San Francisco: the latest from RSAC 2020
Verizon pulls out of RSA conference amid coronavirus concerns (ZDNet) The fate of the 2020 RSA security conference is in question as prominent technology vendors continue to back out.
Verizon bails on RSA: How the coronavirus is disrupting tech conferences worldwide (TechRepublic) Verizon is the latest to withdraw from the RSA conference in San Francisco as tech trade shows around the globe are impacted by novel coronavirus (COVID-19). Here's what you need to know.
Cybersecurity firms are in good shape as they gear up for RSA 2020 (SiliconANGLE) The cybersecurity industry is shaping up for what is traditionally one of its biggest events of the year: the RSA Conference, which takes place in San Francisco this coming week.
Now Microsoft Wants To Secure Your iPhone (Forbes) Microsoft will reveal details of how it will bring its own security solution to iOS at the RSA conference this week
Cloudrise emerges from stealth to orchestrate and automate data security, privacy, and cloud security (Globe Newswire) Founded by top thought leaders in the data security, privacy, and cloud security market, Cloudrise’s vision is to unify and harmonize multiple technology and vendor point solutions so organizations can detect, respond, and report more effectively for data and privacy incidents.
Nozomi Networks Brings Industrial Strength Monitoring and Threat Detection to IoT Networks and the Cloud with Latest Release (Globe Newswire) Nozomi Networks Inc., the leader in OT and IoT security, today announced its v20.0 product portfolio release. With this latest release, the industry’s most advanced solution for OT network visibility and real-time cybersecurity now includes new groundbreaking anomaly detection technology that delivers unmatched accuracy for enterprise IoT networks.
Guardicore Protects Cloud Native Applications (Guardicore) Guardicore Centra version 5 expands coverage for cloud-native applications and PaaS and introduces AI-powered segmentation.
Circadence Debuts inCyt®, a New Gamified Cyber Awareness Learning Solution, at RSA Conference (PR Newswire) Cybersecurity readiness market leader, Circadence Corporation, announced the debut of inCyt, its new cybersecurity awareness learning solution,...
RSA Security Introduces New Offerings Ahead Of RSAC 2020 (CRN) RSA Security executives talk about some of the products the cybersecurity vendor will unveil at this year's RSA Conference in San Francisco.
New Enterprise Enhancements to Bugcrowd Platform Deliver Access to Skilled Security Talent and Protection Across More of the Software Development Lifecycle (PR Newswire) Bugcrowd, the #1 crowdsourced security company, today announced several platform enhancements to help customers gain global access to...
QuoLab Advances the Security Operations Market with a Collaborative, Data-Centric Platform (BusinessWire) QuoLab Technologies today enters the market with a collaborative, data-centric security operations platform.
Devolutions Arms SMBs with Privileged Access Management to Protect Sensitive Data (Globe Newswire) Password Server Delivers Enterprise-Level Security Minus the Complexity and Cost
BigID Introduces Next Generation Data Security Capabilities For Finding and Protecting Crown Jewel Data (BusinessWire) BigID, the leader in data privacy and protection, today introduced first-of-its-kind discovery and security features for managing sensitive crown jewe
Cyber Attacks, Threats, and Vulnerabilities
EU’s Chief Diplomat Borrell Concerned About Cyber Attack Against Georgia (Eurasia Review) High Representative of the European Union for Foreign Affairs and Security Policy Josep Borrell issued a statement in response to recent developments regarding a massive cyberattack…
Georgia thanks EU for condemning Russian cyber attack (Agenda.ge) Georgian Foreign Minister David Zalkaliani has thanked High Representative of the EU for Foreign Affairs and Security Policy and Vice-President of European Commission Josep Borrell for condemning Russia’s widespread cyber attack against Georgia back in October 2019.
Latvia condemns 2019 cyber-attack against Georgia - Foreign Ministry (Baltic Times) Latvia joins the international community in condemning a massive cyber-attack against Georgia in October 2019.
Major vulnerabilities found in top free VPN apps on Google Play store (VPNpro) Our research uncovered that the top free VPN apps on the Play store are affected by critical MITM vulnerabilities. You should delete these apps immediately.
