skip navigation

the week that was

The Week that Was

Every Saturday, the CyberWire takes a look back in the Week that Was, a narrative summary of the past seven days' significant cyber security news. Designed for busy professionals who need a week-to-week perspective on developments and trends, the Week that Was provides context for the breaking stories of the day. Every issue is organized topically, with inline links to sources the reader can follow for amplified detail. Like the Daily News Briefing, the Week that Was is delivered to subscribers by email, free and spam-free.

Recent Issues

The Week that Was, 8.11.18

WannaCry never left. Pyongyang's new RAT. Notes on cybercrime. Sanctions and hybrid warfare. Industry notes.

The Week that Was, 8.4.18

Reddit gets hacked. Sandworm phishes Swiss lab. RASPITE vs. ICS. Pegasus found in Amnesty phones. Automotive cybersecurity.

Supported by Cylance, ObserveIT, Authentic8, Terbium, and Cybrary.
The Week that Was, 7.28.18

SingHealth breach. Manufacturers affected by 3rd-party breach. Cyber battlespace prep. ERP systems at risk. Maritime hack.

The Week that Was, 7.21.18

Roman holidays, Helsinki clarifications. Social engineering vs. software engineering. Clash of scams. Cyber sector notes.


Past Issues

The Week that Was, 7.14.18

Ukraine stops VPNFilter attack. Ticketmaster tip of the iceberg. Timehop and GDPR. Sons of Spectre. Fortunes of Commerce.

The Week that Was, 7.7.18

EU copyright law suffers setback. Phishing for agents. Autophishbait. Quiz leaks. Data abuse. Agency equities and commerce.

The Week that Was, 6.30.18

Data exposure. Cyber battlespace prep? Protection racket phishing. BEC up; cities and ransomware. Info ops. Industry notes.

The Week that Was, 6.23.18

Cyberespionage, cybercrime, and inadvertently leaky apps. Cyber authorities. Courtroom notes and industry news.

The Week that Was, 6.16.18

Summitry and sanctions. Speculative execution bug. Baba Yaga malware. Wiper misdirection. DoJ IG reports. Industry notes.

The Week that Was, 6.9.18

Zip Slip. VPNFilter comeback. Chinese espionage. Russian influence operations. Industry notes. BEC group found.

The Week that Was, 6.2.18

Hybrid warfare: states and gangs. Cobalt gang is back. Content moderation woes. Courts, crimes, patches, and industry notes.

The Week that Was, 5.26.18

Speculative Store Bypass in chipsets. VPNFilter as battlespace prep. GDPR is here. Courts, crime, and industry notes.

The Week that Was, 5.19.18

Botnets, spyware, and phishing for Ether. Policy updates, crime and punishment, and industry notes.

The Week that Was, 5.12.18

Iranian & US tension rises. Winnti umbrella. Malware notes. Influence operations. GDPR prep. Patches, Industry notes.

The Week that Was, 5.5.18

Fancy Bear's backdoors? Yahoo boys' BEC. Router vulnerabilities. Domain fronting. States of nature. Policy. Industry notes.

The Week that Was, 4.28.18

Orangeworm. Spoofing hotel keys. Cyber conflict and information ops. Tendencies toward delusion. Legal, industry notes.

The Week that Was, 4.21.18

Deterrence, cyber conflict, and current tensions. BEC and bad apps. Patching news. Industry notes.

The Week that Was, 4.14.18

Router rooters. Cyber espionage. Sinkholing a criminal service. Cyber conflict. Facebook testifies. Legal & industry notes.

The Week that Was, 4.7.18

Retail and utility breaches. Cyber battlespace prep. Facebook's troubles mount. Litigation and prosecution. Industry notes.

The Week that Was, 4.1.18

Municipal ransomware. Fitness app compromised. WannaCry's return. Tensions with Russia. Data scandal notes.

The Week that Was, 3.25.18

Guccifer 2.0 is GRU. Iranian hackers indicted. Grid threats, diplomacy, rising tension. Facebook troubles. Industry notes.

The Week that Was, 3.18.18

Assassination attempts as cyber casus belli? South China Sea hacking. Disclosure. SEC's teeth. Industry notes.

