Cyber Attacks, Threats, and Vulnerabilities
More than 200 systems infected by new Chinese APT 'FunnyDream' (ZDNet) New Chinese APT discovered targeting Southeast Asian governments.
Dissecting a Chinese APT Targeting South Eastern Asian Government Institutions (Bitdefender) Bitdefender researchers are constantly monitoring APT groups and their activities around the world, in an effort to gain better insights into their tactics, techniques and targeted victims. While some APT groups operate for financial profit, others have been attributed to nation states and may follow a political agenda.
North Korean hackers broke into software used by banks and government agencies (NK News) The North Korea-linked Lazarus Group is likely behind a novel supply chain attack targeting a popular South Korean security software manager, according to researchers at cybersecurity firm ESET. On Monday, ESET warned that WIZVERA VeraPort, a widespread application that assists with installing custom security software, was compromised by Lazarus hackers. The attack needs to meet …
Fewer opportunities and a changed political environment in the U.S. may have curbed Moscow’s election interference this year, analysts say (Washington Post) Russia failed to mount any major hacking or disinformation operations to interfere in the presidential election, and the Kremlin’s hackers did not even attempt to target elections systems in the way they did in 2016, according to U.S. officials.
Russia Denies Microsoft Claims of Healthcare Cyber Attacks (SecurityWeek) Moscow on Tuesday vehemently rejected claims by Microsoft that Russia was behind cyber attacks on companies researching coronavirus vaccines and treatments, saying it was being made a scapegoat.
Lingering RTA ENIP Stack Vulnerability Poses Risk to ICS Devices (Claroty) A stack overflow vulnerability in RTA’s 499ES ENIP stack, which could cause affected devices to crash, or in a worse-case scenario, allow for remote code execution.
PushBug - Uncovering Widespread Push Notification (RFC 8030) Abuse in the Wild. (Indelible) Indelible is sharing information gathered on what appears to be a widespread campaign to use RFC8030 and APIs to impact systems with malfeasant push notifications. This activity to date is social engineering, bypassing many security controls and creates persistence by installing a service worker in the browser. After w
Capcom Confirms Hackers Stole Data in Recent Attack (SecurityWeek) Japanese video game giant Capcom this week confirmed that a large amount of data was stolen from its systems during a ransomware attack several weeks ago
Cult videogame company Capcom pays a big round $0.00 to ransomware crooks (Naked Security) Bad news: data stolen, data dumped, customers affected. Good news: crooks got $0. The ransom was $11M, so that’s a big deal!
Ransomware attack forces web hosting provider Managed.com to take servers offline (ZDNet) Ransomware attack on Managed.com appears to have taken place on Monday, November 16.
Australian hospitals are under constant cyber attack. The consequences could be deadly (The Conversation) Cyberattacks on Australian healthcare facilities are on the rise.
Cybereason Research Underscores Heightened E-Commerce Threats Going in (PRWeb) Cybereason, the leader in future-ready attack protection, today announced that the Cybereason Nocturnus Team has identified an active campaign targeting customers
Novel Chaes Malware Underscores Heightened E-Commerce Risk This Holiday Season (Cybereason) The Cybereason Nocturnus Team has identified an active campaign targeting customers of a larger e-commerce platform with newly identified multi-stage malware that evades antivirus tools dubbed Chaes.
Schneider Electric Interactive Graphical SCADA System (IGSS) (CISA) 1. EXECUTIVE SUMMARY
CVSS v3 7.8
ATTENTION: Low skill level to exploit
Vendor: Schneider Electric
Equipment: Interactive Graphical SCADA System (IGSS)
Vulnerabilities: Improper Restriction of Operations within the Bounds of a Memory Buffer, Out-of-bounds Write, Out-of-bounds Read
2. RISK EVALUATION
Successful exploitation of these vulnerabilities may result in remote code execution.
Real Time Automation EtherNet/IP (CISA) 1. EXECUTIVE SUMMARY
CVSS v3 9.8
ATTENTION: Exploitable remotely/low skill level to exploit
Vendor: Real Time Automation (RTA)
Equipment: 499ES EtherNet/IP (ENIP) Adaptor Source Code
Vulnerability: Stack-based Buffer Overflow
2. RISK EVALUATION
Successful exploitation of this vulnerability could cause a denial-of-service condition, and a buffer overflow may allow remote code execution.
