The CyberWire Daily Briefing, 4.20.20

Dateline

Hacking Against Corporations Surges as Workers Take Computers Home (New York Times) Hacking activity against corporations in the United States and other countries more than doubled by some measures last month as digital thieves took advantage of security weakened by pandemic work-from-home policies, researchers said.

Watch out for cyber criminals during COVID-19 : Fortinet (The Malaysian Reserve) Fortinet, a global cyber security solutions firm, has warned that cyber criminals may set up fake charity websites to get donors to transfer money, allegedly to help those adversely affected by the COVID-19 pandemic.In a statement today, Fortinet said social engineering is the easiest and fastest way to exploit an individual or organisation in Malaysia amidst COVID-19 pandemic fears.“With so many major events being cancelled, cyber criminals may also try to take advantage of this situation by luring their victims with phishing scams on refunds and fake news to get victims to reveal their credit card information,” it said.

Analysis | The Cybersecurity 202: Coronavirus pandemic has not stopped cyberattacks on hospitals and other vital infrastructure (Washington Post) The U.S. condemned attempted hacks of Czech hospitals and an airport.

Prague airport reports failed cyberattacks after Czech warning (POLITICO) Cyber agency warned country is expecting ‘a large-scale campaign of severe cyber attacks’ amid coronavirus outbreak.

Pompeo: US concerned about threat of cyber attack on Czech health sector (Radio Prague International) The United States is concerned by the danger of a cyber attack on the healthcare sector in the Czech Republic, the country’s secretary of state, Mike Pompeo, said on Friday. Mr. Pompeo said anybody carrying out such activities could expect consequences.

U.S. Says Concerned by Threat of Cyber Attack Against Czech Republic Healthcare (New York Times) The United States is concerned by the threat of a cyber attack against the Czech Republic's healthcare sector, U.S. Secretary of State Mike Pompeo said on Friday, adding that anybody engaged in such activity should "expect consequences."

Israeli researchers: Hackers aiming to exploit government financial aid (The Jerusalem Post) A major increase in malicious and suspicious domains related to relief packages have been registered in recent weeks, aiming to scam individuals into providing personal information.

German government might have lost tens of millions of euros in COVID-19 phishing attack (ZDNet) German state of North Rhine-Westphalia failed to put in place a citizen verification procedure and allowed fraudsters to steal millions of euros.

Could Return of Ghost Squad Hackers Signal Rise in COVID-19-Related Hactivism? (Dark Reading) New research suggests GSH is active in Southeast Asia following a couple of quiet years.

Hacktivist Group Spotlight: “Ghost Squad Hackers” - Vigilante (Vigilante) Prolific hacktivist group, Ghost Squad Hackers—also known as “GSH”— announced several new hacks of various government-affiliated sites and servers in a probable attempt to undermine public confidence in government at a time of universal unease due to the COVID-19 pandemic. Under their de facto leader known as “s1ege,” the politically motivated group in the past couple of weeks alone conducted attacks against the servers and official sites belonging to the Australian government and the governments of India, Pakistan, Thailand, and Zimbabwe.

Fake News, Real Arrests (Foreign Policy) Rampant misinformation has led to dozens of arrests in India, but leaders aren’t doing much to address the root of the problem.

China Is Bargain Hunting—and Western Security Is at Risk (Foreign Policy) Beijing could use the coronavirus-induced economic crisis to go on a buying spree. The U.S. and European governments must restrict the purchasing of distressed companies…

Governments around the world are trying a new weapon against coronavirus: Your smartphone (Washington Post) Phone data long considered so personal and sensitive that many government officials shied away from their use out of fear of public backlash are now being used to track coronavirus's spread. But it's unclear that such data will help eliminate the threat in the absence of traditional contact tracing methods.

European coronavirus contact tracing app sparks uproar in the privacy community (NS Tech) <p>The European Commission has called for a pan-European approach to contact tracing apps that track the spread of coronavirus across borders. But what form such technology could take has stoked inten

Robert says COVID-19 tracking app will bring Aussies closer to having the footy back (ZDNet) Meanwhile, former leader of the National Party Barnaby Joyce is concerned the Chinese government might 'hack' into the app.

Proposed government coronavirus tracking app falls at the first hurdle due to data breach (ZDNet) The source code of a proposed app for tracing COVID-19 exposed user data after being published online.

