Russia is working to de-anonymize TOR. A hacking group that distributed files stolen from a Russian contractor to the media last week has published some of the documents online.
Original release date: July 24, 2019
The Internal Revenue Service (IRS) has issued a news release reminding professional tax preparers that they are required by law to have a written data security plan. Creating and maintaining a data security plan ensures that tax professionals are reviewing their data security protections and implementing appropriate safeguards. Creating a data security plan is part of the Taxes. Security. Together. checklist, which the IRS created to help tax professionals protect sensitive taxpayer data. The Cybersecurity and Infrastructure Security Agency (CISA) encourages tax professionals to review the IRS news release and CISA’s Tip on Safeguarding Your Data for more information.
Original release date: July 22, 2019
As part of the effort to #Protect2020, the Cybersecurity and Infrastructure Security Agency (CISA) is working with national partners to build resilience to foreign interferences, particularly information activities (e.g., disinformation, misinformation). The Department of Homeland Security (DHS) views foreign interference as malign actions taken by foreign governments or actors designed to sow discord, manipulate public discourse, discredit the electoral system, bias the development of policy, or disrupt markets for the purpose of undermining the interests of the United States and its allies.
Responding to foreign interference requires a whole of society approach—CISA has made available the following foreign interference resources to #Protect2020:
- The War on Pineapple: Understanding Foreign Interference in 5 Steps
- Foreign Interference Taxonomy
- Social Media Bots Overview
The Defiant Threat Intelligence team has identified a malvertising campaign which is causing victims’ sites to display unwanted popup ads and redirect visitors to malicious destinations, including tech support scams, malicious Android APKs, and sketchy pharmaceutical ads.
In today’s post we’ll discuss the scope of this campaign, including the specific code injections used by the attackers as well as some detail regarding the infrastructure behind the redirects.
Mozilla is integrating its Lockwise password manager directly into the browser and expanding its support for the Have I Been Pwned website.
A series of ransomware attacks on school district systems leads the governor to declare the state’s first cybersecurity state of emergency.