Search Results for “NBC News”


September 28, 2019
Mosheh Gains / NBC News

Mosheh Gains / NBC News  
Navy Taps Pentagon Adviser Weis to Newly Created CIO Position Following Second Scathing Report About Chinese Infiltration of Navy Systems

The U.S. Navy hired Aaron Weis as it chief information officer, a newly created position that follows two scathing reviews which found the Navy could not compete in cyberwar with nations like Russia and China and had “significant breaches” in its cybersecurity systems. The second review, exclusively seen by NBC News, was commissioned by Navy Secretary Richard V. Spencer and made recommendations for how to fix those vulnerabilities. The results of that review underscored that adversaries of the U.S. have been learning how to infiltrate the Navy’s vulnerabilities since the 1990s. It noted that China had stolen critical military data from the Navy and massive amounts of trade secrets from private-sector contractors. The new CIO Weis, who was serving as a senior adviser to the Pentagon’s chief information officer, will lead a new 25-person office dedicated to improving the Navy’s cybersecurity, data, information management, digital strategy, and business systems.

Related: InsideDefense.com, Fifth Domain | Cyber, Fifth Domain | Cyber, Fedscoop, FCW

Tweets:@NBCInvestigates @bscottwilson @SherriDavidoff @IWCSync


July 29, 2019
Emily Flitter and Karen Weise / New York Times

Emily Flitter and Karen Weise / New York Times  
Firewall Misconfiguration by Capital One Allowed Hacker to Steal Millions of Credit Applications, Social Security and Bank Account Numbers Affecting More Than 100 Million People in North America

In one of the largest cases of bank data theft ever, software engineer Paige Thompson hacked into a server holding customer information for Capital One, exploiting a firewall misconfiguration in the bank’s network to steal millions of credit card applications, federal prosecutors say. Thompson, who used the online handle “erratic” was the organizer of a group on Meetup, a social network, called Seattle Warez Kiddies, described as a gathering for “anybody with an appreciation for distributed systems, programming, hacking, cracking.” The F.B.I. noticed her activity on Meetup and used it to trace her other online activities, eventually linking her to posts describing the data theft on Twitter and the Slack messaging service. Thompson stole 140,000 U.S. Social Security numbers and 77,000 bank account numbers, along with one million Canadian social insurance numbers affecting more than 100 million people in the United States and Canada. A“firewall misconfiguration” by the bank had allowed Ms. Thompson to communicate with the server where Capital One was storing its information and, eventually, gain access to customer files, an FBI agent investigating the case said in court documents. Ms. Thompson worked as a systems engineer at Amazon from 2015 to 2016.

Related: CNN, Reuters, Associated Press, Axios, CNBC, NBC News, Politico, Capital One, The Register, Bloomberg, Washington Post, TechCrunch, TechCrunch, Wired, Justice.gov, Ars Technica, CNET, Wall Street Journal, The Verge, The Hill, Venture Beat, Law360, Reuters, Daily Mail,DataBreachToday.com, BGR, USATODAY, Business Insider, The Daily Swig, Newsweek, Financial Times, CRN, CRN, UPI.comDataBreaches.net, SecurityWeek, MobileSyrup.com, BetaNews, The Verge, GBHackers On Security, SlashGear » security, E-Commerce Times, CNN.com, PCMag.com, The VergeEvening Standard, EngadgetMarketWatch.com – Software Industry News, TechSpot, Digital Trends, Neowin, Fast Company, Mother Jones, New York Daily News, New on MIT Technology Review, FOX News, The Hacker News, Help Net Security, CBSNews.com, Fortune, Technology News | Boston.com, SecurityWeek, The Huffington Post, Cyberscoop, IT World Canada, ARN, The Guardian, Digital Trends, The Next Web, Android Central , GeekWire, SC Magazine, Techerati, SlashdotABC News: U.S., Graham Cluley, Japan Times,Security Affairs, Cyber Kendra, PYMNTS.com, Heavy.com, Computer Business Review, TechNadu, Silicon Republic, Infosecurity Magazine, The State of Security, DataBreaches.netGadgets Now, Courthouse News Service, BBC News – WorldBleepingComputer.comITV News, RT USA, AOL, New York Post, EJ Insight, Mercury News, TODAYonline, CBC , Deutsche Welle, Gizmodo, News : NPR, POLITICO, Gizmodo, Daily BeastGeekWire

Tweets:@zackwhittaker @briankrebs @cnbcnow @gregotto @yoda @RepKatiePorter @zackwhittaker @Wired @BleepingComputer @kimzetter @dnvolz @BleepingComputer @McGrewSecurity @weldpond @h0tdish @hacks4pancakes @RayRedacted @catcalvinla @malwarejake @somanyshrimp @TorresLuzardo

