Sino-American conflict in the global IT market. DPRK cyber organization for combat. Patriotic hacktivism in regional conflicts.

Summary

By the CyberWire staff

At a glance.

US measures aim to sever Huawei from its supplies of semiconductors.
Oracle may be interested in acquiring TikTok by the US-imposed deadline.
Pyongyang's cyber tactics.
Patriotic hacktivism and regional conflicts.

US measures aim to cut off Shenzhen's access to semiconductors.

According to the Wall Street Journal, new US measures are making it harder for Huawei to get chips made with American technology. The Washington Post notes the difficulties in stopping complex trade. Huawei has continued acquiring chips that contain US technology despite increasingly tight restrictions, and the US Government seems determined to stop this. The Commerce Department’s restrictions announced yesterday are thought to be broad enough to cut Huawei off from these workarounds. The Post cites an anonymous industry executive as saying, “This kills Huawei. Any chip made anywhere in the world by anyone is subject to this.”

The US continues to work on friendly countries to get them to restrict Huawei and other Chinese companies from their forthcoming 5G infrastructure. Mobile World Live says that Israel is the latest country to show signs of moving toward a ban on vendors the US and others have deemed security threats.

ByteDance gets more suitors for TikTok.

As the US establishes a deadline for ByteDance to divest itself of TikTok, other companies besides Microsoft and Twitter are showing signs of interest in an acquisition. Computing reports that Oracle is the latest company to sniff at TikTok, and that Oracle probably amounts to Microsoft's most serious rival.

Pyongyang's cyber tactics.

North Korean hackers are believed to be operating from countries outside the peninsula. A US Army assessment holds that North Korea’s Cyber Warfare Guidance Unit, also known as “Bureau 121,” had more than six-thousand members in 2015, up from one-thousand in 2010. The Army believes the number is probably much higher than six thousand by now. Many of these personnel are believed to work from Belarus, China, India, Malaysia, and Russia, perhaps from other countries as well.

Bureau 121 has four subdivisions: three focused on cyber warfare, the fourth responsible for traditional electronic warfare. The three cyber-focused subdivisions are known in the industry as the Andariel Group, the Bluenoroff Group, and the Lazarus Group. Andariel is made up of approximately sixteen-hundred members and conducts reconnaissance of targeted networks to identify exploitable vulnerabilities. Bluenoroff consists of around seventeen-hundred members who carry out “financial cybercrime by concentrating on long-term assessment and exploiting enemy network vulnerabilities.” Lazarus, properly speaking, consists of an unknown number of operators. Lazarus “create[s] social chaos by weaponizing enemy network vulnerabilities and delivering a payload if directed to do so by the regime.”

"Lazarus Group" also serves, more loosely, as a security industry umbrella name to refer to any North Korean hacking effort. It's in this sense that NK News identifies a new Lazarus Group approach to ransomware: set the ransom below the cost of backup and restoration. Doing that makes it more likely that underwriters' cost-benefit calculation will lead them to pay.

Patriotic hacktivism in the service of regional conflict?

It’s difficult to distinguish spontaneous hacktivism from government-run cyberattacks, but two current campaigns look more like patriotic hacktivism than espionage. The Greek Reporter says that government websites in Eastern Macedonia and Thrace have been defaced with “Blue Homeland” messaging that evidently came from Turkish operators. And Zee News trumpets the activities of the “Indian Cyber Troops” who’ve “hoisted the Indian tricolor” on some eighty Pakistani websites.

Selected Reading

US Army report says many North Korean hackers operate from abroad (ZDNet) US Army says many North Korean hackers are actually located outside the hermit kingdom, in countries like Belarus, China, India, Malaysia, and Russia.

()

Turkish Hackers Launch Cyberwar Against Greek Government Websites (Greek Reporter) Turkish hackers attacked the website of the Region of Eastern Macedonia and Thrace on Tuesday uploading a photo of the Turkish research vessel Oruç Reis

The greatest contest ever – privacy versus security (ComputerWeekly) Elliot Rose of PA Consulting explores the technical, legal and ethical challenges around the privacy versus security debate.

European Leaders Urge Russia Not to Intervene in Belarus (Foreign Policy) After a violent crackdown on protesters, Belarus’s leader has lost all credibility in the eyes of his people, Lithuania’s foreign minister says.

Putin Has No Good Options As Belarus Crisis Surges (RadioFreeEurope/RadioLiberty) Moscow has been largely silent amid ongoing protests in Belarus of a scale rarely seen in the region. As embattled leader Alyaksandr Lukashenka implores President Putin for help, analysts say Russia has no good options to end the standoff.

