The Tanium 10: How to Scam the Scammers | U.K. to Russia: ‘We Know What You’re Doing’

Susan Nunziata Posted on 11.18.17 — by Susan Nunziata

Welcome to The Tanium 10, our weekly roundup of the news that matters most to security and IT professionals. Each week, we spotlight the 10 stories, trend reports, and research that caught our eye—all to help you keep up with what’s happening in our fast-paced industry. We value your feedback. Once you’ve read this week’s insights, please email me here and tell me what you think. See something you’d like to discuss further? Join the conversation in our Tanium User Community.

The Tanium 10

The Tanium 10 for the week ending November 17, 2017:

  1. Want to seek revenge on email scammersNetsafe, a New Zealand-based cybersecurity firm, offers an email chatbot for the rest of us. The company urges you to forward sketchy emails to [email protected]. Once received, a proxy email address starts scamming the scammer. Turnabout is fair play.
  2. Long-read of the weekSecurity Breach and Spilled Secrets Have Shaken the N.S.A. to Its Core. The article details the investigation underway by the U.S. National Security Agency (NSA) and the Federal Bureau of Investigation to determine whether the NSA fell victim to a brilliantly executed Russian hack, an insider’s leak, or both.
  3. The U.K. government is calling out Russia for its cyberattacks in no uncertain terms. In a speech on Monday, U.K. Prime Minister Theresa May flatly stated, “We know what you are doing.” And Ciaran Martin, chief of the U.K.’s National Cyber Security Center, declared in a speech on Wednesday that Russian cyberattacks on Western governments and industries might be far more persistent than United States or British officials have previously acknowledged.
  4. File under “no good deed goes unpunished.” Barclays has been offering Kaspersky software as a perk to its millions of online banking customers since 2008. Now comes word from the Government Communications Headquarters, the U.K.’s intelligence service, that Russia might be spying on Barclays customers via the Kaspersky software.
  5. FALLCHILL. No, we’re not talking about the weather. It’s the name of malware allegedly used by North Korean hackers, according to an alert issued Tuesdayby the FBI and the U.S. Department of Homeland Security.
  6. In-Q-Tel, the venture capital arm of the U.S. Central Intelligence Agency is stepping up its investments in machine learning/artificial intelligence startups, in part because China is investing even more in these kinds of U.S. companies.
  7. We’re in a “pre-9/11 moment.” That’s the takeaway of a report from the U.S. National Infrastructure Advisory Council (NIAC) on the state of cybersecurity preparedness of the government’s networks and data.
  8. Does Europe’s General Data Protection Regulation miss the mark? The GDPR’s focus is on compliance and sanctions, but trust is what really matters to people, according to Philippe de Backer, Belgium’s newly appointed Secretary of State for Social Fraud, Privacy, and the North Sea.
  9. Most of the 1,028 U.S. civilian government employees surveyed by the Government Business Council think all foreign anti-virus software should be banned from government systems. The poll finds concern about the software is greater for those working in the U.S. Department of Defense than it is among other federal, state, or local employees.
  10. Adobe pushed out patches for Acrobat and Reader to address as many as 56 bugs. The company says none of the vulnerabilities patched appear to be under active attack.

And another thing…

Just in time for Thanksgiving, the maker of Stove Top stuffing is selling pants with a stretchy waistband covered in images of the bready dressing. May your holiday be loud, proud, and overstuffed.

Like what you see? Click here and sign up to receive The Tanium 10 in your inbox every Friday.