Paradox IP150 (CISA) 1. EXECUTIVE SUMMARY
CVSS v3 9.8
ATTENTION: Exploitable remotely/low skill level to exploit
Vendor: Paradox
Equipment: IP150
Vulnerabilities: Stack-based Buffer Overflow, Classic Buffer Overflow
2. RISK EVALUATION
Successful exploitation of these vulnerabilities could allow an attacker to remotely execute arbitrary code, which may result in the termination of the physical security system.
Johnson Controls Sensormatic Electronics American Dynamics victor Web Client (CISA) 1. EXECUTIVE SUMMARY
CVSS v3 7.1
ATTENTION: Exploitable remotely
Vendor: Sensormatic Electronics, LLC; a subsidiary of Johnson Controls
Equipment: American Dynamics victor Web Client, Software House C•CURE Web Client
Vulnerability: Improper Authorization
2.
Data Breach: Around 9,500 Apartment-Sharing Site Users Affected (WizCase) WizCase has uncovered an open Amazon S3 bucket on an American apartment home-sharing platform, Niido. The leak exposed over 9,500 users’ personal information, including full names, email addresses, and phone numbers. We have contacted the company, Amazon, and the US CERT to disclose the issue. It was secured following a second reach out to ...
Millions of Bumblers' personal information exposed in dating app security flaw (Computing) Attackers could steal names, pictures and even information on the kind of partner a Bumble user was seeking
Bumble denies cyberattack after fixing security issue (TechRadar) Security flaw had potentially put Bumble users at risk, but company says everyone remained safe
Cybercriminal forum offers Wisconsin voter data for free (Security Magazine) Digital Shadows has identified a post on the English-speaking cybercriminal forum, RaidForums, alleging to possess a complete 2020 Wisconsin voter database. The author of the post provided a free download link to a database containing statewide voter and absentee data acquired from the Badger Voters site, a website established by the State of Wisconsin Elections Commission.
City of Saint John, New Brunswick hit by cyberattack (Security Magazine) City of Saint John in New Brunswick, Canada is hit by significant cyberattack, causing it to shut down several IT systems.
Flower company New Zealand Bloom targeted in ransomware attack (Stuff) Hackers leak documents after attack on US office but company says they aren't sensitive.
Nest outage takes down app, devices in November 2020 (9to5Google) Another outage for Google's Nest products has taken out the legacy app as well as some devices on November 17th, 2020. A fix should be coming.
Port of Kennewick now victim of Cyber Attack (NBC Right Now ) The Port of Kennewick has learned it was victimized by a digital ransom-ware attack.
Security Patches, Mitigations, and Software Updates
Cisco Patches Publicly Disclosed Vulnerabilities in Security Manager (SecurityWeek) Cisco this week released advisories for three serious vulnerabilities in Security Manager that already have proof-of-concept (PoC) exploit code available online.
TikTok expands features to give parents more control of their teenagers' accounts (Reuters) Video-sharing app TikTok said on Tuesday it is giving parents more control options, including the ability to monitor what their teenagers can view on the platform.
Cyber Trends
Verizon Releases First Cyber-Espionage Report (Infosecurity Magazine) US telecommunications giant publishes first data-driven report on advanced cyber-spying
2020 Cyber-Espionage Report (CER) (Verizon Business) Learn how to protect your business from threats with the Cyber-Espionage Report from Verizon. Understand the ways potential cyber-espionage criminals work.
NetDiligence Publishes Tenth Annual Cyber Claim Study (WFMZ) NetDiligence(®), a leading provider of cyber risk readiness and response services, announced today it has published its tenth annual Cyber Claims Study, a study
The Resiliency Gap Widens: Failure to Keep Pace with Complexity in Multi-Cloud Environments Leaves Businesses at Risk of Ransomware, Finds Veritas Survey (BusinessWire) Cloud Ransomware Survey
Employees Have Access to an Average of 10 Million Files (Infosecurity Magazine) New research indicates orgs are failing to secure file access
CISOs say a distributed workforce has critically increased security concerns (Help Net Security) 73% of security and IT execs are concerned about vulnerabilities and risks introduced by the distributed workforce, Skybox Security reveals.
