Top Eleven Infosec Stories You Need to Know Today - 12/22/20
Ledger database leaks onto Raidforums, New multisector ransomware task force formed, $1.9M in stimulus bill earmarked for ripping and replacing Huawei gear, OneTrust raises $300M in Series C, more
(Check out our latest special report on the SolarWinds crisis, which is likely to be our last for a while. And don’t forget to subscribe to Metacurity so that you don’t miss out on our premium offerings in the coming new year!)
A hacked database of hardware wallet manufacturer Ledger’s customers were leaked onto hacker site Raidforums.
The leaked data includes names, physical addresses, and phone numbers of Ledger customers and seemingly originates from a hack of Ledger's e-commerce database in June. (Stephen Graves / Decrypt)
Related: Reddit - cybersecurity, TechNadu, Bitcoin News, Cointelegraph, Bleeping Computer, CryptoSlate, DataBreaches.net, Slashdot, ibtimes.sg : Top News, SiliconANGLE, Bitcoinist.com, Bitcoinist.com, Cyber Kendra, Gizmodo, Techradar, Graham Cluley, Threatpost
Jameson Lopp @loppStrap in for scareware. https://t.co/CopJYUR5pO
Ledger @LedgerToday we were alerted to the dump of the contents of a Ledger customer database on Raidforum. We are still confirming, but early signs tell us that this indeed could be the contents of our e-commerce database from June, 2020.
The Institute for Security and Technology (IST) will host a new, broad, multisector task force to find ransomware solutions.
The task force will include top cybersecurity firms McAfee, Cybereason, and Rapid7, industry groups, including the Cyber Threat Alliance and the Global Cyber Alliance, and more. (Joe Uchill / SC Magazine)
Microsoft, Google, Cisco, Dell Technologies-owned VMWare, and the Washington-based Internet Association have joined forces with Facebook in its legal battle against notorious hacking company NSO.
Microsoft and Google filed an amicus brief in the U.S. Court of Appeals for the Ninth Circuit, calling the Israeli firms Israeli firm’s tools “powerful, and dangerous.” (Raphael Satter / Reuters)
China used the massive data obtained from the Office of Personnel Management hack that started in 2013 to develop data-driven identification of CIA officials.
Many experts believe that China possesses critical intelligence advantages due to the panopticon-like digital penetration of its own networks and other countries’ networks. (Zach Dorfman / Foreign Policy)
The Treasury Department’s Financial Crimes Enforcement Network (FinCEN) announced a proposed regulation that would require money service businesses, including cryptocurrency exchanges, to collect identity data about people who transact with their customers using self-hosted cryptocurrency wallets or foreign exchanges.
The move would radically expand the scope of the U.S. government’s financial surveillance. (Marta Belcher and Aaron Mackey / EFF)
The coronavirus stimulus package passed by Congress on Sunday includes a host of technology provisions, including $1.9 billion for "rip and replace" efforts to remove Huawei and ZTE equipment from U.S. networks.
The FCC ruled earlier this year that telcos, most of whom are small and rural, have to replace their Huawei gear due to its supposed supply chain threat. (David Shepardson / Reuters)
Ransomware disguised as a mobile version of Cyberpunk 2077 was discovered by Kaspersky's malware analyst, Tatyana Shishkova.
A fraudulent website has been made to look like the Google Play Store and offers a mobile version of Cyberpunk 2077. (Keith Mitchell / Tom’s Hardware)
Privacy and marketing, security, and data governance solutions firm OneTrust announced a Series C funding round of $300 million.
TCV led the round, joining existing investors Insight Partners and Coatue. (Ron Miller / TechCrunch)
Firefox 85 will ship next month with a feature named Network Partitioning as a new form of anti-tracking protection.
The feature is based on "Client-Side Storage Partitioning," a new standard currently being developed by the World Wide Web Consortium's Privacy Community Group. (Catalin Cimpanu / ZDNet)
Three COVID-19 applications used in Indonesia and the Philippines - PeduliLindungi, StaySafe PH, COVID-KAYA - feature vulnerabilities that can give access to sensitive personal data, according to a study by Citizen Lab.
The findings underscore that developers of contact tracing apps, as well as apps generally, should minimize the data that they collect to help safeguard the security and privacy of their users. (Pellaeon Lin, Jeffrey Knockel, Irene Poetranto, Stephanie Tran, Justin Lau, and Adam Senft / Citizen Lab)
Washington technology and engineering company BlueHalo has acquired Base2 LLC and Fortego LLC to add more cyber and signals intelligence capabilities.
The acquisition radically expands BlueHalo’s employee base of highly credentialed cyber and signal intelligence employees. (Nick Wakeman / Washington Technology)
Must-Read of the Day
Elizabeth A. Harris and Nicole Perlroth of the New York Times have this delightful piece on how a phishing scam targets authors, agents, and editors to obtain book manuscripts from both popular and obscure writers for reasons that remain to be seen. Photo by Robert Anasch on Unsplash
Plug, Plug, Plug
Don’t miss my column from CSO yesterday on how to deal with SolarWinds-type threats.