The Week that Was, 3.11.18

Memcrash extortion. Aggressive cryptojacking. ComboJack described. Influence operations and espionage. Industry notes.

The Week that Was, 3.4.18

Bears (or snakes) go to Berlin? A breach that wasn't. Memcrash and other DDoS matters. Getting forgotten. Industry notes.

The Week that Was, 2.25.18

OilRig, again. Lazarus Group has a kid brother. Regulatory risk. Cybercrime and state protection. Industry notes.

The Week that Was, 2.18.18

Russians, Americans, swap cyber conspiracy charges. The Americans' are more believable (full disclosure: we're Americans).

The Week that Was, 2.11.18

Infraud takedown. Olympic hacking. Cryptojacking, cryptofraud, legitimate cryptocoin. Content moderation. Industry notes.

The Week that Was, 2.4.18

CPU exploits under development? Grand Theft botnet. Phishing, espionage, and coin fraud. Social media vs. social good?

The Week that Was, 1.28.18

Espionage, cybercrime, and influence operations: nothing else holds fashion. (Except jackpots.)

The Week that Was, 1.21.18

Dark Caracal and other espionage efforts. Deterrence, defense, and resilience. Patch notes and industry news.

The Week that Was, 1.14.18

Turla's back. Spectre & Meltdown. Aadhaar news. Anti-botnet notes. Info ops & content moderation. Cryto coins, crypto wars.

The Week that Was, 1.7.18

Meltdown and Spectre. Iran's Internet crackdown. Content moderation. Aadhaar. Legal, patching, and industry notes.

The Week that Was, 12.17.17

Triton/Trisis malware hits industrial plant. Catphishing as spycraft. Mirai guilty pleas. Software fixes, industry notes.

The Week that Was, 12.10.17

Satori botnet up. State surveillance notes. Apparent ISIS fizzle. Bitcoin crimes and bubbles. Patches and industry news.

The Week that Was, 12.3.17

Mole hunters get their mole. AWS bucket slosh. Carelessness or misdirection? Card fraud down Black Friday? Industry notes.

The Week that Was, 11.26.17

The Uber hack: its history and probable consequences. Info ops, education, patch notes, scams, and industry news.

The Week that Was, 11.19.17

More transparency, accountability for US Vulnerabilities Equities Process? Mole hunting. Influence ops. Patches, malware, and excuses. Industry notes.

The Week that Was, 11.12.17

WikiLeaks opens Vault 8 (worse than Vault 7). More pseudoransomware. Amazon nudges better security onto AWS users. Paradise Papers, cyber conflict, and industry notes.

The Week that Was, 11.5.17

If it looks like ransomware, but isn't collecting much, odds are it's misdirection. Fancy Bear's wish list. Influence ops updates. Crypto wars. Industry notes.

The Week that Was, 10.29.17

CyCon's not good phishing. Kaspersky explains. BadRabbit back in the hat. Don't fear the Reaper (botnet). Breach updates. Industry notes.

The Week that Was, 10.22.17

Important proofs-of-concept: KRACK shakes up wi-fi, ROCA afflicts keys. NotPetya costs. Backdoors, surveillance debates.

The Week that Was, 10.15.17

Breaches at Accenture and Deloitte. More trouble for Experian (and TransUnion). Cyber espionage and Kaspersky. Influence and inspiration. Patch notes, and industry news.

The Week that Was, 10.8.17

Russian intelligence hacked NSA in 2015 (Kaspersky software may be implicated). Yahoo!'s epic breach got even more epic. Rumor and disinformation.

The Week that Was, 10.1.17

Deloitte's bad week. Equifax atonement (and continuing risk). SEC's big CAT. Truth and lies, and AI's religious vision.

The Week that Was, 9.24.17

SEC breached. More on Equifax. WikiLeaks leaks по-русски. Information ops. NIST on resiliency. Attribution. Industry notes.

The Week that Was, 9.17.17

More Equifax breach fallout. BlueBorne hits Bluetooth. Info ops and trust. Data supply chain. Industry notes.

The Week that Was, 9.10.17

The Equifax breach: origins, effects, and lessons. WikiLeaks and the ShadowBrokers are back (on schedule). Notes from the US Intelligence Community.

