This article was published on the GCSC website, 1 July 2019
The Global Commission on the Stability of Cyberspace (GCSC) conducted its third meeting of 2019 in The Hague, the Netherlands, on 16-17 June. The meeting took place ahead of EuroDIG, held in The Hague from 19-20 June.
This article was published by Wesley Rahn on DW, 5 August 2019
North Korea is using cyberattacks on banks and cryptocurrency exchanges to fund its weapons programs, according to a UN Security Council report seen by Reuters news agency on Monday. The report, compiled by independent experts monitoring Pyongyang’s compliance with international sanctions over the past six months, said that North Korea is carrying out “widespread and increasingly sophisticated” cyberattacks. The experts say these measures have so far netted the rogue state over $2 billion (€1.7 billion).
This article was published by Sydney J. Freedberg Jr. on BreakingDefense, 7 August 2019
If a hacker shuts off a base’s electricity or stops spare parts from arriving on time, they can sabotage a military mission without ever attacking a military network.
This article was published by Charlie Osborne on ZDNet, 5 August 2019
Cyberattacks designed to cause damage have doubled in the past six months and 50 percent of organizations affected are in the manufacturing sector, researchers say. On Monday, IBM’s X-Force IRIS incident response team published new research based on recent cyberattacks they have been called in to assist with, and the main trend the group is witnessing is the rise of destructive malware.
Sign up to the weekly newsletter!
This Cyberstability Update is an overview of all articles included in our Weekly Newsletters for the month. Want to receive these updates on a weekly basis? Sign up here to receive our weekly newsletter on the work of the Global Commission on the Stability of Cyberspace (GCSC), its members and developments in the field of international cyber policy.
Estonia debuts first-ever cyber diplomacy training, CyberScoop.
India Is the World’s Leader in Internet Shutdowns, Foreign Policy.
Israel eases rules on cyber weapons exports despite criticism, Reuters.
Cyber Deterrence is Overrated, German Institute for International and Security Affairs.
‘Five Eyes’ alliance calls for backdoor access to WhatsApp and other encrypted communications, Computing.
Russia Solidifies Grip on its Cyberspace, via the Sovereign Internet Law, International Policy Digest.
Tags: Special Advisor Vint Cerf.
Governing Cyberspace: State Control vs. The Multistakeholder Model, Belfer Center.
Exporting digital authoritarianism: The Russian and Chinese models, Brookings.
Chinese-style ‘digital authoritarianism’ rising around world – study, South China Morning Post.
China’s PLA seeks to bring cyberwarfare units under one roof, South China Morning Post.
National Security Concerns Threaten Undersea Data Link Backed by Google, Facebook, The Wallstreet Journal.
Federal Ban on Chinese Telecom Equipment Takes Effect, Nextgov.
Selling to Huawei, CSIS.
American Tech Shudders as China Cyber Rules Are Expected to Get Tougher, The Wall Street Journal.
Getting the Drop in Cyberspace, Lawfare.
Feds plan to use SecureDrop as a vulnerability reporting portal, CyberScoop.
Tags: GCSC Commissioner Jeff Moss.
Time for a Cyber-Attack Exception to the Foreign Sovereign Immunities Act, JustSecurity.
Cyber peace and security, Reaching Critical Will.
International Law and Cyber Activity: Why are a set of governing norms needed?, Lexology.
Contract for the Web draft: it’s time to add your voice, a contract for the web.
Threats and Risk Mitigation
Recent breaches reaffirm it’s time to modernize the Social Security Number, The Hill.
GCC organisations need stronger resilience strategies to restore critical functions after disruptive events: Booz Allen Hamilton, Oilandgas.com.
The Cybersecurity 202: Hackers just found serious vulnerabilities in a U.S. military fighter jet, The Washington Post.
Army faces familiar workforce woes in cyber, electronic warfare units, FCW.
How the Army is strengthening cyber cities, Fifth Domain.
How the Air Force relied on hackers to secure its move to the cloud, CNet.
Episode 158: How NotPetya has Insurers grappling with Systemic Cyber Risk, The Security Ledger.
How an NSA researcher plans to allow everyone to guard against firmware attacks, CyberScoop.
When Ransomware Cripples a City, Who’s to Blame? This I.T. Chief Is Fighting Back, The New York Times.
The World’s Most Elite Cybercrime Fighting Unit, Nanalyze.
WhatsApp Hack Attack Can Change Your Messages, Forbes.
Conflict in Cyberspace
UN probing 35 North Korean cyberattacks in 17 countries, AP News.
US Cyber Command has publicly posted malware linked to a North Korea hacking group, TechCrunch.
The Age of Digital Geopolitics & Proxy War Between US and China, Inter Press Service.
Chinese State Hackers Suspected Of Malicious Cyber Attack On U.S. Utilities, Forbes.
U.S. Cyberattack Hurt Iran’s Ability to Target Oil Tankers, Officials Say, The New York Times.
High-Level Cyber Intrusions Hit Bahrain Amid Tensions With Iran, The Wall Street Journal.
From State-Sponsored Attackers to Common Cybercriminals: Destructive Attacks on the Rise, SecurityIntelligence.
Foreign power was behind cyber attack on Czech ministry: Senate, Reuters.
Russia Suspected by Some in Giant Bulgaria Hack, The New York Times.
The Digital Big Bang: The Hard Stuff, the Soft Stuff, and the Future of Cybersecurity, Phil Quade.
Black Hat: The Cyber Shell Game – War, Information Warfare, and the Darkening Web, SMBNation.
BBC: The Battle to Control Cyberspace, The Hague Centre for Strategic Studies.
Collective Intelligence Podcast, Alexander Klimburg on Ideologies and Cyber Conflict, Flashpoint.
