skip navigation

More signal. Less noise.

Are you using threat intelligence to its full potential?

Are you using threat intelligence to its full potential? Download this free report via Recorded Future to learn 12 common threat intelligence use cases.

Daily briefing.

Mexico's central bank now says that it appears there may have indeed been unauthorized transfers through the country's interbank SPEI system.

In a surprising development over the weekend, US President Trump seems willing to toss ZTE some sort of unspecified lifeline to keep them in business. ZTE has been subject to US sanctions that effectively barred it from using US software and components in its products. The company last week announced it had stopped its major operations. The US beef with ZTE centered on the company's flouting of sanctions imposed on Iran.

CrowdStrike says it's already discerned an increase in Iranian cyber operations against US targets. The company's researchers say they saw the uptick begin within twenty-four hours of the US announcement that it would withdraw from the Iran nuclear deal.

Among Facebook and Instagram ads purchased by the Russian troll-farm Internet Research Agency were several promoting a problematic Chrome extension, FaceMusic. FaceMusic catered to several demographics but was most successful among American girls ages 14 to 17. The extension collected Facebook and web-browsing information. It also messaged "Friends" of those who installed it.

Russia's blocking of Telegram prompted self-described Anonymous hackers to deface websites belonging to Rossotrudnichestvo, the Federal Agency for International Cooperation. Among remarks denouncing censorship, the defacements called media regulator Roskomnadzor "a handful of incompetent brainless worms." 

Facebook's on-going review of data-collecting apps has resulted in suspension of about two hundred. Apple, cleaning its Store in preparation for GDPR, is clearing out apps that inappropriately gather information.

Notes.

Today's edition of the CyberWire reports events affecting Australia, China, Estonia, European Union, France, India, Indonesia, Ireland, Iran, Mexico, Russia, United Kingdom, United States.

A note to our readers: we'll be in New York tomorrow, covering the Third Annual Cyber Investing Summit. Watch for coverage, including some live-tweeting, of the proceedings.

Dragos unveils dashboard of ICS-focused threat groups.

The Dragos Intelligence Team tracks a number of industrial-focused activity groups aimed to exploit, disrupt, and potentially destroy industrial systems globally. Each week in May, Dragos will release new content discussing these adversary details that can be read here.

In today's podcast we speak with our partners at Accenture, as Justin Harvey shares his thoughts on whether the the US withdrawal from the Iran nuclear deal will lead to more cyber attacks from Iran.

Cyber Security Summits: May 15 in Dallas & Boston on June 5 (Dallas, Texas, United States, May 15, 2018) Sr. Level Executives are invited to learn about the latest threats & solutions in Cyber Security from experts from The FBI, CenturyLink, IBM Security and more. Register with promo code cyberwire95 for $95 VIP admission (Regular price $350) https://CyberSummitUSA.com

Third Annual Cyber Investing Summit 5/15/18 (Dallas, Texas, United States, May 15, 2018) Renowned cyber security executive David DeWalt will deliver the keynote address at the Third Annual Cyber Investing Summit. The Cyber Investing Summit is a unique all-day conference focused on the financial opportunities available in the rapidly growing cyber security industry. Panels will explore sector investment strategies, market growth forecasts, equity valuations, merger and acquisition activity, cryptocurrency protection, funding for startups, and more. Speakers include leading Chief Information Security Officers, VC founders, financial analysts, cyber security innovators from publicly traded and privately held companies, and government experts.

Startup CEO: Managing a Legal Team for Fun & Profit (Fulton, Maryland, United States, May 31, 2018) DataTribe's Al Clark will share his expertise in providing legal counsel to local tech startups. He'll answer questions on how to gain the most out of and what to look for in legal counsel that will lead to a relationship of lowering risk and saving money. Food and beverages are provided.

Cyber Attacks, Threats, and Vulnerabilities

Sponsored: 2017 Cylance Threat Report (Cylance) Which side of the knowledge gap will your organization be on? Let our knowledge of the past prepare you for the future. Download the report today.

NGA official: Artificial intelligence is changing everything, ‘We need a different mentality’ (SpaceNews.com) NGA is modernizing its cloud architecture “to allow our analysts to live in the data."