All Those Low-Cost Satellites in Orbit Could Be Weaponized by Hackers, Warns Expert (ScienceAlert) Last month, SpaceX became the operator of the world's largest active satellite constellation. As of the end of January, the company had 242 satellites orbiting the planet with plans to launch 42,000 over the next decade.
WhatsApp under attack and you must be aware of this growing risk (Express.co.uk) WHATSAPP users are being targeted by a growing trend of nasty phishing scams and it's something every single user of this popular chat app needs to be aware of.
Venmo did what with my data? My location was shared when I paid with the app (USA TODAY) A routine monitor of my phone found many disturbing, un-disclosed trackings by big companies, who shared it with third party data marketing firms.
Slickwraps Suffers Data Breach After Ignoring Warnings From Security Researcher (MacRumors) Slickwraps, a company that develops skins for Apple devices like the iPhone and Mac, yesterday suffered a data breach that saw customer info like...
Say Cheese: Ransomware-ing a DSLR Camera (Check Point Research) Research by: Eyal Itkin TL;DR Cameras. We take them to every important life event, we bring them on our vacations, and we store them in a protective case to keep them safe during transit. Cameras are more than just a tool or toy; we entrust them with our very memories, and so they are very important... Click to Read More
The Amazon Prime phishing attack that wasn’t… (Naked Security) When we followed the phishing trail, we found ourselves at a web page we weren’t expecting…
Photon Research Team Uncovers Spammers Setting up Phishing Businesses for under $20 – with no technical knowledge or experience (Fintech Times) Digital Shadows, the leader in digital risk protection, reveals new research assessing the ecosystem behind phishing – an attack vector responsible for th
Google is cracking down on Android apps that track your location in the background (The Verge) The review process officially starts in August.
Google addresses Huawei ban and warns customers not to sideload apps like Gmail and YouTube (The Verge) "Sideloading Google’s apps also carries a high risk of installing an app that has been altered or tampered with in ways that can compromise user security."
Google Is Letting People Find Invites to Some Private WhatsApp Groups (Vice) With particular Google searches, anyone can discover and join hundreds of thousands of WhatsApp groups.
Reliability of pricey new voting machines questioned (Washington Poet) Nearly 1 in 5 U.S. voters will cast ballots this year on devices that look and feel like the discredited paperless voting machines they once used, yet leave a paper record of the vote. But computer security experts are warning that these so-called ballot-marking devices still pose too much of a risk.
The Cybersecurity 202: Americans should not be confident about security of 2020 election, experts say (Washington Post) Americans should not be confident about the security of the 2020 election, according to a slim majority of experts surveyed by The Cybersecurity 202.
Experts Say There’s ‘No Evidence’ for Bernie’s Russian Bot Claim (The Daily Beast) The Democratic front-runner suggested that Russians were impersonating his most aggro supporters. Experts say there’s no evidence for that.
Twitter is suspending 70 pro-Bloomberg accounts, citing 'platform manipulation' (Los Angeles Times) Twitter said it would suspend 70 accounts posting content supporting the Michael Bloomberg campaign in a pattern that violates company rules.
Facebook is considering making it clearer that pro-Bloomberg posts come from paid staffers (CNBC) Mike Bloomberg's campaign said it was paying staffers to post on social media on its behalf.
Reminder: Video editing still beats deepfakes for spreading disinformation (Quartz) Viral clips of Joe Biden and Nancy Pelosi show you don't need sophisticated AI to successfully manipulate video.
Clinton calls Trump 'Putin's puppet' amid reports of Russian interference in 2020 election (TheHill) Former Secretary of State Hillary Clinton called President Trump "Putin's Puppet" and claimed he "can't win" without foreign help after a report this week said that intelligence officials are warning of Russian interference in the 2020 election.
