NSA and CISA promote PDNS concept
The US National Security Agency and the Cybersecurity and Infrastructure Security Agency have published this week a joint advisory urging companies to adopt DNS-based security solutions as part of a concept the agencies are calling Protective DNS (PDNS).
White House Cybersecurity Adviser Wants a ‘Cleanliness Rating’ for Software Security
Policymakers are considering a number of changes to the nation’s cybersecurity posture as a result of the SolarWinds supply chain attack discovered late last year, including data breach notification laws and greater oversight of the nation’s critical infrastructure. In one of her first public appearances since joining the Biden White House, Deputy National Security Adviser Anne Neuberger floated another idea from an unlikely place: New York City dining establishments…
Microsoft: Chinese APT Targeted Exchange Servers With Four Zero-Days
Technology giant Microsoft released emergency security updates today for its Exchange email server to patch four zero-day vulnerabilities that were exploited by a Chinese state-sponsored hacking group. Named Hafnium, Microsoft said the group has a history of targeting internet-facing servers as an entry point into its targets’ internal networks….
Cybersecurity Failings Get Top Billing Among Lawmakers and Federal Watchdogs
Federal cybersecurity is in a worse place than it was two years ago, with agencies failing to implement more than 750 recommended changes, including ones that could have prevented or helped the government respond to the recent Russian cyberattack on dozens of public and private organizations. That’s the assessment the Government Accountability Office, a watchdog agency, gave Tuesday in its “high risk” report that it issues every two years to Congress….
More Zero-Days Have Been Linked to Private Companies Than Any Nation State
Using data from a spreadsheet compiled by Google Project Zero researchers, the Atlantic Council research team said that of the 129 zero-days abused in real-world attacks since 2014, there was enough information to attribute 72 to a specific threat actor. Of these 72 cases, researchers said that 14 zero-days could be linked to private companies as the creators of the zero-day exploit that was deployed in the attack. The 14 zero-days, taken collectively, put private companies as the largest supplier of zero-days abused in the wild, larger than any single state or the cybercrime ecosystem as a whole…
Four Things We Learned (And Four Things That Remain Unclear) About the Russia Hack
The U.S. Senate and House of Representatives hauled the CEOs of SolarWinds, FireEye, CrowdStrike and Microsoft onto (semi-virtual) Capitol Hill last week to answer questions about the sweeping Russian compromise of U.S. government and corporate networks—the first public hearings dedicated to the campaign to date. In honor of the occasion, The Record watched 7.5 hours of testimony so you didn’t have to. Here are eight key takeaways…
A Conversation With Alisa Esage, a Russian Hacker Who Had Her Company Sanctioned After the 2016 Election
In December 2016, then-President Barack Obama signed an executive order that announced sanctions on Russian individuals and organizations in response to election interference efforts. The list included several notorious hackers, as well as Russia’s Federal Security Service (FSB) and Main Intelligence Directorate (GRU). Also on the list was a lesser-known organization that left many puzzled: ZOR Security, founded by virus analytics expert Alisa Esage…
China-Linked Hackers Target India’s Power Grid Amid Border Clashes
Over the course of the last year, hackers with suspected links to the Chinese government targeted a large portion of India’s power sector as the two countries engaged in border skirmishes that resulted in dozens of casualties, according to new research from Recorded Future. Ten distinct power sector organizations, including four of the country’s five Regional Load Dispatch Centres, have been identified as likely targets. The centers play a key role in operating India’s power grid by balancing electricity supply and demand…
Former NSA and Cyber Command Chief Keith Alexander on SolarWinds, Cyberwar, and China
“The commercial sector is trying its best to fight against a government and all its resources. That’s not a fair fight… China will tell you it’s not stealing your stuff, and then goes and steals your stuff…
It can’t be just trusting them—it’s trust but verify. Look at what’s going on in the COVID-19 arena alone and the theft of intellectual property. It’s huge… This is the biggest transfer of wealth in history, and it’s going right out the front door…”
With Biden in Office, Global Policymakers Are Making a Renewed Push for Cyber Norms
On Tuesday, diplomats from Australia, France, and Estonia, as well as private sector cybersecurity officials, emphasized the need for a renewed focus on norms in cyberspace, and suggested that progress could be made in the coming years. “As cyber threats grow, it’s vitally important that UN discussions keep pace, or they really do risk losing credibility,” said Tobias Feakin, Australia’s ambassador for cyber affairs and critical technology, at a virtual event on cyber norms hosted by the U.S. Chamber of Commerce. And one of the biggest assets for this renewed push may be the fact that there’s a new administration in the White House….