CNN: A hacker gained access to 100 million Capital One credit card applications and accounts
Reuters: Capital One reveals 100M affected by data breach, hacker arrested
Associated Press: Capital One says hacker gained access to personal information of more than 100 million people
Axios: 100 million credit card applications stolen from Capital One
CNBC: Capital One data breach exposes tens of thousands of Social Security numbers, linked bank accounts
NBC News: Over 100 million credit card applicants at risk in Capital One breach, Seattle woman arrested
Politico: Capital One reveals historic data breach after FBI arrests Seattle suspect
Capital One: Capital One Announces Data Security Incident
The Register: Capital One gets Capital Done: Hacker swipes personal info on 106 million US, Canadian credit card applicants
Bloomberg: Capital One Says Breach Hit 100 Million Individuals in U.S.
Washington Post: Capital One says data breach affected 100 million credit card applications
TechCrunch: Capital One’s breach was inevitable, because we did nothing after Equifax
TechCrunch: Capital One hacked, over 100 million customers affected
Wired: THE ALLEGED CAPITAL ONE HACKER DIDN’T COVER HER TRACKS
Justice.gov: Seattle Tech Worker Arrested for Data Theft Involving Large Financial Services Company
Ars Technica: Feds: former cloud worker hacks into Capital One and takes data for 106 million people
CNET: Capital One data breach involves 100 million credit card applications
Wall Street Journal: Capital One Reports Data Breach Affecting 100 Million Customers, Applicants
The Verge: Massive Capital One breach exposes personal info of 100 million Americans
The Hill: Woman arrested, accused of hacking 100 million Capital One records
Venture Beat : Capital One announces hack affecting 106 million U.S. and Canadian customers
Law360: Capital One Says Breach Impacted 106M As Suspect Arrested – Law360
Daily Mail : Ex-tech worker arrested for Capital One hack after stealing data from 100 million customers
DataBreachToday.com: Woman Arrested in Massive Capital One Data Breach
BGR: Hacker steals data for more than 100 million Capital One users, then brags about it and gets arrested
USATODAY: Massive data breach hits Capital One affecting more than 100 million customers
Business Insider: Capital One data breach, affecting tens of millions
The Daily Swig: Millions affected by Capital One data breach
Newsweek: Capital One Data Breach: How to Know, and What You Should Do, If Your Account Has Been Compromised
Financial Times: Capital One reports massive data breach
CRN: Capital One Breach Exposed Data From 106M Credit Card Applicants, Users
UPI.com: Capital One data breach affects 100M credit card applicants
DataBreaches.net: Capital One says data breach affected 100 million credit card applications
SecurityWeek: CapitalOne Discloses Massive Data Breach: 106 Million Impacted
MobileSyrup.com: Capital One data breach could have affected six million Canadian bank accounts
BetaNews: Personal details of 106 million Americans and Canadians stolen in huge Capital One data breach
The Verge: Massive Capital One breach exposes personal info of 100 million Americans
GBHackers On Security: Capital One Hacked – Over 100 Million Credit Card Application Data Exposed
SlashGear » security: Capital One hack affects over 100 million people in the US and Canada
E-Commerce Times: Equifax Data Breach Settlement No Wrist Slap
CNN.com: Worried about the Capital One hack? Here’s what to do
PCMag.com: Capital One Suffers Data Breach Affecting 100 Million Customers
Evening Standard: Capital One data breach 2019: What to do if you have been affected
Engadget: Capital One data breach affected 100 million in the US
MarketWatch.com – Software Industry News: Everything you need to know about the massive Capital One hack, but were afraid to ask
TechSpot: Capital One hack exposed 100 million US customers’ personal details
Digital Trends: New Capital One data breach affects 100 million people. Here’s the very latest
Neowin: Over 100 million accounts compromised after Capital One data breach
Fast Company: Capital One data breach: what was stolen and how to find out if you are affected
Mother Jones: What’s In Your Wallet?
New York Daily News: Capital One hit with data breach affecting some 100 million U.S. customers
New on MIT Technology Review: A hacker stole the personal data of 100 million Capital One customers
FOX News: Capital One data breach exposes info of 106M customers, applicants; suspect arrested
The Hacker News: Capital One Data Breach Affects 106 Million Customers; Hacker Arrested
Help Net Security: Capital One breach: Info on 106 million customers compromised, hacker arrested
CBSNews.com: Capital One data breach hits more than 100 million people
CNBC: Capital One data breach exposes tens of thousands of Social Security numbers, linked bank accounts
Fortune: Hacker May Have Stole Info About Millions of Capital One Customers, U.S. Says
Technology News | Boston.com: Capital One target of massive data breach
SecurityWeek: Capital One Target of Massive Data Breach
The Huffington Post: Credit Card Company Reveals 100 Million People May Be Affected By Hack
Cyberscoop: Capital One announces massive data breach; lone suspect arrested in Seattle
IT World Canada: Six million Canadians impacted by Capital One data breach
ARN: Capital One: hacker gained access to personal information of over 100 million Americans
The Guardian: Capital One: hacker stole data of over 100m Americans
Ars Technica: Hacker ID’d as former Amazon employee steals data of 106 million people from Capital One
Axios: 100 million credit card applications were stolen from Capital One
The Next Web: Capital One data breach compromises 106 million customers’ personal data
Android Central : Capital One breach exposes personal details of over 100 million customers
SC Magazine: Capital One hacker who stole personal info on 100M arrested | SC Media
AP Breaking News: Capital One target of massive data breach
Techerati: Capital One breach affecting 106 million customers caused by misconfigured cloud storage
Slashdot: Capital One Says Hacker Breached Accounts of 100 Million People; Ex-Amazon Employee Arrested
ABC News: U.S.: Capital One target of massive data breach
Graham Cluley: Woman arrested after Capital One hack spills personal info on 106 million credit card applicants
Japan Times: Hacker accesses over 100 million Capital One credit applications in massive data breach
Zero Hedge: Capital One Admits Massive Data Breach: 100 Million Americans Affected, Seattle Woman Arrested
Security Affairs: Capital One data breach: hacker accessed details of 106M customers before its arrest
Cyber Kendra: Capital One Suffered Data Breach 106 Million People Affected
PYMNTS.com: Cap One Hack Hits 100M Credit Card Applications
Heavy.com: Paige Adele Thompson: 5 Fast Facts You Need to Know
Computer Business Review: Capital One Hacker was Ex-AWS Employee
TechNadu: Capital One Reports a Major Data Breach Affecting 106 Million Individuals in the USA & Canada
Infosecurity Magazine: Capital One Breached by Cloud Insider in Major Attack
Tech Insider: Amazon’s cloud was at the heart of the big Capital One hack, even though it doesn’t seem to be at fault (AMZN, COF)
The State of Security: Woman arrested after Capital One hack spills personal info on 106 million credit card applicants
DataBreaches.net: Capital One says data breach affected 100 million credit card applications
Gadgets Now: Capital One hacked, says information of 100 million-plus users leaked
Reuters: Capital One says information of over 100 million individuals in U.S., Canada hacked
BBC News – World: Capital One data breach: Arrest after details of 100m US individuals stolen
TIME: Capital One Information Hacked in Massive Data Breach
NDTV Gadgets360.com: Capital One Bank Targeted in Massive Data Breach
BleepingComputer.com: Capital One Data Breach Affects 106 Million People, Suspect Arrested
ITV News: 100 million applications targeted in Capital One bank data breach
RT USA: 100mn+ people’s data exposed in Capital One bank hack, thousands of SSNs & accounts leaked
AOL: Capital One: information of over 100 mln individuals in U.S., Canada hacked
New York Post: Capital One reveals 100M affected by data breach, hacker arrested
EJ Insight: Capital One data breach affects millions in US, Canada
Mercury News: Capital One: Hacker got info on 100M in the US, 6M in Canada
CBC : Hacker obtained personal information of 6 million people in Canada
Deutsche Welle: Capital One data theft: US arrests ‘erratic’ hacker
Gizmodo: Hacker Claims to Be in Possession of Personal Info on Up to 20,000 LAPD Applicants
The Register: Capital One gets Capital Done: Hacker swipes personal info on 106 million US, Canadian credit card applicants
POLITICO: Capital One reveals historic data breach after FBI arrests Seattle suspect
Daily Beast: Tens of Millions of Credit Card Applications Stolen in Capital One Breach
GeekWire: Seattle engineer arrested for Capital One hack that affected 100M people

