Welcome to This Week’s [in]Security. PCI and payments: PCI updates: PTS POIv6.1, HSMv2 sunset, DSSv4 related: e-commerce, customizable. Skimmers. Payments: breach penalties. New breaches: Okta update, T-mobile, Russia. New Ransomware: Farms, decryptors, Emotet, Conti, Blackcat, Revil, Costa Rica, Kansas City. Follow-ups & Fall-out. Privacy: Reject All Cookies, AMP, iOS apps, Clearview. Laws & Regs - Canada: Harms, Lobbying. US: Scraping, Arbitration, DMCA abuse. World: EU tech, Turkey. Standards: Cloud, Containers, 3 drafts. Defense - Training & events: PCI Symposium, Forensics. CyberDefense, SMBv1. Routing, Tools: testing, pw spraying, twitter, bots. Vulnerabilities, Advisories: Zerodays: Record exploitation, RainLoop. Patching: Oracle. Cisco, Lenovo, Jira, Drupal. Other: Critical Infrastructure, ICS, Hack DHS, Snort, Android, WordPress, Low-Code, Vulnerability research: ML backdoors, intimidation? Crypto-research: Java crypto implementation flaw, PQC, GDPR. Cybercrime: Trends: exploits & supply chains, HR. Crime & Enforcement: crypto heist. Nation States and mercenaries. DoD, NSO/Pegasus, Korea. Other. Other Risks: General: DoH, Open Source, Call recorders, NetFlix. Health, Safety, Environment, Disinformation, Economy. Russia v. Ukraine. Innovation and more.

PCI Compliance and Payments

News and announcements relating to Payment Security, PCI, Card Brands, Payments, Payment Malware and Fraud, and Payment Related Compliance.

• PCI Updates:

  • PCI Security Standards Council Bulletin: PTS POI Modular Security Requirements v6.1 Published https://www.pcisecuritystandards.org/pdfs/2022%20PTS%20POI%206.1%20Bulletin.pdf
  • PCI Security Standards Council bulletin on the expiration of the approval of PCI PTS HSM version 2 devices https://www.pcisecuritystandards.org/pdfs/2022_PTS_HSM_v2.0_Expiry_Bulletin.pdf

• PCI Related:

  • It's Time to Get Serious on Magecart https://scotthelme.co.uk/pci-dss-4-0-its-time-to-get-serious-on-magecart/
  • New PCI Data Security Standard v4.0 Receives Kudos for Flexibility https://www.csoonline.com/article/3656608/new-pci-data-security-standard-v40-receives-kudos-for-flexibility.html
  • The PCI Security Standards Council Launches the Latest Version of Its Security Standard https://www.digitaltransactions.net/the-pci-security-standards-council-launches-the-latest-version-of-its-security-standard/
  • What You Need to Know About PCI DSS 4.0's New Requirements https://www.darkreading.com/edge-articles/what-s-new-in-pci-dss-4-0-for-authentication-requirements-

• Payment skimmers/malware/fraud:

  • Security Lessons From a Payment Fraud Attack https://www.darkreading.com/edge-articles/security-lessons-from-a-payment-fraud-attack

• Other payment related:

  • Wawa sues MasterCard over 2019 data breach penalties https://www.infosecurity-magazine.com/news/wawa-sues-mastercard-over-data/ (in 2016 Genesco vs Visa won and recouped a portion of their breach penalties https://www.nashvillepost.com/genesco-to-book-9m-gain-from-visa-settlement/article_e7d9efcf-160e-5d1e-919b-0ea8d7c9f5d4.html))

Breaches / Ransomware / Leaks

Covering breaches, leaks, data exposures, ransomware (as potential breach), and their fallout.

• New Breaches:

  • Leaked Chats Show LAPSUS$ Stole T-Mobile Source Code https://krebsonsecurity.com/2022/04/leaked-chats-show-lapsus-stole-t-mobile-source-code/
  • Okta: Lapsus$ breach lasted only 25 minutes, hit 2 customers https://www.bleepingcomputer.com/news/security/okta-lapsus-breach-lasted-only-25-minutes-hit-2-customers/
  • T-Mobile confirms Lapsus$ hackers breached internal systems https://www.bleepingcomputer.com/news/security/t-mobile-confirms-lapsus-hackers-breached-internal-systems/
  • They've leaked terabytes of Russian emails, but who's reading? https://www.theverge.com/2022/4/22/23036079/russian-emails-leaked-ddosecrets
  • Funky Pigeon pauses all orders after 'security incident' https://www.theregister.com/2022/04/19/funky_pigeon_security_incident/
  • Ca: Arnprior Regional Health determines Arnprior and District Family Health Team data caught up in IT system breach https://www.databreaches.net/ca-arnprior-regional-health-determines-arnprior-and-district-family-health-team-data-caught-up-in-it-system-breach/
  • TX: Dayton Independent School District reports breach https://www.databreaches.net/tx-dayton-independent-school-district-reports-breach/

• New Ransomware and "Incidents":

