Renewed Talk of NSA Split from Cyber Command Fosters Fears Among Lawmakers and Other Top Infosec News You Should Know Today - 12/21/20

Dozens of Al Jazeera journalists infected with NSO spyware, Federal agencies probe Zoom for Chinese interactions, Iranian group claims attack against Israel's Aerospace Industries, more

In addition to our regular daily reports, Metacurity has posted special reports on the SolarWinds crisis. Check out today’s special report for all the news you missed on this top development yesterday. We ask that you consider helping us support this continued coverage level by becoming a premium subscriber. Thank you.

The longstanding idea to split the National Security Agency from U.S. Cyber Command, ending the dual-hat oversight of Paul Nakasone, has been revived in recent days following the SolarWinds revelations.

Legislators on Capitol Hill, however, met the revived idea with alarm, saying that the U.S. is in the midst of a response to the SolarWinds hack, and now is not the time. (David E. Sanger and Eric Schmitt / New York Times)

Related: Stars and StripesAP Top NewsChinanews.netBloomberg PoliticsFifth Domain | CyberCNN.comCyberscoopMilitary.ComWall Street Journal, Defense One, EngadgetMilitary.Com, Politico,, Stars and Stripes

As many as 36 Al Jazeera journalists were infected over the summer with spyware supplied by notorious Israeli surveillance software company NSO, according to a new report from CitizenLab.

The malware exploited a vulnerability in Apple’s iOS and installed malware on iOS devices. (Thomas Brewster /Forbes)

Related: CBCTechCrunchDataBreaches.netHaaretz.comSydney Morning HeraldThe Times of IsraelThe Citizen Lab, AppleInsiderThe GuardianAssociated Press TechnologyThe IndependentRT News

The U.S. Securities and Exchange Commission and two US Attorney’s offices have been investigating video conferencing giant Zoom regarding its interactions with China and other overseas governments, as well as security and user privacy matters.

The company announced the investigations the same day that day the Justice Department charged a former employee for assisting China to block a remote gathering on the service commemorating the Tiananmen Square uprising anniversary. (Bloomberg)

Related: Washington Post, Justice Department

Share Metacurity

In a tweet, an Iranian government-linked group known as Pay2Key claimed to have breached the Israeli Aerospace Industries’ computer systems as part of a series of attacks on Israeli firms.

Aerospace Industries says it is investigating the matter. (Judah Ari Gross / The Times of Israel) Top NewsIsrael National NewsHaaretz.comArutz Sheva NewsJerusalem Post

Google, Mozilla, Apple, and Microsoft say they are fighting back against Kazakhstan's effort to spy on its citizens’ traffic.

The Kazakhstan government is apparently decrypting and reading HTTPS-encrypted traffic sent between its citizens and overseas social media sites. (Dan Goodin / Ars Technica)

Related: PogoWasRight.org9to5Mac

Give a gift subscription

The Trump administration has added prominent Chinese semiconductor and drone manufacturers to an export blacklist, the Commerce Department’s entities list, for enabling high-tech surveillance in China, which the administration labels a human rights violation.

Most experts label the move as toothless because the ban applies only to a tiny fraction of semiconductor export. (Jeanne Whalen and Ellen Nakashima / The Washington Post)

Related: TIMEArs TechnicaLawfareInputVoice of, Light ReadingSlashGearSecurity News | Tech Times9to5MacCNETZDNet SecurityHotHardware.comThe VergePocket-lint, DroneDJ

Follow Us on Twitter

Photo by Department of Defense - Department of Defense, Public Domain,