At a glance.
- Beijing's new rules respond to US restrictions.
- Solorigate updates include new advice from CISA.
- Notes on prospective cybersecurity leaders in the Biden Administration.
Chinese regulation framed to counter US security restrictions.
Over the weekend, Beijing issued Rules on Counteracting Unjustified Extra-territorial Application of Foreign Legislation and Other Measures, according to The New York Times. The rules compel Chinese residents and organizations, under penalty of a fine, to report instances in which foreign regulations disrupt their usual economic activity. After an official assessment, the aggrieved party may “institute legal proceedings” and the state may “take necessary counter-measures.” The rules are seen as a riposte to Washington’s sanctions, and although waivers are available for unspecified circumstances, they could put international companies in a bind and pressure the Biden Administration to take a softer stance on China.
Update on the Solorigate cyberespionage campaign.
The Cybersecurity and Infrastructure Security Agency (CISA) published a “companion” alert to AA20-352A: Advanced Persistent Threat Compromise of Government Agencies, Critical Infrastructure, and Private Sector Organizations titled AA21-008A: Detecting Post-Compromise Threat Activity in Microsoft Cloud Environments. The new alert details APT tactics, techniques, and procedures (TTPs) observed in Microsoft 365 applications, offering mitigation recommendations.
Above the Law noted that Solorigate hit the US Judicial Branch’s filing system, with the Columbus Dispatch confirming that federal courts are requiring alternative methods of submission for sensitive filings like search warrants and immigration documents. The District Court for the Southern District of Ohio, for example, accepts paper and USB drive submissions.
SecurityWeek is compiling stories as they break, including news of the first class action lawsuit, SolarWinds’ hire of a new cybersecurity outfit, a probe into Czech software vendor JetBrains’ part in the hack, and possible links to Venomous Bear.
Cybersecurity positions in the new US Administration.
CyberScoop reports the Biden Administration has yet to name a new CISA director or National Defense Authorization Act-established “cyber czar,” who The Hill says will star in the Solorigate response. Facebook and Obama Administration veteran David Recordon will serve as White House Director of Technology, according to ZDNet, and former Department of Homeland Security infrastructure leader Caitlin Durkovich will be appointed Senior Director for Resilience and Response at the National Security Council. Cleveland Jewish News highlights presumptive National Security Council cybersecurity advisor Anne Neuberger’s distinguished career.