Skybox Security Reports 73% of Executives Concerned Over Distributed Workforce Security Risks (PR Newswire) Skybox® Security, a global leader in cybersecurity management, today released research revealing that 73% of security and IT executives are...
Ransomware top loss cause for small, medium business (Business Insurance) Ransomware was the number one cause of loss for small and medium-sized enterprises last year, according to a study issued Tuesday from cyber risk and response firm NetDiligence.
UK firms are paying some of the highest ransoms globally (Computing) British companies see Russia as a bigger threat than China
Russian economy set to lose $45 bln to cyber crime in 2020 (ETCIO.com) The coronavirus pandemic has exacerbated cybersecurity concerns as more transactions are now made online rather than with cash after lockdown measures..
Post-pandemic Outlook on Banking Fraud Prevention (BAE Systems) Around the world, governments are currently spending big to prop up national economies quickly. In the US, the CARES Act has released around $2 trillion to businesses - the biggest rescue package the country has ever seen. Meanwhile in the UK, there are several initiatives which help SMEs access loans of up to £5 million, and similar schemes are in place across Europe and elsewhere.
Top 200 most common passwords of the year 2020 (NordPass) Here are the worst 200 passwords of 2020. The list details how many times a password has been exposed, used, and how much time it would take to crack it. We also compare the worst passwords of 2019 and 2020, highlighting how their positions have changed. The green arrows indicate a rise in the position while the red ones - a fall off. Check if your password is on the list and strengthen it if it is.
Marketplace
Forward Investments Backs Nozomi Networks (Nozomi Networks) Strategic investment aims to speed innovation and delivery of IT, OT and IoT cybersecurity services to enterprises in the UAE and the MENA region
build.security Emerges from Stealth with $6M in Backing from YL Ventures, CrowdStrike’s George Kurtz and Lineup of Cybersecurity Leaders (BusinessWire) build.security, a startup revolutionizing authorization policy management, today announced $6 million in seed funding led by YL Ventures with particip
Cato Networks raises $131M to converge networking with cybersecurity (SiliconANGLE) Cato Networks Inc. today said that it has closed a $131 million round led by Lightspeed Venture Partners at a pre-money valuation of $1 billion.
Sverica Capital Management Announces Strategic Investment in DeFY Security (The Argus-Press) Sverica Capital Management LP (“Sverica”), a private equity investment firm, announced today that it has made a strategic investment in DeFY Security (“DeFY” or the “Company”).
802 Secure Rebrands to LOCH Technologies and Reaffirms Commitment to Securing Cellular and Wireless IoT Devices as Attack Surfaces Increase (PR Newswire) LOCH Technologies, Inc.™, the leader in wireless IoT security, today announced a rebranding from 802 Secure to LOCH Technologies. The rebrand...
Kaspersky shuts down data-processing activities in Russia (ComputerWeekly) Cyber security provider’s data storage and processing activities for customers in Europe, the US and Canada, have now been fully relocated to Switzerland
U.S. sanctions force Huawei to sell its budget smartphone brand (Fortune) U.S. restrictions on semiconductors are starving Huawei of vial smartphone components.
How Twitter and Facebook plan to handle Trump’s accounts when he leaves office. (New York Times) World leaders enjoy exceptions on the social media platforms, but that can change once they no longer hold office.
Bugcrowd’s Crowdsourced Cybersecurity Platform Helps Pay Over $2 Million to Researchers for Samsung Mobile Rewards Program (Bugcrowd) Company fortifies researcher partnerships by delivering timely and secure payments SAN FRANCISCO – Nov. 17, 2020 -Bugcrowd, the crowdsourced cybersecurity platf
Intercede wins follow-on order of $2.8m (ShareCast) Identity, credential management and security technology company Intercede announced a follow-on purchase order of $2.8m on Tuesday.