Trump dismisses reports of Russian meddling, labels them Democratic 'misinformation campaign' (TheHill) President Trump on Friday asserted that Democrats were behind recent news reports that intelligence officials informed Congress of Russian interference in the 2020 race to help his reelection, with the president dubbing it a “misinformation campai
Rallyhood exposed a decade of users’ private data (TechCrunch) Exclusive: Millions of files were left on the internet for anyone to access.
Current, former Advocate Aurora Health employees' personal information accessed in phishing scheme (TMJ4) Advocate Aurora Health says personal information of some employees may have been compromised.
City of Wayne hit by cyber attack (NCN) City officials say they do not believe any residents' personal data has been compromised, but they urge everyone to monitor their financial accounts.
Cyber Trends
Verizon Mobile Security Index: Many organizations still sacrifice security, and that’s risky (Verizon) The Verizon Mobile Security Index takes a deep dive into the state of mobile security, looking at different types of threats and offering tips to protect your environment.
India stands third among top 20 cyber crime victims, says FBI report (The New Indian Express) As per the report, excluding the USA, the UK tops the list with 93,796 victims of internet crimes followed by Canada (3,721) and India (2,901).
Bullied 9-year-old Quaden Bayles paid a price for outpouring of support (CNN) Don't post photos and videos of your kids online without their consent. If you can't follow that rule -- and let's be honest, all of us parents want to share cute pictures of our babies -- at least don't post moments from your children's worst day, writes David Perry.
Marketplace
Maryland attractive to tech companies (Maryland Daily Record) When the time came to launch the personal finance planning start-up Facet Wealth, the founders asked “What city is best suited to start a tech company?”
Berners-Lee Startup: Aim To Decentralize 'Net' (PYMNTS.com) The startup Inrupt launched by internet founder Sir Tim Berners-Lee is stepping up activity in its mission to build a new world wide web.
Tim Berners-Lee expands Inrupt team to ‘restore power’ on the web (Silicon Republic) Inrupt, a start-up founded by Tim Berners-Lee and John Bruce, has appointed five new leaders as it ramps up operations to change the web.
Haystax Strengthens Executive and Insider-Threat Teams #28503 (New Kerala) Business World: Haystax Strengthens Executive and Insider-Threat Teams - KANSAS CITY, Mo: Fishtech Group is pleased to welcome two widely respected cybersecurity industry leaders to the Haystax team.
Netsurion Appoints Stuart Dross New Chief Revenue Officer (Globe Newswire) IT Security Veteran Brings 30+ Years of Sales and Leadership Experience
Cybersecurity veteran Rick Howard joins the CyberWire as CSO and Chief Analyst (MarketWatch) The CyberWire announced today that cybersecurity veteran, and former Chief Security Officer (CSO) at Palo Alto...
Products, Services, and Solutions
Panaseer Sets a New Bar in Cyber With Continuous Business Risk Perspectives (Markets Insider) For the first time enterprises can monitor the crucial link between technology risk and critical business operationsSAN FRANCISCO, Feb. 24, 2020 /...
Statnett entrusts Proact with backup delivery (Cision) Proact will deliver a backup solution to Statnett, the system operator of the Norwegian power
Cyber penetration testing adversarial assessment (Military & Aerospace Electronics) A penetration test attempts to exploit computer and digital networking vulnerabilities to determine if malicious activity is possible.
New Kaspersky Threat Intelligence Tools Unlock ‘Bloodline’ Of Business (CRN) Kaspersky has built a portfolio of subscription services around its threat intelligence data to help move upmarket and capture more large deals with enterprise customers.
Microsoft releases Threat Protection with support for iOS and Android (SD Times) Microsoft has announced the general availability of its cybersecurity solution. Microsoft Threat Protection (MTP) is designed to provide security checks across users, emails, applications, and endpoints. The solution alerts users and takes action using AI so that security professionals can automatically detect, investigate, and stop coordinated multi-point attacks, Microsoft explained In addition, it weeds out … continue reading
Heimdal Thor cleans up viruses, blocks future malware, and may just extend the life of your computer (Boing Boing) If you remember your Norse mythology (or just watched Marvel’s Thor movies), you’re probably familiar with Heimdal, the god whose ever-watchful eye was entrusted with protecting the home of the god…
BlackBerry Delivers Zero Trust Architecture Through BlackBerry Spark Platform for Unified Endpoint Security and Unified Endpoint Management (BlackBerry) BlackBerry today announced the BlackBerry Spark® platform with a new unified endpoint security (UES) layer which can work with BlackBerry® unified endpoint management (UEM) to deliver zero trust security.