Security Patches, Mitigations, and Software Updates

NGA official: Artificial intelligence is changing everything, ‘We need a different mentality’ (SpaceNews.com) NGA is modernizing its cloud architecture “to allow our analysts to live in the data."

Cyber Trends

NGA official: Artificial intelligence is changing everything, ‘We need a different mentality’ (SpaceNews.com) NGA is modernizing its cloud architecture “to allow our analysts to live in the data."

Marketplace

NGA official: Artificial intelligence is changing everything, ‘We need a different mentality’ (SpaceNews.com) NGA is modernizing its cloud architecture “to allow our analysts to live in the data."

Products, Services, and Solutions

NGA official: Artificial intelligence is changing everything, ‘We need a different mentality’ (SpaceNews.com) NGA is modernizing its cloud architecture “to allow our analysts to live in the data."

Technologies, Techniques, and Standards

NGA official: Artificial intelligence is changing everything, ‘We need a different mentality’ (SpaceNews.com) NGA is modernizing its cloud architecture “to allow our analysts to live in the data."

Design and Innovation

NGA official: Artificial intelligence is changing everything, ‘We need a different mentality’ (SpaceNews.com) NGA is modernizing its cloud architecture “to allow our analysts to live in the data."

Academia

NGA official: Artificial intelligence is changing everything, ‘We need a different mentality’ (SpaceNews.com) NGA is modernizing its cloud architecture “to allow our analysts to live in the data."

Legislation, Policy, and Regulation

Trump Extends Lifeline to Sanctioned Tech Company ZTE (Wall Street Journal) President Trump said he was working with Chinese President Xi Jinping to keep ZTE in business, throwing an extraordinary lifeline to the Chinese telecommunication giant that has been laid low by U.S. moves to cut off its suppliers.

President Trump says he’s working to give ZTE a reprieve (TechCrunch) In a remarkable development, President Trump has thrown an olive branch to controversial Chinese telecom firm ZTE . The company, which sells telcom network equipment and consumer devices including smartphones, said on Wednesday that it would cease its main business operations after the U.S. Departm…

Here's how the US has paralyzed Chinese phone maker ZTE (CNET) The company, despite shutting down operations, is still fighting for its life.

ZTE woes loom as US-China trade tensions rise (ABS-CBN News) With a major Chinese smartphone maker on the rocks following US sanctions, the trade spat between Washington and Beijing appears to be taking a turn for the worse for tech firms in the 2 global economic powerhouses. 

Schiff warns of cybersecurity threat from ZTE (CNN) After President Donald Trump vowed to help Chinese tech giant ZTE, Rep. Adam Schiff (D-CA) warns that the firm poses a "major cybersecurity threat."

UK Regulator Issues Advice on 'Consent' Within GDPR (SecurityWeek) Once the UK leaves the EU, GDPR within the UK will be replaced by the new Data Protection Bill, which is designed to ensure the UK's data protection adequacy.

The UK and USA need to extend their “special relationship” to technology development (TechCrunch) Matt Hancock Contributor Share on Twitter Matt Hancock is the Secretary of State for Digital, Culture, Media and Sport and a Member of Parliament for West Suffolk. The UK and the USA have always had an enduring bond, with diplomatic, cultural and economic ties that have remained firm for centuries.…

Here's How a National Cybersecurity Agency Could Work (Nextgov.com) A central authority could reduce the complexity that exists today.

After the San Bernardino iPhone fiasco, lawmakers introduce the Secure Data Act (Digital Trends) Lawmakers introduced the Secure Data Act on Friday: a new bill that prevents law enforcement and surveillance agencies from forcing companies to insert backdoor entrances into their products and services. The bill was presented by U.S. Representatives Zoe Lofgren (D-Calif.) and Thomas Massie (R-Ky.) along with four co-sponsors.

Senator freezes DHS cyber nominee over Stingray info (FCW) Sen. Ron Wyden wants info on use of rogue cell-tracking Stingray devices in the nation's capital before he'll confirm a new cybersecurity leader at the Department of Homeland Security.