Boom in demand for friendly hackers as 5G approaches (Rappler) While 5G internet systems will have new security features built into the network infrastructure, the new technology is vastly more complex than its predecessors, leaving more potential for human error
Thycotic Named to 2020 Deloitte Technology Fast 500 (PR Newswire) Thycotic, a provider of privileged access management (PAM) solutions to more than 10,000 organizations worldwide, including 25 of the Fortune...
Security Current Announces Winners of Inaugural CISO Choice Awards (PR Newswire) Security Current today announced the winners of the CISO Choice Awards, a first of its kind vendor recognition by a Board of Judges – leading...
Invixium Establishes New Middle East Headquarters in Dubai (Invixium) Invixium, a premier manufacturer of innovative touchless biometric solutions, is opening a new office in Dubai, servicing the Middle East, Turkey, North Africa and Pakistan. The new MENA headquarters has been established to best …
Former NSA SIGINT Director Richard Zahner Joins Tachyum Government Corp. (HPCwire) Tachyum Inc. today announced that retired Army Lieutenant General Richard Zahner has joined the advisory board of
Devo Names Former CrowdStrike and Aqua Security Executive as SVP of Corporate Development (Devo.com) Devo names Upesh Patel, former CrowdStrike and Aqua Security executive as senior vice president of corporate development.
Brownstein Adds Ex-TD Ameritrade Privacy Pro To Its IP Team (Law360) Brownstein Hyatt Farber Schreck LLP has added TD Ameritrade's former chief privacy officer as a shareholder handling privacy and intellectual property matters in its Washington, D.C., office, the firm has announced.
Products, Services, and Solutions
Microsoft Unveils 'Pluton' Security Processor for PCs (SecurityWeek) Microsoft has unveiled Pluton, a security processor for PCs that the company will deliver through partnerships with Intel, AMD and Qualcomm
Automated Hunting and Identification of Threat Actors Now Possible as Cobwebs Launches Its Web Investigation Platform to Corporate Security Market (PR Newswire) Market leading web intelligence company Cobwebs Technologies (Cobwebs) has launched the only available, fully automated web investigation...
Asset to Vendor Network | Collaborative Cybersecurity Platform for Utilities (Asset To Vendor Network) Asset to Vendor Network is a collaborative cybersecurity platform for utilities with complete standardized third-party vendor risk assessments, product assessments, and file integrity validation.
KnowBe4 Launches New Holiday Kit With Cybersecurity Resources (KnowBe4) KnowBe4 Launches New Holiday Kit With Cybersecurity Resources
Open Source Software Terrascan Extends Policy as Code Support to Helm, Kustomize (Accurics) Terrascan by Accurics supports Helm and Kustomize, enabling Policy as Code guardrails in your cloud native projects to enforce security best practices.
Spin Technology Introduces the Next Generation of SpinOne for Google Workspace (BusinessWire) Today, Spin Technology, Inc., announced the next generation of SpinOne, an AI-powered ransomware and backup solution for Google Workspace and Office 3
NordVPN unveils killer upgrade to monitor 'dark web' threats (Tom's Guide) New cybercrime scanner alerts you to compromised details
Saviynt Unveils New Release of Its Enterprise Identity Cloud to Support the Modern Workforce (Yahoo) Saviynt, a leading provider of intelligent identity and access governance solutions, today announced the general availability of their latest platform release, named Saviynt 2020. Designed to support the modern enterprise IT landscape, Saviynt 2020 is already helping 1.6M users at major global organizations manage risk, scale cloud initiatives, and maintain regulatory compliance.
NeuShield Introduces One-Click Restore for Windows Servers (GlobeNewswire) One-Click Restore protects against fully-undetectable ransomware and malware infection
Palo Alto Networks 5G Security Fuses Firewalls, SDN (SDxCentral) Palo Alto Networks today rolled out new 5G security capabilities with firewalls that understand 5G protocols and network interfaces.
Proofpoint Named Best Overall Enterprise Email Security Solution Provider of the Year (CTOvision) Proofpoint, Inc., a leading cybersecurity and compliance company, today announced that it has been named the winner of the “Overall Enterprise Email Security Solution Provider of the Year” award in […]
Bkav exports security cameras to US (VnExpress International) Cybersecurity firm Bkav has exported its first batch of security cameras to the U.S., furthering its ambition to become a top five camera manufacturer worldwide.
