Check out this audio blog post between Brent Huston and Victoria Loewengart as they discuss this year’s Derbycon. There is a special segment towards the end of the conversation where they discuss females attending Derbycon, what to expect and attempt to counter some of the bad news about sexism at conferences going around these days.
Good day Folks;
Here is an extensive list of the recent International Cyber Intelligence & Situational Awareness (SA) you should be cognizant of…something cyber for everyone including the People’s Republic of H@cking, HUAWEI, Pakistan ~ People’s Republic of China relations and much, much more cybernia related…and coming soon to a computer and networked system near you OP Middle Kingdom…
Innovation and Disruption, & Why the People’s Republic of China Needs the Latter
http://www.techinasia.com/difference-innovation-disruption-important/
A Breakdown of the People’s Republic of China’s New Visa Rules
http://www.haohaoreport.com/l/43604
A New Anti-American Axis? People’s Republic of China & Russia…
http://www.nytimes.com/2013/07/07/opinion/sunday/a-new-anti-american-axis.html?
People’s Republic of China’s Huawei Zambia to invest $500,000 in brand promotion | Times of Zambia
http://www.times.co.zm/?p=22996
People’s Republic of China, Pakistan Build Communication, Transportation Links
http://www.ibtimes.com/china-pakistan-agree-communications-transport-links-huawei-board-fiber-optic-project-1335227?ft=w18y0
PM urges People’s Republic of China’s Huawei to set up research centre in Pakistan
http://www.pakistantoday.com.pk/2013/07/07/news/profit/pm-urges-huawei-to-set-up-research-centre-in-pakistan/
People’s Republic of China’s Huawei-Imperial plan renews Chinese cyber-security fears
http://theconversation.com/huawei-imperial-plan-renews-chinese-cyber-security-fears-15788
People’s Republic of China’s Huawei deploys high speed 4G on Mount Everest
http://www.theinquirer.net/inquirer/news/2279724/huawei-deploys-high-speed-4g-on-mount-everest
People’s Republic of China’s Huawei to build China-Pakistan link
http://www.defence.pk/forums/economy-development/262482-huawei-build-china-pakistan-link.html
People’s Republic of China’s Huawei Ready to Outspend Ericsson in R&D Race to Woo Clients
http://www.bloomberg.com/news/2013-07-02/huawei-woos-carriers-with-research-boost-beyond-me-too-networks.html
People’s Republic of China’s Huawei supports Asia Pacific hospitals
http://www.itwire.com/it-industry-news/market/60579-huawei-supports-asia-pacific-hospitals
People’s Republic of China’s Huawei boosts spending on research
http://www.scmp.com/business/companies/article/1275572/huawei-boosts-spending-research
People’s Republic of China, Switzerland sign free trade agreement
Switerland is latest OP MIddle Kingom acquistion by the People’s Republic of China…
http://www.reuters.com/article/2013/07/06/us-china-trade-idUSBRE96503E20130706
Studies: Cyberspying Targeted SKorea, US Military
http://abcnews.go.com/International/wireStory/studies-cyberspying-targeted-skorea-us-military-19602444
Turkish Agent Hacked US Air Force Culture & Language Center Website | Cyberwarzone
Didn’t the USAF tell the US Senate they were lead DoD on Cyber & were going to protect US Critical INfrastructure againsts hackers?
Hell, they cannot even protect themselves….
USAF CYBER ….MASSIVE FAIL….
http://cyberwarzone.com/turkish-agent-hacked-us-air-force-culture-language-center-website
Taiwanese Military to stage computer-aided war game later this month: MND
“tested the armed forces ability to fend off a simulated invasion by Chinese forces.”
http://www.chinapost.com.tw/taiwan/national/national-news/2013/07/03/382727/Military-to.htm
EU and People’s Republic of China close in on solar panel deal
http://www.reuters.com/article/2013/07/05/us-china-solar-idUSBRE9640L720130705
Pakistan, China set sights on Arabian Sea link |
http://www.ksl.com/?nid=235&sid=25866836&title=pakistan-china-set-sights-on-arabian-sea-link
Is People’s Republic of China’s Huawei Becoming Less Chinese?
http://blogs.wsj.com/digits/2013/07/04/is-huawei-becoming-less-chinese/?
People’s Republic of China’s Huawei to overtake Ericsson in R&D spending
http://www.intomobile.com/2013/07/05/huawei-overtake-ericsson-rd-spending/?
Papua New Guinea’s fixed line incumbent Telikom recruits People’s Republic of China’s Huawei for NBN project
http://www.telegeography.com/products/commsupdate/articles/2013/07/05/telikom-recruits-huawei-for-nbn-project/?
FCC approves deals between Japan’s Softbank, Sprint, Clearwire
Softbank signs huge deal with Huawei….backdoor to United States critical infrastructure now wide open for Huawei courtesy of Japan…
http://www.washingtonpost.com/business/technology/fcc-approves-deals-between-softbank-sprint-clearwire/2013/07/05/f48c88d8-e5ad-11e2-a11e-c2ea876a8f30_story.html
People’s Republic of China’s Huawei, Imperial College, London announce big data joint venture |
http://www.zdnet.com/huawei-imperial-college-announce-big-data-joint-venture-7000017582/
Chinese Web giant Tencent faces obstacles in its goal to expand in global IM market
http://www.washingtonpost.com/business/economy/chinese-web-giant-tencent-faces-obstacles-in-its-goal-for-a-global-im-market/2013/07/05/6ee4016c-cff4-11e2-8845-d970ccb04497_story.html?