Dutton confirms he's spying on us - and he's not done yet (The Big Smoke) Earlier this month, Peter Dutton has confirmed that he's broadened the scope of spying on Australian citizens, but he claims it is for the greater good.

The great cybersecurity fraud: government won't comply with its own rules (Crikey) The government constantly insists Australia is under cyber attack — yet nearly three quarters of its departments fail to do even the basics of cybersecurity.

US confident on Israel Huawei, ZTE ban (Mobile World Live) The US’ global campaign to prevent Chinese vendors supplying equipment for 5G networks moved to ...

Huawei and ZTE Designated as Threats to National Security (Lexology) On June 30, 2020, the Federal Communications Commission's (FCC) Public Safety and Homeland Security Bureau (PSHSB) made final the Commission's prior…

Trump Administration Widens Huawei Dragnet (New York Times) The Commerce Department placed new restrictions on the Chinese tech giant’s ability to work with the global chip industry.

Commerce Department Tightens Restrictions on Huawei’s Access to Chips (Wall Street Journal) The Commerce Department issued new rules restricting Huawei Technologies Co.’s access to foreign-made chips, further tightening U.S. curbs on the Chinese telecom giant’s ability to obtain crucial components.

U.S. tightens restrictions on Huawei yet again, underscoring the difficulty of closing trade routes (Washington Post) U.S. officials said they are aiming to stop the Chinese company from evading trade ban

The US is making it even harder for Huawei phones to get Android updates (The Verge) The US is further tightening restrictions on the Chinese phone manufacturer.

Breaking Down Trump's WeChat and TikTok Ban: What to Expect (CPO Magazine) The Trump administration set the internet ablaze when it issued an executive order that sets a firm date for a TikTok ban. That Tencent-owned WeChat would also be included was something of a surprise.

Cyberspace Solarium Commissioners Intro $28B Bill to Upgrade SLG Legacy IT (Meritalk) Three members of the Cyberspace Solarium Commission – Rep. Jim Langevin, D-R.I., Sen. Angus King, I-Maine, and Rep. Mike Gallagher, R-Wis. – introduced bicameral legislation to appropriate $28 billion in new Federal aid and establish programs to enhance state and local government modernization and cybersecurity.

Direct commissions for Army cyber officers finally gaining steam, two-star says (Army Times) “The authority to direct appoint officers was last used on this scale during World War II,” said an Army Talent Management Task Force official.

CCPA Regulations Take Effect August 14, 2020, California AG Announces Final Revisions (cyber/data/privacy insights) On August 14, 2020, the California Attorney General announced that the state’s Office of Administrative Law approved the AG’s proposed regulations pursuant to the California Consumer Privacy Act. T…

The California Consumer Privacy Act Regulations Are Finally Here, But Wait There’s More… (Lexology) On August 14, 2020, California’s Office of Administrative Law (“OAL”) approved the final version of the implementing regulations for the California…

NY Unified Court System Backs Move to Shield Judges' Personal Info, DiFiore Says | New York Law Journal (New York Law Journal) DiFiore’s comments come weeks after an “anti-feminist” lawyer was named as the primary suspect in a shooting that killed a federal judge’s son and injured her husband.

US intelligence indicates Iran paid bounties to Taliban for targeting American troops in Afghanistan (CNN) US intelligence agencies assessed that Iran offered bounties to Taliban fighters for targeting American and coalition troops in Afghanistan, identifying payments linked to at least six attacks carried out by the militant group just last year alone, including a suicide bombing at a US air base in December, CNN has learned.

Snowden pardon plan draws bipartisan scorn from key defense lawmakers (Military Times) House Armed Services Committee leaders said the move would be an insult to U.S. defense and intelligence workers.

Google giving far-right users' data to law enforcement, documents reveal (the Guardian) Exclusive: in some cases Google did not necessarily ban users who were often threatening violence or expressing extremist views

Secret Service Bought Phone Location Data from Apps, Contract Confirms (Vice) An internal Secret Service document describes the purchase of Locate X, a product that uses location data harvested from ordinary apps.

()

GDPR accusations against Oracle and Salesforce 'without merit' (CRN) European data privacy body suing tech giants over firms' adtech processing and sharing of personal data

Partnerships to Fight Financial Crime Gain Momentum (Wall Street Journal) Banks have teamed up with governments in nearly 20 countries to more directly share real-time information on suspicious activity.