Technology Can Help Solve the Coronavirus Crisis If Government Steps Up (Foreign Affairs) The Apps Are Coming, but Policy Needs to Come First

Is Apple and Google's Covid-19 Contact Tracing a Privacy Risk? (Wired) Apple and Google's Bluetooth-based system isn't perfect. But many of the biggest concerns have solutions.

How Apple and Google's Social Distancing Maps Work (Wired) New tools from the tech giants shows the dramatic impact of sheltering in place, using location data from phones like yours.

Contact-tracing apps have a trust problem, even if they do protect your privacy (CNET) Experts believe that at least half the population needs to use contact-tracing apps for them to work. The challenge will be convincing the public to opt in after years of trust issues with big tech.

European breaches quadruple as remote workers targetted by hackers (SC Magazine) New report shows that Coronavirus lockdown has led to hackers targeting remote workers as a way into corporate networks.

Ransomware attacks see 148% surge amid COVID-19 (SearchSecurity) According to cybersecurity company VMware Carbon Black, March has seen a 148% increase in ransomware attacks over baseline levels in February. The report also establishes that of verticals targeted by overall cybercrime, criminals are heavily targeting financial institutions.

Philippines battles surge in phishing scams amid COVID-19 lockdown (Xinhua) Philippine authorities have recorded a 100 percent rise in phishing cases and other fraudulent activities during the monthlong coronavirus lockdown, a ranking government official said on Saturday.

If you watch Netflix, you really need to be aware of this terrifying new scam (Express.co.uk) NETFLIX has become a major target for cyber crime as more and more people sign-up and tune-in while practising good social distancing throughout the coronavirus pandemic, with scammers now deploying a range of insidious tricks to con users. Here's what you need to know.

Don’t Take the Bait! There is a Netflix Phishing Scam Scattering Like Coronavirus! (Tech Times) There's a phishing scam circulating through email that targets subscribers to the streaming service.

Face masks and test kits found for sale on the dark web (Engineering & Technology) Unregistered Covid-19 test kits and hard-to-acquire face masks are being sold on the dark web as criminals look to take advantage of people’s concerns about the virus.

Save web conferences from cyber criminals: Warns CERT-In, MHA (Greater Kashmir) Save web conferences from cyber criminals: Warns CERT-In, MHA Greater Kashmir | Organisations and individuals taking the help of web conferencing to work from home should guard against the "prying eyes" of cyber fraudsters as attacks

Remote Video Conferencing Themes in Credential Theft and Malware Threats (Proofpoint) Since March 27, 2020, Proofpoint researchers have observed an increase in video conferencing company-themed attacks seeking to steal credentials and distribute malware. These lures capitalize on the global workforce’s shift to remote work and consequential increased demand for video conferencing services during the COVID-19 pandemic.

Zoom’s Security Woes Were No Secret to Business Partners Like Dropbox (New York Times) Dropbox privately paid top hackers to find bugs in software by the videoconferencing company Zoom, then pressed it to fix them.

Zoom Bombing Attack Hits U.S. Government Meeting (Threatpost) A recent U.S. House Oversight Committee meeting was the latest victim of Zoom bombing, according to an internal letter.

Indiana Election Commission Zoom meeting briefly 'bombed' with pornography (Indianapolis Star) An Indiana Election Commission meeting held over Zoom on Friday was interrupted with pornography.

Houseparty chief Sima Sistani: 'Rumours that we were hacked are fake news' (The Telegraph) Global lockdown has changed fun video chat app Houseparty into a vital lifeline

Crashing the party: Beware the cyber risks of virtual meet-up apps like Houseparty (IOL) It would be relatively simple for a cyber-criminal, with the help of a stolen smartphone, to exploit virtual parties.

Why organisations must urgently secure home working (Journey Notes) The COVID-19 pandemic has businesses shifting the way they work, and phishing attacks have become increasingly high and businesses need at act fast.

Coronavirus has organizations shifting to remote work, making them vulnerable to data breaches. Here’s why. (TWOSENSE.AI) With multiple companies shifting to remote work due to the coronavirus outbreak, it exposes some vulnerabilities for data breaches. Some orgs may even weaken their security to appease off-premise workers. Find out how to shift to a Zero Trust architecture for a remote work environment, while reducin

Opinion | South Korea shows the world how to hold elections during a pandemic (Washington Post) This is how a real democracy conducts itself under pressure.

Opinion | Global democracy will be weakened without fair elections. South Korea shows they’re possible. (Washington Post) South Korea offers a model for staging safe elections. Other countries must step up.