People’s Republic of China Says Private Banks Possible
http://www.npr.org/templates/story/story.php?storyId=198990603
Emerging market giants quick to grab Australian foothold
Chinese banks, among the world’s largest, are busy in Australia
http://www.brisbanetimes.com.au/business/emerging-market-giants-quick-to-grab-australian-foothold-20130705-2phh7.html
NJRAT ESPIONAGE MALWARE TARGETS MIDDLE EASTERN GOVERNMENTS, TELECOMS AND ENERGY
http://threatpost.com/njrat-espionage-malware-targets-middle-eastern-governments-telecoms-and-energy/
Current cybercrime market is all about Cybercrime-as-a-Service |
http://www.net-security.org/secworld.php?id=15173
TARGETED ESPIONAGE ATTACK BORROWING FROM CYBERCRIMINALS
http://threatpost.com/targeted-espionage-attack-borrowing-from-cybercriminals/
Traitorous Snowden Says the NSA and Israel Wrote Stuxnet Malware Together
http://news.softpedia.com/news/Snowden-Says-the-NSA-and-Israel-Wrote-Stuxnet-Malware-Together-366371.shtml?
EU adopts stricter penalties for cyber criminals
http://www.net-security.org/secworld.php?id=15183
EU Parliament to launch inquiry into US surveillance programs
http://www.net-security.org/secworld.php?id=15181
Piratin Nocun über den Überwachungsskandal…Cyberwar governments against their citizens
http://www.sueddeutsche.de/digital/ueberwachungsskandal-cyberwar-der-regierungen-gegen-ihre-buerger-1.1713200
Iran to hold nationwide cyber maneuver
http://www.presstv.ir/detail/2013/07/06/312582/iran-to-hold-nationwide-cyber-maneuver/
United Kingdom Cyber War ‘At Its Gunpowder Moment’
http://www.huffingtonpost.co.uk/2013/07/05/cyber-war-gunpowder-moment_n_3549048.html
Beware the Internet and the danger of cyberattacks
http://www.dallasnews.com/opinion/sunday-commentary/20130705-robert-j.-samuelson-beware-the-internet-and-the-danger-of-cyberattacks.ece
U.S. military realm extends to cyberspace
http://www.upi.com/Science_News/Technology/2013/07/02/US-military-realm-extends-to-cyberspace/UPI-85321372770741/
The cyber-intelligence complex and its useful idiots
“Those who tell us to trust the US’s secret, privatised surveillance schemes should recall the criminality of J Edgar Hoover’s FBI”
http://www.guardian.co.uk/commentisfree/2013/jul/01/cyber-intelligence-complex-useful-idiots
Cyberwar: Angriffe auf Industrieanlagen wachsen…Cyberwar: Attacks on industrial plants grow
http://business.chip.de/news/Cyberwar-Angriffe-auf-Industrieanlagen-wachsen_62848164.html
Blind Fear Of Cyberwar Drives Columnist To Call For Elimination Of The Internet |
https://www.techdirt.com/articles/20130701/10561323680/blind-fear-cyberwar-drives-columnist-to-call-elimination-internet.shtml
Cyberwar ist kein Kalter Krieg
http://www.dradio.de/dkultur/sendungen/interview/2162803/
Brazil was target of U.S. signals spying, Globo newspaper says
http://www.reuters.com/article/2013/07/07/brazil-espionage-snowden-idUSL1N0FD05120130707
Enjoy –
Semper Fi –
謝謝紅龍
CMHSecLunch for July is going to be held Monday, July 8 at the Tuttle Mall food court. The time is 11:30am – 1pm. Look for the security geeks in the mall and come hang out with your infosec peeps. FREE and open to the public, you can register and find out more information here.
This time around on Ask The Security Experts, we have a question about holiday coverage for the security team:
Q: “With the upcoming summer holidays and heavy vacation schedules, what are some things I need to pay attention to in order to make sure attackers don’t catch us off guard while we are short on staff?”
Jim Klun weighed in with:
1. Make sure all staff have been reminded of the reality of phishing attacks and what they need to watch out for.
Use real-world examples like this one: http://labs.ft.com/2013/05/a-sobering-day/ ( courtesy of Adam Hostetler )
Its important that staff understand the potential severity of a successful phishing attack.
Such attacks are more likely over holiday periods when attackers can rely on short-staffing.
2. Make sure all systems( both network/OS/application ) are logging and that you are reviewing those logs for anomalies
Make it a particular point to review those logs after the holidays.
Log review can be automated but should not be reduced to a formality. Staff with familiarity with what is normal should be reviewing daily log reports and periodically
examining the raw logs themselves.
3. Consider internal alerting systems such as Microsolved’s “Honeypoint” solution. They can act as tripwires in your network, alerting you to the presence of an intruder.
See: http://www.microsolved.com/honeypoint
Bill Hagestad added:
To prevent surprise cyber attacks the number one focus should be proactive cyber threat intelligence specifically related to your company based upon the following Essential Elements of Information (EEI):
– What are your priorities for intelligence?
– Competitor’s needs/focuses?
– External vendors interests on behalf of competitor?
– Foreign economic interests
– Commercial cyber espionage
– Foreign cyber espionage?
– Potential insider threats?
Once you have prioritized what you consider the information security threats are to your organization MicroSolved can help develop a information a security/assurance strategy.
First step determine a quick list of cyber intelligence targeting baed upon the EEI above;
Second – from the priorities determine your internal High Value Targets that the prioritized list of adversaries might focus on;
Third – install or fine tune your HoneyPoint Security Server to capture attacker and threat vector information; and,
Fourth – focus holiday staffing levels and efforts to mitigate list of potential cyber threats based upon both the EEI and steps 1 -3 above.
