NEW: Ecuador is done with Julian Assange, won't help Wikileaks founder hide from British government

Ecuador plans to stop intervening with the British government on behalf of WikiLeaks founder Julian Assange, reports Reuters today. Read the rest

Equifax engineer gets 8 months house arrest for $75,000 insider trading spree

An internet engineer at Equifax who coded parts of a breach portal for the credit agency has been sentenced to 8 months of house arrest for insider trading. He was convicted of using insider information about the Equifax breach to make more than $75,000. Read the rest

Report: U.S. military weapon systems and computers are ridiculously easy to hack

Well this is fun: The United States Government Accountability Office released a report today that explains, in no uncertain terms, that the majority of the nation's new-fangled, high-tech weapons systems are hilariously vulnerable to cyber attacks.

From the Washington Post:

The report by the Government Accountability Office concluded that many of the weapons, or the systems that control them, could be neutralized within hours. In many cases, the military teams developing or testing the systems were oblivious to the hacking.

A public version of the study, published on Tuesday, deleted all names and descriptions of which systems were attacked so the report could be published without tipping off American adversaries about the vulnerabilities. Congress is receiving the classified version of the report, which specifies which among the $1.6 trillion in weapons systems that the Pentagon is acquiring from defense contractors were affected.

The Government Accountability Office used a team of hackers to see what sort of shenanigans could be caused with a little bit of access and a whole lot of digital kung-fu. The results aren't a good look for America's military. In one instance, the red team that the GOA used was pitted against Pentagon personnel tasked with holding the line against cyberintrusions. The security checks that the Pentagon were easily bypassed, thanks to the use of easy-to-crack passwords and "insiders" who were familiar with the program acting as meatspace backdoors to what would normally be secure systems. It gets worse: hackers working for the GAO reported being able to watch, in real time, a system operator's every move. Read the rest

Facebook: 50 million users’ personal information exposed in mega breach

Facebook says an attack on its network left the personal information of some 50 million users—perhaps you?—exposed to hackers. Who were the hackers, and what did they want? Facebook doesn't know, or won't say. But the company has confirmed that execs Mark Zuckerberg and Sheryl Sanders were among the users affected.

“We have a responsibility to protect your data, and if we can’t then we don’t deserve to serve you,” Zuckerberg said about Facebook's Cambridge Analytica scandal earlier this year.

Well. You heard the man. Read the rest

North Korea: Operatives exploited Facebook, LinkedIn, other social media sites to get money and dodge sanctions

“Hiding behind fake profiles, a group linked to Pyongyang solicited technology work to send hard currency back home.” Read the rest

Former NSA contractor Reality Winner sentenced to 5+ years in prison for leaking secret report on Russian election hacking to The Intercept

Former Air Force language specialist and intelligence contractor Reality Winner has been sentenced to 63 months in prison. Read the rest

DNC alerts FBI to phishing attack on its voter database

The Democratic National Committee called the FBI Tuesday, after discovering what the DNC says was the early phase of a sophisticated phishing attempt to hack its voter database. Read the rest

FBI investigating cyber attack on CA Democratic congressional candidate's campaign

The FBI is investigating a cyberattack on the congressional campaign of David Min, a Democratic candidate in California. Read the rest

'I've had Twitter sex with 12 Russian hackers,' nude model who sexted Guccifer 2.0 tells tabloids

A former nude model and “Bond girl” exchanged sexual messages via Twitter with the online persona now believed to be an unknown number of Russian spies who are accused of attacking the 2016 US elections, the UK tabloid Sun Online posted today.

They're really awful and I don't want to link to them, but this is too rich, you guys. Motherboard has a more credible piece up, you should read that one, too.

In today's garbage interview, Robbin Young told The Sun she "fell madly in love" with Twitter user Guccifer 2.0, and sent him photographs of her breasts and exchanged sexually explicit messages with him or them.

Excerpt:

She was left stunned last week after the US government announced it had indicted 12 Russian spies who they believe ran the Guccifer 2.0 account, hacked into Democratic party computers and leaked stolen documents in a bid to interfere with the 2016 election result.

In an exclusive interview, Robbin, 63, told Sun Online: "I thought he was one Romanian man and I fell in love with him - now to be told it could have been 12 Russian spies running that account - I'm shocked.

"If this is all true it's like I've had Twitter sex with 12 Russian hackers."

Robbin Young once starred with ​007 Roger Moore in 'For Your Eyes Only.'

