Some good news stories this week so let’s get to it.
- First story of the week is of another NSA Contractor who attempted to steal data from the agency. The NSA has filed charges against a 51 year old contractor from Booze Allan Hamilton, accusing him of stealing “source code” for tools used to hack foreign governments.
- Read More @ http://thehackernews.com/2016/10/nsa-contractor-spy.html
- Next, another take on the above post. This one takes a look at the profile of the arrested contractor, and the fact that he doesn’t really fit the typical ‘insider threat’ profile.
- Read More @ www.infosecurity-magazine.com/news/arrested-nsa-contractor-doesnt-fit
- Yahoo has been in the news for all the wrong reasons lately, and it seems to only been getting worse. Latest in the saga is regarding the massive email spying scandal. If you need a recap of the entire mess, read on.
- Read More @ http://thehackernews.com/2016/10/yahoo-email-hacking.html
- And the news keeps getting worse for Yahoo as now Verizon is seeking a $1B discount on their purchase of Yahoo, due to the bad news that has enveloped the company over the past weeks. The original buyout was suppose to be for $4.8B but it looks like that might be reduced significantly if Verizon gets their way.
- Read More @ http://nypost.com/2016/10/06/verizon-wants-1b-discount-on-yahoo-deal-after-hacking-reports/
- Next, an interesting article on Security finally becoming something other than a cost center. That’s been the go to excuse for executives for ages, to justify their lack of investment in security, but the latest findings from PwC show that it’s changing. About time.
- Read More @ www.infosecurity-magazine.com/news/pwc-security-is-no-longer-an-it/
- Next, we been hearing quite a bit about the Russian government being blamed for the hack of the DNC a while back, and now it seems like the US is formally accusing Russia for the attack. Curious how they will respond, and if this will mean any further action from the U.S government against Russia.
- Read More @ http://www.darkreading.com/attacks-breaches/us-formally-accuses-russia-of-stealing-dnc-emails/d/d-id/1327130
- Next, an interesting read on the morality and ethics behind APT reports. We have all read big reports on some of the most famous espionage campaigns from places like Mandiant and Kaspersky, but this article looks at the question of is it always a good idea to report such things to the public. It’s not as simple as “we found malware, people need to know about it”. Given that the found campaign could, for example, be related to counter-terrorism, etc. Very interesting read.
- Read More @ https://threatpost.com/the-ethics-and-morality-behind-apt-reports/121157/
- Lastly, a very good post by FireEye that takes a look at the increased use of WMI by malware, for environment detection and evasion. That take a look at several samples that utilize the WMI service to look for sandboxes and dynamic analysis tools. Good read.
- Read More @ https://www.fireeye.com/blog/threat-research/2016/10/increased_use_ofwmi.html