@zackwhittaker: Wow. Capital One discloses massive data breach: 100M in US, 6M in Canada. One person in FBI custody. Credit files, applications, the lot. Hard to see this as anything other than Equifax 2.0. (link: http://press.capitalone.com/phoenix.zhtml?c=251626&p=irol-newsArticle&ID=2405043) press.capitalone.com/phoenix.zhtml?…
@briankrebs: Nice write up. Yes, this appears to be her resume. Worked at Amazon 2015-2016
@cnbcnow: BREAKING: Capital One says data breach has “affected approximately 100M individuals in the United States & approximately 6M in Canada” but “no credit card account numbers or log-in credentials were“ taken and “99% of Social Security numbers” weren’t stolen
@gregotto: According to the FBI, a firewall misconfiguration was partly responsible for allowing Thompson to access the Capital One cloud storage
@yoda: what kind of wordsmith fuckery is this???
@RepKatiePorter: One week *to the day* after Equifax announced its settlement terms. It’s clear corporations won’t clean up their acts on their own. We need to create an enforceable federal data privacy standard, so I’m drafting that bill.
@zackwhittaker: Incredible. Capital One's data breach site is titled "Facts."And yet it also pulls this bullshit by saying that no Social Security numbers were breached... except for all the Social Security numbers that were breached.Fuck you, Capital One.
@Wired: On Monday, the FBI and Capital One disclosed a data breach of 106 million credit card applications, one of the biggest breaches of a major financial institution ever.And now someone has been arrested in connection with the crime:
@BleepingComputer: The suspect allegedly posted about her accessing of Capital One's data on GitHub. A security researcher saw her post and contacted Capital One.
@kimzetter: This Capital One breach definitely has more going on to it than the headlines suggest. Perhaps not a coordinated vuln disclosure gone wrong ?but something is def weird about it - she used Tor to access the data but then publicly posted the data to an account with her name?
@dnvolz: The arrested suspect behind the hack, Paige Thompson, is a former employee of Amazon Web Services, according to people familiar with the matter. She is accused of breaching a misconfigured Capitol One firewall to access data stored in AWS. via @nicole_hong
@BleepingComputer: This breach was discovered by a security researcher who responsibly disclosed a vulnerability to Capital One. After investigating the vulnerability, Capital One discovered that an unauthorized user accessed their systems and data between March 22 and 23, 2019.
@McGrewSecurity: Located the Capital One hacker's twitter (also thanks to those that backchanneled on the topic). Clearly they were/are in a bad state mentally/emotionally. I've deleted the earlier tweets about her. I hope they find some peace.
@weldpond: The FBI said the suspect, Paige A. Thompson, was apprehended after she “made statements on social media for evidencing the fact that she has information of Capital One, and that she recognizes that she has acted illegally,”
@h0tdish: Insider/ex employee threats and those who willingly commit crimes, creating, selling malware or stealing info via exploit/breach ARE NOT hero's & anyone who frames it that way has to explain why they're not currently launching a legal $ raiser for her but did for other criminals.
@hacks4pancakes: I feel a great disturbance in the Force, like dozens of Capital One cybersecurity analysts who were screaming futilely for into the wind for years were suddenly silenced.
@RayRedacted: I have removed all of my OSINT posts about the Capital One hacker, because it is clear that she is suffering from mental illness.Mental illness does not discriminate. It can affect anyone. I truly hope she gets the help she needs.
@catcalvinla: At this point, I’m getting like two breach notices a day. Who DOESN’T have my info?
@malwarejake: Takeaways from #CapitalOne: 1. Having a disclosure program may have saved them. I'm FAR less likely to report to an org that lacks a disclosure policy. (link: http://press.capitalone.com/phoenix.zhtml?c=251626&p=irol-newsArticle&ID=2405043) press.capitalone.com/phoenix.zhtml?…
@somanyshrimp: Losing your personal information in a massive data breach is just a thing that happens now, like 110 degree days and regular mass shootings
@TorresLuzardo: I'm trying to come up with an analogy but there's really no topping this.No SSNs were stolen except 140,000 of them.


October 4, 2019
Zack Whittaker / TechCrunch

Zack Whittaker / TechCrunch  
Microsoft Says ‘Phosphorous’ Threat Group Linked to Iranian Government Targeted Unnamed 2020 U.S. Presidential Candidate’s Email Account Along With 2,700 Other Email Accounts

Microsoft said that it has seen a threat group linked to the Iranian government, which it calls Phosphorous but is also known as APT 35, target an unnamed 2020 U.S. presidential candidate. In a 30-day period between August and September of this year, Phosphorous made more than 2,700 attempts to identify consumer email accounts belonging to specific Microsoft customers that are “associated” with a presidential campaign, current and former U.S. government officials, journalists and prominent Iranians living outside the country. Four of the accounts not associated with the U.S. presidential campaign or current and former U.S. government officials were compromised in the effort. The attacks, which Microsoft described as not sophisticated, attempted to use a “significant amount of personal information” to game password reset or account recovery features and try to take over some targeted accounts. Some of the attacks entailed gathering and targeting user phone numbers.