  • FBI Warns of Ransomware Attacks on Farming Co-ops During Planting, Harvest Seasons https://www.securityweek.com/fbi-warns-ransomware-attacks-farming-co-ops-during-planting-harvest-seasons
  • Free decryptor released for Yanluowang ransomware victims https://www.bleepingcomputer.com/news/security/free-decryptor-released-for-yanluowang-ransomware-victims/
  • Emotet botnet switches to 64-bit modules, increases activity https://www.bleepingcomputer.com/news/security/emotet-botnet-switches-to-64-bit-modules-increases-activity/
  • Conti's Ransomware Toll on the Healthcare Industry https://krebsonsecurity.com/2022/04/contis-ransomware-toll-on-the-healthcare-industry/
  • FBI: BlackCat ransomware breached at least 60 entities worldwide https://www.bleepingcomputer.com/news/security/fbi-blackcat-ransomware-breached-at-least-60-entities-worldwide/
  • REvil ransomware group's infrastructure comes back online hinting at fresh campaign https://www.databreaches.net/revil-ransomware-groups-infrastructure-comes-back-online-hinting-at-fresh-campaign/
  • New Incident Report Reveals How Hive Ransomware Targets Organizations https://thehackernews.com/2022/04/new-incident-report-reveals-how-hive.html
  • Report: Pro-Iran hackers target Israel Airports Authority website; Israeli portal also hit https://www.databreaches.net/report-pro-iran-hackers-target-israel-airports-authority-website-israeli-portal-also-hit/
  • Researchers Share In-Depth Analysis of PYSA Ransomware Group https://thehackernews.com/2022/04/researchers-share-in-depth-analysis-of.html
  • Cyberattack Causes Chaos in Costa Rica Government Systems https://www.securityweek.com/cyberattack-causes-chaos-costa-rica-government-systems
  • Unified Government of Wyandotte County and Kansas City Hit by Cybersecurity Attack Over Holiday Weekend https://www.databreaches.net/unified-government-of-wyandotte-county-and-kansas-city-hit-by-cybersecurity-attack-over-holiday-weekend/

• Follow-ups and fall-out:

  • Intuit Faces Class-Action Lawsuit Over Trezor Phishing Hack https://www.pymnts.com/legal/2022/intuit-faces-class-action-lawsuit-over-trezor-phishing-hack/
  • GitHub Notifies Victims Whose Private Data Was Accessed Using OAuth Tokens https://thehackernews.com/2022/04/github-notifies-victims-whose-private.html
  • So, what happened with GitHub, Heroku, and those raided private repos? https://www.theregister.com/2022/04/21/github-stolen-oauth-tokens-used-in-breaches/
  • Edu-tech firm GeniusU fined $35,000 for data leak affecting 1.26m users https://www.databreaches.net/edu-tech-firm-geniusu-fined-35000-for-data-leak-affecting-1-26m-users/
  • Blue Earth County releases report on insider data breach that began in 2020 https://www.databreaches.net/blue-earth-county-releases-report-on-insider-data-breach-that-began-in-2020/
  • Vox: Companies lose your data and then nothing happens https://epic.org/vox-companies-lose-your-data-and-then-nothing-happens/

Privacy

Articles about privacy related news, risks, and trends.

• Google gives Europe a ‘reject all' button for tracking cookies after fines from watchdogs https://www.theverge.com/2022/4/21/23035289/google-reject-all-cookie-button-eu-privacy-data-laws
• Brave is bypassing Google AMP pages because they're ‘harmful to users' https://www.theverge.com/2022/4/19/23032776/brave-de-amp-google-browser
• DuckDuckGo's browsers and extensions now protect against AMP tracking https://www.theverge.com/2022/4/20/23033522/duckduckgo-browsers-extensions-amp-google-tracking-privacy
• Your iOS app may still be covertly tracking you, despite what Apple says https://arstechnica.com/information-technology/2022/04/a-year-after-apple-enforces-app-tracking-policy-covert-ios-tracking-remains/
• How to delete your digital footprint https://www.comparitech.com/blog/vpn-privacy/delete-digital-footprint/
• Why this face recognition firm is so controversial https://www.bbc.co.uk/news/world-us-canada-61123510

Laws, Regulations, Platforms, Standards, and Public Policy

News about laws, regulations, platform rules, and standards affecting security, privacy, technology, and public interest.

• Canada:

  • Not an Outlier: What the Government's Online Harms Secrecy Debacle Says About Its Internet Regulation Plans https://www.michaelgeist.ca/2022/04/not-an-outlier-what-the-governments-online-harms-secrecy-debacle-says-about-its-internet-regulation-plans/
  • The Rest of the Online Harms Consultation Story: Canadian Heritage Forced to Release Hundreds of Public Submissions Under Access to Information Law https://www.michaelgeist.ca/2022/04/onlineharmsatip/
  • The Harm from Budget 2022's Hidden Copyright Extension Tax, Part Three: “It Does Not Put Money in the Pockets of Most Creators” https://www.michaelgeist.ca/2022/04/the-harm-from-budget-2022s-hidden-copyright-extension-tax-part-three-it-does-not-put-money-in-the-pockets-of-most-creators/
  • How Did News Media Canada Get Bill C-18? The Lobbying Records Tell the Story https://www.michaelgeist.ca/2022/04/how-did-news-media-canada/

• US:

  • Scraping Public Websites (Still) Isn't a Crime, Court of Appeals Declares https://www.eff.org/deeplinks/2022/04/scraping-public-websites-still-isnt-crime-court-appeals-declares
  • Stop Forced Arbitration in Data Privacy Legislation https://www.eff.org/deeplinks/2022/04/stop-forced-arbitration-data-privacy-legislation
  • EPIC, NCLC Tell Court Not to Deter Consumers From Unmasking Illegal Callers https://epic.org/epic-nclc-tell-court-not-to-deter-consumers-from-unmasking-illegal-callers/
  • California net neutrality law to remain intact after appeals court says it won't reconsider earlier decision https://www.theverge.com/2022/4/21/23035359/california-net-neutrality-law-appeal-overturn-fcc-broadband
  • GitHub restores popular Python repo hit by bogus DMCA takedown https://www.bleepingcomputer.com/news/security/github-restores-popular-python-repo-hit-by-bogus-dmca-takedown/
  • Congressional Democrats Ask EPA to Review Crypto's Environmental Impact https://www.pymnts.com/cryptocurrency/2022/congressional-democrats-ask-epa-to-review-cryptos-environmental-impact/
  • US DOJ probes Google's $5.4b Mandiant acquisition https://www.theregister.com/2022/04/22/doj-google-mandiant/

• World:

  • EU agrees rules to force big tech to rein in illegal content or face huge fines https://www.theguardian.com/world/2022/apr/23/eu-agrees-rules-to-force-big-tech-to-rein-in-content-or-face-huge-fines
  • Google, Meta, and others will have to explain their algorithms under new EU legislation https://www.theverge.com/2022/4/23/23036976/eu-digital-services-act-finalized-algorithms-targeted-advertising
  • Journalist detained after claiming Turkey's e-government system was hacked https://www.databreaches.net/journalist-detained-after-claiming-turkeys-e-government-system-was-hacked/
  • Judge Sends Assange Extradition Decision to UK Government https://www.securityweek.com/judge-sends-assange-extradition-decision-uk-government

• Standards News:

  • NCCoE /NIST publishes SP 1800-19 Trusted Cloud: Security Practice Guide for VMware Hybrid Cloud Infrastructure as a Service (IaaS) Environments https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.1800-19.pdf
  • NCCoE /NIST publishes NISTIR 8320B Hardware-Enabled Security: Policy-Based Governance in Trusted Container Platforms https://nvlpubs.nist.gov/nistpubs/ir/2022/NIST.IR.8320B.pdf
  • NCCoE /NIST publishes draft NISTIR 8320C Hardware Enabled Security: Machine Identity Management and Protection open for comments until June 6 https://nvlpubs.nist.gov/nistpubs/ir/2022/NIST.IR.8320C.ipd.pdf
  • NICE is seeking comments NICE Framework data - Competency Areas, Work Roles, and Task, Knowledge, and Skill (TKS) statements until June 3 https://www.nist.gov/system/files/documents/2022/04/18/NICEFramework_KSreview_intro11apr2022.pdf
  • NIST Requests Comments on NIST IR 8401 “Satellite Ground Segment: Applying the Cybersecurity Framework to Assure Satellite Command and Control” open for comments until June 20 https://csrc.nist.gov/publications/detail/nistir/8401/draft or https://nvlpubs.nist.gov/nistpubs/ir/2022/NIST.IR.8401.ipd.pdf

Defense / Techniques / Solutions

Covering developments and opportunities that may help improve security.

• Educational events, webinars, courses, etc:

  • PCI DSS v4.0 Global Symposium | on demand 21 June – 30 August https://events.pcisecuritystandards.org/pcidss4-0-global-symposium/
  • SANS FOR500: Windows Forensic Analysis - Updated for Windows 11 and Beyond https://www.sans.org/blog/sans-for500-updated-for-windows-11-and-beyond

• General:

  • US govt grants academics $12M to develop cyberattack defense tools https://www.bleepingcomputer.com/news/security/us-govt-grants-academics-12m-to-develop-cyberattack-defense-tools/
  • Microsoft disables SMB1 by default for Windows 11 Home Insiders https://www.bleepingcomputer.com/news/microsoft/microsoft-disables-smb1-by-default-for-windows-11-home-insiders/
  • A Multi-pronged Strategy for Securing Internet Routing https://freedom-to-tinker.com/2022/04/19/a-multi-pronged-strategy-for-securing-internet-routing/
  • Amarna: Static analysis for Cairo programs https://blog.trailofbits.com/2022/04/20/amarna-static-analysis-for-cairo-programs/
  • Visa Ups Its Data Security Game by Spending $9 Billion In Five Years https://www.digitaltransactions.net/visa-ups-its-data-security-game-by-spending-9-billion-in-five-years/
  • Discover the anatomy of an external cyberattack surface with new RiskIQ report https://www.microsoft.com/security/blog/2022/04/21/discover-the-anatomy-of-an-external-cyberattack-surface-with-new-riskiq-report/

• Methods, Techniques, Tools, and Products:

  • Mobile MitM: Intercepting Your Android App Traffic On the Go https://www.eff.org/deeplinks/2022/04/mobile-mitm-intercepting-your-android-app-traffic-go
  • How to protect your ADFS from password spraying attacks https://www.bleepingcomputer.com/news/security/how-to-protect-your-adfs-from-password-spraying-attacks/
  • Real-time voice concealment algorithm blocks microphone spying https://www.bleepingcomputer.com/news/security/real-time-voice-concealment-algorithm-blocks-microphone-spying/
  • Twitter tries harder to promote third-party safety tools https://www.theverge.com/2022/4/22/23036956/twitter-toolbox-apps-promote-safety-block-mute-accounts-platform
  • Cleaning up online bots' act – and speech https://scienmag.com/cleaning-up-online-bots-act-and-speech/
  • The future of compliance and data governance is here: Introducing Microsoft Purview https://www.microsoft.com/security/blog/2022/04/19/the-future-of-compliance-and-data-governance-is-here-introducing-microsoft-purview/

Bugs / Design Flaws / Vulnerabilities / Research

Articles about newly discovered vulnerabilities and research.