John Davis stated:
One of the things to pay particular attention to during vacation season is the security of returning portable devices. Employees will probably be traveling all over the place on their vacations, include foreign countries. And while traveling, people like to let their hair down and take it easy. They also like to keep abreast of their emails or surf the Internet looking for restaurants and places of interest.
Hotel networks and public hot spots are usually open networks and liable to sniffing by enterprising cyber criminals. Because of this, it is relatively easy for these attackers to implant Malware on laptops or other portable devices used by traveling employees. And, as we know, lots of enterprises these days have bring your own device policies in place or tolerate the casual use of company laptops for non-business purposes. To protect the network from this scenario, run anti-virus and other Malware detecting software on these devices, and/or boot them up in a stand alone test environment and look for problems before allowing them onto the production network.
There’s a LOT of good advice here. Hopefully, some of it helps you. Until next time, thanks for reading and have a safe holiday!
Good Day from the Front Line of Cyber – Here are today’s top Chinese Cyber Threat Stories from an international perspective….your daily dose of Cyber Threat Situational Awareness (SA)….
Codan network hacked by Chinese
http://www.electronicsnews.com.au/news/codan-network-hacked-by-chinese
Report: Australia spy plans hacked by Chinese
http://www.aljazeera.com/news/asia-pacific/2013/05/20135284536511454.html
Cybersecurity and the Limits of Leader Summits
http://thediplomat.com/the-editor/2013/06/28/cybersecurity-and-the-limits-of-leader-summits/
Trial flight photos of China’s J-31 stealth fighter – Xinhua | English.news.cn
http://news.xinhuanet.com/english/photo/2013-07/02/c_132502418_4.htm
InterDigital loses first round of U.S. case against People’s Republic of China’s Huawei
http://www.reuters.com/article/2013/07/01/us-interdigital-huawei-patent-idUSBRE96019420130701
Former Nokia head of sales takes his expertise to Huawei (updated)
http://www.engadget.com/2013/07/02/colin-giles-huawei/?
Nokia doubles up in networks to fight People’s Republic of China
http://blogs.ft.com/businessblog/2013/07/nokia-doubles-up-in-networks-to-fight-china/?
GCHQ claims British networks hit by 70 cyber attacks a month |
http://www.itpro.co.uk/security/20106/gchq-claims-british-networks-hit-70-cyber-attacks-month
NSA hacking and spying on EU officials
http://www.net-security.org/secworld.php?id=15169
U.S. intelligence community is out of control |
http://www.cnn.com/2013/07/01/opinion/rothkopf-surveillance-revelations/index.html?
Why the Story on Snowden and the NSA Doesn’t Add Up |
http://www.motherjones.com/kevin-drum/2013/07/nyt-snowden-was-hacker-nsa
The danger of what Edward Snowden has not revealed
http://www.washingtonpost.com/opinions/marc-thiessen-the-danger-of-what-edward-snowden-has-not-revealed/2013/07/01/67f95a18-e251-11e2-aef3-339619eab080_story.html?
HACKED!
http://www.abc.net.au/4corners/stories/2013/05/27/3766576.htm
People’s Republic of China: US should ‘explain hacking activity’ – People’s Daily Online
Uh oh – NSA has compromised US National Security as the People’s Republic of China demands to know why it is being hacked by the Top US Spy Agency….
http://english.peopledaily.com.cn/90883/8284267.html
People’s Republic of China’s Foreign Ministry sets up cyber security office – People’s Daily Online
http://english.peopledaily.com.cn/90883/8285401.html
提醒大家新的APT高峰期即將出現, 新 PDF Exploit CVE-2013-2729 已經用在 APT Email 攻擊中
http://blog.xecure-lab.com/2013/06/apt-pdf-exploit-cve-2013-2729-apt-email.html
Will People’s Republic of China Offer Snowden Freedom in exchange for Information?
http://www.slate.com/blogs/the_slatest/2013/06/14/edward_snowden_reveals_details_of_hong_kong_and_china_nsa_hacking.html
Booz Allen’s Snowden Smuggled Documents From NSA on a Thumb Drive |
http://www.wired.com/threatlevel/2013/06/snowden-thumb-drive/
“Snowden is a ‘card’ that People’s Republic of China never expected… But China is neither adept at nor used to playing it.”
http://althouse.blogspot.com.au/2013/06/snowden-is-card-that-china-never.html
Who’d You Rather Be Watched By: People’s Republic of China, or the U.S.?
http://www.theatlantic.com/china/archive/2013/06/whod-you-rather-be-watched-by-china-or-the-us/276898/
Chinese Telecoms ‘A Security Risk’ To Britain
http://news.sky.com/story/1100187/chinese-telecoms-a-security-risk-to-britain
People’s Republic of China’s Huawei faces UK heat over cyber-attack fears
http://www.theaustralian.com.au/news/world/huawei-faces-uk-heat-over-cyber-attack-fears/story-fnb64oi6-1226658100939
OP Middle Kingdom: People’s Republic of China Becoming The Most Important Factor In Global Gold Markets
http://seekingalpha.com/article/1502512-china-becoming-the-most-important-factor-in-global-gold-markets?
Operation Middle Kingdom ~ Canada…Ottawa delaying Wind Mobile deals on national security concerns
http://www.theglobeandmail.com/report-on-business/security-concerns-delay-wind-deal/article12538800/
PRISM Whistle-Blower: US Has Been Hacking the People’s Republic of China For Years
http://www.techweekeurope.co.uk/news/prism-america-hacking-china-119004?
