FDA warns users of cyber vulnerabilities in pacemaker programmers

The Food and Drug Administration has issued a cybersecurity advisory for two pieces of hardware that link to cardiac devices like pacemakers and defibrillators, citing a vulnerability that could allow unauthorized access to the programmers. The FDA said it confirmed that when the two models of programmers, which are made by Minneapolis-based Medtronic, have an internet connection, unauthorized users could exploit the vendor’s network to change the programmers’ functionality. “While we are not aware of patients who may have been harmed by this particular cyber vulnerability, the risk to patient harm of leaving such a vulnerability unaddressed is too great,” Suzanne Schwartz, a top cybersecurity official at the FDA, said Thursday in a statement. In response to the security and safety concerns, Medtronic said it disabled the internet-connected software updates for the programmers and that, as of Thursday, a company representative would manually and securely update all of the affected programmers. The […]

The post FDA warns users of cyber vulnerabilities in pacemaker programmers appeared first on Cyberscoop.

Continue reading FDA warns users of cyber vulnerabilities in pacemaker programmers

Slow disclosure of Google+ flaw draws attention of senators

Republican senators have written to Google CEO Sundar Pichai demanding to know why the company was reportedly slow to disclose a software flaw in its Google+ social network partly out of fear of drawing attention from regulators. “Google must be more forthcoming with the public and lawmakers if the company is to maintain or regain the trust of the users of its services,” states the Oct. 11 letter from Sens. John Thune, S.D.,  Jerry Moran, Kan., and Roger Wicker, Miss. Thune chairs the Commerce, Science, and Transportation Committee. The software flaw, which Google announced Monday, exposed profile data such as email addresses and age, through an API. The incident affected up to 500,000 accounts, according to Google, which shut down consumer use of Google+ in response. Although the tech giant said it discovered and patched the bug in March, according to an internal company memo cited by the Wall Street […]

The post Slow disclosure of Google+ flaw draws attention of senators appeared first on Cyberscoop.

Continue reading Slow disclosure of Google+ flaw draws attention of senators

Researchers link tools used in NotPetya and Ukraine grid hacks

New research provides evidence linking some of the most impactful cybersecurity incidents on record – the 2015 and 2016 attacks on the Ukrainian power grid and the 2017 NotPetya malware outbreak – to the same set of hackers that Western governments say are sponsored by the Russian government. Researchers from cybersecurity company ESET say they have laid out the first concrete, public evidence of that link, citing a pattern of “backdoors” —  or tools for remote access  — used by the hackers. In April, ESET researchers found that the group, which they dub TeleBots, was trying to set up a new backdoor. ESET says this backdoor, known as Win32/Exaramel, is an “improved version” of the“Industroyer” backdoor used in the 2016 attack on the Ukrainian power sector, which knocked out at electrical substation outside of Kiev. The 2015 attack on Ukrainian grid, using the group’s custom BlackEnergy malware, cut power for […]

The post Researchers link tools used in NotPetya and Ukraine grid hacks appeared first on Cyberscoop.

Continue reading Researchers link tools used in NotPetya and Ukraine grid hacks

Chinese spy extradited to U.S. on economic espionage charges

A Chinese intelligence official has been extradited to the United States to face charges of economic espionage, the Department of Justice announced Wednesday. Yanjun Xu, a Chinese Ministry of State Security (MSS) official, is accused of trying to steal trade secrets from multiple American aerospace and aviation companies. For more than four years, beginning in December 2013, Xu targeted leading aviation companies, including GE Aviation, according to DOJ. He paid experts working at these companies to travel to China “under the guise of asking them to deliver a university presentation,” the department said. Xu, who is also known as Zhang Hui or Qu Hui, was arrested in Belgium in April, and extradited to the United States on Tuesday, DOJ said. He will face trial in a federal court in Cincinnati. Analysts and U.S. officials say the Xu case is further evidence that, after an apparent lull following a 2015 U.S.-China agreement […]

The post Chinese spy extradited to U.S. on economic espionage charges appeared first on Cyberscoop.

Continue reading Chinese spy extradited to U.S. on economic espionage charges

NSA official: Bloomberg story created a frenzied, fruitless search for supporting evidence

A news report claiming a compromise of U.S. companies’ supply chains by Chinese spies has triggered a thorough search in government and industry for evidence of the breach that has so far turned up nothing, according to a senior National Security Agency official, who expressed concern that the search was a distraction and potentially a waste of resources. “I have grave concerns about where this has taken us,” Rob Joyce said Wednesday at the U.S. Chamber of Commerce. “I worry that we’re chasing shadows right now.” The story in question is an explosive, anonymously-sourced report published last week by Bloomberg Businessweek. The report alleges Chinese intelligence agents placed malicious microchips on server motherboards supplied by Super Micro Computing Inc., setting up a backdoor to some 30 companies, including Apple and Amazon Web Services. While supply-chain threats emanating from China are certainly a concern, Joyce said, “what I can’t find are any ties to […]

The post NSA official: Bloomberg story created a frenzied, fruitless search for supporting evidence appeared first on Cyberscoop.