Navy Cybersecurity Director: ‘No Relaxation of Defenses’ During Telework Time (Seapower) The U.S. Navy is maintaining a vigilant cyber watch over its data networks as it balances network security and protecting the health of its Sailors amid the COVID-19 pandemic, a Navy admiral said. “We’re trying to balance two different priorities,”...

Zoom In: 'We've seen an uptick in businesses wanting to leave their datacentres,' says Cloudreach (CRN) Chris Bunch says that companies have opened their eyes to the risks of not being able to access on-prem infrastructure

Addressing Temp Worker Cyber Breach Risk At Financial Cos. (Law360) As new research highlights the risk of data breaches from within financial institutions, the nature of the work performed by the companies' contingent workers warrants greater scrutiny before it leads to significant consequences, say Kostas Katsiris and Elise Gabriel at Venable.

ANU to use facial recognition software on student computers for remote exams (ABC News) With students studying remotely due to COVID-19, the ANU plans to employ an artificial intelligence program on student computers that would monitor keystrokes, eye movement and internet activity.

NFL: League navigates cyber risk as draft moves online (Yahoo Sports) With countless hours of research and planning kept as closely guarded as the President's nuclear football, cyber security is in focus for this week's NFL Draft, as teams pivot to a "virtual" format on COVID-19 lockdown. Usually Draft Day security involves little more than checking

Tor Project lays off a third of its staff (ZDNet) Tor Project lays off 13 out of 35 staffers.

Judge Tells Facebook Privacy Attys To Use Zoom, Not Email (Law360) A California magistrate judge overseeing discovery in Facebook users' privacy suit over the Cambridge Analytica scandal told opposing attorneys Friday to “stop with the emails and letters" and meet informally on Zoom instead, saying everyone's distracted and "doesn’t know if their law firm is going to be here in a year.”

The Q1 2020 Global VC Report: Funding Slowly Impacted By Coronavirus (Crunchbase News) Should shelter-in-place orders be eased up by the third quarter, it could take two years or more to get back to pre-crisis funding levels.

Trump Warns Of 'Consequences' If China Was 'Knowingly Responsible' For Outbreak (NPR.org) The president has offered no evidence that the Chinese were responsible for the pandemic, and conceded, ""If it was a mistake, a mistake is a mistake."

Huawei Hit By China Backlash: 2020 Just Got Much Worse—Here’s Why (Forbes) Huawei's relationship with the Chinese government has now put the tech giant in the firing line over the coronavirus pandemic.

UK moves to drop Huawei as 5G vendor, citing China coronavirus transparency (New York Post) The UK is moving to drop Huawei as a vendor for the country’s 5G cellphone network in a major blow to Communist China over poor coronavirus transparency. Prime Minister Boris Johnson, now rec…

Pompeo Says China’s Virus Failure Bolsters Huawei, ZTE Concerns (Bloomberg Law) Secretary of State Michael Pompeo is urging U.S. allies to re-examine the risks of using Huawei Technologies Co. telecommunications equipment in light of China’s handling of the coronavirus pandemic.

Pompeo says China’s virus failings will hurt Huawei (The Washington Times) Secretary of State Mike Pompeo predicted Friday that China’s failures in dealing with the COVID-19 global pandemic that began within its borders will be a major factor as countries around the world weigh whether to use Chinese high-tech giant Huawei in their next-generation 5G national data networks.

Amazon, Microsoft Offer Little Relief to Small Cloud Clients (Bloomberg) Startup requests Google pass along cloud ‘pandemic credits’. Big customers may get a break from Big 3 utilities of the web.

Coronavirus Forces Tech Startup Founders to Grow Up Fast (Wall Street Journal) In place of the drive to go-big-or-go-home is a desperate effort to conserve cash just to survive. That means cutting payroll, slashing marketing budgets, asking vendors to extend payment terms and scratching for additional capital.

Private-Equity Firms Offer Cash Lifelines to Public Companies (Wall Street Journal) Public companies in need of capital to weather the fallout from the coronavirus outbreak are turning to an unlikely source: private-equity firms.

BSI launches cybersecurity program aimed at helping the Healthcare and Education Communities during the COVID-19 outbreak (BSI Group) BSI’s US Cybersecurity Information Resilience team announced a new initiative, BSI Cares, a program that provides no-cost review of internet footprint of qualified schools and medical facilities for a report on their vulnerabilities.