Related: Microsoft, Fifth Domain | Cyber, New York Post, Digital Trends, Algemeiner.com, AOL, Financial Times, The Hill: Cybersecurity, The Hill: Cybersecurity, The Register – Security, MSPoweruser, Gizmodo, The Age, Reuters, Axios , BleepingComputer.com, News : NPR, UPI.com, CNN.com, Slashdot , Haaretz.com, Jerusalem Post, Channel News Asia, Arutz Sheva News, News.com.au, CNBC, News.com.au, AP Breaking News,NBC News Top Stories, VentureBeat, USA Today, RT News, CTVNews.ca, TribLIVE, Star TribuneEngadget, PCMag.com, WashingtonExaminer.com, ZDNet, Bloomberg Politics, Al Jazeera English, CNET News, CNN.com, New York Times – Nicole Perlroth, CNET News, Deutsche Welle, Washington Post, Washington Post, ZDNet, The Palm Beach Post, The Age, ZDNet, Stars and Stripes, Windows Central , Law & Disorder – Ars Technica, GeekWire, JNS.org, The Verge, Fortune, TIME, POLITICO, RT News, The Times of Israel, South China Morning Post

Tweets:@Bing_Chris @Olivia_Gazis @W7VOA @tonyromm @adrianweckler @g_ratnam @shanav @jseldin @gregotto @jamestutt @magmill95 @alexwardvox

Microsoft: Recent cyberattacks require us all to be vigilant
Fifth Domain | Cyber: Iran-backed hackers targeted 2020 presidential campaign, says Microsoft
New York Post: Microsoft says Iran plotted cyber attack against US presidential campaign
Digital Trends: Microsoft blames Iran for hacking attempts on U.S. presidential candidates
Algemeiner.com: France Gives One Month to Get Iran-US to Negotiating Table
AOL: Iran-linked hackers tried to compromise presidential campaign, Microsoft says
Financial Times: Microsoft says Iran tried to hack 2020 Democratic campaign
The Register – Security: Iran tried to hack hundreds of politicians, journalists email accounts last month, warns MicrosoftThe Hill: Cybersecurity: Iran-linked group targeted email accounts for US presidential campaign, government officials
MSPoweruser: Microsoft uncovers US election hacking plot by Iranian agencies
Gizmodo: Someone ‘Highly Motivated’ Tried to a Hack 2020 Presidential Campaign, Microsoft Warns
Firstpost: Iranian hackers targeted U.S. presidential campaign, did not succeed – Microsoft
The Age: Iranian hackers targeted US presidential campaign, Microsoft says
Reuters: Iranian hackers targeted U.S. presidential campaign, did not succeed: Microsoft
Axios : Microsoft: Iranian group tried to hack unnamed 2020 candidate, others
BleepingComputer.com: Microsoft Discovers Iranian Hacking Campaign Targeting U.S. Politics
News : NPR: Microsoft Says Iranians Tried To Hack U.S. Presidential Campaign
UPI.com: Microsoft: Iran-linked hacking group has targeted 2020 U.S. campaign
CNN.com: Iranian hackers targeted presidential campaign and US government officials
Slashdot : Microsoft: Iranian Hackers Targeted a 2020 Presidential Campaign
Haaretz.com: Iranian hackers targeted a U.S. presidential campaign, Microsoft says
Jerusalem Post: Microsoft finds Iranian hackers targeted a U.S. presidential campaign
Channel News Asia: Iranian hackers targeted US presidential campaign, did not succeed – Microsoft
Arutz Sheva News: Microsoft: Iran-linked hackers tried to compromise US campaign
News.com.au: Microsoft: Iranian hackers targeted US campaign
CNBC: Microsoft says Iranian hackers targeted presidential campaign, government officials, media
News.com.au: Microsoft: Iranian hackers targeted US campaign
AP Breaking News: Iranian hackers said to target presidential campaign
New York Times : Iranian Hackers Targeted Presidential Campaign, Microsoft Says
NBC News Top Stories: Iran-linked hackers tried to compromise presidential campaign, Microsoft says
VentureBeat: Microsoft: Hackers linked to Iran targeted U.S. presidential candidate
USA Today: Microsoft: Iran government-linked hacker targeted 2020 presidential campaign
RT News: Iranian govt-linked op tried to HACK TRUMP 2020 campaign, Reuters sources claim
CTVNews.ca: Iranian hackers said to target U.S. presidential campaign
TribLIVE: Iranian hackers said to target presidential campaign
Star Tribune: Iranian hackers said to target presidential campaign
CNN.com: Iranian hackers targeted presidential campaign and US government officials
Engadget: Microsoft: Iranian cyberattack targeted a US presidential campaign
USA Today: Microsoft: Iran government-linked hacker targeted 2020 presidential campaign
PCMag.com: Microsoft: Iranian Hackers Targeted US Presidential Campaign
WashingtonExaminer.com: Microsoft: Iran-tied group attempted to hack US presidential campaign email accounts
ZDNet: Microsoft: Iranian hackers targeted a 2020 presidential campaign
Bloomberg Politics: Microsoft Says Iran Tried Hack of U.S. Presidential Campaign
Al Jazeera English: Iranian hackers targeted a US presidential campaign: Microsoft
CNET News: Iranian hackers targeted a US presidential campaign, Microsoft says – CNET
CNET News: Iranian hackers targeted a US presidential campaign, Microsoft says – CNET
Deutsche Welle: Hackers target US presidential campaign, Microsoft reports
Washington Post: Iranians tried to hack U.S. presidential campaign in effort that targeted hundreds, Microsoft says
The Palm Beach Post: Iranian hackers said to target presidential campaign
The Age: Iranian hackers targeted US presidential campaign, Microsoft says
ZDNet: Microsoft: Iranian hackers targeted a 2020 presidential campaign
Stars and Stripes: Iran tried to hack US candidates, journalists in effort that targeted hundreds, Microsoft finds
Firstpost: Iranian hackers targeted a U.S. presidential campaign, Microsoft says
Windows Central : Microsoft: Iranian hacking group targeted 2020 presidential campaign
TechCrunch: Microsoft says Iranian hackers targeted a 2020 presidential candidate
Law & Disorder – Ars Technica: Microsoft says Iranian hackers tried to hack a US presidential campaign
GeekWire: Iranian hacker group attacked email accounts tied to a US presidential candidate, Microsoft says
JNS.org: Microsoft: Iran sought to hack US presidential campaign
The Verge: Microsoft says Iranian hacking group targeted a 2020 US presidential candidate
Fortune: How Iran-linked Hackers Tried to Compromise a Presidential Campaign
TIME: Microsoft Says Iranian Hackers Targeted U.S. Presidential Campaign
POLITICO: Iranian hackers targeted 2020 presidential campaign, Microsoft finds
The Times of Israel: Microsoft says Iranian hackers targeted a US presidential campaign
South China Morning Post: Iranian hackers targeted 2020 US presidential campaign, Microsoft finds

