The researchers found that the spying campaign extend both years before the DNC hack and years after—until as recently as June of this year—and used an entirely new collection of malware tools, some of which deployed novel tricks to avoid detection. "They rebuilt their arsenal," says ESET researcher Matthieu Faou, who presented the new findings earlier this week at ESET's research conference in Bratislava, Slovakia. "They never stopped their espionage activity."
In fact, one of the intrusions that included MiniDuke began in 2013, before the malware had been publicly identified—a strong indicator that the Dukes perpetrated the breach rather than someone else who picked up the malware from another source.
The Dukes' RegDuke implant uses a different obfuscation trick, planting a fileless back door in a target computer's memory! Russia's Cozy Bear Hackers Resurface With Clever New ...www.wired.com /story/ cozy - ...russian - ...tricks Stealthy Russian Hacker Group Resurfaces With Clever New Tricks Largely out of the spotlight since 2016, Cozy Bear hackers have been caught perpetrating a years-long campaign.!! That back door then communicates to a Dropbox account used as its command-and-control, hiding its messages using a steganography technique that invisibly alters pixels in images like the ones shown below to embed secret information.
Check out this next:
An iTunes Bug Let Hackers Spread Ransomware | WIRED
The past week brought a heaping helping of not so comforting cybersecurity news, starting with President Donald Trump's apparent plans to pull out of the Cold War-era Open Skies treaty! Russia's Cozy Bear Hackers Resurface With Clever New ...tricks Russia's Cozy Bear Hackers Resurface With Clever New Tricks Ole Gunnar Solskjaer vows 'Manchester United will be back' as he defends transfer policy and confirms spending plans Malaysia orders China map cut from 'Abominable' film as furor widens Turkish president Erdogan 'threw Trump's Syria letter in bin'!! We explained why that would be as bad an idea as it sounds . But that's just for starters.
Also not doing enough: Twitter, which this week acknowledged that it had fed user phone numbers provided for two-factor authentication into its ad-targeting engine . This is bad-- But maybe not unexpected, given how little the big tech platforms care about your privacy and security, especially compared to their profits! Russia's Cozy Bear Hackers Resurface With Clever New ...weeklyreviewer.com/ ...tricks In the notorious 2016 breach of the Democratic National Committee, the group of Russian hackers known as Fancy Bear stole the show, leaking the emails and documents they had obtained in a brazen campaign to sway the results of the US presidential election. But another, far quieter band of Kremlin hackers was inside DNC networks as well. In the…!! A less cut-and-dried controversy is swirling around the nascent idea of encrypting Domain Name System lookups , which both Google Chrome and Mozilla's Firefox support! Russia's Cozy Bear Hackers Resurface With Clever New ...cozy - ...russian - ...tricks Russia's Cozy Bear Hackers Resurface With Clever New Tricks. AutoBlog. Russia's Cozy Bear Hackers Resurface With Clever New Tricks. October 17, 2019. Terabitweb AutoBlogger. Original Post from Wired Magazine Author: Andy Greenberg. Largely out of the spotlight since 2016, Cozy Bear hackers have been caught perpetrating a years-long campaign.!! Some security professionals argue that it makes it harder to defend networks against certain attacks, while offering minimal benefit.
Facebook Sweetens Deal for Hackers to Catch Security Bugs | WIRED
Last year, the company began paying bounties for certain bugs researchers might find in third-party services that integrate with Facebook! Russia's Cozy Bear Hackers Resurface With Clever New ...www.digitalmunition.me/ ...tricks Russia's Cozy Bear Hackers Resurface With Clever New Tricks In the notorious 2016 breach of the Democratic National Committee, the group of Russian hackers known as Fancy Bear stole the show, leaking the emails and documents they had obtained in a brazen campaign to sway the results of the US presidential election .!! It will now expand the types of bugs that are eligible, and even pay out for bugs that have also been directly submitted to another developer's own bug bounty. Essentially, Facebook is willing to reward bugs that impact its platform even if a researcher has already gotten another payout elsewhere for finding it. The company is also adding bonuses from $1,000 to $15,000 if researchers find bugs in the fundamental code of its native products—like Messenger, Oculus, Portal, or WhatsApp—and then also submit additional materials, like showing how the bugs could actually be exploited in the wild. Before now, there wasn't a specifically codified bonus structure if you went above and beyond in a submission, a practice Facebook wants to encourage.
Report: Underground hackers and spies helped China steal jet secrets
The Airbus 320, pictured here, and Boeing's 737 are air passenger workhorses and would be competitors to Comac's C919. (Nicolas Economou/NurPhoto via Getty Images)
Chinese government hackers working with the country’s traditional spies and agencies plotted and stole U.S. and European aircraft engine secrets to help Beijing leapfrog over its Western competitors in developing a domestic commercial aircraft industry, according to researchers at the cybersecurity protection firm CrowdStrike.
“Beijing used a mixture of cyber actors sourced from China’s underground hacking scene, Ministry of State Security or MSS officers, company insiders, and state directives to fill key technology and intelligence gaps in a bid to bolster dual-use turbine engines which could be used for both energy generation and to enable its narrow-body twinjet airliner, the C919, to compete against Western aerospace firms,” CrowdStrike said in a report released Monday evening.
This may worth something:
The Cybersecurity 202: Cyber Command hacking contest aims to prep Election Day first responders -
Hundreds of U.S. military and National Guard hackers will gather in Columbia, Md., today to test their mettle attacking and protecting voting systems that will be used across the Mid-Atlantic on Election Day 2020.
The first-of-its kind event is aimed at preparing troops who might respond to an Election Day cyberattack for all kinds of possible problems ranging from Russia or another adversary hacking voting machines to shutting off the power at polling stations.
It also marks a novel team-up between U.S. Cyber Command, which is sponsoring the AvengerCon conference today and tomorrow, and the ethical hacking community, which has sounded alarm bells about vulnerabilities in U.S. voting systems but gotten blowback from state and local election officials and voting machine companies saying they're overhyping the threat.
DNC Hackers Resurface, Zuckerberg Talks Free Speech, and More News | WIRED
A dangerous hacker group resurfaced, Mark Zuckerberg delivered a long-winded defense of Facebook, and Volvo is going green. Here's the news you need to know, in two minutes or less.
* * *
A band of Kremlin hackers involved in the 2016 hack of the Democratic National Committee has resurfaced. Researchers revealed today that the group has been involved in a years-long espionage campaign , penetrating the networks of at least three targets: The ministries of foreign affairs at two Eastern European countries and one European Union nation, including the network of that EU country's Washington, DC embassy. "They rebuilt their arsenal," says researcher Matthieu Faou. "They never stopped their espionage activity."
Facebook CEO Mark Zuckerberg delivered a speech today at Gaston Hall auditorium at Georgetown University—which has hosted the likes of Bill Clinton, Barack Obama, and Bono—to declare himself a champion of free speech. He spoke for nearly 40 minutes, and while he didn't announce any new initiatives, he covered everything from conservative bias to Facebook's reputation in the world .
Researchers at ESET found Russia's SVR hackers APT29/Cozy Bear back at it after years of relative quiet. They had p… https://t.co/S3EcppIofk a_greenberg (from New York) Thu Oct 17 13:02:53 +0000 2019
The 2016 DNC hackers are at it again, Zuck delivered a long-winded defense of Facebook, and we rounded up the best… https://t.co/Azjqd8Co8w WIRED (from San Francisco/New York) Thu Oct 17 22:18:01 +0000 2019
No comments:
Post a Comment