People’s Republic of China newspaper: Booz Allen’s Snowden could be useful to China
http://www.kimt.com/2013/06/14/china-newspaper-snowden-could-be-useful-to-china/
U.K. Warns on People’s Republic of China’s Huawei Cyber Security Risk
http://online.wsj.com/article/SB10001424127887323844804578529141741985244.html
UK defends China telecom firm deals
http://www.bbc.co.uk/news/uk-politics-22795226
Can N.S.A. Surveillance Be Likened to Chinese Spying?
http://rendezvous.blogs.nytimes.com/2013/06/13/can-n-s-a-surveillance-be-likened-to-chinese-spying/?
People’s Republic of China: U.S. in “Awkward Position” After Latest Hacking Claims
http://chinadigitaltimes.net/2013/06/netizens-on-us-hacking-what-a-hypocrite/?
Booz Allen Whistleblower Edward Snowden claims US targets Chinese computers for cyber attacks
http://www.telegraph.co.uk/news/worldnews/northamerica/usa/10117690/Whistleblower-Edward-Snowden-claims-US-targets-Chinese-computers-for-cyber-attacks.html
Pressure builds on US over Hong Kong civilian hacking allegations
http://www.guardian.co.uk/world/2013/jun/13/hong-kong-demands-us-answer-hacking-allegations
Booz Allen’s Edward Snowden claims US hacks Chinese Military & Political targets
http://www.telegraph.co.uk/news/worldnews/northamerica/usa/10117478/Edward-Snowden-claims-US-hacks-Chinese-targets.html
Chinese State Media Suggest That N.S.A. Disclosures Will Hurt U.S. Ties
http://www.nytimes.com/2013/06/14/world/asia/chinese-media-suggest-nsa-disclosure-will-hurt-us-ties.html?
Australia gets ‘deluge’ of US secret data, prompting a new data facility…Recall Aussie Company Codan was haced by the People’s Republic of China….
http://www.theage.com.au/it-pro/security-it/australia-gets-deluge-of-us-secret-data-prompting-a-new-data-facility-20130612-2o4kf.html
Calls Grow in People’s Republic of China to Press Claim for Okinawa…Now that US Marines are gone to Austraia…we know the PLA will overrun the USAF Base @ Kadena…
http://www.nytimes.com/2013/06/14/world/asia/sentiment-builds-in-china-to-press-claim-for-okinawa.html?&pagewanted=all
Taking the West’s Technology, Leaving its Freedoms – China Digital Times
http://chinadigitaltimes.net/2013/06/taking-the-wests-technology-leaving-its-freedoms/?
How China Got There First: Beijing’s Unique Path to ASBM Development and Deployment
http://www.jamestown.org/programs/chinabrief/single/?tx_ttnews%5Btt_news%5D=40994&cHash=4be1b6f4d1da712a29057d94f181c32c#.UbpnRPaG1JE
Thousands of Iranian Gmail Users Targeted in Attempted Hacks Before Election
http://www.wired.com/threatlevel/2013/06/iran-hack-election/
OWASP Top 10 for 2013 has been released! “Injection” tops the chart again. Download your copy here:
https://www.owasp.org/index.php/Top10
Enjoy –
Semper Fi,
謝謝
紅龍
Good day Folks;
My apologies for the late entry – international travel will do that to a person once in a awhile –
Nonetheless, here is a lengthy compilation of some of the latest International Cyber Situational Awareness for the Beginning of July 2013 –
Remember to search for “OP Middle Kingdom”…
Enjoy!
U.S. to press People’s Republic of China on cyber theft: Lew
http://www.reuters.com/article/2013/07/01/us-treasury-china-idUSBRE96009X20130701
People’s Republic of China Accuses U.S. of Hypocrisy on Cyberattacks |
http://world.time.com/2013/07/01/china-accuses-u-s-of-hypocrisy-on-cyberattacks/?
People’s Republic of China’s Huawei’s Best-Kept Secret: An Army of Engineers
http://blogs.wsj.com/digits/2013/07/01/huaweis-best-kept-secret-an-army-of-engineers/?
U.S. Is a ‘Hacker Empire,’ Says Chinese Military Analyst
http://rendezvous.blogs.nytimes.com/2013/06/26/u-s-is-a-hacker-empire-says-chinese-military-analyst/?
U.S. Prism, Meet People’s Republic of China’s Golden Shield
http://rendezvous.blogs.nytimes.com/2013/06/28/u-s-prism-meet-chinas-golden-shield/?
LAP Green & the People’s Republic of China’s Huawei ink settlement agreement
http://www.telegeography.com/products/commsupdate/articles/2013/07/01/lap-green-huawei-ink-settlement-agreement/?