Executive Q&A: Bringing Work Home Securely With Infoblox (MeriTalk) MeriTalk recently connected with Infoblox’s Ralph Havens, President, Federal, and Chris Usserman, Principal Security Architect, on the current government-wide shift to telework during the COVID-19 pandemic. Havens’ expertise lies in DDI, DNS security, and network automation solutions, while Usserman is proficient in cyber and intelligence operations, offering a vast background to discuss the common cybersecurity challenges and solutions happening daily during this time.

Cisco Donates 330K N-95 Masks To Georgia: Coronavirus (Alpharetta-Milton, GA Patch) Georgia Emergency Management and Homeland Security Agency received a donation of 330,000 N-95 masks from Cisco on Wednesday.

Cyber Attacks, Threats, and Vulnerabilities

Singapore warns political parties of cybersecurity threats, election interference (ZDNet) With the country's general elections expected to be held within a year, political parties have been issued advisories about the threat of foreign interference and cybersecurity threats and urged to seek out precautionary measures.

US govt: Hacker used stolen AD credentials to ransom hospitals (BleepingComputer) Hackers have deployed ransomware on the systems of U.S. hospitals and government entities using Active Directory credentials stolen months after exploiting a known remote code execution (RCE) vulnerability in their Pulse Secure VPN servers.

Indian intelligence used money, disinformation to influence Canadian politicians (Express Tribune) Suspect was tasked with convincing politicians that funding was being sent to Pakistan for terrorism

Canadian politicians were targets of Indian intelligence covert influence operation: document (Global News) An expert called the case one of the first to publicly reveal evidence of clandestine Indian foreign influence targeted at Canadian politicians.

Hackers Targeting Azerbaijan Show Interest in SCADA Systems (SecurityWeek) A threat actor that has been spotted targeting Azerbaijan has shown an interest in the energy sector, specifically SCADA systems related to wind turbines

Iran is using chat apps to spy on its citizens, researchers say (The National) Data breach shows Iranian authorities are using new techniques to collect and analyse huge troves of information

Data Breach Shows Iranians Use Chat Apps to Spy, Researchers Say (BloombergQuint) Data Breach Shows Iranians Use Chat Apps to Spy, Researchers Say

Critical Albanian news outlet hit by sophisticated cyber attack (International Press Institute) Albanian authorities should immediately investigate a sophisticated cyber-attack against Albanian news website Exit.al and hold those responsible to account, the International Press Institute (IPI) said today. Exit, an independent media platform, said its English-language edition was hit by a targeted cyber attack on April 15 which took down over the website for 24 hours and …

International Press Institute Condemns Cyber-Attack against Exit News (Exit - Explaining Albania) The International Press Institute (IPI) has condemned the cyber-attack against Exit News aimed at deleting its archive of articles. In a press release on Friday, IPI called on Albanian authorities to investigate the cyber-attack. The Wednesday attack, April 15, took down Exit’s website for several hours. Anyone trying to access the site was redirected to

Hackers just tapped China's dForce for $25 million in Ethereum exploit (Decrypt) A known ERC777 vulnerability led to an attack that drained a huge chunk of coin from a Uniswap pool.

Hackers Raid Crypto Firms in $25m Attacks (Infosecurity Magazine) Reentrancy attacks target Uniswap and Lendf.Me

Emotet malware returns with better evasion capabilities (Computing) After months of inactivity, all botnets are showing signs of life, researchers warn

Inside the Largest Connected TV Botnet Attack (White Ops) White Ops uncovered the largest CTV fraud scheme dubbed ICEBUCKET that impersonated more than 2 million people.

Starbleed vulnerability: Attackers can gain control over FPGAs (Help Net Security) Scientists have discovered a critical vulnerability hidden inside Field Programmable Gate Arrays, FPGAs for short, and named it Starbleed.

Hacker Claims Popular Android App Store Breached: Publishes 20 Million User Credentials (Forbes) The stolen records of 20 million users of a popular Android app store have been published online by a hacker who claims to have 19 million more.

GitHub users targeted by Sawfish phishing campaign (Naked Security) GitHub users beware: online criminals have launched a phishing campaign to try and gain access to your accounts.

GitHub accounts stolen in ongoing phishing attacks (BleepingComputer) GitHub users are currently being targeted by a phishing campaign specifically designed to collect and steal their credentials via landing pages mimicking GitHub's login page.

