Share this page!

Eric Geller Profile picture
Twitter logo
10 Oct, 5 tweets, 3 min read
Missed this last night, but apparently U.S. Cyber Command was behind the recent temporary disruption in the massive Trickbot botnet, which officials worry could be used to lock up election offices with ransomware. washingtonpost.com/national-secur… Image
Microsoft has won a court order giving it control of domain names associated with the Trickbot ransomware. The company has disabled the servers that let the malware's operators infect new computers. blogs.microsoft.com/on-the-issues/…
Ransomware affecting election systems is one of U.S. officials' biggest concerns right now.

Microsoft execs told NYT that "they had carefully timed their operations to put Russian cybercriminals on their heels weeks before the election."

nytimes.com/2020/10/12/us/…
Microsoft worked with Symantec, ESET, and other partners to disable Trickbot's infrastructure.

More details here:

symantec-enterprise-blogs.security.com/blogs/threat-i…
eset.com/int/about/news…
blog.lumen.com/a-look-inside-…
Microsoft's security team has posted its own technical breakdown of the operation here: microsoft.com/security/blog/…

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Eric Geller

Eric Geller Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @ericgeller

Eric Geller Profile picture
9 Sep
This extraordinary allegation fits with a pattern of Trump officials like AG Barr distorting the IC's findings about evergreen Chinese and Iranian propaganda to distract from Russia's aggressive election interference efforts.
The acting (and, per GAO, illegally appointed) deputy DHS secretary allegedly ordered a subordinate to water down a warning about white supremacist terrorism.

Why doesn't Ken Cuccinelli (allegedly) want the government to understand the threat of white supremacist terrorists?
O'Brien has been one of the most aggressively dishonest officials re: election interference, constantly pushing falsehood that China is the biggest threat.

reuters.com/article/us-usa…

wsj.com/articles/u-s-n…
Read 5 tweets
Eric Geller Profile picture
22 Jul
Mobile voting vendor Voatz is trumpeting a test lab's report saying that its service meets the latest federal standards.

Experts say the report is meaningless, since those standards are hopelessly outdated and Voatz helped decide what/how to test.

subscriber.politicopro.com/article/2020/0…
The test lab, Pro V&V, used VVSG 1.1, which @EACgov approved in 2015. Experts call the security reqs in 1.1 laughably anemic. (VVSG 2 is in the works.)

@jhalderm said the report “illustrates why VVSG 1.1 certification is inadequate to establish the security of a voting system.”
.@mspecter, who co-wrote a report exposing serious vulns in Voatz's system, told me that Pro V&V's report "says little-to-nothing."

For one thing, it doesn't even address flaws that MIT & @trailofbits identified in their reports.

internetpolicy.mit.edu/wp-content/upl…
blog.trailofbits.com/2020/03/13/our…
Read 13 tweets
Eric Geller Profile picture
21 Jul
BREAKING: U.S. charges two Chinese hackers with breaching hundreds of companies, NGOs, & dissidents + trying to hack 3 U.S. firms researching coronavirus. The men sometimes worked in partnership with a Chinese MSS officer.

Indictment: justice.gov/opa/press-rele…
Since September 2009, the defendants have allegedly hacked into medical device makers, industrial engineering firms, gaming and education software firms, pharma companies, and defense contractors.

Victims in U.S., Australia, Germany, Japan, U.K., and 6 other countries.
The hackers tried to breach the networks of Maryland, Massachusetts and California firms researching coronavirus vaccines and treatments.

They also targeted a CA firm making testing kits.
Read 17 tweets
Eric Geller Profile picture
15 Jul
Prominent Twitter accounts are being hacked for a Bitcoin scam. Just saw Biden's account get hit. What a time to be alive!
The Obama tweet just disappeared. Here's an archive: archive.is/BH05o
Kind of amazing that a company as big and important as Twitter can't immediately find the common weak link that's powering this mass hack.
Read 10 tweets
Eric Geller Profile picture
1 Jun
Is this protecting and serving?
Is this protecting and serving?
Is this protecting and serving? nytimes.com/2020/06/01/nyr… ImageImage
Read 42 tweets
Eric Geller Profile picture
11 Mar
The congressionally chartered Cyberspace Solarium Commission released its long-awaited report today at solarium.gov.

The report makes more than 75 recommendations to reorganize and improve govt cyber functions & strengthen private-sector security.

A few highlights...
First up, the big structural reforms. The report recommends creating an Office of the National Cyber Director inside the White House, creating cybersecurity committees to consolidate oversight, and reviving Congress's Office of Technology Assessment.
The report also suggests promoting @CISAgov's director to the equivalent of a deputy Cabinet secretary and floats the idea of turning the CISA Assistant Director positions into career roles.
Read 12 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!

Follow Us on Twitter!

Like this author's thread?

Get email notifications when new thread is out from this Author!

Check out other threads from this Author!

Read all threads by @ericgeller