Actually, since we took Independence weekend off, this issue represents the last two Weeks that Were. Here we go.
Sea Turtle is back, with some new kit.
Cisco Talos warns that the actors responsible for the Sea Turtle DNS hijacking campaign "are redoubling their efforts with new infrastructure." The researchers identified a new technique being used by the group that makes it much harder to track its activity. It uses different malicious name server hostnames and IP addresses for each target. Earlier attacks had used the same domains against a broad range of organizations, and that's easier to follow. The campaign's targets are mostly in the Middle East and North Africa. They include several government entities, energy companies, think tanks, and NGOs. New victims were spotted in Albania, Cyprus, Greece, Sudan, Switzerland, and the United States, according to Infosecurity Magazine.
An investigation by Yahoo News determined that the SVR, Russia's foreign intelligence service, was the first to spread a phony intelligence report that sparked the conspiracy theory that DNC staffer Seth Rich was assassinated at the behest of then-Presidential candidate Hillary Clinton. The theory initially held that Rich was a disgruntled Sanders supporter who was planning on talking to the FBI about corruption involving Clinton, and later morphed into claiming that the young staffer was WikiLeaks' source for the stolen DNC files. The latter theory was strongly implied by Julian Assange, who in August 2016 offered a $20,000 reward for information about the murder. Special Counsel Robert Mueller's report on Russian interference in the 2016 election concluded that Assange was thereby obscuring the true source of the leaks: Russia's GRU. Russia likewise benefited from pinning the leaks on someone else, thereby deflecting blame from its military intelligence service. DC police believe Rich's tragic murder was a botched armed robbery.