideration (Wall Street Journal) The proposal being reviewed by national-security regulators has China’s ByteDance retaining a majority stake in its TikTok app with Oracle as a technology partner and minority holder in a U.S.-based company.
()
Oracle’s courting of Trump may help it land TikTok’s business and coveted user data (Washington Post) The software giant has long cultivated a relationship that could pay dividends as it closes in on the video app deal
()
House passes bipartisan IoT security bill to fix ‘glaring gap’ in cyber infrastructure (Federal News Network) The IoT Cybersecurity Improvement Act would NIST to best practices for device security. The Office of Management and Budget would create guidance for agencies to meet or exceed those standards.
House votes for new rules on federal IOT acquisition (FCW) Legislation from congressional tech stalwarts would add security requirements for connected devices purchased by the federal government.
Power Companies Brace For Supply Chain Shake-Up From New Cyber Rules (Wall Street Journal) Many electricity companies and vendors are holding their breath as the Trump administration finalizes new limits on foreign equipment in an effort to bolster the U.S. power grid’s cybersecurity.
Litigation, Investigation, and Law Enforcement
US indicts two hackers for retaliating for Soleimani's killing; more Iran-related charges expected soon - CyberScoop (CyberScoop) U.S. prosecutors have indicted two hackers, including an Iranian national, for allegedly defacing a slew of websites in retaliation for the U.S. killing of a top Iranian general in January.
Two Are Accused of Hacking U.S. Websites With Pro-Iran Messages (New York Times) The cyberattacks were in retaliation for the death of Maj. Gen. Qassim Suleimani of Iran in a U.S. military airstrike in January, according to a federal indictment unsealed Tuesday.
WSJ News Exclusive | FTC Preparing Possible Antitrust Suit Against Facebook (Wall Street Journal) The case preparations come after the Federal Trade Commission has spent more than a year investigating concerns that Facebook has been using its powerful market position to stifle competition.
US antitrust lawmakers question Google over its online advertising dominance (Computing) Hearing comes a month after US Congress House Antitrust Subcommittee grilled chief executives of Facebook, Google, Apple and Amazon
()
Zoom seeks to toss privacy suits over strangers 'bombing' chats (BNN Bloomberg) Zoom Video Communications Inc. asked a judge to throw out privacy lawsuits over data sharing with other internet companies and trolls sneaking into web meetings and disrupting them with profanities and pornography.
Justice Dept. Opens Criminal Inquiry Into John Bolton’s Book (New York Times) Investigators are examining whether the former national security adviser illegally disclosed classified information.
()
Does the DHS Whistleblower Report Reveal an Election Interference Scandal? (Lawfare) The whistleblower claims the national security adviser personally gave explicit instructions to the Department of Homeland Security to prioritize intelligence about Chinese interference.
DC Circ. Dubious Of FBI's Bid To Conceal Comey Memo Info (Law360) The FBI faced tough questioning and pushback at the D.C. Circuit on Tuesday as two circuit judges appeared unswayed by the agency's request to overturn a trial judge's order to unredact information relating to memos former Director James Comey wrote about his private conversations with President Donald Trump.
Federal judge temporarily blocks Postal Service from sending election mailer to more voters in Colorado (Washington Post) Judge William J. Martinez wrote that the mailer “provides false or misleading information about the manner of Colorado’s elections” and “likely interferes with Colorado citizens’ fundamental right to vote.”
Kentucky officials warn of election scams, but one group says warning is 'misinformation' (The Courier-Journal) The Center for Voter Information denied on Tuesday that what it's doing is a scam and rather accused officials of attempting to disenfranchise voters.
Volkswagen Completes Compliance Monitoring After Emissions Scandal (Wall Street Journal) The German car maker has wrapped up a three-year supervision program under a U.S.-appointed independent monitor in the wake of its emissions scandal, resulting in a more transparent company, a top executive said.
FAA, Boeing Blasted Over 737 MAX Failures in Democratic Report (Wall Street Journal) A report from House Democrats reveals details of how Boeing design errors, lax government oversight and lack of transparency by the plane maker and regulators set the stage for two fatal 737 MAX crashes.
FTC refunded over $11.45 billion to financial fraud victims (Atlas VPN) According to data presented by the Atlas VPN research team, the Federal Trade Commission (FTC) refunded $11.45 billion to US consumers that were scammed by cybercriminals. As many as 7.04 million individuals received a refund from the FTC since its inception.
Dunkin settles lawsuit over 2015 consumer data breach (Yahoo News) Dunkin Donuts settles a lawsuit over a data breach on some DD perks accounts.