The Willie Suttons of the Cyberage – Can we stop bad guys from getting into U.S. networks? |
http://www.foreignpolicy.com/articles/2013/06/26/the_willie_suttons_of_the_cyberage_cybercrime?page=full
JFQ-70: Unpacking Cyberwar: The Sufficiency of the Law of Armed Conflict in the Cyber Domain
http://www.ndu.edu/press/unpacking-cyberwar.html
Awaiting Cyber 9/11
http://www.ndu.edu/press/awaiting-cyber-9-11.html
Snowden spy row grows as US is accused of hacking People’s Republic of China
http://www.guardian.co.uk/world/2013/jun/22/edward-snowden-us-china
EXCLUSIVE: NSA targeted People’s Republic of China’s Tsinghua University in extensive hacking attacks
“…Tsinghua University, widely regarded as the mainland’s top education and research institute, was the target of extensive hacking by US spies this year.”
http://www.scmp.com/news/china/article/1266892/exclusive-nsa-targeted-chinas-tsinghua-university-extensive-hacking
EXCLUSIVE: US hacked Pacnet, Asia Pacific fibre-optic network operator, in 2009
http://www.scmp.com/news/hong-kong/article/1266875/exclusive-us-hacked-pacnet-asia-pacific-fibre-optic-network-operator
EXCLUSIVE: Ex-Booz Hamilton NSA Contractor safe in Hong Kong, more US cyberspying details revealed
http://www.scmp.com/news/hong-kong/article/1266777/exclusive-snowden-safe-hong-kong-more-us-cyberspying-details-revealed
US hacks Chinese mobile phones: Booz Hamilton Contractor: US National Security FAIL
http://www.theaustralian.com.au/news/breaking-news/us-hacks-chinese-mobile-phones-snowden/story-fn3dxix6-1226668185301
Civic Party demands the US respond to hacking claims
http://www.scmp.com/news/hong-kong/article/1266716/civic-party-demands-us-respond-hacking-claims
Edward Snowden alleges US hacking People’s Republic of China phone firms
http://www.adelaidenow.com.au/news/world/edward-snowden-alleges-us-hacking-china-phone-firms/story-fnd11ay0-1226668186230
People’s Republic of China completes internet monitoring scheme in Tibet
http://www.guardian.co.uk/world/2013/jun/19/china-internet-monitoring-tibet
Xi Jinping’s Decade And The Future Of Sino-American Relations – Analysis
http://www.eurasiareview.com/22062013-xi-jinpings-decade-and-the-future-of-sino-american-relations-analysis/?
People’s Republic of China’s Xi harks back to Mao in party ‘cleanup’
http://wanderingchina.org/2013/06/20/chinas-xi-harks-back-to-mao-in-party-cleanup-ap-risingchina-corruption/
What to Make of Xi Jinping’s Maoist Turn
http://wanderingchina.org/2013/06/22/what-to-make-of-xi-jinpings-maoist-turn-wsj-risingchina-newleadership/
Hagel Vows to Prioritize Cyber, Nuclear Capabilities…Si vis pacem, para bellum
US DoD Defense.gov News Article…矽對海洋和平,帕拉戰爭
http://www.defense.gov/news/newsarticle.aspx?id=120339
People’s Republic of China: U.S. should not hold multiple standards in cyber world – People’s Daily Online
http://english.peopledaily.com.cn/90786/8290745.html
People’s Republic of China ~ Snowden spying claims rejected – People’s Daily Online
http://english.peopledaily.com.cn/90883/8287831.html
U.S. charges Snowden with espionage
http://www.washingtonpost.com/world/national-security/us-charges-snowden-with-espionage/2013/06/21/507497d8-dab1-11e2-a016-92547bf094cc_story.html
Edward Snowden: US government has been hacking Hong Kong and People’s Republic of China for years
http://www.scmp.com/news/hong-kong/article/1259508/edward-snowden-us-government-has-been-hacking-hong-kong-and-china
Snowden’s Leaks on People’s Republic of China Could Affect Its Role in His Fate |
http://www.nytimes.com/2013/06/15/world/asia/ex-nsa-contractors-disclosures-could-complicate-his-fate.html?
Chinese Ministry of Foreign Affairs sets up cyberdiplomacy office
http://www.scmp.com/news/china/article/1261181/chinese-ministry-foreign-affairs-sets-cyberdiplomacy-office
People’s Republic of China asks U.S. to explain Internet surveillance
http://www.reuters.com/article/2013/06/17/us-usa-security-china-idUSBRE95G06R20130617
People’s Republic of China’s Huawei, ZTE see vindication amid US cyber-spying scandal
http://www.scmp.com/business/companies/article/1263200/huawei-zte-see-vindication-amid-us-cyber-spying-scandal
People’s Republic of Acquisition: Nokia stock rises on rumors of Huawei acquisition
Operation Middle Kingdom – Finalnd technology now acquistion target of People’s Republic of China’s HUAWEI
http://www.washingtonpost.com/business/technology/nokia-stock-rises-on-rumors-of-huawei-acquisition/2013/06/18/3aca3fba-d83a-11e2-a016-92547bf094cc_story.html?
People’s Republic of China completes Internet, phone monitoring scheme for Tibet
http://www.reuters.com/article/2013/06/19/china-tibet-idUSL3N0EV1W920130619
People’s Republic of China’s Huawei says has no plans to buy Nokia
http://www.crn.com.au/News/347193,huawei-says-has-no-plans-to-buy-nokia.aspx
Soft Power: A U.S.-China Battleground?
http://thediplomat.com/china-power/soft-power-a-u-s-china-battleground/?
People’s Republic of China’s tyranny of uniqueness
http://cmp.hku.hk/2013/06/14/33486/
Reforming the People’s Republic of China’s State-Owned Enterprises
http://thediplomat.com/2013/06/19/reforming-chinas-state-owned-enterprises/?
People’s Republic of China lands three astronauts on Tiangong-1 space station
http://www.guardian.co.uk/world/2013/jun/13/china-astronauts-tiangong-1-space-station
Home Office Throws £4m At Educating Britain On Cyber Security
Awareness push from government celebrated by industry
http://www.techweekeurope.co.uk/news/home-office-4m-cyber-security-awareness-119696?
