103 matches found
CISA and FBI Release Joint Advisory Regarding APT Actors Chaining Vulnerabilities Against SLTT, Critical Infrastructure, and Elections Organizations
The Cybersecurity and Infrastructure Security Agency CISA and the Federal Bureau of Investigation FBI have released a joint cybersecurity advisory regarding advanced persistent threat APT actors chaining vulnerabilities—a commonly used tactic exploiting multiple vulnerabilities in the course of a...
Lock and Code S1Ep16: Investigating digital vulnerabilities with Samy Kamkar
This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the Internet. In addition, we talk to Samy Kamkar, chief security officer and co-founder of Open Path, about the digital vulnerabilities in our physical world. If you look through a recent...
The International Playbook for Foiling Russian Interference
The Kremlin has meddled in so many elections that democracy’s immune system has gotten wise to its threats. Here are lessons other countries can teach us...
APT28 Mounts Rapid, Large-Scale Theft of Office 365 Logins
The Russia-linked threat group known as APT28 has changed up its tactics to include Office 365 password-cracking and credential-harvesting. Microsoft researchers have tied APT28 a.k.a. Strontium, Sofacy or Fancy Bear to this newly uncovered pattern of O365 activity, which began in April and is...
STRONTIUM: Detecting new patterns in credential harvesting
Microsoft has tied STRONTIUM to a newly uncovered pattern of Office365 credential harvesting activity aimed at US and UK organizations directly involved in political elections. Analysts from Microsoft Threat Intelligence Center MSTIC and Microsoft Identity Security have been tracking this new...
A week in security (August 3 – 9)
Last week on Malwarebytes Labs, on our Lock and Code podcast, we talked about identity and access management technology. We also wrote about business email compromises to score big, discussed how the Data Accountability and Transparency Act of 2020 looks beyond consent, and we analyzed how the...
Despite Coronavirus, Washington Isn't Worried About Its Primary
The state conducts its elections almost entirely by mail. The rest of the country should pay attention...
Trump, Sanders Are the Top Brands for Cybercriminals
Unwanted and malicious emails using political-themed lures has spiked as the presidential primary season cranks into high gear – with Donald Trump and Bernie Sanders representing the lion’s share of subject line themes. Since the beginning of the year, Proofpoint researchers have tracked subject...
Elections Globally Are Under Threat. Here's How to Protect Them
A new report calls for safeguards to reduce the dangers posed by misinformation, online extremism, and social media manipulation...
Facebook Cracks Down on Deepfake Videos
Facebook is banning deepfake videos, which stem from a technique of human-image synthesis based on artificial intelligence AI to create fake content. Over the past year, security experts and lawmakers have voiced concerns about malicious deepfake applications, particularly as a vessel for...
Reddit Says Influence Campaign is Behind Leaked U.S.-U.K. Trade Documents
Reddit has revealed that key U.S.-U.K. trade documents posted on its site were likely done so as part of a broader political-influence campaign that first appeared on Facebook and tied to Russia-based operatives. The online media aggregator says it has linked documents that were leaked on its sit...
Microsoft Tackles Election Security with Bug Bounties
As the 2020 presidential election draws closer and primary season looms around the corner, Microsoft has launched a bug-bounty program specifically aimed at its ElectionGuard product, which the software giant has positioned as performing “end-to-end verification of elections.” ElectionGuard is a...
Russia's Disinformation War Is Just Getting Started
The Internet Research Agency specifically targeted African Americans, and has not stopped trying to influence elections, a Senate intelligence report says...
Trump’s Ukraine Mess Feels a Little Too Familiar
The unfolding drama ties two key threads of the Trump era: foreign interference in US elections and the president's distrust of his own intel agencies...
Russia Is Going to Up Its Game for the 2020 Elections
"You don't need to change votes to cause chaos," Senator Mark Warner tells WIRED in an exclusive interview...
Before Mueller’s Testimony, Dems Demand More Election Security
Senate Democrats want to remind everyone that US elections are still at risk, and Congress could do more to protect them...
Let's Destroy Democracy
Election security through an adversary's eyes By Matt Olney. Executive summary Over the past few years, Cisco Talos has increasingly been involved in election security research and support, most recently supporting the Security Service of Ukraine in their efforts to secure the two Ukrainian...
Election Security
Stanford University's Cyber Policy Center has published a long report on the security of US elections. Summary: it's not good...
EU accuses Russia of spreading misinformation on social media
By Owais Sultan Apparently, Russia has carried out several activities attributed to continuous disinformation, with the purpose of suppressing voter turnout in voting sessions, in addition to influencing their preferences. A document, released by the European Union EU, says that Russia is using...
A Top Voting-Machine Firm Calls for Paper Ballots
The long-awaited shift from paperless ballots could make elections more secure...