Continue reading NSA official: Bloomberg story created a frenzied, fruitless search for supporting evidence

Symantec reveals state-sponsored group that doesn’t care for malware

A newly revealed hacking group has been going after diplomatic and military targets in a malware-less campaign that researchers say makes it difficult to detect. Over the last 10 months, the so-called Gallmaker group has conducted what appear to be cyber-espionage operations against several embassies belonging to an Eastern European country, according to research from cybersecurity company Symantec published Wednesday. The group, which researchers say is likely state-sponsored, has also targeted military and defense organizations in the Middle East. “The type of targets seen in the attacks really fit that of what an espionage group would be interested in,” Jon DiMaggio, senior threat intelligence analyst at Symantec, told CyberScoop. “If simply for financial gain, it would be odd to restrict targets to diplomatic, military and defense personnel.” Gallmaker’s end goal appears to collecting intelligence on its targets in the form of documents and communications, according to DiMaggio. Gallmaker’s hackers use […]

The post Symantec reveals state-sponsored group that doesn’t care for malware appeared first on Cyberscoop.

Continue reading Symantec reveals state-sponsored group that doesn’t care for malware

GAO report shows how easy it is to hack DOD weapons systems

In cybersecurity probes of Department of Defense weapons systems in recent years, penetration testers were able to wrest control of systems with relative ease and generally operate undetected, according to a Government Accountability Office report. “We found that from 2012 to 2017, DOD testers routinely found mission-critical cyber vulnerabilities in nearly all weapon systems that were under development,” the report states. In one test, a two-person team gained initial access to a system in an hour, then gained full control of the system in a day, the watchdog said. In another, the pen-testers seized control of the operators’ terminals, could see what the operators saw on their screens, and “could manipulate the system,” GAO found. Many of the testers said they could change or delete data. In one case they downloaded 100 gigabytes of it. The scathing report chalks up the insecurities in the Pentagon’s weapon systems to defense officials’ “nascent […]

The post GAO report shows how easy it is to hack DOD weapons systems appeared first on Cyberscoop.

Continue reading GAO report shows how easy it is to hack DOD weapons systems

Why we’re still not ready for ‘like-war’

American social media companies simply weren’t prepared for what hit them in 2016: a barrage of accounts spewing disinformation in an unrelenting influence operation against the U.S. presidential election. It was a subversion of Silicon Valley’s altruistic intent, a turning of America’s digital openness against itself. It was, as Peter Singer and Emerson Brooking explain in their eponymously titled book, “like-war.” “If cyberwar is the hacking of the networks, ‘like-war’ is the hacking of the people on the networks by driving ideas viral through likes and lies,” Singer said in an interview. While the Russian campaign to interfere in U.S. democracy involved plenty of hacking, “it was the ‘like-war’ side, the influence operation side, that gave it its impact,” he added. Tech companies may have been ready to defend their networks from hacking, but they were blindsided by the disinformation offensive, according to Singer, a senior fellow at New America, a […]

The post Why we’re still not ready for ‘like-war’ appeared first on Cyberscoop.

Continue reading Why we’re still not ready for ‘like-war’

DHS, Apple push back on Bloomberg supply chain story

U.S. and British security agencies have backed statements by Apple and Amazon Web Services disputing an explosive news report claiming that Chinese intelligence agents planted malicious computer chips in equipment used by the tech giants. “[A]t this time we have no reason to doubt the statements from the companies named in the story,” the Department Homeland Security said on Saturday. That echoed a Friday statement from Britain’s National Cyber Security Centre, which said the agency had “no reason to doubt the detailed assessments made by AWS and Apple.” The blockbuster story from Bloomberg Businessweek claims that Chinese spies placed the tiny chips on server motherboards supplied by Super Micro Computing Inc., setting up a backdoor to some 30 companies, including Apple and AWS. Such a compromise would represent an espionage operation of staggering proportions. Apple, AWS, and Supermicro all responded with vigorous, detailed denials of key elements of the story. “At […]

The post DHS, Apple push back on Bloomberg supply chain story appeared first on Cyberscoop.

Continue reading DHS, Apple push back on Bloomberg supply chain story

DOJ official: Whether they’re extradited or not, indicting foreign hackers is important

Even if foreign government hackers never see the inside of a U.S. courtroom, bringing criminal charges against them is still a key prong in American deterrence policy, a top Department of Justice official said Thursday. “Imagine a world … in which there are no criminal charges” and the private sector is left to levy the allegations themselves, Deputy Assistant Attorney General Adam Hickey said at the CyberNext conference in Washington, D.C. “What message does that send to a foreign hacker or the government he works for?” In a series of cases in which nation-state hackers charged by DOJ remain at large, “all of those charges served a greater purpose” beyond apprehending the alleged perpetrators, Hickey said. The indictments have enabled other U.S. responses such as sanctions as well as joining with allies to call out state-sponsored hacking, he said. Hickey spoke hours after the DOJ announced criminal charges against seven Russian military intelligence officers […]

The post DOJ official: Whether they’re extradited or not, indicting foreign hackers is important appeared first on Cyberscoop.

Continue reading DOJ official: Whether they’re extradited or not, indicting foreign hackers is important