The Wiretap is your weekly digest of cybersecurity, internet privacy and surveillance news. To get it in your inbox, subscribe here.
Over the weekend, Politico and the Washington Post revealed they had been sent research files about JD Vance that appeared to have been stolen from Donald Trump’s presidential campaign. Soon after, the campaign confirmed it had been targeted, though details on the nature of the breach were thin on the ground.
Prior to this, Microsoft had released a report claiming that in June, Iranian hackers had “sent a spear-phishing email to a high-ranking official of a presidential campaign from a compromised email account of a former senior advisor.” Trump campaign spokesperson Steven Cheung nodded to the Microsoft report, saying it “coincides with the close timing of President Trump’s selection of a vice presidential nominee.” He did not provide further explanation, but some suggested this implied that Iranian-based hackers were responsible and that they’d targeted Trump because of his calls for aggressive action to contain any threat coming from Iran.
Defending Digital Campaigns (DDC), which offers presidential campaign teams access to cybersecurity tools, said the attacks were a wake up call for every political campaign to review their cybersecurity posture immediately. "This kind of attack and release of information is exactly the kind of threat faced by all campaigns large and small,” wrote DDC President and CEO Michael Kaiser.
"Because campaigns are targets of nation-states, hacktivists and cybercriminals, DDC and others consider everyone working on campaigns to be high-risk computer users."
The FBI is now investigating the incident, Politico reports, and the agency is also looking into attempts to breach the Biden and Harris campaigns.
It won’t be the end of foreign interference attempts in the run up to the November election. As Microsoft wrote in its report, "Looking forward, we expect Iranian actors will employ cyberattacks against institutions and candidates while simultaneously intensifying their efforts to amplify existing divisive issues within the U.S., like racial tensions, economic disparities, and gender-related issues."
Got a tip on surveillance or cybercrime? Get me on Signal at +1 929-512-7964.
A Former Palantir Exec Built A Google-Like Surveillance Tool For The Police
Founded and backed by former Palantir execs, Peregrine Technologies hopes to turbocharge local police department access to surveillance data, while curbing cops’ abuses of their technologies. In a Forbes profile, CEO Nick Noone talks about how he and his cofounder spent 18 months inside San Pablo Police Department, why he celebrates smaller contracts over multi-million deals, and says his company isn’t just another startup pontificating from the ivory towers of Silicon Valley. The business just earned a place on Forbes’ Next Billion Dollar Startups list.
Stories You Have To Read Today
A married couple who lived in the affluent city of Frisco, Texas have been accused of running a pig butchering scam that defrauded victims of nearly $10 billion in cryptocurrency. The FBI says the couple and their two children left the country for China in January and have not returned.
Elon Musk claimed his interview with Donald Trump was delayed because of a distributed denial of service (DDoS) attack on X. Such attacks see a company’s servers flooded with traffic, making them inoperable. There’s some skepticism around Musk’s claim, with suggestions it could’ve just been an influx of traffic caused by interest in the interview.
Researchers warned that a flaw in the Google Chrome, Apple Safari and Mozilla Firefox browsers allowed access to internal networks by allowing connections to the IP address 0.0.0.0. While Apple and Google are already rolling out fixes, Mozilla is concerned blocking access to 0.0.0.0 will break some servers that rely on it for things like web app testing.
Winner of the Week
CrowdStrike was awarded with the Most Epic Fail trophy during the DEF CON hacker conference in Las Vegas over the weekend, following the massive IT outage in July that led to mass flight cancellations and computers going down at hospitals. While the so-called Pwnie Award was ironic, CrowdStrike was cheered for turning up and admitting to its mistake. It was “definitely not the award to be proud of receiving,” said president Michael Sentonas.
Loser of the Week
A Nashville, Tennessee resident has been charged with helping North Koreans gain remote employment in the U.S. and use their wages to support the country’s weapons programs. The DOJ claimed Matthew Isaac Knoot, 38, ran a laptop farm from premises in Nashville, where employers sent their work PCs. North Koreans would log into those laptops from abroad, so it appeared to the employer they were working in the U.S., according to the charges. Knoot was paid a monthly fee by a foreign-based facilitator who went by the name Yang Di, the Justice Department said.
More On Forbes
ForbesForbes Next Billion-Dollar Startups List Has Accurately Predicted 100+ Unicorns In 10 YearsBy Amy FeldmanForbesNext Billion-Dollar Startups 2024By Amy FeldmanForbesThis AI Coding Engine Can Process 100 Million Lines Of Code At OnceBy Rashi Shrivastava
Follow me onTwitter.Check outmywebsite.Send me a securetip.