Group-IB safeguards digital identity with Fraud Hunting Platform (Group-IB) Group-IB, a global threat hunting and intelligence company, has presented today its new solution for digital identity protection and fraud prevention Fraud Hunting Platform.
Tanium Collaborates with IBM to Provide Endpoint Manageability, Security and Compliance for Regulated Industries (MarketWatch) Tanium, the provider of unified endpoint management and security built for the world’s most demanding IT environments, today announced it is working with IBM...
Salesforce open sources malicious server scanner (iTnews) JARM uses Transport Layer Security to actively fingerprint hosts.
Microsoft Defender for Linux adds new security feature (ZDNet) Microsoft's server-based Linux protection program is now offering a public preview of improved endpoint detection and response features.
New Streams Feature for Bittium SafeMove® Mobile VPN Security Software (Cision) Bittium releases a new Streams feature for Bittium SafeMove® Mobile VPN security software. Bittium SafeMove Streams enables an optimized, durable and encrypted connection, even if the network connections in use are unreliable and sensitive to interference.
StackRox Secures Cybrary’s Fast-growing Cybersecurity Education Platform Running on Google Kubernetes Engine | StackRox: Kubernetes and container security solution (StackRox) StackRox announces that Cybrary has deployed the StackRox Kubernetes Security Platform to secure its container and Kubernetes environments running on Google Kubernetes Engine (GKE)
Enzoic and OneLogin Partner to Prevent Cyber Attacks Caused By Compromised Passwords (BusinessWire) Enzoic, a leading provider of compromised credential screening solutions, today announced a partnership with OneLogin, a cloud-based identity and acce
Trend Micro Tackles Misinformation and Fraud with Free Tool (inForney.com) Trend Micro Incorporated, a global leader in cyber security, today launched a new tool for identifying fraud and misinformation in the U.S. The free
CyberGRX Exchange Brings Actionable Insights to Third-Party Cyber Risk Management Market (BusinessWire) CyberGRX published their inaugural issue of
Sumo Logic Integration with New AWS Network Firewall Service to Provide Visibility and Data Security Across Amazon Virtual Private Clouds (Sumo Logic) New Integration with Sumo Logic Cloud SIEM Delivers Real-Time Insights of AWS-Native Network Traffic and Automated Correlation of Threats Surfaced by AWS Network Firewall
Open Raven Launches Cloud-Native Data Protection Platform to Automate Security and Privacy Operations (Citizen Tribune) Open Raven, the company transforming cloud data protection, today launched the Open Raven Cloud-Native Data Protection Platform to operationalize data security and privacy in the cloud.
ImmuniWeb® Community | Free Security Tests | Free server test, online security scan, GDPR, PCI DSS (ImmuniWeb) Free server scan, OWASP Top 10, GDPR and PCI DSS audit, online vulnerability and compliance testing.
Alert Logic Integrates with AWS Network Firewall to Provide Comprehensive Web Application Threat Detection Solution (PR Newswire) Alert Logic today announced its integration with AWS Network Firewall, a new managed service that makes it easy to deploy essential network...
Entrust Helps Enterprises Take Command of Their Crypto With First-of-its-Kind Cryptographic Center of Excellence Solutions (BusinessWire) Entrust announced its Cryptographic Center of Excellence, providing the tools and resources enterprises need to take command of their crypto instances
Vectra expands cloud services to see attacks moving between the cloud, hybrid and on-premise to drastically reduce the risk of breaches (PR Newswire) Vectra, a leader in network threat detection and response (NDR), today announced broader and deeper cloud capabilities to track and link...
Skytap Offers PCI and ISO 27001 Compliance for IBM Power Workloads in Azure (Skytap) Skytap is pleased to announce that we are on track to achieving compliance with the Payment Card Industry Data Security Standard (PCI DSS) and ISO/IEC 27001:2013 in Q4 2020. This will give Skytap customers a PCI DSS and ISO/IEC 27001:2013 compliant option to run traditional IBM Power workloads in Azure and IBM Cloud. Skytap now […]
AttackIQ Launches MITRE ATT&CK for Dummies (AiThority) AttackIQ, the leading independent vendor of Breach and Attack Simulation (BAS) systems, announced the launch of MITRE ATT&CK® for Dummies
Technologies, Techniques, and Standards
Medical Device Security and Achieving Regulatory Approval (Embedded Computing Design) Today, the security of medical devices is becoming extremely important to assure customers & patients that interact with your devices that their health & their personal information is taken seriously.