• Advisories:

  • CISA, Australia, Canada, New Zealand, & UK Issue Joint Advisory on Russian Cyber Threats https://www.darkreading.com/threat-intelligence/jcdc-russian-state-sponsored-cyberattacks-on-infrastructure-are-coming
  • CISA warns of attackers now exploiting Windows Print Spooler bug https://www.bleepingcomputer.com/news/security/cisa-warns-of-attackers-now-exploiting-windows-print-spooler-bug/

• Zero-day news:

  • Google Project Zero Detects a Record Number of Zero-Day Exploits in 2021 https://thehackernews.com/2022/04/google-project-zero-detects-record.html
  • Google tracked record 58 exploited-in-the-wild zero-day security holes in 2021 https://www.theregister.com/2022/04/20/google_zero_days/
  • Chinese hackers behind most zero-day exploits during 2021 https://www.bleepingcomputer.com/news/security/chinese-hackers-behind-most-zero-day-exploits-during-2021/
  • The More You Know, The More You Know You Don't Know https://googleprojectzero.blogspot.com/2022/04/the-more-you-know-more-you-know-you.html
  • Unpatched Bug in RainLoop Webmail Could Give Hackers Access to all Emails https://thehackernews.com/2022/04/unpatched-bug-in-rainloop-webmail-could.html

• Patching:

  • Oracle Releases 520 New Security Patches With April 2022 CPU https://www.securityweek.com/oracle-releases-520-new-security-patches-april-2022-cpu
  • Cisco Patches Virtual Conference Software Vulnerability Reported by NSA https://www.securityweek.com/cisco-patches-virtual-conference-software-vulnerability-reported-nsa
  • Lenovo patches UEFI firmware vulnerabilities impacting millions of users https://www.zdnet.com/article/lenovo-patches-uefi-vulnerabilities-impacting-millions-of-device-users-worldwide
  • Atlassian Drops Patches for Critical Jira Authentication Bypass Vulnerability https://thehackernews.com/2022/04/atlassian-drops-patches-for-critical.html
  • Access Bypass, Data Overwrite Vulnerabilities Patched in Drupal https://www.securityweek.com/access-bypass-data-overwrite-vulnerabilities-patched-drupal
  • AWS's Log4j patches blew holes in its own security https://www.theregister.com/2022/04/20/aws_log4j_patches/

• Other Vulnerabilities:

  • These hackers showed just how easy it is to target critical infrastructure https://www.technologyreview.com/2022/04/21/1050815/hackers-target-critical-infrastructure-pwn2own/
  • ICS Exploits Earn Hackers $400,000 at Pwn2Own Miami 2022 https://www.securityweek.com/ics-exploits-earn-hackers-400000-pwn2own-miami-2022
  • Many Industrial Firms Say Cybersecurity Systems Cause Problems to Operations https://www.securityweek.com/many-industrial-firms-say-cybersecurity-systems-cause-problems-operations
  • 'Hack DHS' bug hunters find 122 security flaws in DHS systems https://www.bleepingcomputer.com/news/security/hack-dhs-bug-hunters-find-122-security-flaws-in-dhs-systems/
  • QNAP urges customers to disable UPnP port forwarding on routers https://www.bleepingcomputer.com/news/security/qnap-urges-customers-to-disable-upnp-port-forwarding-on-routers/
  • Researchers Detail Bug That Could Paralyze Snort Intrusion Detection System https://thehackernews.com/2022/04/researchers-detail-bug-that-could.html
  • The Frozen Heart vulnerability in PlonK https://blog.trailofbits.com/2022/04/18/the-frozen-heart-vulnerability-in-plonk/
  • Cisco Umbrella default SSH key allows theft of admin credentials https://www.bleepingcomputer.com/news/security/cisco-umbrella-default-ssh-key-allows-theft-of-admin-credentials/
  • Critical Chipset Bugs Open Millions of Android Devices to Remote Spying https://thehackernews.com/2022/04/critical-chipset-bug-opens-millions-of.html
  • Critical RCE Flaw Reported in WordPress Elementor Website Builder Plugin https://thehackernews.com/2022/04/critical-rce-flaw-reported-in-wordpress.html
  • Most Email Security Approaches Fail to Block Common Threats https://threatpost.com/email-security-fail-block-threats/179370/
  • Security-as-Code Gains More Support, but Still Nascent https://www.darkreading.com/cloud/security-as-code-gains-more-support-but-still-nascent
  • Why So Many Security Experts Are Concerned About Low-Code/No-Code Apps https://www.darkreading.com/dr-tech/why-so-many-security-experts-are-concerned-about-low-code-no-code-apps

• Research on new vulnerabilities:

  • Undetectable Backdoors in Machine-Learning Models https://www.schneier.com/blog/archives/2022/04/undetectable-backdoors-in-machine-learning-models.html
  • Has a security researcher been scared away? https://www.databreaches.net/has-a-security-researcher-been-scared-away/