@Bing_Chris: "The targeted accounts are associated with a U.S. presidential campaign, current and former U.S. government officials, journalists covering global politics and prominent Iranians living outside Iran"
@Olivia_Gazis: .@Microsoft says it has detected hackers linked to the Iranian government targeting at least one U.S. presidential campaign:
@W7VOA: Cyber activity from #Iran and linked to that government detected by @Microsoft.
@tonyromm: A campaign linked to the Iranian government attempted to identify, attack and breach email addresses belonging to U.S. presidential campaigns, government officials and journalists, according to new data unveiled by Microsoft
@adrianweckler: Microsoft head of security posts blog saying Iranian govt-backed hackers attacked email accounts of journalists and an unnamed US presidential campaign
@g_ratnam: A group called Phosphorous, believed to be tied to Iran, has targeted 2700 email accounts associated with US presidential campaigns, US officials, journalists and others, per @Microsoft . 241 of those were then attacked.
@shanav: NEW: Microsoft says Iranian APT group Phosphorous, with ties to Iran's government, has worked to get past two-factor authentication and reset passwords for a U.S. presidential campaign, as well as current and former U.S. gov officials and journalists.
@jseldin: "Microsoft has notified the customers related to these investigations and threats and has worked as requested with those whose accounts were compromised to secure them" per @TomBurt45More here:
@gregotto: NEW: Microsoft found an Iranian group going after microsoft email accounts tied to a presidential campaign, current and former gov, and journalists
@jamestutt: Today we are sharing details of significant cyber activity from a threat group we call Phosphorous, believed to originate in Iran with links to the Iranian govt. More here: https://blogs.microsoft.com/on-the-issues/2019/10/04/recent-cyberattacks-require-us-all-to-be-vigilant/
@magmill95: Big cyber news today: Microsoft announced that it tracked an Iranian-linked threat group over 30 days attempt to identify and attack consumer email accounts linked to Microsoft customers, including an unnamed U.S. presidential campaign and U.S. officials:
@alexwardvox: .@Microsoft's @TomBurt45 : "Today we’re sharing that we’ve recently seen significant cyber activity by a threat group we call Phosphorous, which we believe originates from Iran and is linked to the Iranian government."


September 17, 2019
Tom McCarthy, David Smith / The Guardian

Tom McCarthy, David Smith / The Guardian  
U.S. Government Files Suit to Stop Edward Snowden Profiting From His New Book, Claims Failure to Submit for Pre-Publication Review, Violation of CIA, NSA Non-Disclosure Agreement

The United States government filed a lawsuit against Edward Snowden, a former employee of the Central Intelligence Agency (CIA) and contractor for the National Security Agency (NSA), who published a memoir entitled Permanent Record. The lawsuit claims that Snowden published his book without submitting it to the agencies for pre-publication review, in violation of his express obligations under the agreements he signed. The lawsuit does not seek to stop the publication of the book but instead seeks to recover all proceeds earned by Snowden because of his failure to submit his publication for pre-publication review. The feds are also suing Snowden’s publisher solely to ensure that no funds are transferred to Snowden, or at his direction, while the court resolves the United States’ claims. The lawsuit is separate from the criminal charges brought against Snowden, whom the government has accused of violating the Espionage Act.

Related: AlterNet.org, Stars and Stripes, The Huffington Post, ZDNet, BuzzFeed, CNET, The Hacker News, SecurityWeek, Newsweek, USATODAY, Reuters: U.S., The Independent, News.com.au, New York Times, ParisGuardian, Voice of America, The Mac Observer, Daily Dot, POLITICO, AP Breaking News, TIME, The Verge, Task & Purpose, Law & Disorder – Ars Technica, TribLIVE, Boing Boing, RT USA, Slashdot, Huffington Post India, Lorenzo Franceschi-Bicchierai – VICE, The Register – SecurityNBC News Top Stories, News : NPR, Justice.gov

Tweets:@Snowden @ACLU @ewenmacaskill @zackwhittaker @avilarenata @ggreenwald @Snowden @trevortimm @xor @zoetillman @freedomofpress

AlterNet.org: U.S. government can’t try Edward Snowden — so it’s going after his book payout
Stars and Stripes: Department of Justice sues for proceeds from Edward Snowden’s book
The Huffington Post: Justice Department Sues Edward Snowden For Book Proceeds
ZDNet: US sues Edward Snowden over new book
BuzzFeed: The Justice Department Is Suing To Stop Edward Snowden From Making Money From His New Book And Public Speeches
CNET: Justice Department sues Edward Snowden over memoir
The Hacker News: BREAKING — U.S Sues Edward Snowden and You’d be Surprised to Know Why
SecurityWeek: US Justice Department Sues Snowden Over New Book
Newsweek: What’s in Edward Snowden’s New Book? Justice Department Sues Whistleblower Over ‘Permanent Record’
USATODAY: ‘I’m not asking for a pardon.’ Edward Snowden says he’d come home for a fair trial
Reuters: World News: U.S. wants to seize all money Edward Snowden makes from new book
AOL: U.S. sues NSA leaker Edward Snowden over new book
The Independent: US sues Edward Snowden over new autobiography describing how he leaked top-secret files
News.com.au: US sues Edward Snowden over his new book
New York Times: U.S. Tries to Seize Edward Snowden’s Proceeds From New Memoir
ParisGuardian: Snowden Calls on France’s Macron to Grant Him Asylum
Voice of America: Snowden Calls on France’s Macron to Grant Him Asylum
The Mac Observer: The United States Sues Edward Snowden Over Book
Daily Dot: Government sues Edward Snowden for breaking a non-disclosure agreement
POLITICO: DOJ wants the profits from Edward Snowden’s new book
AP Breaking News: Justice Dept. files lawsuit against Snowden over memoir
TIME: U.S. Justice Department Sues Edward Snowden Over New Memoir
The Verge: The US government is suing Edward Snowden for his book profits
Task & Purpose: US hits Edward Snowden with lawsuit over nondisclosure agreement violations
Law & Disorder – Ars Technica: Feds seek to seize all profits from Snowden’s book over NDA violation
TribLIVE: Justice Department files lawsuit against Edward Snowden over memoir
Boing Boing: US sues Edward Snowden, ‘Permanent Record’ violates NDAs ‘signed with CIA & NSA’ says Justice Department
RT USA: Snowden book ‘violates CIA & NSA non-disclosure agreements’ – US lawsuit
The Guardian: US government files civil lawsuit against Snowden over publication of memoir
Slashdot: United States Files Civil Lawsuit Against Edward Snowden
Voice of America: US Sues Edward Snowden Over new Book, Cites Non-disclosure Agreements
The Huffington Post: Justice Department Sues Edward Snowden For Book Proceeds
Lorenzo Franceschi-Bicchierai – VICE: The US Government Is Suing Edward Snowden
The Register – Security: US government sues ex-IT guy for breaking his NDA (Yes, we mean Edward Snowden)
NBC News Top Stories: DOJ sues Edward Snowden over new memoir
News : NPR: Justice Department Sues Edward Snowden, Seeking Profits From His Book
Justice.gov: United States Files Civil Lawsuit Against Edward Snowden