Cybercrimes can cost companies money, customers, and employees. Here's what types of cybersecurity protocols every business needs to keep their data and information safe. (Business Insider) With more employees working from home, companies are more vulnerable than ever to cyberattacks and need to invest in proper cybersecurity tech.
With the Increase in Phishing, Remote Workers Should Remain Alert (Fed Tech) Especially when they’re at home, keeping employees up to date on security practices is critical.
New manifesto offers CISOs an agile guide to threat modeling (SC Media) At the core of the document is this message: a threat model that can’t be understood outside of the security team doesn’t make any company safer.
How to Find Additional Hidden Vulnerabilities During DAST Testing (CIOReview) How to Find Additional Hidden Vulnerabilities During DAST Testing By Pravin Madhani, Serial Entrepreneur and Executive, K2 Cyber Security - The amount of vulnerabilities found in production code continues to increase at an unprecedented rate. In 2019,...
Cybersecurity can protect your reputation: What you need to know - Latest Digital Transformation Trends | Cloud News | Wire19 (Wire19) No business is safe anymore, whether large or small. Here’s why cybersecurity directly links reputation management and what can be done to...
Is your charity ‘doing’ cyber security the right way? (Charity Digital) Asking yourself these questions can help you to establish whether your charity is adequately protected from cyber security threats
5 ways banks can guard against internal cyber threats (American Banker) Financial institutions are using behavioral analytics, imposing tighter controls and taking other steps to prevent employee-caused security lapses.
US Air Force prepares for its first information warfare exercise (C4ISRNET) The Air Force is planning to host its first information warfare-focused exercise at a new training range.
Design and Innovation
Blockchain for Voting: A Warning From MIT (BankInfo Security) Blockchain technology has been floated as a solution to enable remote, electronic voting. But MIT researchers say that paper-based systems, while imperfect, are still the most reliable way to prove to voters that their selections have been accurately cast.
Research and Development
Study suggests video games can help mental health (Medical Express) Time spent playing video games can be good for mental health, according to a new study by researchers at Oxford University.
Academia
Delaware Launches Free CyberStart America Challenge (State of Delaware News) Delaware launches free CyberStart America challenge - open to all Delaware high school students
Legislation, Policy, and Regulation
Estonian ambassador talks applying international law to cyberspace at PWH event (The DP) Temple Law School Professor Duncan B. Hollis moderated the Nov. 16 event and was joined by Estonian Ambassador for Cyber Diplomacy Heli Tiirmaa-Klaar.
Canada promises big fines for companies that breach new privacy law (Reuters) Companies that fail to protect the personal information of Canadians could be fined up to 5% of global revenue under the terms of a proposed new privacy law, Innovation Minister Navdeep Bains said on Tuesday.
Dominican Republic to drop Huawei project (Developing Telecoms) The Dominican Republican government cancelled an agreement with Huawei which would have seen the company’s technology used in areas such as telecommunications, airports and ports in the country.
Facebook and Twitter CEOs face Senate questions on election measures (CBS News) Mark Zuckerberg and Jack Dorsey have promised lawmakers they would aggressively guard their platforms from being manipulated by foreign governments or used to incite violence around the election results.
Zuckerberg, Dorsey Tout Progress in Combating Political Misinformation (Wall Street Journal) The CEOs of Facebook and Twitter hailed their companies’ efforts to fend off election interference, but skeptical senators warned them that tougher regulation of social media could be coming.
Sens. Struggle To Nail Down Central Section 230 Issues (Law360) The Senate Judiciary Committee grilled the CEOs of Facebook and Twitter on Tuesday on how they've handled misinformation about the coronavirus and the 2020 presidential election, as the executives contended Congress must decide whether it wants to stop the spread of false information or more narrowly prevent threats of violence and physical harm.