Privitar Data Privacy Platform Enables Global 2000 to Broaden Critical Data Privacy Initiatives (BusinessWire) Privitar, the global leader in data privacy and data utilization, today unveiled the latest release of the Privitar Data Privacy Platform™. The additi
Technologies, Techniques, and Standards
The largest cyber exercise you’ve never heard of (Fifth Domain) With a lack of good training opportunities, one Air Force unit took matters into their own hands to develop a competition aimed at developing better defensive cyber tradecraft and tactics.
Spy in the boardroom – safeguarding the business from social media cyber security threats (TechNative) It’s used everywhere; in the workplace, on the commute, at the coffee shop and even in our bedrooms...
Getting Started With TCPDump (Black Hills Information Security) Hello and welcome, my name is John Strand and in this video, we’re going to be talking about getting started with TCPDump. Now, TCPDump is a fantastic tool, it’s one of the core essential tools that every single IT professional should have, especially Infosec professionals. The reason why is TCPDump gives us the ability to …
Academia
We must better know the value of our universities – or risk losing out to China (The Telegraph) The UK is home to some of the world’s leading universities, of which we are rightly proud.
Legislation, Policy, and Regulation
Spies, Lies, and Algorithms (Foreign Affairs) Russian social media meddling in the 2016 U.S. election should serve as a wake-up call: U.S. intelligence community must shift its focus from counterterrorism to a suite of new technological threats, from AI to deepfakes and disinformation warfare.
Leaked Reports Show EU Police Are Planning a Pan-European Network of Facial Recognition Databases (The Intercept) The proposal to link the EU’s facial recognition databases would likely connect them to the U.S. as well, in a massive consolidation of biometric data.
Huawei is 'extension of Chinese surveillance state': Former Canadian prime minister (Fox Business) Former Canadian Prime Minister Stephen Harper explains the risks Huawei poses to the national security of the Western world and offer possible solutions to the problem.
White House plans 5G summit with global tech leaders as battle with Huawei continues (CNBC) The Trump administration is planning a 5G summit with global tech leaders in April at the White House, officials said.
Encryption on Facebook, Google, others threatened by planned new bill (Reuters) U.S. legislation will be introduced in the coming weeks that could hurt technolo...
National Security Wiretap System Was Long Plagued by Risk of Errors and Omissions (New York Times) The F.B.I.’s intelligence wiretap powers are at a crossroads after a damning report about the surveillance of a former Trump adviser. And the flaws may be systemic.
Richard Grenell Begins Overhauling Intelligence Office, Prompting Fears of Partisanship (New York Times) The new acting director of national intelligence also asked to see the facts underlying the finding that Russia is interfering in the 2020 election and favors President Trump’s re-election.
Responding to news of Russian interference, Trump sends chilling message to U.S. intelligence community (Washington Post) Intelligence officers pride themselves as apolitical fact-finders who follow the rule of “speak truth to power.” But President Trump has tacked on a new coda: “Do so at your peril.”
WSJ News Exclusive | Tapping Trump’s Anger About 2016 Surveillance, White House Seeks Overhaul of Spying Law (Wall Street Journal) Senior White House officials are discussing an overhaul of the government’s surveillance program for people in the U.S. suspected of posing a national-security risk, spurred in part by President Trump’s grievances about an investigation of a 2016 campaign adviser, according to people familiar with the matter.
Trump's new intel chief makes immediate changes, ousts top official (TheHill) President Trump's new acting director of national intelligence, Richard Grenell, has already made major changes at the agency, including ousting the No. 2 official.