• Cryptography and Cryptographic Research:

  • Java Cryptography Implementation Mistake Allows Digital-Signature Forgeries https://www.schneier.com/blog/archives/2022/04/java-cryptography-implementation-mistake-allows-digital-signature-forgeries.html
  • Major cryptography blunder in Java enables “psychic paper” forgeries https://arstechnica.com/information-technology/2022/04/major-crypto-blunder-in-java-enables-psychic-paper-forgeries/
  • Researcher Releases PoC for Recent Java Cryptographic Vulnerability https://thehackernews.com/2022/04/researcher-releases-poc-for-recent-java.html
  • New Key Recovery Attack on Reduced-Round AES, by Navid Ghaedi Bardeh and Vincent Rijmen https://eprint.iacr.org/2022/487
  • Backward-Compatible Post-Quantum Communications Is a Matter of National Security https://www.darkreading.com/edge-articles/backward-compatible-post-quantum-communications-is-a-matter-of-national-security
  • Quantum Cybersecurity: Addressing the Boogeyman in the Room https://blog.isc2.org/isc2_blog/2022/04/quantum-cybersecurity-addressing-the-boogeyman-in-the-room.html
  • A Practical-Quantum Differential Attack on Block Ciphers, by Tarun Yadav and Manoj Kumar and Amit Kumar and S K Pal https://eprint.iacr.org/2022/489
  • Multi-Party Computation in the GDPR, by Lukas Helminger and Christian Rechberger https://eprint.iacr.org/2022/491

Hacking / Malware / Cybercrime / Exploitation

News covering active trends, alerts, events.

• Trends, Alerts, and Events (other than major breaches):

  • More Than Half of Initial Infections in Cyberattacks Come Via Exploits, Supply Chain Compromises https://www.darkreading.com/threat-intelligence/exploits-supply-chain-compromises-comprise-over-half-of-initial-infections-leading-to-cyberattacks
  • LinkedIn brand takes lead as most impersonated in phishing attacks https://www.bleepingcomputer.com/news/security/linkedin-brand-takes-lead-as-most-impersonated-in-phishing-attacks/
  • Docker servers hacked in ongoing cryptomining malware campaign https://www.bleepingcomputer.com/news/security/docker-servers-hacked-in-ongoing-cryptomining-malware-campaign/
  • Hackers Sneak 'More_Eggs' Malware Into Resumes Sent to Corporate Hiring Managers https://thehackernews.com/2022/04/hackers-sneak-moreeggs-malware-into.html
  • Hive hackers are exploiting Microsoft Exchange Servers in ransomware spree https://www.zdnet.com/article/hive-hackers-are-exploiting-microsoft-exchange-servers-in-ransomware-spree
  • New SolarMarker Malware Variant Using Updated Techniques to Stay Under the Radar https://thehackernews.com/2022/04/new-solarmarker-malware-variant-using.html
  • Early Discovery of Pipedream Malware a Success Story for Industrial Security https://www.darkreading.com/vulnerabilities-threats/pipedream-response-shows-best-case-for-industrial-security
  • Apple App Store appears to be widely removing outdated apps https://www.theverge.com/2022/4/23/23038870/apple-app-store-widely-remove-outdated-apps-developers

• Crime & Arrests, etc.:

  • Clever Cryptocurrency Theft https://www.schneier.com/blog/archives/2022/04/clever-cryptocurrency-theft.html
  • Hackers steal $655K after picking MetaMask seed from iCloud backup https://www.bleepingcomputer.com/news/security/hackers-steal-655k-after-picking-metamask-seed-from-icloud-backup/
  • Counterfeit $2 coins found in Peterborough: police https://globalnews.ca/news/8774836/counterfeit-coins-peterborough/
  • Two people charged following series of 'takeover-style' robberies in Toronto and Peel https://toronto.ctvnews.ca/two-people-charged-following-series-of-takeover-style-robberies-in-toronto-and-peel-1.5868596
  • York Region registers increase in reported hate crimes https://globalnews.ca/news/8782921/york-region-police-hate-crimes-increase-2021/

• Nation State Actors:

  • CISA: Russian Actors Attacking US Defense Contractors https://informationsecurityleadership.com/attacking-us-defense-contractors/
  • Long Article on NSO Group https://www.schneier.com/blog/archives/2022/04/long-article-on-nso-group.html
  • CatalanGate: Extensive Mercenary Spyware Operation against Catalans Using Pegasus and Candiru https://citizenlab.ca/2022/04/catalangate-extensive-mercenary-spyware-operation-against-catalans-using-pegasus-candiru/
  • UK Government Officials Infected with Pegasus https://citizenlab.ca/2022/04/uk-government-officials-targeted-pegasus/
  • FBI, U.S. Treasury and CISA Warn of North Korean Hackers Targeting Blockchain Companies https://thehackernews.com/2022/04/fbi-us-treasury-and-cisa-warns-of-north.html
  • DHS investigators say they foiled cyberattack on undersea internet cable in Hawaii https://www.databreaches.net/dhs-investigators-say-they-foiled-cyberattack-on-undersea-internet-cable-in-hawaii/
  • How Russia Is Isolating Its Own Cybercriminals https://www.darkreading.com/vulnerabilities-threats/how-russia-is-isolating-its-own-cybercriminals
  • Other:
  • Microsoft Defender flags Google Chrome updates as suspicious https://www.bleepingcomputer.com/news/security/microsoft-defender-flags-google-chrome-updates-as-suspicious/

Other Security / Risk

Articles covering other types of risks.

