Trump to sign yet another trash executive order, this time on 'the cyber'

'President' Donald Trump is expected to sign an executive order addressing cybersecurity today, Reuters reports in an item that cites "two sources familiar with the situation.” The EO is expected to be Trump's first action to address what he called a top priority of his administration during the Presidential campaign.

Read the rest

FBI and ODNI now back CIA's assessment that Russia hacked U.S. election for Trump win

Federal Bureau of Investigations chief James B. Comey and Director of National Intelligence James Clapper today indicated the FBI and ODNI support a recent CIA assessment that Russia committed internet attacks targeted at America's elections, with the intent in part being to help Donald Trump win.

Read the rest

How Russia pulled off a cyberwar invasion of America, according to the New York Times

Huge New York Times investigation on Russia's role in the elections, and Trump's upset victory: "The Perfect Weapon: How Russian Cyberpower Invaded the US.” It's a riveting tic-tock narrative, and no doubt those in the intel/security biz will debate the contents.

An examination by The Times of the Russian operation — based on interviews with dozens of players targeted in the attack, intelligence officials who investigated it and Obama administration officials who deliberated over the best response — reveals a series of missed signals, slow responses and a continuing underestimation of the seriousness of the cyberattack.

The D.N.C.’s fumbling encounter with the F.B.I. meant the best chance to halt the Russian intrusion was lost. The failure to grasp the scope of the attacks undercut efforts to minimize their impact. And the White House’s reluctance to respond forcefully meant the Russians have not paid a heavy price for their actions, a decision that could prove critical in deterring future cyberattacks.

The low-key approach of the F.B.I. meant that Russian hackers could roam freely through the committee’s network for nearly seven months before top D.N.C. officials were alerted to the attack and hired cyberexperts to protect their systems. In the meantime, the hackers moved on to targets outside the D.N.C., including Mrs. Clinton’s campaign chairman, John D. Podesta, whose private email account was hacked months later.

Even Mr. Podesta, a savvy Washington insider who had written a 2014 report on cyberprivacy for President Obama, did not truly understand the gravity of the hacking.

Read the rest

Impressive demonstration of social engineering

Jess shows the host of Real Future what a vishing call is by taking over his mobile phone account in 30 seconds. It involves a recording of a crying baby. Read the rest

China electronics maker will recall some devices sold in U.S. after massive IoT hack

A China-based maker of surveillance cameras said Monday it will recall some products sold in the United States after a massive "Internet of Things" malware attack took down a major DNS provider in a massive DDOS attack. The stunningly broad attack brought much internet activity to a halt last Friday.

Read the rest

St. Jude heart implant devices can be hacked, security researchers say

Security experts hired by the short-selling firm Muddy Waters said in a legal brief filed today that cardiac implants made by St. Jude Medical can be hacked. If hackers can pwn your heart device, the researchers say, they can kill you--from as far away as 100 feet.

Read the rest

NSA contractor Harold Thomas Martin to face espionage charges over 50TB of "stolen code"

A former Booz Allen Hamilton contractor who worked with the National Security Agency will face charges of espionage in a case involving 50 terabytes or more of highly sensitive NSA data the government says were stolen.

Read the rest

"Russia's Trump" says America must elect Donald Trump or prepare for nuclear war

An ultra-right Russian politician aligned with Vladimir Putin says American voters should elect Donald Trump for president, or prepare for nuclear war. Vladimir Zhirinovsky likes to compare himself to Trump, and is a similarly unrestrained blowhard.

"Americans voting for a president on Nov. 8 must realize that they are voting for peace on Planet Earth if they vote for Trump,” he said. “But if they vote for Hillary it's war. It will be a short movie. There will be Hiroshimas and Nagasakis everywhere."

Read the rest

A second hacker group is targeting SWIFT bank system users with malware, Symantec warns

Cybersecurity firm Symantec said today a second hacking group has been trying to rob banks with phony SWIFT messages. That same method nabbed $81 million in a high-profile attack on the central bank of Bangladesh earlier this year.

Jim Finkle at Reuters reports:

Symantec said that a group dubbed Odinaff has infected 10 to 20 organizations with malware that can be used to hide fraudulent transfer requests made over SWIFT, the messaging system that is a lynchpin of the global financial system.

Symantec's research provided new insight into ongoing hacking that has previously been disclosed by SWIFT. SWIFT Chief Executive Gottfried Leibbrandt last month told customers about three hacks and warned that cyber attacks on banks are poised to rise.

SWIFT and Symantec have not identified specific victims beyond Bangladesh Bank. Symantec said that most Odinaff attacks occurred in the United States, Hong Kong, Australia, the United Kingdom and Ukraine.

Symantec promises to share technical information about Odinaff with banks, governments and other security firms involved in the SWIFT system. Read the rest

FBI arrests "Shadow Brokers" leak suspect charged with theft of NSA cyberweapons

Sometime over the last few weeks, the FBI made a secret arrest of a Maryland man who worked as a Booz Allen Hamilton contractor for the National Security Agency.

Read the rest

Yahoo says hack of 500 million users "state-sponsored," but a security firm calls bullshit

So, that huge hack of 500 million Yahoo user accounts last week that Yahoo blamed on a "state-sponsored actor"? A private internet security firm is calling bullshit on the "state-sponsored" part.

Read the rest

UK to extradite hacker with autism to US to face trial for breaking into state computers

Today a court in London okayed the extradition of a British hacker with autism to the United States, where he will face trial for breaking into high-security U.S. government computers.

Read the rest

How To Be At War Forever

If you were the government and wanted to maintain a state of perpetual war, how would you go about it? Read the rest

Was NSA Hacked? Leak from 'Shadow Brokers' suggests so, Russian intelligence suspected

As our Cory Doctorow reported previously, a previously unheard of hacker group calling themselves The Shadow Brokers announced this week it had stolen a trove of ready-to-use cyber weapons from The Equation Group (previously), an advanced cyberweapons dealer believed to be operating on behalf of, or within, the NSA.

The Shadow Brokers are auctioning the weaponized malware off to the highest bidder. Read the rest

How to hack that nutty electronic Chewbacca mask

Remember that video showing the overwhelming glee of the woman enjoying her new Chewbacca mask? Our hyper talented maker pal John Park recorded this instructional video on hacking the Chewbacca Electronic Mask so you can upload any sounds you want, including the crazed laughter of the woman in that wonderful video!

You can still find the mask for sale but, predictably, the third party sellers on Amazon have bumped up the price: Star Wars The Force Awakens Chewbacca Electronic Mask

And here are John's instructions for the hack: Happy Chewbacca Mask (Adafruit Industries)

Read the rest

DCCC hack: FBI probes Democratic congressional group intrusion; Links to DNC hack and Russia investigated

Yet another U.S. Democratic Party group has been hacked, the FBI said today. This latest cyberattack against the Democratic Congressional Campaign Committee (or DCCC) could be related to an earlier hack against the Democratic National Committee, Reuters reported, citing unnamed sources on the FBI investigation.

Read the rest

FBI: Russia hacked DNC. US officials: Electing Trump, crushing Clinton was Putin's goal.

Did Vladimir Putin order the Russian government to hack the Democratic National Committee, obtaining emails that Wikileaks has since released, to take down Hillary Clinton in the 2016 US Presidential elections?

That’s the theory that emerged rapidly inside American intelligence and law enforcement agencies since the 20,000 leaked internal DNC emails spread throughout the internet, just before the beginning of the party's convention in Philadelphia.

Read the rest

More posts