UNCLASSIFIED

June 23, 2017

North Dakota State and Local Intelligence Center

Bi-Weekly

Cybersecurity Rollup

Included in this week’s summary: Click on the Section Header to go directly to that location in the Summary

NORTH DAKOTA & REGIONAL (U) Sweepstakes scam continues to trick North Dakota residents (U) Billings cyber security businesses getting busier in the wake of global WannaCry virus (U) SD National Guard activates new cyber protection team

NATIONAL (U) Brutal Kangaroo: CIA-developed for Hacking Air-Gapped Networks Covertly (U) Republican data analytics firm exposes voting records on 198 million Americans (U) 25-Year-Old Pleads Guilty to Hacking U.S. Military Satellite Phone System

INTERNATIONAL (U) Russia has developed a that can disrupt power grids, according to new research (U) WannaCry Forces Honda to Take Production Plant Offline (U) Costs Drop Globally But Increase in US (U) Israeli Government Credited With Hacking ISIS (U) The world at cyber war (U) Web Hosting Company Pays $1 Million to to Get Files Back

UNCLASSIFIED

UNCLASSIFIED

NORTH DAKOTA & REGIONAL (U) Sweepstakes scam continues to trick North Dakota residents (U) In the last twelve months, elderly North Dakotans have reported losses of more than $366,000 to sweepstakes scams. Attorney General Wayne Stenehjem said the victims all believed they had won a valuable prize in a sweepstakes but had to pay assorted fees and taxes before the prize could be released to them. Source: (U) http://www.valleynewslive.com/content/news/Sweepstakes-scam-continues-to-trick-North-Dakota- residents-428489063.html

(U) Billings cyber security businesses getting busier in the wake of global WannaCry virus (U) A cyber attack that spread ransomware across the globe managed to disable networks and strike panic in private businesses and government agencies. But by one measure, the WannaCry attack was a dud. Source: (U) http://billingsgazette.com/business/features/billings-cyber-security-businesses-getting-busier-in-the- wake-of/article_f86682d1-abaf-5f66-8358-b87362a7265e.html

(U) SD National Guard activates new cyber protection team (U) The South Dakota Army National Guard held an activation ceremony for their newest unit in Rapid City, June 9. The activation of Detachment 2, Cyber Protection Team 174 is part of the National Guard Bureau’s ongoing growth of cyber forces throughout the Department of Defense. Source: (U) ://www.dvidshub.net/news/238343/sd-national-guard-activates-new-cyber-protection-team

NATIONAL (U) Brutal Kangaroo: CIA-developed Malware for Hacking Air-Gapped Networks Covertly (U) WikiLeaks has published a new batch of the ongoing leak, this time detailing a tool suite – which is being used by the CIA for Windows that targets “closed networks by air gap jumping using thumb drives,” mainly implemented in enterprises and critical infrastructures. Source: (U) http://thehackernews.com/2017/06/wikileaks-Brutal-Kangaroo-airgap-malware.html

(U) Republican data analytics firm exposes voting records on 198 million Americans (U) Researcher Chris Vickery has discovered nearly 200 million voter records in an unsecured Amazon S3 bucket maintained by Deep Root Analytics (DRA), a big data analytics firm that helps advertisers identify audiences for political ads. The data was discovered on June 12, and secured two days later after Vickery reported the incident to federal regulators. Source: (U) http://www.csoonline.com/article/3201201/security/rnc-data-analytics-firm-exposes-voting-records-on- 198-million-americans.html

UNCLASSIFIED

UNCLASSIFIED

(U) 25-Year-Old Hacker Pleads Guilty to Hacking U.S. Military Satellite Phone System (U) A British computer hacker who allegedly hacked a Department of Defense satellite system in 2014 and accessed the personal information of hundreds of military personnel has pleaded guilty on Thursday. Source: (U) http://thehackernews.com/2017/06/british-hacker-military-system.html

INTERNATIONAL (U) Russia has developed a cyberweapon that can disrupt power grids, according to new research (U) Hackers allied with the Russian government have devised a cyberweapon that has the potential to be the most disruptive yet against electric systems that Americans depend on for daily life, according to U.S. researchers. The malware, which researchers have dubbed CrashOverride, is known to have disrupted only one energy system — in Ukraine in December. In that incident, the hackers briefly shut down one-fifth of the electric power generated in Kiev. Source: (U) https://www.washingtonpost.com/world/national-security/russia-has-developed-a-cyber-weapon- that-can-disrupt-power-grids-according-to-new-research/2017/06/11/b91b773e-4eed-11e7-91eb- 9611861a988f_story.html?tid=ss_tw&utm_term=.3b3b2d35a913

(U) WannaCry Forces Honda to Take Production Plant Offline (U) In an example of just how persistent modern cyberthreats can be, automaker Honda Motors had to temporarily stop production at its Sayama plant in Japan this week after being hit by WannaCry, a malware threat the company thought it had mitigated just one month ago. Source: (U) http://www.darkreading.com/attacks-breaches/wannacry-forces-honda-to-take-production-plant- offline-/d/d-id/1329192

(U) Data Breach Costs Drop Globally But Increase in US (U) The average cost per data breach is now $3.62 million worldwide, marking a 10% drop from the $4 million average cost-per-breach in 2016. This marks the first time data breach cost has decreased overall since IBM created its Cost of Data Breach report, which was published June 20. The good news unfortunately doesn't apply to everyone: cost increased 5% in the US during the same timeframe that it dropped 26% in Europe. Source: (U) http://www.darkreading.com/attacks-breaches/data-breach-costs-drop-globally-but-increase-in- us/d/d-id/1329177

(U) Israeli Government Credited With Hacking ISIS (U) A new report shows Israeli government hackers broke into ISIS computer networks, uncovering plans by the group to build bombs. The report states ISIS militants designed bombs that looked just like laptop batteries. Source: (U) http://www.oann.com/israeli-government-credited-with-hacking-isis-cell/

UNCLASSIFIED

UNCLASSIFIED

(U) The world at cyber war (U) Amid the nuclear threat posed by North Korea, the rising tension between the United States of America and over the issue on freedom of navigation at the South China Sea and the raging war on terror against the Islamic State of Iraq and Syria in Syria and Iran, there is another kind of war now raging globally where control and dominance at the front are not measured in terms of military power, but on computer wizardry. Source: (U) http://www.businessmirror.com.ph/the-world-at-cyber-war/

(U) Web Hosting Company Pays $1 Million to Ransomware Hackers to Get Files Back (U) South Korean web hosting provider has agreed to pay $1 million in to hackers after a ransomware infected its 153 servers, encrypting 3,400 business websites and their data, hosted on them. Source: (U) http://thehackernews.com/2017/06/web-hosting-ransomware.html

The Bi-Weekly Cybersecurity Roll up is a non-commercial publication intended to educate and inform. Further reproduction or redistribution is subject to original copyright restrictions. NDSLIC provides no warranty of ownership of the copyright, or accuracy with respect to the original source material. If you have any items that you would like to see added to the Bi-Weekly Cyber Roll up, please forward it to the NDSLIC ([email protected]).

UNCLASSIFIED