Industry and Civil Society Developments
Asia’s Great Huawei Debate, The Diplomat.
From the iPhone to Huawei: The new geopolitics of technology, The Brookings Institution.
Part IV: As Hate Speech Proliferates Online, Critics Want to See and Control Social Media’s Algorithms, BroadbandBreakfast.
Google Project Zero: 95.8% of all bug reports are fixed before deadline expires, ZDNet.
Maintaining the integrity of our platforms, Google.
Twitter Shuts Chinese Accounts Targeting Hong Kong Protests, SecurityWeek.
Funders threaten to quit Facebook project studying impact on democracy, Reuters.
Just Security Launches the Russia Investigation Congressional Clearinghouse, JustSecurity.
Internet Routing Security Initiative Launches Online ‘Observatory’, DARKReading.
Cisco to pay $8.6 million fine for selling government hackable surveillance technology, The Washington Post.
GitHub confirms it has blocked developers in Iran, Syria and Crimea, TechCrunch.
To save the internet, Silicon Valley is sending it to space, Astronomy.
Tags: Special Advisor Vint Cerf.
Cyber Stability Conference 2019: Summary Report, UNIDIR.
Capital One Breach Shows a Bank Hacker Needs Just One Gap to Wreak Havoc, The New York Times.
Watchdog Uncovers Cyber Gaps at Radioactive Waste Facility, Nextgov.
Yet another hacking group is targeting oil and gas companies, Dragos says, CyberScoop.
About the KNOB Attack, KnobAttack.
The Rise of “Bulletproof” Residential Networks, KrebsonSecurity.
Hackers Subvert Security Checks Like the Browser Padlock, The Wallstreet Journal.
Next Generation Cyber: Malware-Free Attacks, InfoSecurity Magazine.
‘Cloud Atlas’ Cyberspies Use Polymorphic Malware in Government Attacks, SecurityWeek.
With warshipping, hackers ship their exploits directly to their target’s mail room, TechCrunch.
More than 3 million customer records from Sephora reportedly being peddled on Dark Web, says cybersecurity firm, The Online Citizen.
Democracy and Electoral Infrastructure
White House Watching Google Closely Amid Reports of Election Interference, Trump Says, The Epoch Times.
Former DHS, intelligence leaders launch group to protect presidential campaigns from foreign interference, The Hill.
Exclusive: Critical U.S. Election Systems Have Been Left Exposed Online Despite Official Denials, Motherboard.
Hackers were told to break into U.S. voting machines. They didn’t have much trouble, The Washington Post.
Securing the Vote: What it Takes, Insights & Intelligence.
DARPA to Bring its Smart Ballot Boxes to DEF CON for Hacking, DarkReading.
Digital challenges @EuroDIG The Hague, Lindblom Den Haag.
Black Hat 2019: What We Expect, PCMag.
Tags: GCSC Commissioner Jeff Moss.
7 must-see talks at Black Hat and DEF CON 2019, CSO.
#BHUSA: Jeff Moss Talks of Need to Be Better Communicators, InfoSecurity Magazine.
Tags: GCSC Commissioner Jeff Moss.
Intellectual Debt: With Great Power Comes Great Ignorance, Medium.
STEM Education is Not Enough to Aress the Future of Work, Says Global Think Tank, MENAFM.
Experts urge for cyber ethics lessons for primary school pupils, The New Paper.
Cyberbullying, Trolling & Free Speech: Yasmin Alibhai-Brown, Nigel Inkster, Ella Whelan And Janne Teller Debate, 3QuarksDaily.
The age of artificial intelligence: Cities and the AI edge, AsiaOne.
The weaponisation of information is mutating at alarming speed, The Guardian.
A cyberattack could wreak destruction comparable to a nuclear weapon, The Conversation.
What Would Happen If the Whole Internet Just Shut Down All of a Sudden?, Gizmodo.
APT41: A Dual Espionage and Cyber Crime Operation, FireEye.
Is Chinese technology transforming the Commonwealth?, Institute of Common Wealth Studies.
Is Nationalism Threatening the Future of the Internet?, Brink.
How YouTube Radicalized Brazil, The New York Times.
Preliminary Observations on the Utility of Measuring Cybersecurity, Lawfare.
23-27 June 2019: Cyber Week, Tel Aviv University.
2-4 July 2019: INTERPOL World 2019, INTERPOL.
16-18 July: RSAC 2019 Asia Pacific & Japan, RSA Conference.
3-8 August 2019: Black Hat USA, Black Hat.
8 August 2019: Cyber Games, Wicked6.
8-11 August 2019: DEF CON 27, DEF CON.
13 August 2019: Securing the Economic Potential of Cyberspace, CEDA.
13-14 August 2019: Cybersecurity Summit: New York City, ISMG.
3 September 2019: Emerging technologies and the international order, ORF.
3 September 2019: Shaping a Blueprint for Inclusive Governance in Cyberspace, GMF.
4-5 September 2019: 14th BISA US Foreign Policy Working Group Annual Conference, BISA.
11 September 2019: Japan’s Response to Cyber Threats: Mega Events and Beyond, Reischauer Center for East Asian Studies.
21-22 September 2019: The Dark and the Digital, Institute of Art and Ideas.
2-3 October 2019: CyberCrimeCon/19, Group-IB.
8-10 October 2019: GFCE Annual Meeting 2019, GFCE.
21-25 October 2019: Cyberweek, CyberScoop.
28-29 October 2019: AI Ethics, Policy, and Governance, Stanford University.
Late October 2019: 6th World Internet Conference Wuzhen Summit, Wuhzen Summit.
12-13 November 2019: Paris Peace Forum, PPF.