@Snowden: The government of the United States has just announced a lawsuit over my memoir, which was just released today worldwide. This is the book the government does not want you to read: (link corrected)
@ACLU: This book contains no government secrets that have not been previously published by respected news organizations.@Snowden wrote this to continue a worldwide conversation about mass surveillance and free societies. This lawsuit will only bring more attention to the book.
@ewenmacaskill: Huge mistake by US govt in filing civil lawsuit against Snowden over publication of memoir. UK ban of Spycatcher 50 years ago created huge demand.
@zackwhittaker: Interesting. U.S. files suit against Edward Snowden for not submitting his new book for pre-publication review, arguing it violates the NDA he signed (and broke when he took thousands of classified files).
@avilarenata: First, they spy on us, then they persecute whistleblowers, now they ban books. Freedom? Time to organise collective readings of @Snowden book everywhere. Go, buy the book now, read it, share it, discuss it.
@ggreenwald: After the DOJ announced its repressive lawsuit to seize the proceeds of Snowden's book (good luck with that!), the book propelled its ways onto the Top 10 Best-Seller List on Amazon. Knowing @Snowden as I do, I'm certain he's duly appreciative
@Snowden: Hours after the United States government filed a lawsuit seeking to punish the publication of my new memoir, #PermanentRecord, the very book the government does not want you to read just became the #1 best-selling book in the world. It is available wherever fine books are sold.
@trevortimm: “This far-reaching censorship system simply can’t be squared with the Constitution...this system sweeps too broadly, fails to limit the discretion of government censors, and suppresses political speech that is vital to informing public debate.”
@xor: "So good, it shouldn't be legal!" –US Department of Justice.Get @Snowden 's book:
@zoetillman: DOJ can't pursue criminal charges against Edward Snowden as long as he's living in Russia — so the feds are going after his money instead https://buzzfeednews.com/article/zoetillman/us-lawsuit-edward-snowden-book-proceeds-nsa
@freedomofpress: Our Executive Director @trevortimm on today's @Snowden lawsuit:“If only the Justice Department was as concerned with the systematic legal violations carried out by the US government’s mass surveillance programs as they are about trying to blunt the impact of a personal memoir.”


September 12, 2019
Daniel Lippman / Politico

Daniel Lippman / Politico  
Israel Was Most Likely Behind Placement of Surveillance Stingray Devices Near White House Which Aimed to Spy on Donald Trump, Administration Failed to Rebuke Israeli Government, Sources

The U.S. government concluded within the last two years that Israel was most likely behind the placement of cell-phone surveillance devices known as Stingrays, or more formally international mobile subscriber identity-catchers or IMSI-catchers, that were found near the White House and other sensitive locations around Washington, D.C., yet the Trump Administration did nothing about it and failed to rebuke the Israeli government. The devices were intended to spy on Donald Trump as well as his top aides and closest associates. U.S. officials shared their findings with relevant federal agencies, according to a letter a top DHS official, Christopher Krebs, wrote in May 2018 to Sen. Ron Wyden (D-OR.). According to a detailed forensic analysis, the FBI and other agencies working on the case felt confident that Israeli agents had placed the devices, sources say. Israel issued a pro forma denial that it is the culprit behind the stingrays.

Related: Gizmodo, Slate, Bloomberg, The Guardian, Just Security, Washington Examiner, Israel National News, Haaretz.com, Washington Examiner, NBC News Top Stories, PressTV, South China Morning Post, FuturismCBSNews.com, Jerusalem Post, Vox, BBC News – World, CBSNews.com, The Times of Israel, Algemeiner.com, BBC News – World, SC Magazine, Reuters: World News, Slashdot

Tweets:@dlippman @thegrugq @maxblumenthal @olgaNYC1211 @kenklippenstein @yashar @KyleWOrton @NTarnopolsky @AkiPeritz @CrispinBurke @ericgeller @timothypmurphy @gregotto @russellbrandom

Gizmodo: Israel Allegedly Installed Stingray Devices Around D.C. to Spy on President Trump
Slate: Israel Reportedly Known to Be Spying on White House Cell Phones, but Trump Didn’t Do Anything About It
Bloomberg: Israel Denies Report it Planted Spying Devices in Washington D.C.
The Guardian: Israel accused of planting spying devices near White House
Just Security: The Early Edition: September 12, 2019
Washington Examiner: Israel blamed for spy devices found near White House
Israel National News : Report: Israel accused of planting spy devices near White House
Haaretz.com: Israel reportedly planted mysterious spy devices near White House
Washington Examiner: Israel blamed for spy devices found near White House
NBC News Top Stories: Netanyahu denies Israel planted spy devices near the White House
PressTV: Israel accused of placing spy devices near White House: Report
South China Morning Post: Israel accused of planting mysterious spy devices near the White House
Futurism: The FBI Reportedly Thinks Israel Spied on Trump’s Phone
CBSNews.com: Politico: Israel accused of planting spy devices near White House
Jerusalem Post: Trump says he does not believe Israelis are spying on the U.S.
Vox: Vox Sentences: Another hurdle for asylum seekers
BBC News – World: Netanyahu denies Politico report Israel spying on the White House
CBSNews.com: “StingRay” surveillance devices found near the White House
The Times of Israel: Trump says he doesn’t believe report of Israel spying on White House
Algemeiner.com: Netanyahu Denies Report of Israeli Spy Operation in US
BBC News – World: Netanyahu denies Politico report Israel spying on the White House
SC Magazine: Israel reportedly behind spying devices found near White House, other sensitive areas | SC Media
Reuters: World News: Trump says he does not believe Israelis are spying on the U.S.
Slashdot: Israel Accused of Planting Mysterious Spy Devices Near the White House