The Week that Was, 9.3.17

Kenya's Supreme Court invalidates presidential election over hacking concerns. Android DDoS botnet taken down. Ransomware updates. Current phishbait. Maritime jitters. Vault7 and other leaks. Cyber espionage in South Asia. Policy notes and industry news.

The Week that Was, 8.27.17

Vault7 leaks liaisonware. Crooks, cheats, cryptocurrencies, and clouds. USS McCain collision apparently not cyber-related. Persistent extremist inspiration. Spy vs. Spy. Industry notes.

The Week that Was, 8.20.17

Extremism online: public and private responses. The continuing effects of Equation Group leaks. Assessing costs of hacking at HBO, Maersk, and FireEye. US Cyber Command becomes a UCC. Hybrid war, cyber espionage, and influence ops investigations.

The Week that Was, 8.13.17

WikiLeaks releases "CouchPotato" documents. NotPetya's lingering business effects. Fancy Bear is in hotel Wi-Fi. Hybrid warfare updates. Rumors of DNC insider threat. HBO hack updates. GDPR notes. Password guidelines recanted. NIST's workforce framework. Crime and punishment. Patches. Industry notes.

The Week that Was, 8.6.17

Operation #LeakTheAnalyst. HBO hacked. NotPetya continues to hit bottom lines. Cryptocurrency tech and crime. A white hat may have been a black hat. Election hacking, leaks, and hybrid warfare. Patch notes and industry news.

The Week that Was, 7.30.17

Sweden's big data breach. More from WikiLeaks and the ShadowBrokers. Iranian and North Koreas cyber operations. NotPetya fallout. Cyberespionage. Android threats and vulnerabilities. Industry notes.

The Week that Was, 7.23.17

More sloshing from AWS S3 buckets. Cryptocurrency heists. Costs and effects of cyberattacks. Costs of censorship and Internet controls. A look at the dark web criminal markets. International conflict and cyber diplomacy. Industry notes. And congratulations Dr. Whitfield Diffie, FRS.

The Week that Was, 7.16.17

G20 and the cooperation that wasn't. Clausewitz comes to the cyber domain. Assessing NotPetya's cost. The Great Fire Wall and the Crypto Wars. GSA and Kaspersky. More from Vault7. Lawful intercept gets lawless? Leaky S3 buckets. Crime and punishment. Industry notes.

The Week that Was, 7.9.17

M.E. Doc and its role as NotPetya's patient zero. Enterprises continue NotPetya recovery. Warnings to US power plants. WikiLeaks dumps more Vault7 documents. Data toxicity? Notes on criminal markets.

The Week that Was, 7.2.17

Petya/Nyetya/NotPetya's rampage. WikiLeaks and the ShadowBrokers are back (as expected). Brute-force bears. ISIS vs. states and counties. The Five Eyes and the Crypto Wars. Regulation as carrot and stick. Cyber insurance and cyber warranties.

The Week that Was, 6.25.17

Westminster email credentials brute-forced. WikiLeaks dumps "Brutal Kangaroo" from Vault7. Insider threats. Energy sector responds to CrashOverride. WannaCry continues to infest the IoT. Election influence operations. Adware in Google's Play Store. Other exploits. Industry notes.

The Week that Was, 6.18.17

Leaks and patches. Hidden Cobra and Lazarus Group. Hybrid warfare and influence operations. Crimeware updates. CrashOverride and how ICS operators responded. Moderating extremism (harder than it looks). GDPR approaches.

The Week that Was, 6.11.17

NSA report leaked. Comey testifies. Hacks with diplomatic consequences. Really well-known wolves. Attribution, deterrence, retaliation. Counter-messaging. Cybercrime, patches and marketplace news.

The Week that Was, 6.4.17

Howling for jihad. Hybrid warfare.  The murky arts of attribution. Patching. Ransomware rising. Anonymous says they're back. Tech trends in security software.

The Week that Was, 5.28.17

Lone wolves, known wolves, and packs. Counterterror law and policy. Leaky intelligence services? Doxing turns to disinformation. Ransomware's commodification. Backdoors, bugs, RATS, and stolen exploits.

Follow the CyberWire