Richard Grenell is a disastrous choice to head US intel agencies (CNN) Please, Mr. President, re-think this one. Richard Grenell is a catastrophe-in-waiting who will be in a position he is totally unqualified to hold, one that is central to America's national security, writes David Andelman.
()
Trump Weighing Four Candidates for Director of National Intelligence (Wall Street Journal) President Trump is considering four candidates to be his permanent director of national intelligence, after removing an acting spy chief, Joseph Maguire, whose subordinate had informed lawmakers of Russia’s apparent preference for Mr. Trump in this year’s election.
Trump’s Latest Intel Director Pick Lasted About Eight Hours (Vanity Fair) Rep. Doug Collins’s disinterest in the director of national intelligence job creates a headache for the White House—and for Georgia Republicans hoping he ends his Senate run.
()
Should The U.S. Have a Secretary For Influence Operations? (Defense One) Two former top special operations officials say their job was too junior and the Pentagon isn’t taking information warfare seriously enough.
TSA Halts Employees From Using TikTok for Social Media Posts (New York Times) The Transportation Security Administration said Sunday it has stopped allowing employees to use the China-owned video app TikTok to create social media posts for the agency after the Senate’s top Democrat raised concerns about potential national security issues.
Washington state Senate passes bill to rein in facial recognition (Naked Security) The bill now goes to the House, which has a stiffer competing bill pending that would call for a 3.5 year moratorium.
()
Litigation, Investigation, and Law Enforcement
Wells Fargo Reaches Settlement With Government Over Fake-Accounts Scandal (Wall Street Journal) Wells Fargo will pay $3 billion to settle investigations by the Justice Department and the Securities and Exchange Commission over its long-running fake-account problems.
Julian Assange fights extradition to the United States in court (Washington Post) The long-running legal drama of Julian Assange opened a portentous new chapter on Monday, when the WikiLeaks founder and his lawyers entered Woolwich Crown Court to formally contest his extradition to the United States.
US to lay out case against Assange at extradition hearing (AP NEWS) The U.S. government and WikiLeaks founder Julian Assange will face off Monday in a high-security London courthouse, a decade after WikiLeaks infuriated American officials by...
National Security Adviser O'Brien says "no intelligence behind" claims of Russian interference in 2020 elections (CBS News) O'Brien's comments come after a House Intelligence Committee briefing on Russian efforts in the upcoming election
No evidence of Russian 'play' to help Trump; briefer may have 'overstated' intelligence, official says (Fox Wilmington WSFX-TV) Contrary to numerous recent media reports, there is no evidence to suggest that Russia is making a specific "play" to boost President Trump's reelection bid, a U.S. intelligence official told Fox News on Sunday.In addition, top U.S. election official Shelby Pierson, who briefed Co ...
Cyber attack on PM’s office, state bodies attributed to foreign spies (Kathimerini) The Prime Minister's office, the Ministry of Foreign Affairs, the National Intelligence Service (EYP) and the Hellenic Police (ELAS) were the targets of an international cyber espionage campaign in April 2019 code-named “Sea Turtle.”
Former DIA analyst pleads guilty to passing Top Secret information to journalists (Military Times) Henry Kyle Frese faces 10 years in prison at his June sentencing.
MGM Resorts sued over data breach that possibly involved 10.6 million guests (Reuters) U.S. casino operator MGM Resorts International has been sued over a data breach ...
FBI arrests man accused of launching cyberattacks against former Rep. Katie Hill's rival (TheHill) The FBI has arrested a California man who they believe is responsible for hacking the campaign website of one of former Rep. Katie Hill's (D-Calif.) Democratic rivals leading up to the 2018 primary.
How not to steal $1.5 million: Inside an Instagram influencer’s alleged debit card scam (Quartz) A new spin on an old scheme, with the victims on the younger side.
Swiss court rules defamatory Facebook likes ‘can be illegal’ (The Local CH) The Swiss Federal Court has ruled that Facebook likes and shares can be considered as illegal defamation.
Duped into running bogus virus scans at Office Depot? Dry your eyes with a small check from $35m settlement (Register) Treat yourself to a meal out or a case of bevvies... or an appetizer in SF or NYC