Skip to content Skip to navigation

Friday Cyber News, August 3 2018

Cyber technology-related news and links from around the web, for the week of 7/28 - 8/3:

1. Facebook found and removed pages and accounts associated with a disinformation campaign planned around a "Unite the Right" rally, and notified Congress, though they did not attribute the accounts to any particular country. [The Atlantic; The Hill]

2. Three Ukrainian citizens were arrested on charges of being part of the Fin7 or Carbanak hacking and financial fraud group, which targeted US businesses with malware to obtain payment card information. [BBC]

3. Documents from Cyber Command's operations against the Islamic State show how attribution risk is assessed and how cyber operations are planned, including requests for assistance from the FBI and GCHQ. [Motherboard]

4. A BGP hijack routed Telegram traffic through Iran's state-owned telecommunications provider on Monday. [Cyberscoop]

5. Some of Reddit's internal systems were illegally accessed by hackers who were able to reroute an SMS two-factor notification. Data exposed included user account details and messages from 2007, so if you haven't changed your password since then, you'll receive a notification email. [Techcrunch]

6.​ Long shut out of the country, Google is planning to launch a censored version of its search engine in China that would block terms related to democracy, peaceful protest, and human rights. [Intercept]

7. The Senate passed a bill forcing tech companies to disclose whether they have allowed foreign governments, particularly Russia and China, to perform code reviews. [Reuters]

8. The establishment of NYSE's bitcoin trading platform partner (Bakkt) leads to speculation that Starbucks, a leader in mobile payments, may soon accept bitcoin. [Techcrunch]

9. Mike Pence spoke about cybersecurity at a Homeland Security conference this week, praising debatable cyber successes of the current administration and encouraging the renaming of the National Protection and Programs Directorate, or NPPD, to the Cybersecurity and Infrastructure Security Agency, or CISA. Here's an annotated guide to his speech, including the closing biblical reference. [NextGov]

10. Allianz is looking into offering cryptocurrency insurance; currently the market is too small for most insurers, and even Coinbase only insures 2% of its coins, with Lloyd's of London. With courts moving toward the opinion that losses resulting from phishing scams are covered by cyber insurance policies, it will be interesting to see how cryptocurrency losses are treated. [Investopedia; Propertycasualty360]

Thanks for reading,

Allison
Stanford Cyber Initiative

(To suggest an item for this list, please email aberke@stanford.edu. You can view news from past weeks, subscribe, and unsubscribe at https://tinyletter.com/CyberNewsBytes)