Skip to content Skip to navigation

Friday Cyber News, July 21 2017

Cyber technology-related news and links from around the web, for the week of 7/15 - 7/21:

1. The US DOJ revealed this week that it was behind the shutdown of dark web marketplaces AlphaBay and Hansa. The creator of the former was detained in Thailand in preparation for extradition, and took his own life in jail. Drug sales on the dark web tripled after the Silk Road was shut down, and it remains to be seen what effect the absence of AlphaBay and Hansa will have on the online illicit substance market. [The Hill; Newsweek] 

2. This week in Russia: Microsoft is fighting Fancy Bear in court, suing to regain control of the command-and-control servers the group uses to mount attacks. Its attacks primarily target Microsoft systems, giving Microsoft standing to recover domains like "rsshotmail.com". Fears of retribution from Russian hackers have led to the removal of Putin in two US movies in production. And the Obama administration anticipated Russian meddling in voter registration databases and election infrastructure, and had developed a plan to address an election-day hack. [Daily Beast; Hollywood Reporter; Time] 

3. The current administration intends to implement the 2017 NDAA directive that leadership of Cyber Command and NSA be separated. This could hamper functions for which Cyber Command relies on NSA support, but could force both to more stringently define their capabilities. [War on the Rocks]

4.  ​US Customs and Border Patrol can search devices without a warrant, but they said this week they won't search data that is "located solely on remote servers". Cached local copies are likely still going to be searched, though. Meanwhile, the ban on laptops in cabins of flights from the Middle East has been lifted in response to the implementation of stricter airport screening. [Ars Technica; CBS] 

5. A hacker edited the Coindash website as its ICO went live, changing the address to which investors were sending money to invest. $7.4 million in Ether was stolen. [Motherboard]

6.​ China is rapidly moving away from cash, as most businesses in large cities support mobile payments. China is also automatically censoring photos sent through chat messages, including images of Nobel Peace Prize laureate Liu Xiaobo. Chinese censorship is poised to destroy China's booming livestreaming industry, as VPNs will be tightly regulated and streaming companies will be subject to censors' approval. [NY Times; WSJ; Foreign Policy]

7. Turns out the MySpace account recovery system required only a user's name, username, and date of birth. MySpace has since added an additional verification step, which one can only hope involves linking a Facebook account. [Wired]

8. Lloyd's of London and Cyence report that the hack of a cloud services provider would cost from $4.3B to $121.4B--depending on the extent of services affected--comparable to the cost of hurricane Sandy, and only partially covered by cyber insurance. [Cyberscoop]

9. Sure they are: Russian sources say Washington and Moscow are still working together on a cooperative cybersecurity unit. [Reuters]

10. A casino's wifi-connected fish tank (connected so that it could automatically feed the fish, monitor water temperature) was hacked...or was it phished? [CNN]

Thanks for reading,

Allison
Stanford Cyber Initiative

(To suggest an item for this list, please email aberke@stanford.edu. You can view news from past weeks, subscribe, and unsubscribe at https://tinyletter.com/CyberNewsBytes)