GitHub Shares Details on Six Chrome Vulnerabilities (SecurityWeek) GitHub has released technical information on six Chrome WebAudio vulnerabilities identified by one of its security researchers

Microsoft helped stop a botnet controlled via an LED light console (BleepingComputer) Microsoft says that its Digital Crimes Unit (DCU) discovered and helped take down a botnet of 400,000 compromised devices controlled with the help of an LED light control console.

IT services giant Cognizant suffers Maze Ransomware cyber attack (BleepingComputer) Information technologies services giant Cognizant suffered a cyber attack Friday night allegedly by the operators of the Maze Ransomware, BleepingComputer has learned.

Cognizant Hit by 'Maze' Ransomware Attack (New York Times) Cognizant Technology Solutions Corp on Saturday said it was hit by a "Maze" ransomware cyber attack, resulting in service disruptions for some of its clients.

Cognizant And Its Customers Hit By Maze Ransomware (CRN) Solution provider behemoth Cognizant was hit by the Maze ransomware virus locking up its internal systems and hitting some of its clients, the company said in a statement.

Hackers selling 267 million Facebook records on hacker forum (HackRead) Currently, the trove of 267 million Facebook records are being sold for around $600 on the hacker forum.

Leading accounting firm MNP hit with cyberattack (BleepingComputer) A leading accounting firm in Canada forced a company-wide shutdown of their systems after getting hit with a cyberattack last weekend, BleepingComputer has learned.

DESMI restoring IT systems after cyber attack (Riviera) Pump maker DESMI has been hit by a cyber attack and data breach but the company’s production sites remain up and running

Beaumont Data Breach Exposes Private Health Information and Social Security Numbers (WWJ Newsradio 950) A data breach at Beaumont Health System exposed sensitive information of about 112,000 patients, including confidential health details and Social Security numbers of some.

Beaumont security breach puts personal information of 112,000 people at risk (Detroit Free Press) Among the details that may have been leaked include names, dates of birth, Social Security numbers, and in some cases, bank account information.

Orleans Parish Assessor's Office hit by ransomware attack, officials say no personal info lost (WWL) It is unclear when the ransomware was discovered, and what kind of damage it did to the system.

Orleans Parish Assessor's Office latest victim of cyber attack; office functions will continue (WDSU) The Orleans Parish Assessor's Office was hit by a cyber attack.

Cyber data breach suspected as extortion emails on the rise (The Hindu) Accused leverage stigma attached to viewing pornographic websites

Hacker leaks 23 million usernames and passwords from Webkinz children's game (ZDNet) Exclusive: Webkinz security breach occurred earlier this month, sources have told ZDNet.

The Pirate Bay Blocked By MalwareBytes But Normal Service Will Be Resumed (TorrentFreak) The Pirate Bay returned to the clear web this week after a month-long hiatus. However, the structure of the infamous torrent index presented an access problem to users of the popular anti-malware software MalwareBytes, which persistently blocked an essential element of the platform due to the presence of "a few" cryptocurrency miners on a secondary domain.

Island Direct denies cybersecurity breach (EyeWitness News) A local food delivery company has asserted that there is a “zero percent chance” its customers had been affected by a security breach on its platform. IslandDirect.com has come un…

Cyber criminals behind dozens of ‘sextortion’ scams (ITV News) More than 40 cases of cyber-crime have been reported to police across Northern Ireland in just three days – the majority to do with so-called ‘sextortion’ scams.

Bad news: Dark web sales of fraud guides are booming. Good news: They're useless fakes (ZDNet) Fraudsters are selling fraudulent fraud guides to wannabee fraudsters.

Phishing kit prices skyrocketed in 2019 by 149% (ZDNet) The average price for a phishing kit in 2019 was $304, up from $122 recorded in 2018.

Security Patches, Mitigations, and Software Updates

Cisco Patches Critical Flaws in IP Phones, UCS Director (SecurityWeek) Cisco this week released security patches to address numerous vulnerabilities across its products, including critical severity flaws that impact IP Phones and UCS Director

Windows 10 KB4549951 is causing critical issues for some users (Windows Latest) A handful of Windows 10 users are reporting a wide range of issues after installing Windows 10 KB4549951 cumulative update, while others report an error message when they attempt to download and install important security package, which was released on Tuesday.