@dlippman: SCOOP: The U.S. government concluded within the last two years that Israel was most likely behind cell-phone surveillance devices that were found operating near the WH and other sensitive parts of D.C., according to three former senior U.S. officials.
@thegrugq: The counterintelligence threat of using commodity mobile phones for sensitive matters is very very real. The ISMSI catchers found around the WH a couple years ago were apparently intended to capture Trump & his crew’s phones.Linked, allegedly, to Israel.
@maxblumenthal: US govt has concluded within the last two years that Israel was most likely behind surveillance devices found near the White House and other sensitive locations around DCYet “the Trump administration did not rebuke the Israeli government” #IsraelGate
@olgaNYC1211: Wait let me get this straight.. Trump is accusing Israel off spying on him? Can't wait to see Trump cults response
@kenklippenstein: "after the FBI and other agencies concluded that the Israelis were most likely responsible for the devices, the Trump administration took no action to punish or even privately scold the Israeli government."
@yashar: New: Israel was most likely behind the placement of surveillance devices that were found near the White House. But even though officials believe the devices were planted to spy on POTUS and other officials, the WH did not punish Israel@dlippman scoops
@KyleWOrton: Espionage devices, designed to fool mobile telephones into giving up data, were found "near the White House and other sensitive locations around Washington, D.C.", targeting Trump and other senior officials. #Israel is almost certainly responsible.
@NTarnopolsky: #Breaking: The FBI accuses Israel of spying on the White House. Administration tried to downplay findings. Israeli embassy says "we don't spy on the United States."
@AkiPeritz: So it turns out it was Israel that places the Stingrays around downtown DC to collect intelligence on top US policymakers, like POTUS, Kushner and everyone else.
@CrispinBurke: "Unlike most other occasions when flagrant incidents of foreign spying have been discovered on American soil, the Trump administration did not rebuke the Israeli government, and there were no consequences for Israel’s behavior..."
@ericgeller: Israel planted StingRays in D.C. to spy on Trump, and his administration is fine with it because, you know, Israel. https://politico.com/story/2019/09/12/israel-white-house-spying-devices-1491351
@timothypmurphy: best frenz
@gregotto: Three officials tell Politico that Israel planted stingrays in areas around the White House
@russellbrandom: Israel planted Stingrays cell-trackers pointed towards the White House, per Politico


August 6, 2019
Michelle Nichols / Reuters

Michelle Nichols / Reuters  
North Korea Has Used ‘Cyberattacks’ Against Banks, Cryptocurrency Exchanges to Generate $2 Billion to Fund Its Weapons of Mass Destruction Program, Experts Probe 35 Attacks in 17 Countries, Report

North Korea has generated an estimated $2 billion for its weapons of mass destruction programs using “widespread and increasingly sophisticated” cyberattacks to steal from banks and cryptocurrency exchanges, according to a confidential U.N. report to the U.N. Security Council North Korea sanctions committee by independent experts monitoring the country’s nuclear and missile programs. The experts said that they are investigating at least 35 instances in 17 countries in which North Korea attacked financial institutions, cryptocurrency exchanges, and mining activities. Many of the cyber actors involved in these instances operated under the direction of the Reconnaissance General Bureau, North Korea’s military intelligence unit.

Related: Washington Free Beacon, Task & Purpose, Khabarhub, Deccan Chronicle, The Next Web, CBSNews.com, Associated Press, EJ Insight, PCMag.com, Asia One WorldMashable, Security – Computing, NBC News Top Stories, Deutsche Welle, South China Morning Post, TIME, SecurityWeek, The Korea Herald

Washington Free Beacon: U.N. Report: North Korea Took $2 Billion in Cyberattacks to Fund Weapons Program
Task & Purpose: North Korea has generated $2 billion for weapons programs by hacking banks and crypto exchanges
Khabarhub : Inside story of North Korea’s multi-faceted illicit cyber activities – Khabarhub
Deccan Chronicle: North Korea took USD 2 billion in cyberattacks to fund weapons programme
The Next Web: UN: North Korean cryptocurrency hackers have earned up to $2 billion so far
CBSNews.com: Report: N.K. skirts sanctions, earns $2 billion via cyber attacks
Associated Press : UN report: North Korea cyber experts raised up to $2 billion
EJ Insight: N Korea hackers generated US$2 bln for weapons program: report
PCMag.com: UN: North Korean Hackers Raised $2B to Fund Weapons Program
Asia One World: North Korea took $2 billion in cyber attacks to fund weapons programme: UN report
Mashable: North Korea funds weapons program with stolen cryptocurrency, U.N. report claims
Security – Computing: North Korea made $2bn from cyber crime and spent it on weapons, claims UN
NBC News Top Stories: N. Korea funding missile tests through cyberattacks, according to U.N. report
Deutsche Welle: North Korea cyberattacks generate $2 billion for weapons program
South China Morning Post: North Korean hackers stole US$2 billion to fund weaponry, UN report reveals
TIME: North Korea’s Cyber Experts Raised Up to $2 Billion, U.N. Report Says
SecurityWeek: UN Report: North Korea Cyber Experts Raised Up to $2 Billion
The Korea Herald: UN report: North Korea cyber experts raised up to $2 billi


July 20, 2019
Julian E. Barnes / New York Times

Julian E. Barnes / New York Times  
ODNI Director Coats Names Experienced Government Official Shelby Pierson to New Election Security Position

In a sign that security vulnerabilities and influence operations are now a permanent fixture of U.S. elections, Director of National Intelligence Dan Coats announced that experienced government official Shelby Pierson will oversee election security intelligence across the government in a newly created senior position. Pierson, who worked on intelligence issues surrounding the 2018 midterm elections, will cover both potential attacks on voting infrastructure and influence campaigns. Coats said that Pierson’s appointment will help intelligence agencies direct resources to election security and “bring the strongest level of support to this critical issue.” Coats also said he was ordering all of the intelligence agencies with a role in election security to appoint a senior official to oversee issues of foreign influence and infrastructure attacks. The officials will form an Election Executive and Leadership Board to ensure intelligence agencies are properly focused on voting security issues.

March 23, 2017
Mike Snider / USA Today

Mike Snider / USA Today  
‘Pro-Trump’ Hackers Hijack Twitter Accounts of ABC News, Good Morning America

Profane and pro-Trump tweets appeared on hijacked accounts for ABC News and Good Morning America this morning. The hackers claimed to be “Russian hackers” and also claimed that rapper Tyler the Creator had died. A handful of tweets were sent before ABC shut down the activity.

Related: The Next Web, NBC News, Associated PressHeat Street, IB TimesMirror, The Globe and Mail, Newsmax – Newsfront, CNBC, TechNewsWorld


May 29, 2019
Lily Hay Newman / Wired

Lily Hay Newman / Wired  
Inauthentic Pro-Iranian Social Media Accounts Spread Fake News Ahead of 2018 Midterm Elections, Impersonated Politicians and Pushed Views to Mainstream Media

A network of inauthentic English-language social media accounts, particularly Twitter accounts, were created around the 2018 midterm elections, between April 2018 and March 2019, according to security firm FireEye, a finding which follows their discovery, reported last August, of an Iranian influence operation leveraging networks of inauthentic news sites and social media accounts aimed at audiences around the world. This latest pro-Iranian disinformation operation was largely focused on promoting “anti-Saudi, anti-Israeli, and pro-Palestinian themes.” As a result of FireEye’s latest findings, Facebook announced a takedown of 51 Facebook accounts, 36 Facebook pages, seven Facebook groups and three Instagram accounts that it says were all involved in coordinated “inauthentic behavior” which the social media network said stemmed from Iran. The fake personas FireEye tracked also launched multi-pronged influence efforts against English-language media outlets. Some of the fake Twitter accounts impersonated politicians and the inauthentic accounts promoted both progressive and conservative views, directly impersonating people’s online accounts, and even getting their views published in US and Israeli mainstream media.

Related: Reuters, Financial Times, Cyberscoop, Algemeiner.com, SecurityWeek,  NBC News Top Stories, Digital Journal, Threat Research BlogPCMag.comBoing Boing


July 25, 2016
Patrick Tucker / Defense One

Patrick Tucker / Defense One  
Considerable Evidence by Infosec Researchers Shows Russia’s Link to DNC Hack

From FireEye’s discovery of APT 29 in 2014 to CrowdStrike’s report on the DNC hack released in June 2016, considerable evidence has mounted in the information security community that Russia engineered the DNC hack and subsequent leak of Wikileaks document.

[expand title=”More”]

IBTimes.co.uk : Technology: It might be a bit late, but Hillary Clinton is looking for a security engineer. No, we’re serious
Washington Post: It’s not just the DNC; we all send emails we probably shouldn’t
PBS NewsHour: FBI investigates cyberattack of Democratic National Committee
The Atlantic: The Muscovite Candidate?
Independent Journal Review: The FBI is Now Involved in DNC Email Hacking Case
WND: Will Putin get a Pulitzer?
Zero Hedge: FBI Launches Probe Of ‘Putin/Trump’ DNC Cyber-Attack
TIME: Vladimir Putin’s Bad Blood With Hillary Clinton
Digg Top Stories: Was The DNC Email Leak A Russian Hack? Here’s What To Read
Slate: Was Russia Behind the DNC Leaks? It Sure Seems Like It. – Slate Magazine (blog)
WashingtonExaminer.com: Clinton camp: Russians hacked DNC, leaked info to help Donald Trump
TIME: FBI Launches Investigation Into DNC Email Hack
Yahoo! News: White House will not comment on Democratic email hack probe
Yahoo! News: Democratic Party email leak points to Russia: cyber experts, U.S. officials
PBS NewsHour: Was Putin’s bad blood with Clinton behind DNC hacking?
TASS: Kremlin declines to comment on Russia’s alleged involvement in Clinton email leak
Washington Free Beacon: Clinton Campaign: ‘Plenty of Evidence’ Putin Wants Trump to Win Election
The Guardian: The rush to blame Russia for the DNC email hack is premature | Trevor Timm
SC Magazine : Clinton campaign accuses Russia of DNC hack
Talking Points Memo: Clinton Camp Accuses Russia Of Hacking DNC To Help Trump
AOL: Vladimir Putin suspected of helping Trump win election
Krebs on Security: Trump, DNC, RNC Flunk Email Security Test
Lawfare : Trump and the Powers of the American Presidency, Part III
Kyiv Post: NBC News: Trump aide dismisses Russian involvement in DNC email leak
Zero Hedge: Snowden Explains How To Get To The Bottom Of “Who Hacked The Democrats”
Hacked: Hillary Clinton Campaign Official: Email Leak a Russian Ploy to Help Trump
Yahoo! News: Lawmakers briefed on reported DNC hack, seek information on any Russia link
The Inquisitr News: FBI Investigating DNC Email Hack, Looking Into Possibility Of Russian Cyber Attack [Video]
TIME: Alleged Russian Hack of Democrats Reshapes Presidential Election Fight
emptywheel: The Two Intelligence Agency Theory of Handing Trump the Election
Council on Foreign Relations: Disclosure of DNC Emails: Was Russia Making Up for the Fact It Got Caught?
Kyiv Post: Wall Street Journal: DNC hack fits pattern of past Russian meddling
Lawfare : What is Old, and New, and Scary in Russia’s Probable DNC Hack
E Hacking News: Russia behind DNC’s cyber attack
SecurityWeek: FBI Probes Democratic Email Hack, but is Russia to Blame?
RT USA: Clinton camp head alleges Russian hack & release of DNC emails to aid Trump, cites ‘press & experts’
The Atlantic: Trump Time Capsule #56: Russian Quids and Quos
Sputnik International: Clinton Campaign Believes Russia Behind Democratic Party Email Hack – Advisor
Mashable: Opening prayer at Democratic convention halted by booing crowd
CNN.com – Politics: Clinton’s campaign manager: Russia helping Trump
GeekWire: Q&A: Cybersecurity expert explains the DNC email hack, and how you can prevent a similar attack
[/expand]