• General:

  • DtSR Episode 497 - Security Buzzword Bingo http://podcast.wh1t3rabbit.net/dtsr-episode-497-security-buzzword-bingo
  • American Phone-Tracking Firm Demo'd Surveillance Powers by Spying on CIA and NSA https://theintercept.com/2022/04/22/anomaly-six-phone-tracking-zignal-surveillance-cia-nsa/
  • The changing economics of open source https://www.technologyreview.com/2022/04/21/1050788/the-changing-economics-of-open-source/
  • Implications of Windows Subsystem for Linux for Adversaries & Defenders (Part 2) https://blog.qualys.com/vulnerabilities-threat-research/2022/04/20/implications-of-windows-subsystem-for-linux-for-adversaries-defenders-part-2
  • Apple's Zipped Lips on Chips https://www.nytimes.com/2022/04/19/technology/apple-computer-chips.html
  • Google's crackdown on third-party Android call recorders may finally be complete https://www.theverge.com/2022/4/21/23036078/google-android-call-recording-apps-accessibility-loopholes-play-store-rules
  • Canada eyeing ways to boost national economic security amid foreign threats https://globalnews.ca/news/8782329/canada-economic-security-measures/
  • 'People fear for their jobs if they report bullies' https://www.bbc.co.uk/news/entertainment-arts-60835576
  • Obama Calls for More Oversight of Social Media in Speech at Stanford https://www.nytimes.com/2022/04/21/technology/obama-stanford-tech-regulation.html
  • YouTube terminates account for Hong Kong's presumed next head of government https://www.theregister.com/2022/04/21/youtube_blocks_hong_kong_candidate/
  • 'My negative online review was blocked' https://www.bbc.co.uk/news/business-60252909
  • Netflix lost subscribers for the first time in a decade last quarter https://www.theverge.com/2022/4/19/23032399/netflix-lost-subscribers-q1-2022-earnings
  • Netflix Can Cut Off Moochers Without a Password-Sharing Crackdown https://www.wired.com/story/netflix-sharing-password-problem-crackdown-fix

• Health:

  • Holographic Doctors can now Provide Medical Advice on the International Space Station https://www.universetoday.com/155520/holographic-doctors-can-now-provide-medical-advice-on-the-international-space-station/
  • Ontario Liberals promise to end Grade 10 academic and applied streaming https://toronto.ctvnews.ca/ontario-liberals-promise-to-end-grade-10-academic-and-applied-streaming-1.5868543
  • A Dangerous Liver Disease Is Spreading in US Kids, Seemingly Related to a Virus https://www.sciencealert.com/mysterious-liver-rash-is-spreading-in-kids-cdc-warns-here-s-what-you-need-to-know
  • Urine bugs may be a sign of aggressive prostate cancer https://www.bbc.co.uk/news/health-61150771
  • Canada lacks robust COVID-19 detection system amid 6th wave. Here's why https://globalnews.ca/news/8774616/canada-covid-19-detection-6th-wave-expert-analysis/
  • Unvaccinated people increase risk of COVID-19 infection among vaccinated: new study https://globalnews.ca/news/8783380/unvaccinated-vaccinated-covid-risk-canadian-study/
  • Vaccine Medical Exemptions Are Rare. Thousands of Nursing Home Workers Have Them. https://www.propublica.org/article/vaccination-rates-nursing-home-workers#1317096
  • Population-wide study of COVID-19 vaccination shows that mix-and-match approach to booster vaccination offers the best protection https://scienmag.com/population-wide-study-of-covid-19-vaccination-shows-that-mix-and-match-approach-to-booster-vaccination-offers-the-best-protection/
  • COVID-19 vaccine protection against hospitalization wanes https://scienmag.com/covid-19-vaccine-protection-against-hospitalization-wanes/
  • Epidemiologists: COVID-19 infection doesn't protect you from reinfections https://globalnews.ca/news/8769209/epidemiologists-covid-19-infection-reinfection/
  • Another COVID-19 wave 'almost baked in' for the fall: top Ont. science adviser https://www.ctvnews.ca/health/coronavirus/another-covid-19-wave-almost-baked-in-for-the-fall-top-ont-science-adviser-1.5873371
  • Canada to keep mask mandate for planes, trains after U.S. rule dropped: officials https://globalnews.ca/news/8770055/covid-mask-mandate-travel-us-canada/
  • Cytokine signature that allows COVID-19 patients with worst prognosis to be spotted early is identified by Italian researchers https://scienmag.com/cytokine-signature-that-allows-covid-19-patients-with-worst-prognosis-to-be-spotted-early-is-identified-by-italian-researchers/
  • Lack of glove changes at COVID-19 testing centres in Belgium led to major cross-contamination of samples and a high rate of false positive results https://scienmag.com/lack-of-glove-changes-at-covid-19-testing-centres-in-belgium-led-to-major-cross-contamination-of-samples-and-a-high-rate-of-false-positive-results/
  • Patients hospitalized with COVID-19 were three times as likely to die than those with seasonal influenza https://scienmag.com/patients-hospitalized-with-covid-19-were-three-times-as-likely-to-die-than-those-with-seasonal-influenza/
  • Longest known COVID-19 infection – 505 days – described by UK researchers https://scienmag.com/longest-known-covid-19-infection-505-days-described-by-uk-researchers/

