WikiLeaks publishes MacBook, iPhone hacking toolkit supposedly used by CIA
WikiLeaks published Thursday a new batch of supposed CIA documents that reveal how the spy agency has hacked into Apple computers and smartphones over the last decade. The 12 newly released folders provide insight into some of the CIA’s methods and techniques, which evidently require physical access to compromise a target device in many cases. Cybersecurity researchers tell CyberScoop that the documents, some of which are marked as recent as 2013, generally prove that the CIA boasts a “robust” Mac attack toolkit.
Microsoft exec gets new cyber job at DHS
Krebs started at the Department of Homeland Security this week as a senior counselor, generally working cyber issues.
Senators draft bill to turn government’s vulnerabilities equities process into law
The bill, which has yet to be introduced, is said to add clarity, transparency and a level of consistency to the process.
Government hoarding of software vulnerabilities needs more transparency, tech firms say
Several major technology companies are calling for increased transparency from the U.S. government after WikiLeaks published CIA documents showing the spy agency knew of vulnerabilities in software products but did not disclose them.
Accused $100M business email grifter arrested in Lithuania
A Lithuanian man charged with running a two year, $100 million email banking con against two unnamed U.S. tech multinationals was arrested last week by authorities.
NSA deputy says U.S. cyberattack responses must improve
The current system for U.S. cyber response is like, "if your house catches on fire, you have to call the mayor to see if he’ll let you call the water department to ask them to turn the water on."
Where’s Assange? Tech firms are still waiting to receive CIA documents from Wikileaks
A cohort of technology firms named in CIA documents that were leaked more than two weeks ago are still waiting to receive important software vulnerability information promised by WikiLeaks.
Google will provide free cybersecurity tools for election organizers in Europe
As the threat of cyber warfare looms over Europe in the months preceding several crucial elections, Alphabet subsidiary companies Jigsaw and Google announced Tuesday the launch of a security tool package to help election organizers and civic groups ward off hackers and other forms of digital interference. The announcement comes one day after FBI Director James Comey told lawmakers that he fully expects Russian intelligence services to once again interfere in the U.S. electoral process in 2020, and perhaps 2018, because of their apparent success in 2016.
Russian bank threatens researcher with CFAA suit over DNS request data
The Russian bank is considering litigation against an Indiana University researcher under the Computer Fraud and Abuse Act’s civil action provision.
Russian hacker pleads guilty in U.S. for role in Citadel malware
He'll receive, at most, a five-year sentence after striking a deal with prosecutors.
Legacy IT makes federal agencies less secure, study says
On average, for each one percent of its spending that an agency shifts from maintaining legacy systems to buying new ones, it can expect a five percent reduction in the number of security incidents.
FBI Director: U.S. should expect Russian interference in 2018, 2020 elections
James Comey expects that Russian intelligence services will launch hacking and influence operations against the 2018 congressional and 2020 presidential elections after finding success in 2016.
Definitions for cyberwar terms sought by House lawmakers
The resolution reflects the thinking of many experts who say the U.S. needs to be more candid about its "red lines" in cyberspace and other elements of its strategic thinking about cybersecurity.
Former NSA hackers: Yahoo indictments won’t slow down Russian cyberattacks
Newly unveiled indictments against a group of hackers working for Russian intelligence, who were involved in breaching Yahoo and Google, will do little to deter future cyberattacks against the U.S., former NSA analysts and government lawyers tell CyberScoop. The Justice Department revealed charges on Wednesday against four alleged hackers responsible for compromising upwards of 500 million Yahoo accounts in 2014. The indictment states that the accused used their access to Yahoo and Google email accounts to enrich themselves and to spy on diplomats, journalists and business executives.
Russian agents allegedly hired this cyber-mercenary to hack Google and Yahoo
Karim Baratov, 22, remains the only suspect in custody as the Justice Department pursues three other suspects. One analyst called Baratov the "wild card" in the case.
Trump budget: FBI would get an extra $61M to fight cybercrime and break encryption
President Donald Trump’s budget blueprint for the federal government includes a proposed $1.5 billion for the Homeland Security Department to protect federal networks and critical infrastructure from hackers and another $61 million for the FBI and Justice Department to track terrorist communications and combat cybercriminals.
At the dawn of connected vehicle networks, cybersecurity challenges remain
Everything on the road will be one day be connected.
Leaked CIA documents show just how complicated computer warfare really is
According to WikiLeaks' dump, even elite hackers at the CIA have to depend on StackOverflow for answers.
Bossert promises funding, centralization for federal cybersecurity
President Donald Trump’s budget outline proposes significant increases in funding for federal cybersecurity, says the White House's top homeland security adviser.
Armies of pro-Trump Twitter bots are now promoting WikiLeaks’ CIA dump
The Twitter bots we saw during the presidential campaign have found a new topic to direct their focus on.