Lisa Sales had just started work for Booz Allen Hamilton, a Pentagon contractor, when she was raped by her house tenant - a Russian grad student. She soon learned he was the son of a former career officer in Russia's FSB, who had spied for the US for 6 yrs news.yahoo.com/how-a-brutal-a…
As she dug into her assailant's history, she learned the father/son had likely been relocated to the US by the CIA; records showed the father had $16 million in assets, presumably payment from CIA. After raping Sales, the son was arrested again for threatening a couple with a gun
This story raises a lot of questions about the CIA's spy relocation program and what happens when former spies or their families commit crimes here. News about the crimes can draw unwanted attention to the spy, which puts CIA in difficult situation. Do they try to cover up crime?
The authors of this story @JennaMC_Laugh
& @SeanDNaylor will be joining me on Sidechannel this wk to talk about their CIA story, the questions it raises, and the difficulties involved in covering national security stories in general. Tues 10amPT/1pmET. Grab yr lunch and join us
• • •
Missing some Tweet in this thread? You can try to
force a refresh
Researchers find 18 additional command servers used in SolarWinds campaign. Also find that two servers previously known, that were used to push 2nd-stage malware, were mysteriously active Feb 27, 2020, a month before SW customers got infected w/ backdoor zetter.substack.com/p/research-unc…
If servers were pushing out 2nd-stage malware to victims in Feb, this raises the possibility that 1) a previously unknown version of SW software was compromised and infected customers a month before SW says customers got infected...
2) the 2nd stage command servers were pushing out 2nd-stage malware to victims who were already infected w/ something other than the SolarWinds software that carried the backdoor or ...
Signal really went to town with this video showing how they hacked Cellebrite's UFED device. Expect it to be replayed at hacker conferences the planet over; it's got a guaranteed spot in hacker lore signal.org/blog/videos/ce…
Announcing: Mark Zuckerberg will join our new Sidechannel for a conversation with @CaseyNewton in the launch of our new Discord txt/audio chat forum. It's a measure of how respected Casey's Platormer publication is (platformer.news/publication) that Zuck wanted to join him for this.
I've heard Zuckerberg will be making news during discussion. Sidechannel, launched by Casey, I, and six other independent writers, is open to paid subscribers of my Zero Day publication (zetter.substack.com), Casey's Platformer or any of the other publications listed below
Positive Technologies, the Russian security firm sanctioned this wk for allegedly helping Russian spies hack the US, has for yrs belonged to Microsoft's MAPP program, which gives security vendors advance access to info about vulns and proof-of-concept code zetter.substack.com/p/sanctioned-f…
Although the allegations against Positive Technologies cited by the Treasury Dept were vague, a little-seen report published by the Atlantic Council last month appears to provide much more detail about the activities that may have led to the sanctions against the company.
That report doesn't name Positive Technologies at all, instead it uses a code name - ENFER - to refer to a Russian security firm aiding Russian spies. ENFER has allegedly reversed/repurposed malicious code found on Russian gov networks to create exploits for other intrusions.
Pfizer CEO said during panel today that people will have to get a third "booster" shot of the Covid vaccine 6-12 months after receiving the two initial shots, and then potentially everyone will have to be vaccinated again each year facebook.com/watch/live/?v=…
"There are vaccines that are like polio that one dose is enough... and there are vaccines like flu than you need every year," he said.
"The Covid virus looks more like the influenza virus than the polio virus."
Biden official said something similar this morning. "Dr David Kessler, the Biden administration's chief science officer of COVID response, said that Americans should expect to receive booster shots, especially as variant continue to spread."
The blackout at Natanz nuclear facility in Iran was caused by explosives, not a cyberattack. "a large explosion that completely destroyed the independent—and heavily protected—internal power system that supplies the underground centrifuges nytimes.com/2021/04/11/wor…
"The officials, who spoke on the condition of anonymity to describe a classified Israeli operation, said that the explosion had dealt a severe blow to Iran’s ability to enrich uranium and that it could take at least nine months to restore Natanz’s production."
Clarification: the story says the blackout was caused by a large explosion. Theoretically such an explosion could be triggered by a cyberattack, depending on how it's done. But this sounds like it was physical sabotage rather than cyber. TBD