• Safety:

  • Can A.I. All but End Car Crashes? The Potential Is There. https://www.nytimes.com/2022/04/19/technology/ai-road-car-safety.html
  • Watching TV from behind the wheel of a self-driving car to be allowed under UK law https://www.theverge.com/2022/4/22/23037000/watching-tv-self-driving-cars-uk-law-highway-code
  • What Masks Off on Public Transit Means for the Pandemic https://www.theatlantic.com/health/archive/2022/04/cdc-mask-mandate-transportation-planes/629614/
  • Research Brief: Highway death toll messages cause more crashes https://scienmag.com/research-brief-highway-death-toll-messages-cause-more-crashes/
  • Gun deaths were the leading killer of US children in 2020 https://www.bbc.co.uk/news/world-us-canada-61192975
  • Operator error suspected in 14-year-old's fatal fall from amusement park ride https://globalnews.ca/news/8769469/teen-dies-ride-florida-icon-amusement-park-drop-tower-operator-error/
  • ‘Road Closed' signs are not just a suggestion, police warn https://globalnews.ca/news/8781754/road-closed-signs-are-not-just-a-suggestion-police-warn/
  • Magnitude 5.0 quake sakes coast off Vancouver Island; no tsunami expected https://globalnews.ca/news/8781830/bc-magnitude-5-earthquake/
  • Woman dies after getting stuck on U.S. border wall https://www.washingtonpost.com/nation/2022/04/19/woman-died-crossing-border/
  • Alec Baldwin: Rust film producers were indifferent to gun safety - report https://www.bbc.co.uk/news/entertainment-arts-61169495

• Environment:

  • Dimming the Sun Could Be Climate Science's Trolley Problem https://www.theatlantic.com/science/archive/2022/04/solar-geo-engineering-global-warming-malaria/629604/
  • Study finds offshore wind could drive down energy costs in New England https://scienmag.com/study-finds-offshore-wind-could-drive-down-energy-costs-in-new-england/
  • Heat pumps 101: Common questions about a greener option for heating and cooling your home https://www.cbc.ca/news/canada/british-columbia/bc-heat-pumps-1.6424070
  • Empire State is one of the most energy-efficient buildings in the world. Can others follow suit? https://www.cbc.ca/news/world/empire-state-building-carbon-emissions-1.6427893
  • Which Country Has the Longest Coastline? https://www.mentalfloss.com/posts/worlds-longest-coastline
  • A flower was named after its own extinction — then it was rediscovered https://www.washingtonpost.com/nation/2022/04/20/extinct-wildflower-discovery-ecuador/
  • Illegal Canadian trash keeps ending up overseas. And the federal government won't say who's shipping it https://www.cbc.ca/news/canada/fifth-estate-recycling-1.6410657
  • The Two Drivers of Massive Insect Population Die-Off Have Finally Been Identified https://www.sciencealert.com/researchers-identify-the-one-two-punch-that-s-cutting-some-insect-populations-by-half
  • Ukrainian environmentalists tracking possible Russian eco crimes https://www.cbc.ca/news/world/ukraine-russia-contaminatin-1.6424914

• Disinformation and misinformation

  • Economy:
  • Effect of open bidding on price, demand for Ontario homes questioned https://www.ctvnews.ca/business/effect-of-open-bidding-on-price-demand-for-ontario-homes-questioned-1.5868409

Russia v. Ukraine

News and announcements relating to Russia's invasion of Ukraine.

• The war:

  • Russia's retreat from Chornobyl leaves shock at disregard of danger https://globalnews.ca/news/8771867/russia-chornobyl-retreat-ukraine/

• Reaction and response:

  • Sanctioning Putin's circle over Ukraine ‘key' to raising pressure: Navalny ally https://globalnews.ca/news/8779306/sanctions-vladimir-putin-allies-ukraine-invasion/
  • Germany rules out immediate end to Russian oil imports https://www.bbc.co.uk/news/business-61164894
  • Finland inches closer to NATO with parliament supporting military alignment https://globalnews.ca/news/8772156/finland-nato-debate-russia-ukraine-war/
  • Canada starts Aeroplan fund to help fly in Ukrainians fleeing Russia's war https://globalnews.ca/news/8772831/canada-aeroplan-fund-ukraine-russia-war/
  • In ‘land of partisans,' Belarus activists fight their government's support of Russian war https://globalnews.ca/news/8700070/in-land-of-partisans-belarus-activists-fight-their-governments-support-of-russian-war/
  • Why the Russian People Go Along With Putin's War https://www.theatlantic.com/ideas/archive/2022/04/russians-support-putin-invasion-popularity/629653/
  • Russia bans 61 Canadians from entering country, calls Ottawa's actions ‘Russophobic' https://globalnews.ca/news/8775222/russia-ban-canadians-entry-ukraine-war/
  • Russia sanctions Ontario Premier Doug Ford, Toronto Mayor John Tory https://toronto.ctvnews.ca/russia-sanctions-ontario-premier-doug-ford-toronto-mayor-john-tory-1.5870557

• Sanctions & economic Impact:

  • Russia's Isolation From the West Will Outlast the War https://www.theatlantic.com/ideas/archive/2022/04/putin-russia-media-crackdown-press-freedom/629598/
  • Russia's second-biggest bank VTB slides toward default, after paying rubles on dollar bonds due to sanctions https://markets.businessinsider.com/news/bonds/russia-vtb-toward-default-ruble-payment-dollar-bonds-corporate-debt-2022-4
  • Canada wants Russia barred from G20 – but feeling isn't unanimous, Freeland hints https://globalnews.ca/news/8778075/canada-russia-g20-ban-ukraine-war-freeland/
  • Binance tells Russian users with over €10k to withdraw everything https://www.bleepingcomputer.com/news/cryptocurrency/binance-tells-russian-users-with-over-10k-to-withdraw-everything/
  • U.S. Treasury sanctions Russian cryptocurrency mining companies https://www.bleepingcomputer.com/news/cryptocurrency/us-treasury-sanctions-russian-cryptocurrency-mining-companies/
  • Ukraine's central bank is banning bitcoin purchases made with the hyrvnia to prevent capital from fleeing the war-ravaged country https://markets.businessinsider.com/news/currencies/ukraine-bitcoin-ban-local-currency-hyrvnia-capital-flight-russia-war-2022-4
  • Information, Disinformation, and Propaganda:
  • A Ukrainian man whose apartment was ransacked tracks his missing AirPods for clues on Russian troop movements https://www.businessinsider.com/ukrainian-man-tracked-russian-troops-after-airpods-stolen-2022-4
  • As fighting rages in Ukraine, Europeans are trying to root out Russian spies https://www.businessinsider.com/european-countries-expel-russian-spies-amid-fighting-in-ukraine-2022-4
  • New Hacking Campaign Targeting Ukrainian Government with IcedID Malware https://thehackernews.com/2022/04/new-hacking-campaign-targeting.html
  • Russian Court Says Google, Wikipedia Face Fines Over Fake Content https://packetstormsecurity.com/news/view/33339/Russian-Court-Says-Google-Wikipedia-Face-Fines-Over-Fake-Content.html

• Cyber-attacks and the potential for cyber-war:

  • Five Eyes nations fear wave of Russian attacks against critical infrastructure https://www.theregister.com/2022/04/21/five_eyes_russia/
  • A top Pentagon official said SpaceX Starlink rapidly fought off a Russian jamming attack in Ukraine https://www.businessinsider.com/spacex-starlink-pentagon-russian-jamming-attack-elon-musk-dave-tremper-2022-4

Off-Topic / Science & Tech / Lighter Side

A variety of scientific, technical, historical, and more light-hearted news.

• Innovations & Inventions:

  • Lost Women of Science Podcast, Season 2, Episode 4: Netherworld https://www.scientificamerican.com/article/lost-women-of-science-podcast-season-2-episode-4-netherworld/
  • The X-59 quiet supersonic transport https://scitechdaily.com/nasa-x-59-quiet-supersonic-experimental-aircraft-arrives-back-in-california-following-critical-ground-tests/

• Other:

  • These 'Young Frankenstein' Bloopers Are Abnormally Funny https://www.mentalfloss.com/posts/young-frankenstein-bloopers
  • Humpback whale takes on a pod of transient killer whales https://www.cheknews.ca/humpback-whale-takes-on-a-pod-of-transient-killer-whales-1013403/
  • Watch What Happens When You Crack an Egg Underwater https://www.mentalfloss.com/posts/cracking-eggs-underwater
  • The Puzzle That Will Outlast the World https://www.theatlantic.com/technology/archive/2022/04/puzzle-will-outlast-world/629651/
  • A total lunar eclipse: Times across Canada to watch the ‘flower moon' in mid-May https://globalnews.ca/news/8781863/a-total-lunar-eclipse-times-across-canada-to-watch-the-flower-moon-in-mid-may/
  • CERN's particle accelerator starts up after a three-year hiatus https://www.theverge.com/2022/4/22/23037077/cern-particle-accelerator-restarts-upgrades-dark-matter
  • Incredible video of a solar eclipse… from the surface of Mars! https://www.syfy.com/syfy-wire/bad-astronomy-perseverance-rover-sees-phobos-transiting-the-sun
  • Planetary Decadal Survey Says it's Time for a Mission to Uranus (and Enceladus too!) https://www.universetoday.com/155519/planetary-decadal-survey-says-its-time-for-a-mission-to-uranus-and-enceladus-too-1/
  • Researchers Think They've Cracked The Secret Behind Pluto's Weirdly Unstable Orbit https://www.sciencealert.com/the-secret-behind-pluto-s-weirdly-unstable-orbit
  • Hubble Checks the Weather on Hot Jupiters. Forecast: 100% Chance of Hellish Conditions https://www.universetoday.com/155573/hubble-checks-the-weather-on-hot-jupiters-forecast-100-chance-of-hellish-conditions/
  • 5,000th exoplanet found! https://www.syfy.com/syfy-wire/bad-astronomy-5000th-exoplanet-discovery-announced
  • Time May Not Exist at All, According to Physics https://www.sciencealert.com/time-may-not-exist-according-to-physics-but-that-could-be-okay-for-us
  • Astronomers Discover Brand-New Type of Star Explosion: The Micronova https://www.sciencealert.com/we-ve-just-found-a-brand-new-type-of-star-explosion-the-micronova