Jack Dorsey says social media platforms like Twitter and Facebook can be addictive — Mark Zuckerberg says the research is 'inconclusive' (Business Insider) Jack Dorsey and Mark Zuckerberg were asked about app addiction during Tuesday's Senate Judiciary Committee hearing.
Why Isn't Susan Wojcicki Getting Grilled By Congress? (Wired) YouTube is a major vector for election and other disinformation. But its CEO isn't with Mark Zuckerberg and Jack Dorsey on Capitol Hill today.
The Senate's Section 230 Discourse Somehow Keeps Getting Dumber (Wired) The latest congressional hearing with Facebook’s and Twitter’s CEOs was another parade of bad-faith arguments.
Treasury Stance On Ransomware Payment Could Hurt Targets (Law360) Recent statements from two U.S. Department of the Treasury offices indicate that paying off ransomware with cryptocurrency may trigger certain registration requirements and U.S. sanctions scrutiny, placing a significant regulatory burden on cybervictims and their incident response consultants, say attorneys at McDermott.
Congress needs to step up in ransomware fight, House cybersecurity panel chair says (StateScoop) Rep. Lauren Underwood, D-Ill., said the Senate should follow the House’s passage of a cybersecurity grant program for state and local governments.
CISA Needs More Resources to Avoid ‘Whack-a-Mole’ Operation, Lawmaker Says (Nextgov) The agency shelved routine work protecting federal networks to turn its attention to pressing pandemic and election issues.
The U.S. Government's Response to Election-Related Cyber Threats (Radware Blog) The United States is open and vulnerable to misinformation campaigns designed to cause chaos and division amongst citizens.
Trump fires agency head who vouched for 2020 vote security (AP NEWS) President Donald Trump on Tuesday fired the nation’s top election security official, a widely respected member of his administration who had dared to refute the president’s...
Trump fires agency head who vouched for 2020 vote security (Federal News Network) President Donald Trump on Tuesday fired the director of the federal agency that vouched for the reliability of the 2020 election.
Trump says DHS cybersecurity chief Chris Krebs has been terminated (CNBC) President Donald Trump announced Tuesday on Twitter that he has “terminated” top U.S. cybersecurity official Christopher Krebs.
Trump Fires Top Cybersecurity Official Who Defended Integrity of Election (Wall Street Journal) Chris Krebs has repeatedly said the presidential election was secure from tampering or rigging, and he was vocal in refuting disinformation about the results that was shared by President Trump.
President Trump has fired the official in charge of election cybersecurity (The Verge) Trump announced the firing on Twitter.
Trump fires DHS cyber official, widely credited for repairing fractured relations with industry (SC Media) CISA's successes are often attributed to a deliberate effort by Chris Krebs to reshape the agency into one that epitomizes the best of public-private partnerships.
Trump Fires Official Who Dismissed Election Fraud Claims (Law360) President Donald Trump on Tuesday fired Christopher Krebs, the director of the federal cybersecurity agency that corrected disinformation about the reliability of the Nov. 3 election and called it the "most secure" balloting in U.S. history.
DHS cyber chief out after debunking Trump’s election claims (POLITICO) Christopher Krebs oversaw the defense of the 2020 elections — and vouched for their integrity afterward.
Trump fires CISA head Chris Krebs for rejecting claims about voter fraud (Computing) The move was widely expected, following a CISA announcement last week denouncing Trump's claims about electoral fraud
Inside CISA before the ax fell: Employees working on election cybersecurity say Krebs protected them from White House for months (Business Insider) Chris Krebs' team members at CISA say they expected retaliation from President Donald Trump for months as they worked to safeguard the US election.
The Cybersecurity 202: Firing CISA chief leaves Trump unchecked to make false claims about election fraud (Washington Post) By firing the government’s top election security official by tweet last night, President Trump showed he’s ready to remove any internal check on his baseless claims about election fraud.
Trump Administration to Name OPM’s Basil Parker as Federal CIO (Nextgov) The chief of staff and IT and cybersecurity workforce adviser will be appointed to the top IT position in the federal government, according to the White House.