Guccifer is no Roger Moore.

Get a load of this shit.

In one message he wrote: "Wow u r making me breath harder .. ur soul's so pure and unspoiled ..

Read the rest

John Kelly's phone was hacked

NEW REPORTING CONFIRMS what previous stories speculated: chief of staff John Kelly's phone was hacked, and now they know where. They still don't know by whom, or how, or why, or what the damage was. Read the rest

MyHeritage leaks data of 92 million who use the genealogy and family tree website

A security breach affected the MyHeritage website, and leaked the personal information of over 92 million users, the Israeli company said Tuesday. Read the rest

FBI says to reboot your router ASAP to avoid Russia malware VPNFilter

Have you tried turning it off and on again?

The FBI sent out an urgent bulletin advising anyone with a home or small office internet router to immediately turn it off and then turn it on again as a way to help stop the spread of a malware outbreak with origins in Russia. Read the rest

Russia-linked hacker Karim Baratov gets 5 years in U.S. prison & $250,000 fine for Yahoo breach

A Canadian man born in Kazakhstan has been sentenced to five years in prison for crimes connected to the massive Yahoo security breach that U.S. federal agents say was directed by Russian government spies.

“Karim Baratov, an FSB go-to guy for webmail hacking, was sentenced to 5 years in prison this morning, less than the nearly 8 years sought by the Justice Department,” says Daily Beast's Kevin Poulsen.

Below, why 5 years in prison is actually a good outcome for Baratov, who is 23. Read the rest

FBI, DHS, and UK cyber agency warn of Russia internet attack that targets routers

The United States and Britain today accused Russia of launching a new wave of internet-based attacks targeting routers, firewalls and other computer networking equipment used by government agencies, businesses and critical infrastructure operators around the globe. Read the rest

Guccifer 2.0 identified as Russian intelligence officer

Surprise! The hacker who delivered all those stolen Democratic National Committee emails to Wikileaks turns out to be a Russian intel officer.

The Daily Beast has the story:

Guccifer 2.0, the “lone hacker” who took credit for providing WikiLeaks with stolen emails from the Democratic National Committee, was in fact an officer of Russia’s military intelligence directorate (GRU), The Daily Beast has learned. It’s an attribution that resulted from a fleeting but critical slip-up in GRU tradecraft.

That forensic determination has substantial implications for the criminal probe into potential collusion between President Donald Trump and Russia. The Daily Beast has learned that the special counsel in that investigation, Robert Mueller, has taken over the probe into Guccifer and brought the FBI agents who worked to track the persona onto his team.

While it’s unclear what Mueller plans to do with Guccifer, his last round of indictments charged 13 Russians tied to the Internet Research Agency troll farm with a conspiracy “for the purpose of interfering with the U.S. political and electoral processes, including the presidential election of 2016.” It was Mueller’s first move establishing Russian interference in the election within a criminal context, but it stopped short of directly implicating the Putin regime.

Mueller’s office declined to comment for this story. But the attribution of Guccifer 2.0 as an officer of Russia’s largest foreign intelligence agency would cross the Kremlin threshold—and move the investigation closer to Trump himself.

Read the rest

Facebook harmed America and is ‘living, breathing crime scene’ over 2016 U.S. election, insiders say

“Making you angry, making you afraid, is really good for Facebook's business. It is not good for America.” Read the rest

NSA employee pleads guilty of taking classified info that was later stolen by hackers

Former National Security Agency employee Nghia H. Pho said in a Baltimore courtroom today he'd illegally taken home classified documents from NSA that are understood to have later “been stolen from his home computer by hackers working for Russian intelligence,” the NYT reports.

Nghia H. Pho, 67, of Ellicott City, Md., pleaded guilty to one count of removal and retention of national defense information, an offense that carries a possible 10-year sentence. Prosecutors agreed not to seek more than eight years, however, and Mr. Pho’s attorney, Robert Bonsib, will be free to ask for a more lenient sentence. He remains free while awaiting sentencing.

Mr. Pho had been charged in secret, though some news reports had given a limited description of the case. Officials unsealed the charges on Friday, resolving the long-running mystery of the defendant’s identity.

Mr. Pho, who worked as a software developer for N.S.A., was born in Vietnam but is a naturalized United States citizen. Prosecutors withheld from the public many details of his government work and of the criminal case against him, which is linked to a continuing investigation of Russian hacking.

Read the rest

More posts