Report: UK spies hacked foreign diplomats
http://www.news.com.au/technology/report-uk-spies-hacked-foreign-diplomats/story-e6frfro0-1226665303140
GCHQ taps fibre-optic cables for secret access to world’s communications
http://www.guardian.co.uk/uk/2013/jun/21/gchq-cables-secret-world-communications-nsa?CMP=twt_gu
People’s Republic of China diversifies UK interests as Dalian Wanda invests £1bn in luxury brands
http://www.guardian.co.uk/business/2013/jun/19/china-uk-interests-dalian-wanda-luxury-brands
Use Tor, Get Targeted By the NSA –
http://yro.slashdot.org/story/13/06/21/1443204/use-tor-get-targeted-by-the-nsa?u
What the NSA Does With the Data It Isn’t Allowed to Keep
http://www.nextgov.com/cloud-computing/2013/06/what-nsa-does-data-it-isnt-allowed-keep/65324/
Schneier on Security: US Offensive Cyberwar Policy
http://www.schneier.com/blog/archives/2013/06/us_offensive_cy.html?
The keyboard: The weapon of choice in new type of warfare
http://www.irishexaminer.com/lifestyle/features/the-keyboard-the-weapon-of-choice-in-new-type-of-warfare-234768.html
Iran oil ministry denies cyber attack
http://en.trend.az/regions/iran/2164035.html
Semper Fi,
謝謝紅龍
One of the less common assessments that MicroSolved performs for our clients is a Network Device Review (NDR). These assessments are aimed at helping clients assess the current state of specific devices or system configurations and improving them.
Common devices assessed via this service include:
This type of assessment is performed using a combination of automated tools and manual time with our security engineers. The methodology leveraged to perform the assessment is very similar to our other assessments, with the engineers doing detailed analysis of attack surfaces and evaluation of relevant controls. Reports follow a more technical path for these services, with a technically focused report set and a small management level summary, keeping the cost of these services significantly less expensive than our deeper pen-testing and fuzzing assessments.
Customers often use these services to perform spot validation or as a part of an overall hardening project to improve their security posture organically. To learn more about the NDR service, get in touch with your account executive or contact us via info (at) micro solved (dot) com for a free conversation about how the NDR can help your organization.
As always, thanks for reading and stay safe out there!
The touchdown task for June is to perform a quick and dirty check of your ongoing external vulnerability assessment. By now, you should have your Internet facing systems assessed each month, with weekly or daily checks applied to critical systems. If you aren’t having your systems assessed for vulnerabilities in an ongoing manner, get that process started. MSI can assist you with this, of course.
But, the task for June is to check and make sure that ALL of your public Internet facing systems, interfaces and devices are being assessed. Sometimes new systems might get added to the public IP space without making it into your assessment plan. Take an hour and check to make sure all the devices you know of are covered by the assessment. Do some quick ping/port scanning to make sure you are getting coverage and nothing has snuck in that is being missed. Give your assessment process a quick review and make sure that it is running on the proper IP spaces or lists and that the reports are as you expect.
Until next month, stay safe out there!
G’Day from Day Two of Australian Defence Magazine’s 3rd Annual Cyber Security Summit from Canberra, Australia…
It was hilarious yesterday as pasty late middle aged Americans stormed into Canberra from two major DoD Contractors. Describing in acronym laden, nervous voices how they could save the Australian defense world both from themselves and the giant new menace called China…with, get this, VAPOR FRICKIN’ WARE…yes the boys from NGC and Raytheon came in for only their speaking portions and announced they would save the world and then left – typical disingenuous American behavior overseas – it was as if they, as American businessmen are too important to develop relationships here in Canberra… C’mon guys if you are the best from these two companies then executive leadership should review hiring practices at NGC & Raytheon…enough ranting…
Pentagon’s Cybersecurity Plan Sees $23 Billion Through 2018 (1)
This what those pasty white middle age exec’s from NGC & Raytheon smell…US taxdollars for their new enemy China…
http://www.businessweek.com/news/2013-06-10/pentagon-s-cybersecurity-plan-calls-for-23-billion-through-2018
People’s Republic of China’s agenda in Switzerland (and Europe)…Operation Middle Kingdom
Operation Middle Kingdom = colonization of the West…
http://www.lowyinterpreter.org/post/2013/06/13/Chinas-agenda-in-Switzerland-(and-Europe).aspx
In first response to Snowden, People’s Republic of Hacking e.g.; China, skirts direct comment
http://au.news.yahoo.com/thewest/a/-/world/17595123/in-first-response-to-snowden-china-skirts-direct-comment/
NSA hacks People’s Republic of China, leaker Snowden claims
National Security FAIL…Booz Allen Hamilton
http://edition.cnn.com/2013/06/12/politics/nsa-leak
Communist Party of China in Hong Kong wants answers on Snowden’s hacking claims
http://www.usatoday.com/story/news/world/2013/06/13/nsa-leaker-snowden-hong-kong/2418755/
Australia under attack from cyber spies
http://www.heraldsun.com.au/news/breaking-news/cyber-war-could-kill-millions/story-fni0xqi4-1226662512944
Malawi govt set to award digital TV migration deal to People’s Republic of China’s Huawei
http://www.telecompaper.com/news/malawi-govt-set-to-award-digital-tv-migration-deal-to-huawei–948691
The NSA Has A Secret Group Called ‘TAO’ That’s Been Hacking China For 15 Years
http://au.businessinsider.com/us-nsa-unit-tao-hacking-china-for-years-2013-6
U.S.-Chinese Summit: 4 Information Security Takeaways — People’s Republic of China Dominates Obama
http://www.informationweek.com/security/government/us-chinese-summit-4-information-security/240156396?
