Thursday, June 11, 2020

6/11/2020 - Planning for a Bitcoin Rebellion While the EU Breaks Up Amazon

NY Times - Amazon Set to Face Antitrust Charges in European Union -

European Union officials are preparing to bring antitrust charges against Amazon for abusing its dominance in internet commerce to box out smaller rivals, according to people with knowledge of the case.

Nearly two years in the making, the case is one of the most aggressive attempts by a government to crimp the power of the e-commerce giant, which has largely sidestepped regulation throughout its 26-year history.

It comes after civil rights advocates raised concerns about potential racial bias in surveillance technology.

This week IBM also said it would stop offering its facial recognition software for "mass surveillance or racial profiling".

The honeypot went live earlier this year and it was only three days until attackers discovered the network and were finding ways to compromise it – including a ransomware campaign which infiltrated chunks of the network, as well as grabbing log-in credentials.

"Very early after launching the honeypot, the ransomware capability was placed on every compromised machine," Israel Barak, chief information security officer at Cybereason told ZDNet.

A group of 13 US government officials has sent an open letter today to networking equipment vendor Juniper Networks, asking the company to publish the results of its internal investigation into the origins of a suspected NSA backdoor mechanism discovered in its firewall products in late 2015.

"It has now been over four years since Juniper announced it was conducting an investigation, but your company has still not revealed what, if anything, it uncovered," the group wrote.

The new SGX attacks are known as SGAxe and CrossTalk. Both break into the fortified CPU region using separate side-channel attacks, a class of hack that infers sensitive data by measuring timing differences, power consumption, electromagnetic radiation, sound, or other information from the systems that store it.
Researchers have analyzed samples from the attack that were shared online on Monday, and have determined that it’s likely that the Snake ransomware is responsible for the hit. Snake was first publicized in January after being discovered and analyzed by MalwareHunterTeam and reverse-engineer Vitali Kremez. Researchers at Dragos also looked into the malware, which is written in the Go language, is heavily obfuscated, goes after ICS/SCADA environments, and tends to be highly targeted.
Personal information of police officers in departments nationwide is being leaked online amid tense interactions at demonstrations across the U.S. over the police custody death of George Floyd and others, according to an unclassified intelligence document from the U.S. Department of Homeland Security, obtained by The Associated Press.

The document warns that the effort, known as “doxxing,” could lead to attacks by “violent opportunists or domestic violent extremists” or could prevent law enforcement officials from carrying out their duties.

According to Verizon’s recently released 2020 Data Breach Investigations Report (DBIR), over 80% of hacking-related breaches involved the use of lost or stolen credentials. We analyzed the findings and uncovered some additional data points that underscore how pervasive and detrimental poor password practices are to businesses today. Looking at the DBIR data in detail, approximately 35% of all breaches were initiated due to weak or compromised credentials.

To put it another way, your company is more likely to have a breach as a result of stolen or weak credentials than any other single reason. 

“This type of directive from the judge could strike fear in the hearts of every company that’s ever hired a vendor to understand and improve their cyber posture,” said Norma Krayem, vice president and chair of the cybersecurity, privacy and innovation practice at Van Scoyoc Associates.

In fact, the judge ruled, the language in the incident response contract between Capital One and Mandiant was nearly identical to the contract guiding the standard cybersecurity services that Mandiant provided dating back to 2015. The bank’s argument that the incident response investigation was outside the bounds of its typical business arrangement was “unpersuasive,” the judge wrote.

Capital One shared the forensic report with 51 employees, multiple regulators and Ernst & Young, its auditor, following the breach, partially undercutting the bank’s argument that the details were legally protected.

The "highly active" Gamaredon APT group has been using several previously undocumented post-compromise attack tools in malicious campaigns, which ESET researchers report have been increasing over the past few months. Many of these tools target Microsoft Office and Outlook.
Forbes - Pentagon Documents Reveal The U.S. Has Planned For A Bitcoin Rebellion -
In the Pentagon war game, young people born between the mid-1990s and early 2010s use cyber attacks to steal money and convert it to bitcoin, documents published by investigative news site The Intercept revealed.

...

The scenario, which echoes recent protests in the U.S. and around the world against racial injustice, involves some members of Gen Z, who see themselves "as agents for social change" and believe the "system is rigged" against them, begin a "global cyber campaign to expose injustice and corruption and to support causes it deem[s] beneficial."

 

No comments: