- The Strategist - https://www.aspistrategist.org.au -

Cyber wrap

Posted By on December 7, 2016 @ 12:35

Image courtesy of Flickr user frankieleon.

The infamous botnet infrastructure ‘Avalanche’ [1] used by cyber crooks to launch their malware campaigns and phishing attacks was taken down [2] last week in a historic victory for international cooperation against cybercrime. After four years of work, a coalition [3] of law enforcement partners and private sector companies from 40 countries orchestrated multiple arrests, seized servers and sinkholed [4] or blocked more than 800,000 [5] malicious web domains. Check out this advice [6] from US-CERT to make sure your computer isn’t infected with Avalanche malware.

International cyber cooperation continued this week, with India and Qatar inking [7] a new cybersecurity agreement. Along with four other pacts, Indian PM Narendra Modi and Qatari Sheikh Abdullah bin Nasser bin Khalifa Al Thani committed [8] to deepening technical cooperation on cybercrime, specifically joint operations to combat terrorist financing and money laundering. South Korea’s Internet & Security Agency has also offered to share its cybersecurity expertise in the training [9] of policymakers, law enforcement and military to help build cyber capacity and boost digital economy development in the Central African state of Gabon.

Australia is establishing a new Cyber Security Growth Centre, announced [10] Minister for Industry, Innovation and Science Greg Hunt and the Minister Assisting the PM for Cyber Security Dan Tehan on Monday. Part of the National Innovation and Science Agenda [11] released last December, the industry-led not-for-profit Growth Centre and associated Cyber Security Growth Network will receive $31.9 million over the next three years to boost the success of Australia’s digital products and services industry. Atlassian’s Director of Security Craig Davies will take the helm [12] as CEO of this organisation, which is expected to open its doors early next year.

The Saudi government has confirmed [13] that its General Authority of Civil Aviation suffered a major cyber incident in November that resulted in the loss of important data and brought operations to a standstill for several days. The attack was executed via Shamoon, the same malware used in the infamous compromise of Saudi oil company Aramco in 2012 [14]. The aviation agency was reportedly targeted as part of a broader effort [15] against several Saudi government agencies and Saudi fingers are unofficially pointed at Iran.

Cybercriminals made away with more than two billion Roubles [16] (AU$42 million) from Russia’s Central Bank earlier this year, according to the bank’s annual report released on Friday. The hackers used fraudulent client credentials to compromise correspondent accounts and although the bank managed to recover three of the five billion roubles [17] initially stolen, the heist represents a trend of high-value cyber thefts following the US$81 million loss [18] from Bangladesh’s central bank in February. In an unrelated comment, Russia’s Federal Security Service announced on Friday that it had thwarted a foreign spy agency misinformation plot [19] designed to undermine the confidence in Russia’s banking sector through a series of cyber attacks accompanied by fake news [20] of a national financial crisis and rampant bankruptcies on social media.

Over in the US, the House of Representatives has passed [21] a bill that would establish an interagency intelligence committee to combat Russia’s misinformation operations and restrict the movement of Russian diplomats within the US to a 25 mile radius around their official posts unless cleared by the FBI. The bill, which comes in the wake of the US Director of National Intelligence officially calling out [22] the Kremlin for meddling in the US election, is expected to be passed by the Senate before the end of the year.

Obama’s Commission on Enhancing National Cybersecurity [23], created by executive order earlier this year, also released its final report last Thursday. The Report on Securing and Growing the Digital Economy [24] puts forward a series of recommendations on topics such as network security, innovation, and cyber workforce. The Commission’s last words are designed to be a helpful handover document [25] on US cyber policy for Trump, with Obama affirming [26] that ‘it is time for the next Administration to take up this charge and ensure that cyberspace can continue to be the driver for prosperity innovation and change’. Hopefully that advice will be integrated into Trump’s existing cybersecurity efforts, which include promising [27] a Defense review of critical infrastructure cybersecurity and appointing three Republican cyber leaders [28] to his transition team.

And finally, ICPC has got your back if you’re in need of a couple of longer cyber security reads this week. A survey of more than 500 security professionals helped produce the 2016 Global Cybersecurity Assurance Report Card [29], which profiles the security confidence, risk assessment competence and threat mitigation strategies of IT professionals by both country and industry. Accenture’s new report, The State of Cybersecurity and Digital Trust 2016 [30], offers an assessment of cyber threats and maps trends in corporate attitudes to online trust, cybersecurity budgets and organisational structure. And lastly, PwC’s 2016 Global Economic Crime Survey [31] reveals that cyber attacks on Chinese corporations have increased by almost 1,000% over the last two years in light of the spread of IoT tech. Happy reading!



Article printed from The Strategist: https://www.aspistrategist.org.au

URL to article: https://www.aspistrategist.org.au/cyber-wrap-146/

URLs in this post:

[1] ‘Avalanche’: https://en.wikipedia.org/wiki/Avalanche_(phishing_group)

[2] taken down: https://www.europol.europa.eu/newsroom/news/%E2%80%98avalanche%E2%80%99-network-dismantled-in-international-cyber-operation

[3] coalition: https://www.fbi.gov/news/stories/joint-cyber-operation-takes-down-avalanche-criminal-network

[4] sinkholed: http://resources.infosecinstitute.com/dns-sinkhole/

[5] more than 800,000: http://www.darkreading.com/partner-perspectives/bitdefender/avalanche-cybercrime-platform-takedown-leaves-a-lot-to-clean-up/a/d-id/1327637

[6] this advice: https://www.us-cert.gov/ncas/alerts/TA16-336A

[7] inking: https://www.thequint.com/india/2016/12/03/india-qatar-sign-3-pacts-on-visas-cyber-security-and-investments-narendra-modi-al-thani-bilateral-talks-terror

[8] committed: http://www.thehindu.com/news/national/India-Qatar-ink-five-pacts-on-visas-cybersecurity-investments/article16754978.ece

[9] in the training: http://www.businesskorea.co.kr/english/news/ict/16622-cyber-security-training-kisa-passes-down-cyber-security-expertise-gabon

[10] announced: http://minister.industry.gov.au/ministers/hunt/media-releases/new-growth-centre-help-australia-become-global-cyber-security-leader

[11] National Innovation and Science Agenda: http://www.innovation.gov.au/page/cyber-security-growth-centre

[12] take the helm: http://www.businessinsider.com.au/government-taps-atlassian-executive-to-head-new-32-million-cybersecurity-centre-2016-12

[13] confirmed: http://www.nytimes.com/2016/12/01/world/middleeast/saudi-arabia-shamoon-attack.html?ref=technology

[14] Aramco in 2012: http://www.theregister.co.uk/2012/08/29/saudi_aramco_malware_attack_analysis/

[15] broader effort: https://www.bloomberg.com/news/articles/2016-12-01/destructive-hacks-strike-saudi-arabia-posing-challenge-to-trump

[16] two billion Roubles: http://www.reuters.com/article/us-russia-cenbank-cyberattack-idUSKBN13R1TO

[17] recover three of the five billion roubles: http://fortune.com/2016/12/02/russia-bank-cyber-heist/

[18] US$81 million loss: https://www.wired.com/2016/05/insane-81m-bangladesh-bank-heist-heres-know/

[19] foreign spy agency misinformation plot: http://www.news.com.au/world/breaking-news/russia-warns-of-cyber-attacks-on-its-banks/news-story/b7963ffd7606f93a4d0cf9447f0b9631

[20] series of cyber attacks accompanied by fake news: http://www.reuters.com/article/us-russia-cyberattack-banks-idUSKBN13R0NG

[21] passed: http://thehill.com/blogs/floor-action/house/308228-house-passes-intelligence-bill-enhancing-efforts-against-russia?utm_source=&utm_medium=email&utm_campaign=5163

[22] officially calling out: https://www.dni.gov/index.php/newsroom/press-releases/215-press-releases-2016/1423-joint-dhs-odni-election-security-statement

[23] Commission on Enhancing National Cybersecurity: https://www.nist.gov/cybercommission

[24] Report on Securing and Growing the Digital Economy: https://www.nist.gov/sites/default/files/documents/2016/12/02/cybersecurity-commission-report-final-post.pdf

[25] handover document: http://thehill.com/policy/cybersecurity/308594-presidents-commission-on-cybersecurity-releases-final-report

[26] affirming: https://www.whitehouse.gov/the-press-office/2016/12/02/statement-president-report-commission-enhancing-national-cybersecurity

[27] promising: https://www.youtube.com/watch?v=7xX_KaStFT8&feature=youtu.be

[28] three Republican cyber leaders: http://www.nextgov.com/security/2016/11/trump-appoints-legislative-cyber-leaders-transition-team/133522/?oref=ng-HPriver

[29] 2016 Global Cybersecurity Assurance Report Card: http://www.tenable.com/2016-global-cybersecurity-assurance-report-card/

[30] The State of Cybersecurity and Digital Trust 2016: https://www.accenture.com/t20160704T014005__w__/th-en/_acnmedia/PDF-23/Accenture-State-Cybersecurity-and-Digital-Trust-2016-Report-June.pdf#zoom=50

[31] Global Economic Crime Survey: http://www.pwccn.com/home/eng/forensic_economic_crime_survey_2016.html

Copyright © 2016 The Strategist. All rights reserved.