Cyber Briefing ~ 08/26/2024
McCrary Institute for Cyber & Critical Infrastructure Security
Working to protect and advance U.S. interests in the areas of cyber and critical infrastructure security.
Oil giant Halliburton faces computer system issues reportedly linked to a cyberattack impacting operations at its Houston campus and global networks. The company activates response plans and collaborates with experts to address the situation, while the Energy Department sees no evidence of energy service disruptions.
Equiniti, a shareholder-tracking company, agrees to pay $850,000 to settle with the SEC after breaches led to a $6.6 million loss in client funds. Cyber intrusions in 2022 and 2023 involved email chain hijacking and the creation of fake accounts. Equiniti recovered $1 million and $1.6 million from the incidents, emphasizing ongoing investments in cybersecurity measures.
NIST is seeking feedback on updated draft guidance for digital identities, which incorporates public input. The revised version includes more details on passkeys, digital wallets, and traditional identification methods to ensure secure, private, and accessible government service access.
APT42, linked to Iran's IRGC-IO, targeted Trump's campaign with advanced surveillance software, enabling call recordings and camera access. Known for physical targeting and mobile malware, the group poses a significant threat, utilizing tactics like impersonating journalists and targeting high-profile individuals.
A cyberattack on North Miami challenges Florida's ban on ransom payments by government entities. Services remain disrupted two weeks after the attack, highlighting the impact of such policy decisions on responding to and recovering from cyber incidents.
Top U.S. oilfield services firm Halliburton is collaborating with law enforcement to assess the severity of a recent computer systems breach. The $23-billion company is investigating the incident, working on system restoration, and evaluating the potential business impact.
An undisclosed state law enforcement notice reveals Iranian hackers targeted Utah government sites earlier this year, aiming at oil and gas data. The group, linked to the Islamic Revolutionary Guard Corps, engaged in unsuccessful hacking attempts from March 2023 to March 2024, showcasing Iran's extensive cyber espionage activities.
The Department of Justice has launched a criminal investigation into Americans collaborating with Russian state TV networks to combat potential election interference. The FBI has conducted searches on individuals like Scott Ritter and Dimitri K. Simes, with more actions expected in the future.
Christopher Wray highlights the challenges of various threats, including terrorism, cybercrime, Chinese espionage, and foreign election interference. He emphasizes the importance of partnerships and stresses the need for collaboration with law enforcement, the private sector, and other entities to address these complex security concerns.
Electric grid experts caution that utilities could face increased cyberattack risks without cloud-based defense options. The push towards cloud technology for cybersecurity operations presents a dilemma, as the advantages of cloud-based defenses may outpace traditional in-house solutions, leaving utilities vulnerable to state-backed attackers.
Trace Machina, a new startup, introduces a simulation software called NativeLink to test updates for autonomous systems like self-driving cars and warehouse robots. The platform aims to prevent critical infrastructure failures caused by faulty software updates, receiving a $4.7 million seed investment for development.
Recommended by LinkedIn
A 33-year-old Latvian national, Deniss Zolotarjovs, linked to the Russian ransomware group Karakurt, faces charges in a U.S. court for money laundering, financial fraud, and extortion. Zolotarjovs, accused of communicating with group members and extorting victims, is the first Karakurt member arrested and extradited to the U.S.
CISA is set to consolidate its workforce in a new $524 million headquarters at the St. Elizabeths West Campus in Washington by 2027. The move aims to enhance collaboration with DHS and streamline operations for a more unified national security approach.
CMOs prioritize partnerships between marketing and data security teams, with 79% seeing it as crucial for safeguarding customer data. Concerns around AI's impact on data security are rising, highlighting the need for stronger collaborations and proactive security measures.
State-linked Chinese entities bypass U.S. export restrictions on advanced AI chips by accessing them through cloud services like AWS. U.S. lawmakers aim to tighten regulations as Chinese demand for computing power grows. AWS and Microsoft Azure are among the cloud providers mentioned.
Leading software and tech advocacy organizations call on Senate and House leaders to pass the SAMOSA Act to oversee federal agency software purchases better. The bipartisan bill aims to enhance IT spending transparency, communication, and cost-effectiveness to prevent waste and inefficiency.
Microsoft will host a conference in September to address the cybersecurity industry's evolution after the faulty CrowdStrike software update caused widespread Windows crashes. Discussions will include moving applications to user mode to prevent system-wide crashes, exploring eBPF technology, and promoting memory-safe programming languages like Rust.
Vladislav Klyushin's cyber scam amassed over $93 million, targeting American companies like Skechers and Snapchat. Despite being out of reach in Russia, his extravagant spending and desire to travel led to his downfall. U.S. authorities intercepted him in Switzerland after he chartered a private jet.
Many applications are approaching end-of-life status, leaving them vulnerable to cyber threats. With over 35,000 applications set to reach this stage, proactive planning and migration strategies are crucial to mitigate risks and ensure ongoing security.
A new UN cybercrime treaty seeks to align cybercrime laws across countries but lacks adequate safeguards against state abuse of commercial spyware. The treaty obliges surveillance capabilities and data sharing that can facilitate spyware proliferation. Key provisions were fought over, showing rifts on protecting rights. The treaty misses a chance to mandate commitment to rights standards or confront digital repression.
Subscribe to our LinkedIn Cyber Briefing.
Subscribe to the daily Cyber Briefing email.
Subscribe to our Cyber Focus podcast.
Copyright © 2024 Auburn University's McCrary Institute. All Rights Reserved.