Threat Intelligence Blog

Posted October 27, 2015

weekly_1

We publish this weekly threat intelligence brief keep you informed on the latest security incidents and threats. For security news throughout the day, follow us on Twitter. Subscribe to our blog to stay up-to-date on findings from our analyst research reports!

Insurance/Healthcare

“Insurers are massively increasing cyber insurance premiums for some companies in response to the number of major data breaches in the U.S. over the past two years, according to a recent Reuters report. According to Marsh & McLennan, the average rates for retailers increased by 32 percent in the first half of 2015 alone, after remaining flat throughout 2014. And it’s not just about higher premiums — some companies are also finding their deductibles raised and their coverage limited.”

– eSecurity Planet

Legal and Regulations

“A long-delayed bill that would make it easier for corporations to share information about cyber attacks with each other or the government without fear of lawsuits advanced in the U.S. Senate on Thursday with support from members of both parties and the White House. Dozens of industry and business groups, including the U.S. Chamber of Commerce, back the Cybersecurity Information Sharing Act (CISA), saying it would help encourage companies and the government to share information that might help thwart high-profile cyber attacks. But many privacy activists and a few lawmakers, including Republican Senator Rand Paul and Democratic Senator Ron Wyden, vehemently oppose it. Several big tech companies also have come out against the measure, arguing that it fails to protect user privacy and does too little to prevent cyber attacks.”

Reuters

Law Enforcement

“A new policy allows the Secret Service to use intrusive cellphone-tracking technology without a warrant if there’s believed to be a nonspecific threat to the president or another protected person. Homeland Security Assistant Secretary Seth M. Stodder described to a House subcommittee Wednesday the department’s policy on the use of cell-site simulators. Civil libertarians and privacy advocates have long expressed concern about the suitcase-size devices, known as Stingrays, which mimic cell-towers to scoop up electronic data that can be used to locate nearby phones and identify their owners. The devices don’t listen in to phone calls or capture text messages, Stodder said.”

Fox News

Defense

“Chinese hacking attempts on American corporate intellectual property have occurred with regularity over the past three weeks, suggesting that China almost immediately began violating its newly minted cyberagreement with the United States, according to a newly published analysis by a cybersecurity company with close ties to the U.S. government.”

– Yahoo Finance

 

Additional Posts

Newly Found Interfax Themed JavaScript Malspam

The LookingGlass Cyber Threat Intelligence Group (CTIG) observed a malspam campaign attempting to ...

Weekly Phishing Report – October 26, 2015

Phishing Report: Top Targets Week of October 18 - October 24, 2015 Author: Robert McDaniel In this ...