Transcript
A (0:04)
The EU scraps its upcoming vote on chat control, Ukraine establishes a cyber force, CISA workers are reassigned to immigration enforcement and two teens are arrested over the UK nursery hacks. This is the Risky bulletin prepared by Catalyn Kimparnu and read by me, Claire aird. Today is the 10th of October and this podcast episode is brought to you by Corelight. In today's top story, the EU has scrapped its upcoming vote on chat control. If passed, the legislation would have required tech companies to scan content client side for child sexual abuse materials. Danish officials abandoned the plan after failing to gather the necessary votes. German officials criticised the proposal and said private communication should not be under blanket suspicion. Twelve of the bloc's 27 members publicly backed the proposal. Nine were against and the rest were undecided. In other news, the DHS has reassigned CISA cyberspecialists to support the Trump administration's deportation campaign. CISA employees have been moved to ice, Customs and Border Protection and the Federal Protective Service, according to Bloomberg. Workers had one week to accept the roles or resign. The FCC's data breach reporting rules for telecom providers have been halted pending re evaluation. The rules required telcos to notify victims of security breaches within 30 days. They were passed during the Biden administration. Last year, US Telco industry groups sued the FCC claiming the agency overstepped its authority. The appeals court initially sided with the fcc, but the agency's current leadership has requested an abeyance while it reassesses the rules. A new Californian law will require browser makers to let residents opt out of having their data sold. Browser vendors will be required to add a notification mechanism that alerts web companies when users do not consent to the sale of their data. The law specifically dictates that this notification is implemented in the browser rather than via pop ups. Ukraine will establish a national cyber force. The Cyber Forces Command will answer directly to Ukraine's commander in chief. It will be composed of regular recruits and and a reserve force. Civilians will be able to join the cyber reserves temporarily to carry out tasks without formally joining the military. Salesforce will not pay a ransom to the hackers who launched an extortion website last week. The Scattered Lapses Hunters group claimed to have stolen almost 1 billion records from 40 Salesforce customers and threatened to publish them. The data was hacked earlier this year from Salesloft and a unit of the company that provides an AI chat agent. A prominent US law firm has notified customers of a security breach. Williams and Connolly said some attorney email accounts were breached by Chinese government hackers. The law firm represents several high ranking US politicians. Last month, Google's security team warned of a Chinese hacking campaign targeting US law firms. SonicWall's recent cloud backup breach affected all customers that use the service. The company initially said just 5% of customers had device configuration data stolen in the attack. Sonicwall has since updated its breach notification page. Customers were encouraged to reset firewall credentials following the incident. Norwegian telecommunications company Telenor has been sued over human rights abuses. Plaintiffs claim the company's subsidiary Celcom Digi unlawfully shared customer data with Myanmar's military junta. The information was allegedly used to imprison dissidents. A military junta overthrew Myanmar's democratically elected government in a 2021 coup. UK police have arrested two teenagers accused of hacking and extorting a London nursery. The Kedo nursery chain was hacked last month. The attackers sought ransom after publishing photos and data of 10 young children on the Dark Web. Both the accused are 17 year olds and are based in Hertfordshire. They operated under the name Radiant Group. A Russian basketball player accused of being a ransom negotiator for the Conti group is contesting the evidence in a French court, according to French reporter Gabrielle Thierry. The defence claims Daniil Kasatkin was tricked into purchasing a hacked second hand computer and that he didn't own the Gmail address listed in court documents. He was arrested in June and US authorities are seeking his extradition. The September hack against software giant Red Hat is part of a larger campaign that's targeting AWS cloud accounts. A group named the Crimson Collective is using compromised IM accounts to pilfer corporate AWS environments, according to Rapid7. The group is currently focused on data theft for future extortion campaigns. A recent Oracle E business suite, Zero Day, has been exploited in the wild since July. It was one of many Oracle E biz vulnerabilities exploited by the Clop extortion extortion group. According to Mandiant, the group has successfully breached dozens of Oracle customers and is now in the extortion phase of its operation. AI agents Rock, Gemini and Deepseek are vulnerable to ASCII smuggling attacks. The attacks use invisible ASCII control characters to introduce malicious prompts in text that appears benign, according to AI security firm Firetail. Google declined to address the attack vector. And finally, China's cybersecurity agency has launched a campaign to remove posts expressing negative or pessimistic emotions. Chinese social media platforms will be required to remove all negative content within two months. Many Chinese youths have complained online about bleak futures and the lack of jobs. So this sounds like a great solution to the problem to us. Anyway, that is all for this podcast edition. Today's show was brought to you by our sponsor, Corelite. Find them at corelight. Com. Thanks for your company.