China Reveals First Space-Based Quantum Communications Experiment
http://wanderingchina.org/2013/06/12/china-reveals-first-space-based-quantum-communications-experiment-technology-review-risingchina-quantum/
Google Says It Has Uncovered Iranian Spy Campaign
http://bits.blogs.nytimes.com/2013/06/12/google-says-it-has-uncovered-iranian-spy-campaign/?
Iranian phishing on the rise as elections approach
http://googleonlinesecurity.blogspot.com.au/2013/06/iranian-phishing-on-rise-as-elections.html
The Shady Role of Start-ups in the NSA’s War on Cyber Terror
http://www.inc.com/eric-markowitz/the-shady-role-of-start-ups-in-nsa-war-on-cyber-terror.html?
NSA Snooping Was Only the Beginning. Meet the Spy Chief Leading Us Into Cyberwar |
http://www.wired.com/threatlevel/2013/06/general-keith-alexander-cyberwar/
NSA Snooping Was Only the Beginning. Meet the Spy Chief Leading Us Into Cyberwar
http://www.wired.com/threatlevel/2013/06/general-keith-alexander-cyberwar/2/
Wall Street goes to war with hackers in Quantum Dawn 2 simulation
http://blogs.reuters.com/unstructuredfinance/2013/06/13/wall-street-goes-to-war-with-hackers-in-cyber-dawn-2-simulation/
NSA leaker Edward Snowden: U.S. targets China with hackers
Massive National Security FAIL by Booz Allen….
http://www.washingtonpost.com/business/economy/snowden-wants-people-of-hong-kong-to-decide-my-fate/2013/06/12/a69e94ee-d370-11e2-a73e-826d299ff459_story.html?utm_medium=referral&utm_source=t.co
Chinese piracy ring operator sentenced after selling military-related software…OP Crack99
http://arstechnica.com/tech-policy/2013/06/chinese-piracy-ring-operator-sentenced-to-12-years-after-being-lured-to-us/?
China Syndrome: U.S. Issues Build
http://www.aim.org/guest-column/china-syndrome-u-s-issues-build/?
Hawaii Spy Case: Did Chinese Girlfriend Lure Secrets From Contractor?
http://www.civilbeat.com/articles/2013/04/23/18889-hawaii-spy-case-did-chinese-girlfriend-lure-secrets-from-contractor/
Infosecurity – Gartner analysts drop the bomb on cyberwar hysteria
http://www.infosecurity-us.com/view/32919/gartner-analysts-drop-the-bomb-on-cyberwar-hysteria/?
Presidential cyberwar directive gives Pentagon long-awaited marching orders
http://www.csmonitor.com/USA/Military/2013/0610/Presidential-cyberwar-directive-gives-Pentagon-long-awaited-marching-orders-video
Cybersecurity hearing: NSA head Keith Alexander testifies in front of Senate
http://www.globalpost.com/dispatch/news/regions/americas/united-states/130612/cybersecurity-hearing-nsa-keith-alexander-senate-live
Tens of thousands of spamvertised emails lead to W32/Casonline
http://blog.webroot.com/2013/06/12/tens-of-thousands-of-spamvertised-emails-lead-to-w32casonline/
Global BotNet Visualized
http://globe.cyberfeed.net/
RARSTONE Found In Targeted Attacks | …attacks were carried out using spear-phishing attacks against the target organizations, using messages related to diplomatic discussions in the Asia-Pacific region.
http://blog.trendmicro.com/trendlabs-security-intelligence/rarstone-found-in-targeted-attacks/?
Enjoy –
Semper Fi
謝謝
紅龍
G’Day from Canberra, Australia – truly down under…
So here we are the Red Dragon back in Australia in less than 3 weeks – trust me there is no honor in all the air miles…just dehydration, sleep deprivation and lousy food…
Nonetheless, here are some of the latest cyber threat news items related to Operation Middle Kingdom which the People’s Republic of China’s worldwide political, military and economic colonization of the Western world…please note that the complete colonization of the United Kingdom has taken place…Australia is not far behind although at least their political leadership is being open and not hiding the fact that Huawei wants in on the national broadband initiative…
NSA’s ultra-secret China hacking group…Report from Asia 12 JUN 2013
http://www.scmp.com/news/china/article/1259175/inside-nsas-ultra-secret-china-hacking-group
How Ordinary Chinese Saw the Xi-Obama Summit
http://thediplomat.com/china-power/how-ordinary-chinese-saw-the-xi-obama-summit/?
Inside the NSA’s Ultra-Secret China Hacking Group – No Longer Ultra thanks to Booz Allen Hamilton Massive National Security FAIL
http://www.foreignpolicy.com/articles/2013/06/10/inside_the_nsa_s_ultra_secret_china_hacking_group?page=full
Inside the NSA’s Ultra-Secret China Hacking Group
http://chinadigitaltimes.net/2013/06/inside-the-nsas-ultra-secret-china-hacking-group/?
Can Apple Conquer the People’s Republic of China With iOS7?
http://thediplomat.com/china-power/can-apple-conquer-china-with-ios7/?
Realpolitik and Spinning the U.S.-China Summit
http://www.nytimes.com/2013/06/13/opinion/global/realpolitik-and-spinning-the-us-china-summit.html?