Cops Can Find the Location of Any Phone in the Country in Seconds, and a Senator Wants to Know Why (Motherboard) Here are the letters Senator Ron Wyden sent to mobile carriers and the FCC demanding answers and action on the recently highlighted law enforcement service to easily track phones across the country.

Litigation, Investigation, and Law Enforcement

Oracle claims Google exfiltrates 1GB of data from Android phones every month | Computing (http://www.computing.co.uk) Oracle gives evidence to Australian Competition and Consumer Commission investigation into Google,Security,Hardware,Communications ,Security,Privacy,Data,Google,Australia,GDPR

NCA: UK Cybercrime Continues to Rise (Infosecurity Magazine) Attribution and under-reporting challenges compound problems for crime-fighters, says agency

Anonymous Member Arrested in Ohio (BleepingComputer) The Federal Bureau of Investigation has arrested an Ohio man on accusations of launching DDoS attacks on websites belonging to the city of Akron.

Barclays CEO’s Penalties Over Whistleblower Saga Top $1.5 Million (Wall Street Journal) Barclays Chief Executive Jes Staley has been hit with penalties equal to roughly a quarter of his 2016 pay over his efforts to unmask a whistleblower.

For a complete running list of events, please visit the Event Tracker on the CyberWire website.

Upcoming Events

Cyber Ready 2018 Cybersecurity/Intel Conference (MacDill Air Force Base, Florida, USA, May 14, 2018) Major General Mike Ennis (USMC, ret), CIA National Clandestine Service's first Deputy Director for Community Human Intelligence (HUMINT), will deliver the keynote. The conference will also feature an all-audience...

Cyber Investing Summit (New York, New York, USA, May 15, 2018) Now in its third year, the Cyber Investing Summit is an all-day conference focusing on investing in the cyber security industry, which is predicted to exceed $1 trillion in cumulative spending on products...

Third Annual Cyber Investing Summit (New York, New York, USA, May 15, 2018) Renowned cyber security executive David DeWalt will deliver the keynote address at the Third Annual Cyber Investing Summit. The Cyber Investing Summit is a unique all-day conference focused on the financial...

The Cyber Security Summit: Dallas (Dallas, Texas, USA, May 15, 2018) This event is an exclusive conference connecting Senior Level Executives responsible for protecting their company’s critical data with innovative solution providers & renowned information security experts.

Digital Utilitites Europe (Amserdam, the Netherlands, May 16 - 17, 2018) The conference will bring together key industry stakeholders to address the current challenges of the digitisation in the utilities sector. Join us in Amsterdam to hear latest business case studies and...

SecureWorld Houston (Houston, Texas, USA, May 17, 2018) Connecting, informing, and developing leaders in cybersecurity. SecureWorld conferences provide more content and facilitate more professional connections than any other event in the Information Security...

Ignite18 (Anaheim, California, USA, May 21 - 24, 2018) Palo Alto Networks' sixth annual conference features highly technical insights based on firsthand experiences with next-generation security technologies, groundbreaking new threat research, or innovative...

AFCEA/GMU Critical Issues in C4I Symposium (Fairfax, Virginia, USA, May 22 - 23, 2018) The AFCEA/GMU Critical Issues in C4I Symposium brings academia, industry and government together annually to address important issues in technology and systems research and development. The agenda for...

3rd Annual Nuclear Industrial Control Cybersecurity and Resilience Overview (Warrington, England, UK, May 22 - 23, 2018) Now in its 3rd year, the Cyber Senate Nuclear Industrial Control Cyber Security and Resilience Conference will take place on May 22/23rd in Warrington United Kingdom. This two day executive forum will...

PCI Security Standards Council’s Asia-Pacific Community Meeting (Tokyo, Japan, May 23 - 24, 2018) Join us for: networking opportunities, updates on industry trends, insights and strategies on best practices, engaging keynotes and industry expert speakers. The PCI Security Standards Council’s 2018...

North American Financial Information Summit (New York, New York, USA, May 23, 2018) Data is the most vital asset of any financial services firm. With volumes increasing exponentially, and the complexity and structure continuously changing, it is more vital than ever to keep on top of...

