Canada has been silent on the question of banning Shenzhen-based Huawei for security reasons even as China invoked a policy of detaining innocent Canadians for political ends. Now that Michael Spavor and Michael Kovrig have been returned, the federal government will start to feel pressure to make a decision that reflects the serious security concerns that have led many of our allies to ban the company from doing business their countries. [node:read-more:link]
The Joint Cyber Defense Collaborative is an initiative unveiled by the U.S. Government this week. The effort will initially focus on combating ransomware and cyberattacks on cloud-computing providers, said Jen Easterly, director of the Cybersecurity and Infrastructure Security Agency, which is part of the Department of Homeland Security. [node:read-more:link]
The art of deception and misdirection, particularly in the cyber domain, is being widely practiced and diligently perfected by others. The dangers of social media deception are real, but are we countering? [node:read-more:link]
The office email accounts of 27 senior U.S. Justice Department prosecutors were hacked last year through SolarWinds software. In disclosing the attack, the department blamed Russian interests for what it considers the worst cyber-espionage attack on the federal government. [node:read-more:link]
The U.S. intelligence community no longer collects mobile phone location or related data under the law used to justify spy agencies’ bulk surveillance programs, the Office of the Director of National Intelligence says. The disclosure comes as Congress considers whether to reauthorize the permissive element of the USA Patriot Act that’s due to expire Dec. 15. The practice actually stopped last year after a Supreme Court ruling limited its application. [node:read-more:link]
The Romanian-based Bitdefender cybersecurity company says it has uncovered a new form of malware which installs through online advertising and targets devices using Microsoft Windows software. It says MosaicLoader is used to steal passwords, install cryptocurrency miners, and deliver additional trojan malware. [node:read-more:link]
Responding to a ransomware attack on a Texas pipeline company in May, the Transportation Security Administration today directed owners and operators of critical facilities to take specific measures to protect their operations and to have recovery plans in place. Blamed on Russia-based cyber criminals, the attack resulted in gasoline shortages in several states. [node:read-more:link]
Allegations that software developed by an Israeli company has been used in a series of international cyber attacks are being investigated by an interdepartmental government team led by the National Security Council. Investigation was prompted by complaints from several countries that the Pegagus software had been used for illegal activities. [node:read-more:link]
Canada has joined the U.S. and other countries in blaming China for a massive hack of the Microsoft Exchange email server software and accusing it of working with criminal hackers in ransomware attacks and other cyber operations. “This activity put several thousand Canadian entities at risk, a risk that persists in some cases even when patches from Microsoft have been applied,” the government said in a statement. [node:read-more:link]
The Communications Security Establishment says that Canadians are “very likely to encounter some form of foreign cyber interference” before and during the next federal election. “We assess that an increasing number of threat actors have the cyber tools, the organizational capacity, and a sufficiently advanced understanding of Canada's political landscape to direct cyber activity against future Canadian federal elections,” it says in a new threat assessment. [node:read-more:link]
U.S. responds to Chinese cyberattacks Measures designed to expose and disrupt China’s government-sponsored cybercrimes have been confirmed by the U.S. in collaboration with its allies. U.S. officials say the international effort flows from President Joe Biden’s meeting last month with G7 and NATO leaders. China’s Ministry of State Security is identified as a key player and there are suggestions the latest development could lead to further sanctions. [node:read-more:link]
Cybersecurity experts tracking the activities of REvil, a ransomeware gang based in Russia or Eastern Europe which has targeted western businesses, say it has disappeared from the Internet. “All REvil sites are down, including the payment sites and data leak site,” one observer said in social media. The development comes after U.S. President Joe Biden told Russian President Vladimir Putin that would be “consequences” if the problem wasn’t addressed. [node:read-more:link]
The pace of science and technology breakthroughs are so dramatically redesigning the global security outlook that an Australian think-tank is urging the country’s military, defence industry and universities to pool their resources. It envisages the equivalent of the U.S., Defence Applied Research Projects Agency, calling it “a significant opportunity” to cooperation within the Five Eyes nations. [node:read-more:link]
A U.S. Marine Corps officer serving as general counsel at U.S. Cyber Command has suggested that says some transnational criminal hacking could warrant a military response. “Under ideal conditions, law enforcement organizations would address any type of criminal activity,” LCol Kurt Sanger argues in a co-authored article, noting that ideal conditions are rare in cyberspace. “Operational opportunities often must be seized immediately by whatever entity is best positioned to do so.” [node:read-more:link]
Hackers linked to the Russian General Staff Main Intelligence have been scaling up attacks on western targets in the public and private sectors, according to the U.S. and Britain. “These are almost certainly still ongoing,” their security agencies caution in a new report. [node:read-more:link]
