{% text "preview_text" label="Preview Text This will be used as the preview text that displays in some email clients", value="", no_wrapper=True %}


READ IN BROWSER

03/05/2020
linkedin facebook twitter instagram
WorkScoop
A current executive at a security firm with offices in Moscow and Singapore seems to have been indicted by U.S. prosecutors in 2014. Huawei executives admit they don't have a ton of visiblity into how their tech is used. Meanwhile, U.S. telecoms love a Senate idea on 5G. This is CyberScoop for Thursday, March 5.

It looks like the U.S. indicted an executive at Group-IB

The U.S. Department of Justice on Monday unsealed a 2014 indictment that appears to accuse a current cybersecurity executive in an alleged conspiracy to sell usernames and passwords belonging to American customers of the social media company Formspring in 2012. The man identified in the indictment, Nikita Kislitsin, allegedly received data stolen from Formspring, then tried to sell that information to others. A man with the same name is currently listed as head of network security at Group-IB, a cybersecurity vendor with offices in Moscow and Singapore. Group-IB did not provide any clarification before press time. Jeff Stone had the scoop.


A Message From AWS Educate

With over 1,500 institutions and hundreds of thousands of students who use AWS Educate, we wanted to take you on a trip around the world and highlight how students are learning and innovating with the cloud. Learn more.


Huawei execs get real

Huawei has had a lot to deal with over the last few years: the U.S. government trying to block its business, an extradition case in Canada, allegations of backdoors and being a tool for Chinese government espionage. Huawei executives have consistently denied any wrongdoing. But in an interview last week, two Huawei execs admitted they don’t always have visibility into whether their technology is used for surveillance by other nations, or even. The company's own technicians. One Huawei exec also admitted he understands why American lawmakers are so suspicious of Huawei, given the U.S. intelligence community’s past of co-opting private sector entities to help in spying. Shannon Vavra has the story.


Speaking of Huawei...

Nokia and Ericsson expressed support Wednesday for a Senate bill that would subsidize U.S. telecommunication providers' efforts to remove and replace Huawei gear from their networks. The bill is one of multiple ongoing U.S. efforts to block Huawei equipment from being used in the in the states over national security concerns. Juniper Networks and AT&T also back the Senate’s idea, citing 5G security. “We are seeing more reports that Huawei can covertly access mobile phone networks around the world,” Sen. Roger Wicker, R- Mississippi, chairman of the Senate Committee on Commerce, Science, and Transportation, said at the hearing. “At the same time, some of our close allies are granting Huawei access to their communications systems.” Here's the details.


Snags in campaigns sharing threat info

Over the last year, Democratic presidential campaigns have had difficulty sharing threat data between one another, according to the former security boss for Pete Buttigieg’s campaign, Mick Baccio, raising concerns about the party’s ability to fend off possible interference ahead of the November elections. Baccio said his team tried sharing information with other campaigns that could have helped officials protect themselves from hackers. Instead, the effort was hampered due to a shortage of qualified security staffers on other campaigns and a lack of an established or formal information sharing process, he said. Now, Baccio thinks the DNC and RNC should facilitate sharing.

Shannon has more context.


The latest in script-spoofing

Verisign has fixed an issue that could have allowed attackers to register bogus domains by using replacing letters of the alphabet with that only look like those letters while registering domains. The issue was first uncovered by California-based security firm Soluble. Matt Hamilton, principal security researcher at Soluble, discovered it was possible to register domains with Unicode Latin IPA Extension homoglyphs. And while domain providers have been aware of homoglyph attacks for years — and have put in place restrictions to prevent their exploitation, such as barring the use of both Latin and Cyrillic characters at once — Hamilton found that a blend of Unicode and Latin characters still passed the smell test “as long as the Unicode characters were themselves Latin. Shannon covered the news.


Tweet Of The Day

Image

"PWD MNGR" was already taken.


Want more? Catch our events for all things workforce!
{% widget_block rich_text 'unsubscribe' label='Unsubscribe' overridable=true no_wrapper=true %} {% widget_attribute 'html' %} Copyright (c) 2019 WorkScoop, All rights reserved.

{{ site_settings.company_name }}
{{ site_settings.company_street_address_1 }}
{{ site_settings.company_city }} {{ site_settings.company_state }} 20036

Update your email preferences
Unsubscribe {% end_widget_attribute %} {% end_widget_block %} {# {% widget_block rich_text 'unsubscribe' label='Unsubscribe' overridable=true no_wrapper=true %} {% widget_attribute 'html' %} You received this email because you are subscribed to {{ subscription_name }} from {{site_settings.company_name}}. If you prefer not to receive emails from {{site_settings.company_name}} you may unsubscribe or set your email preferences. {% end_widget_attribute %} {% end_widget_block %} #}