SecureWorld Atlanta (Atlanta, Georgia, USA, May 30 - 31, 2018) Connecting, informing, and developing leaders in cybersecurity. SecureWorld conferences provide more content and facilitate more professional connections than any other event in the Information Security...

RISKSEC (New York, New York, USA, May 31, 2018) Welcome to the 2018 New York City RiskSec Conference. As SC Media approaches our 30th anniversary, we fully understand the avalanche of cybersecurity-related problems, responsibilities and aspirations...

Cyber:Secured Forum (Denver, Colorado, USA, June 4 - 6, 2018) Cyber:Secured Forum will feature in-depth content on cybersecurity trends and best practices as related to the delivery of physical security systems and other integrated systems. Content is being collaboratively...

Campaign Cyber Defense Workshop (Boston, Massachussetts, USA, June 4, 2018) The Campaign Cyber Defense Workshop brings together experts from the region’s industry, university, and government organizations to address campaign security and effective practices for maintaining campaign...

Gartner Security and Risk Management Summit 2018 (National Harbor, Maryland, USA, June 4 - 7, 2018) Prepare to meet the pace and scale of today’s digital business at Gartner Security & Risk Management Summit 2018. Transform your cybersecurity, risk management and compliance strategies and build resilience...

New York State Cybersecurity Conference (Albany, New York, USA, June 5 - 7, 2018) June 2018 marks the 21st annual New York State Cyber Security Conference and 13th Annual Symposium on Information Assurance (ASIA). Hosted by the New York State Office of Information Technology Services,...

The Cyber Security Summit: Boston (Boston, Massachusetts, USA, June 5, 2018) This event is an exclusive conference connecting Senior Level Executives responsible for protecting their company’s critical data with innovative solution providers & renowned information security experts.

SecureWorld Chicago (Chicago, Illinois, USA, June 5, 2018) Connecting, informing, and developing leaders in cybersecurity. SecureWorld conferences provide more content and facilitate more professional connections than any other event in the Information Security...

NSA 2018 Enterprise Discovery Conference (Ft. Meade, Maryland, USA, June 5 - 6, 2018) Hosted by the National Security Agency and the Federal Business Council (FBC). The EDC is the largest event held at NSA with over 1500 attendees from around the world. EDC provides a collaborative learning...

Cyber//2018 (Columbia, Maryland, USA, June 6, 2018) Cyber touches all aspects of our life from the myriad of devices we have brought into our homes to those we employ on the job to increase and improve our productivity. Please join us for our 9th annual...

TU-Automotive Cybersecurity (Novi, MIchigan, USA, June 6 - 7, 2018) Co-located with the world's largest automotive technology conference & exhibition. The conference unites players from research labs, automakers, tier 1’s, security researchers, and the complete supply...

SINET Innovation Summit 2018 (New York, New York, USA, June 7, 2018) Connecting Wall Street, Silicon Valley and the Beltway. SINET New York connects the United States’ three most powerful institutions and evangelizes the importance of industry, government and academic collaboration...

Transport Security and Safety Expo (Washington, DC, USA, June 11 - 12, 2018) Security incidents are expected to cost the world $6 trillion annually by 2021, making now the time to find out more at the 2018 Transport Security and Safety Expo. The transportation industry is rapidly...

Transport Security & Safety Expo (Washington, DC, USA, June 11 - 12, 2018) The conference is devoted to the challenges and opportunities surrounding ensuring the safety and security of passengers and cargo in the digital age.

Grow your brand and reach new customers.

Grow your brand and increase your customer base by educating our audience about your products, services, and events by advertising on The CyberWire. We’ve built trust with an influential (and often hard to reach) audience of CISOs, CSOs, and other senior execs in the security space, across a wide array of industry verticals. Learn more.

Be a part of the CyberWire story.

People ask us (a lot) how they can support what we do. We have our sponsorships and services, of course, but those are not always within every supporter's financial reach, or it might just not be the right time for you to do those things. That's why we launched our new Patreon site, where we've created a wider variety of support levels, each with some new benefits. Our patrons are important to our future, and we hope you'll consider becoming one. We invite you to become part of the CyberWire story. Become a patron today.