People’s Republic of Hacking…Adopting Technology, but Not the Freedoms, of the West
http://www.nytimes.com/2013/06/13/world/asia/13iht-letter13.html?partner=rssnyt&emc=rss&_r=0&pagewanted=all
OP Red Star (紅星): Another advanced hacking crew from the People’s Republic of China is revealed
http://i-hls.com/2013/06/red-star-another-advanced-hacking-crew-from-china-is-revealed/
OP Middle Kingdom and Colonization of Australia…Chinese hackers linked to attack on Australian spy agency
http://www.ft.com/intl/cms/s/0/5ed43574-c768-11e2-be27-00144feab7de.html#axzz2Uh0epN59
U.S., Australia reports allege new spying by People’s Republic of China hackers –
Blueprints of new Australian spy headquarters stolen, report says
http://www.cbc.ca/news/world/story/2013/05/28/australia-china-hacking.html
Canadian CIRC Anti-hacking agency slow to learn about Chinese cyberattack
People’s Republic of Hacking efforts to colonize Canada…Canadian Cyber Incident Response Centre fails to understand sophistication of Chinese hacking efforts….
http://www.cbc.ca/news/politics/story/2013/02/22/pol-weston-chinese-hackers-telvent.html
Operation Red Star (紅星): Another advanced hacking crew from the People’s Republic of China is revealed
http://killerapps.foreignpolicy.com/posts/2013/06/04/red_star_another_advanced_hacking_crew_from_china_revealed
NSA surveillance: The US is behaving like the People’s Republic of China
http://www.guardian.co.uk/commentisfree/2013/jun/11/nsa-surveillance-us-behaving-like-china
Edward Snowden breaks silence to defend himself over NSA surveillance leak –
http://www.telegraph.co.uk/news/worldnews/asia/hongkong/10116117/Edward-Snowden-breaks-silence-to-defend-himself-over-NSA-surveillance-leak.html
Inevitable: US Spy Program Leaker Escapes to Hong Kong, Other Aftermath, How It Might Play Out
http://blog.hiddenharmonies.org/2013/06/inevitable-us-spy-program-leaker-escapes-to-hong-kong-other-aftermath-how-it-might-play-out/
Booz Allen National Security Fink Snowden Is in Hong Kong. Chinese Don’t Care.
Yes and they hire only te best national securty risks at Booz Allen Hamilton…:-)
http://www.bloomberg.com/news/2013-06-10/snowden-is-in-hong-kong-chinese-don-t-care-.html
How the People’s Republic of China’s Huawei can dial down the fear factor –
http://tech.fortune.cnn.com/2013/06/12/huawei-fear-factor/
People’s Republic of Chain’s Huawei opens Reading HQ as part of UK investment
Colonization of Britain under Operation Middle Kingdom now complete
http://news.techworld.com/networking/3452105/huawei-opens-reading-hq-as-part-of-uk-investment/
People’s Republic of China Prepares Longest Ever Manned Space Mission
http://www.techinasia.com/china-longest-manned-space-mission-shenzhou10-in-2013/
Beijing, We Have a Space Program |
China’s latest launch of a three-person spacecraft shows the East moving well ahead of the once dominant West
http://science.time.com/2013/06/12/beijing-we-have-a-space-program/
Chinese spacecraft blasts off from Gobi desert
Shenzhou 10 takes three astronauts to experimental space laboratory where they will give a lecture to students on Earth
http://www.guardian.co.uk/world/2013/jun/11/chinese-spacecraft-shenzhou-10-gobi-desert
Intelligence: World War II LST Threatens People’s Republic of China
http://www.strategypage.com/htmw/htintel/articles/20130612.aspx
How Sony Won the Next-Gen Console War in the Poeple’s Republic of China
http://www.techinasia.com/sony-won-nextgen-console-war-country-consoles-illegal/
Colonization of Nicaragua waterway to dwarf Panama canal…OP Middle Kingdom continues unabated…
http://www.guardian.co.uk/world/2013/jun/12/nicaragua-canal-waterway-panama
Nicaragua fast-tracks Chinese plan to build canal to rival Panama
http://www.guardian.co.uk/world/2013/jun/11/nicaragua-chinese-plan-canal-panama
Edward Snowden vows not to ‘hide from justice’ amid new hacking claims
Booz Allen hiring practices…NATIONAL SECURITY FAIL…
http://www.guardian.co.uk/world/2013/jun/12/edward-snowden-us-extradition-fight
Why Don’t More Chinese Internet Companies Expand Overseas?
http://www.techinasia.com/chinese-internet-companies-expand-overseas/
Apple’s iOS 7 is Copying Other OS, Say Chinese Net Users
http://www.techinasia.com/chinese-net-users-apples-ios-7-copycat-os/
Why the People’s Republic of China May Limit “Carrier-Killer’s” Range
http://thediplomat.com/flashpoints-blog/2013/06/12/why-china-may-limit-carrier-killers-range/?
Internet Gurus Fear Iranian Assassins
http://www.strategypage.com/%5Chtmw%5Chtiw%5Carticles%5C20130611.aspx
Canada: Nation continues as growing breeding ground for malware
http://www.scmagazine.com//sc-congress-canada-nation-continues-as-growing-breeding-ground-for-malware/article/298414/?
Talking cyber security with the UK government
http://www.scmagazineuk.com/talking-cyber-security-with-the-uk-government/article/297212/
UK banks fear cyber-attack more than euro crisis
http://www.pcpro.co.uk/news/security/382411/uk-banks-fear-cyber-attack-more-than-euro-crisis
Enjoy!
Semper Fi…
謝謝
紅龍