Cyber Trends

Hackers Attacked Businesses 22 Million Times In The Last 7 Days Globally (Atlas VPN) According to data compiled and analyzed by Atlas VPN, hackers attacked businesses more than 22 million times during the last week worldwide. Over 63% of these hacking attempts were malware attacks. Malware is a type of software that tends to either steal users’ files or encrypt them and render them useless until a password is …

Pen-Test Results Hint at Improvements in Enterprise Security (Dark Reading) Though many problems remain, organizations are making attackers work harder.

Marketplace

Auriga to purchase ATM security technology LDM from S21sec (Retail Banker International) Auriga, a provider of technological solutions for banking and payments industries, has acquired ATM cybersecurity solution Lookwise Device Manager (LDM).

Breach and Attack Simulation Firm SafeBreach Gets $19 Million in Funding (Channel Futures) SafeBreach, which provides a breach-and-attack simulation (BAS) platform, has secured $19 million in funding to expand strategic partnerships.

Aviation ISAC to Join CMMC Academy as Inaugural International Alliance Member (Yahoo) The CMMC Academy, an initiative of Celerium Inc., announced today the formation of an International Alliance program, with the Aviation Information and Analysis Center (A-ISAC) as its inaugural member.

Menlo Security Appoints Joe Sexton to Board of Directors (Menlo Security) Menlo Security, a leader in cloud security, today announced that Joe Sexton has been appointed to the company’s board of directors.

Cam Linke joins Alberta Machine Intelligence Institute as CEO (BetaKit) Cam Linke is the newest CEO of the Edmonton-based Alberta Machine Intelligence Institute (Amii).

Exclusive Networks Appoints Global Head of Professional Services & Consulting in a ‘Services 1st’ Approach (EIN) Recruitment of Nigel Gilhespy underlines commitment to a services centric, value creation strategy aligned to partners and vendors needs

Saviynt Appoints Scott Plutko as SVP of Global Partner Organization (Yahoo) Saviynt (www.saviynt.com) ranked in the top third of Inc. Magazine’s 5000 fastest growing companies in the US, and leader in converging Identity Governance, Application GRC and Cloud Privileged Access Management solutions, announced the expansion of its leadership team, appointing Scott Plutko as the

Products, Services, and Solutions

Cybrary Announces New Scholars Program to Support Professionals Impacted by COVID-19 (PR Newswire) Cybrary, the world's largest online cybersecurity career development platform, today announced its first Scholars Program to support those...

New CCPA, GDPR Third Party Risk Management Privacy Guidelines and Checklists from Shared Assessments Help Organizations Assess and Address Privacy Risk Across Relationships (MarketWatch) The Shared Assessments Program today issued “CCPA Privacy Guidelines & Checklists,” the security and risk industry’s first comprehensive set of best...

New Tool Empowers Organizations to Demand that Third-Party Business Partners Prove that Their Information Systems are Secure and Private (PR Newswire) InfoSecurity Infrastructure Inc.'s just-introduced scripted compliance audit process now enables all United States corporations, non-profit...

Protect your butt online with HideMyAss VPN (Cult of Mac) This powerful VPN offers protection from threats to your online security and privacy, with plenty of powerful extras.

TrafficGuard Launches Free Advertising Fraud Protection (PRWeb) Leading ad fraud prevention specialist, TrafficGuard, announced today the launch of its free pay-per-click (PPC) protection. With the launch of their free ad

Verve Security Center Unveils Version 8.0 to Enhance Ease of Use, Depth of Insight and Speed to Remediation for ICS Cyber Security (Yahoo) Verve is pleased to announce the latest major release of the Verve Security Center, Version 8.0. Over the past decade, Verve's engineering team worked closely with our clients and advisors to continuously improve the functionality of the platform. Version 8.0 significantly enhances the ease of use

Technologies, Techniques, and Standards

You Can Now Check If Your ISP Uses Basic Security Measures (Wired) “Is BGP Safe Yet” is a new site that names and shames internet service providers that don't tend to their routing.

Defragging Security With a Platform Approach (Security Intelligence) With cyberattacks at an all-time high, security leaders must strike a balance between comprehensive security and runaway complexity. This webinar discusses what a security platform can do to help.

DHS Working on Cloud-based Root-of-Trust to Secure Agency Email on Mobile Devices (SecurityWeek) The DHS and BlueRISC are developing a Cloud-based Root-of-Trust (CRoT) technology called EPRIVO Enterprise 2.0 to address concerns over corporate-owned, personally enabled (COPE) devices.