Litigation, Investigation, and Law Enforcement
Canada border officer says did not take direction from FBI in interrogation of Huawei CFO (Reuters) A Canadian border official testified in an extradition hearing for Huawei Chief Financial Officer Meng Wanzhou on Tuesday that he did not take direction from the U.S. FBI when he took part in Meng's interrogation prior to her arrest in 2018.
IT Snafus Added Confusion to Migrant Family Reunification, Watchdog Says (Wall Street Journal) Department of Homeland Security Inspector General Joseph Cuffari said in a report made public Monday that “known IT deficiencies” at the agency’s law enforcement arm prevented it from accurately tracking family members detained during the Trump administration’s “zero-tolerance” policy in 2018.
Spyware Firm Cites Security in Challenge to Facebook’s WhatsApp (Bloomberg Law) Israeli spyware firm NSO Group is making a national security argument as it challenges a federal court ruling that let Facebook Inc.‘s WhatsApp sue over malware that allegedly targeted users of the messaging platform.
NSO Tries Again For Immunity From WhatsApp Hacking Suit (Law360) Israeli spyware company NSO Group has urged a federal appeals court to overrule a California judge and find it immune from a lawsuit claiming that it hacked into the phones of more than a thousand WhatsApp users, including human rights lawyers, arguing that it caters only to foreign states carrying out "lawful investigations."
Georgia SOS: Voting Machine Audit Shows No Sign of Foul Play (AllOnGeorgia) Raffensperger said Tuesday that an audit of a random sample of machines confirmed no hack or tamper. “Pro V&V found no evidence of the machines being tampered.”
Reality Winner Asks 11th Circ. For COVID-19 Early Release (Law360) Imprisoned former defense contractor Reality Winner asked the Eleventh Circuit on Tuesday to reverse a decision denying her bid for early release over concerns about her health amid the COVID-19 pandemic, arguing that the lower court erred in concluding it did not have jurisdiction to consider her request.
Former Raytheon engineer sentenced to prison for taking defense information to China (AZCentral) Wei Sun, 49, was an electrical engineer for Raytheon in Tucson when he took his work-issued laptop carrying protected missile information to China.
Facebook, Feds Keep On High Court To Trim Autodialer Ban (Law360) Facebook and the federal government made their final pitches ahead of oral arguments next month for why the U.S. Supreme Court should narrowly define what qualifies as an autodialer under the Telephone Consumer Protection Act, arguing that a broad reading would fly in the face of both grammar and the statute's purpose to stop random-fired calls.
NSO Tries Again For Immunity From WhatsApp Hacking Suit (Law360) Israeli spyware company NSO Group has urged a federal appeals court to overrule a California judge and find it immune from a lawsuit claiming that it hacked into the phones of more than a thousand WhatsApp users, including human rights lawyers, arguing that it caters only to foreign states carrying out "lawful investigations."
Israeli spyware maker NSO channels Hollywood spy thrillers in appeal for legal immunity in WhatsApp battle (Register) In latest court bout, snooper biz seems to ask: Are you sure you want to open this can of worms?
Los Angeles Police Just Banned The Use Of Commercial Facial Recognition (BuzzFeed News) The country’s third-largest police department notified employees of the ban after BuzzFeed News showed that its officers were using Clearview AI, a facial recognition platform that has taken data from Facebook and other social media platforms.
Taco Bell, KFC Parent Hit With Ill. Finger Scan Privacy Suit (Law360) The parent company of fast-food chains including KFC, Pizza Hut and Taco Bell got hit with a proposed class action in Illinois state court Monday alleging its finger-scan time-tracking practices violate its employees' biometric privacy rights.
Harriet Carter Says Its Data Collection Is Same As All Retailers (Law360) Online retailer Harriet Carter Gifts and software company NaviStone Inc. have urged a federal judge to let them escape shoppers' claims that they violated wiretapping laws by tracking customers' data on the Harriet Carter website, arguing a ruling for the consumers would "effectively criminalize internet commerce."
FTC Exceeded Its Authority In Zoom Cybersecurity Settlement (Law360) In light of the Federal Trade Commission's requirement, in excess of its statutory authority, that Zoom overhaul its data security as part of a recent deceptive practices settlement, companies shouldn't assent to unfounded relief even when challenging the agency could result in costly litigation, say attorneys at Orrick.