How to Steer Your Security Organization in a Toxic Environment (SecurityWeek) Even in toxic work environments, the security team must work to minimize risk and defend the organization from information security threats.

4 questions with the head of NIST’s cyber collaboration hub (Fifth Domain) The new director at NIST's National Cybersecurity Center of Excellence discusses several projects he's working on there, including an effort to make documents more digestible.

Cheater gives Modern Warfare devs tips to prevent hackers and aimbotters (Dexerto.com) A veteran cheater gave Infinity Ward some tips on preventing Modern Warfare hackers from ruining games.

5 Tips For Protecting Class Member Data In Uncertain Times (Law360) Derek Dragotta at JND Legal Administration shares actionable best practices to safeguard class member data against an increased risk of cybersecurity incidents as legal teams expand remote work access due to the coronavirus pandemic.

Getting Started With Tracking Hackers With HoneyBadger (Black Hills Information Security) Hello and welcome. My name is John Strand, and in this video, we’re going to talk a little bit about HoneyBadger. Now, in a number of other videos and a number of other things whenever you’re talking about attribution or cyber deception, you can focus on creating documents or elements that’ll beacon back and many …

Design and Innovation

AI spots critical Microsoft security bugs 97% of the time (VentureBeat) Microsoft has developed a tool that catches 97% of critical security bugs across the company's internal software projects.

Legislation, Policy and Regulation

Guidance on the Essential Critical Infrastructure Workforce (CISA) As the Nation comes together to slow the spread of COVID-19, on March 16th the President issued updated Coronavirus Guidance for America that highlighted the importance of the critical infrastructure workforce.

Senate Panel Seeks Scrutiny of China Telecom Companies After It Sees Lax U.S. Oversight (Wall Street Journal) Subcommittee finds that without proper oversight, the Chinese firms’ U.S. operations pose an unacceptable risk to national security.

EO encourages public-private partnerships to secure infrastructure (GPS World) With the rise in public unrest from COVID-19 and increasing numbers of remote operations, the susceptibility and vulnerability of a cyber attack has never been greater.

Litigation, Investigation, and Enforcement

Many problems with cyber security of Schipihol's border control: Court of Audit (Netherlands Times) Schiphol is very vulnerable to cyber attacks, the Court of Audit concluded after investigating the cyber security of the border control systems the Koninklijke Marechaussee uses at the airport. Two of the three systems are not properly protected against cyber attacks, NOS reports. Systems at Schiphol are hardly ever tested for how well they can stand up against attacks, not just from the outside, but also from the inside. "This is a real risk, as 60 thousand Defense workers have access to the network," the Court of Audit said.

Australia to force Google, Facebook to pay domestic media to use content (Reuters) Australia will force Facebook Inc and Alphabet Inc's Google to share advertising revenue with local media firms, the country's treasurer said on Monday, becoming one of the first countries to require digital platforms to pay for content they use.

Australian Government tells Facebook and Google to pay for news (ABC News) Treasurer Josh Frydenberg says a mandatory code will help level the playing field by requiring digital platforms such as Google and Facebook to pay news media businesses for the content they produce.

U.S. judge blocks Twitter's bid to reveal government surveillance requests (Reuters via 1450 99.7 WHTC) Twitter Inc will not be able to reveal surveillance requests it received from the U.S. government after a federal judge accepted government arguments that this was likely to harm national security after a near six-year long legal battle.

IN BRIEF-Massachusetts announces $18.2 mln settlement with Equifax over data breach (Reuters) Massachusetts Attorney General Maura Healey on Friday announced an $18.2 million settlement with consumer credit reporting company Equifax Inc over a 2017 data breach that affected 147 million people nationwide.

GOP seizes on newly declassified material to raise further questions about Steele dossier (CNN) Senate Republicans are touting newly declassified information that suggests Russian disinformation, in two instances, may have been passed onto ex-British intelligence agent Christopher Steele when he compiled an opposition research dossier on Donald Trump and Russia in 2016.

Telekom Srbija to sue SBB, denies involvement in cyber attack (Telecompaper) Telekom Serbia has denied that it participated in a cyber attack on SBB by allegedly sending messages to the cable operator’s users, reports Beta news agency. The telecom operator also said it would file a lawsuit against SBB over the unsupported accusations.

Singapore braces for election interference. PoetRAT hits ICS. Cognizant breached. COVID-19 notes.

At a glance.

Bring your own context.

CSO perspectives: stay-at-home edition.