#5yrsago #Taiwan’s legal #crowdsourcing tool is working surprisingly well to resolve thorny legislative problems https://www.technologyreview.com/2018/08/21/240284/the-simple-but-ingenious-system-taiwan-uses-to-crowdsource-its-laws/

#5yrsago The true story of #Notpetya: a Russian cyberweapon that escaped and did $10B in worldwide damage https://www.wired.com/story/notpetya-cyberattack-ukraine-russia-code-crashed-the-world/

#5yrsago European lawmaker writes post warning about dangers of automatic #CopyrightFilters, which is taken down by an automatic copyright filter https://www.techdirt.com/2018/08/21/automated-filter-removed-parliament-members-article-warning-about-censorship-automated-filters/

11/

#Cybersecurity #Merck #Cyberattack #NotPetya #Russia: "Insurers for Merck & Co. must help cover losses from a $1.4 billion cyberattack that the U.S. blamed on Russia, a court said, rejecting the insurers’ argument that the attack was akin to an act of war normally excluded from coverage.

The NotPetya cyberattack didn’t involve military action and can’t be excluded from coverage under a warlike-act exclusion, New Jersey appellate division judges said in a decision released Monday.

“The exclusion of damages caused by hostile or warlike action by a government or sovereign power in times of war or peace requires the involvement of military action,” the judges wrote. “Coverage could only be excluded here if we stretched the meaning of ‘hostile’ to its outer limit.”

Merck is pleased with the decision, a spokesman for the Rahway, N.J.-based pharmaceutical company said. Lawyers for Merck’s insurers didn’t respond to a request for comment."

https://www.wsj.com/articles/mercks-insurers-on-the-hook-in-1-4-billion-notpetya-attack-court-says-528aeb01

Page 2 of the #NCS goes in on #Russia for #NotPetya , and the third page details the digital sins of #China #Iran #NorthKorea and Russia under the header #MaliciousActors

Auf die Frage, wie der schändliche #Angriffskrieg enden kann, vermisse ich eine Option:
Cyberwar. Russland hat gezeigt, wozu sie cybermässig in der Lage sind. Sie haben schon öfter die Ukraine erfolgreich angegriffen. Ich kann mir sehr gut vorstellen, dass sie daran arbeiten. #NotPetya hat ja ganz gut funktioniert, bis auf, dass es das Land verlassen hat.

I'm re-reading WIRED's article on the #NotPetya attack that affected #Maersk in 2017.

I tell my friends and colleagues this is a legendary story, because of its scale and impact, and how it marks, to me, the beginning of the #ransomware era (even though this was just a wiper, not a real ransomware).

But I think it's legendary to me because it was the story that really got me interested in cybersecurity, and led me down the path I'm on now.

#NowReading:

https://www.wired.com/story/notpetya-cyberattack-ukraine-russia-code-crashed-the-world/

#Podcast Tipp für alle, die sich gerne die Geschichten von Hackern oder Vorfällen wie #notpetya , #shadowbrokers , #Triton anhört:
#darknetdiaries

CERT-FR has just published a report on the integration of untrusted software. Recommendations are available at the end of the report.
https://cert.ssi.gouv.fr/cti/CERTFR-2022-CTI-007/
#Goldenspy #NotPetya

A lot of breathless #ZOMG reporting on how #Russia entities are targeted by some never before seen #wiper masquerading as #ransomware, ignoring that #RussianGovernment has leveraged "fake" ransomware for #CNA #disruptive effects since at least 2017 with #NotPetya

Re #CryWiper article by Ars: to me, a wording like ‘In 2017, self-replicating malware dubbed #NotPetya spread across the globe in a matter of hours and caused an estimated $10 billion in damage.’ borders on false balance. It didn’t just happen. Via initial infection vector (MeDoc) its selected targets were businesses declaring taxes in #Ukraine. That’s as accidental as polonium in one’s tea. Like Novitchok it might have gotten out of hand, but how about calling #Russia out when obvious? #infosec

Mikko Hypponen von #WithSecure ist 🇪🇺 Top-Experte für #cybersecurity. Wir sprachen für #WirtschaftsWoche über den ungewöhnlichen Verlauf des russischen #Cyberkriegs gegen die #Ukraine, die Lehren der Russischen Cyberarmee aus dem #NotPetya-Desaster & die Folgen von beidem für #Hackerangriffe auf den Westen.
Meine neue CyberSecurity Kolumne ist live: https://www.wiwo.de/28838362.html

In light of the latest #ransomware as #wiper incident in #UkraineWar, a reminder that we've been effectively dealing with this type of technique since #NotPetya. Write-up from early 2020 using an odd #LockerGoga example to explore weaponized ransomware for #disruptive or #destructive purposes:
https://www.dragos.com/wp-content/uploads/Spyware-Stealer-Locker-Wiper-LockerGoga-Revisited.pdf

The Australian federal police said that the threat actors behind the #medibank breach are in #Russia. This was the Russian response. That's rich coming from the government that was calling the shots on #wannacry and #notpetya .

Absolutely shameless.

You don't have to be the target to be a victim #mh17 #notpetya #poland

We weten nog steeds niet of NotPetya schade vergoed wordt

Het is zomer 2017 als NotPetya schade aanricht aan bedrijven in Oekraïne en daarb

https://www.technite.nl/we-weten-nog-steeds-niet-of-notpetya-schade-vergoed-wordt/

#Security #cybercrime #NotPetya #ransomware

US offers $10 million reward for information about Russian military hackers implicated in NotPetya attack - The United States has made it $10 million harder to keep your mouth shut, if you happen t... https://www.bitdefender.com/blog/hotforsecurity/us-offers-10-million-reward-for-information-about-russian-military-hackers-implicated-in-notpetya-attack/ #ransomware #guestblog #law&order #notpetya #malware

At Request of U.S., Russia Rounds Up 14 REvil Ransomware Affiliates - The Russian government said today it arrested 14 people accused of working for “RE... https://krebsonsecurity.com/2022/01/at-request-of-u-s-russia-rounds-up-14-revil-ransomware-affiliates/ #romangennadyevichmuromsky #andreysergeevichbessonov #dmitrialperovitch #neer-do-wellnews #colonialpipeline #thecomingstorm #presidentbiden #immersivelabs #vladimirputin #ransomware #kevinbreen #darkside #gandcrab #notpetya #fsb

#zdnet #OpenSource "Open source : Google lance un SOS, et va payer les développeurs " #Google #Logiciels #SupplyChain #ChaineDApprovisionnement #SolarWinds #NotPetya ... https://www.zdnet.fr/actualites/open-source-google-lance-un-sos-et-va-payer-les-developpeurs-39930243.htm

#zdnet #OpenSource "Open source : Google lance un SOS, et va payer les développeurs " #Google #Logiciels #SupplyChain #ChaineDApprovisionnement #SolarWinds #NotPetya ... https://www.zdnet.fr/actualites/open-source-google-lance-un-sos-et-va-payer-les-developpeurs-39930243.htm

Smashing Security podcast #204: Green buttons, Olympic attacks, and… an apology - There's been a cybersecurity goof in the wake of the US presidential elections, the US fingers the... https://grahamcluley.com/smashing-security-podcast-204/ #termsandconditions #smashingsecurity #winterolympics #vulnerability #votingmachine #donaldtrump #ransomware #databreach #dataloss #election #notpetya #malware #podcast #privacy #russia #xss

Russian “government hackers” charged with cybercrimes by the US - What can we learn from the US DOJ indictments against the "Sandworm Team"? https://nakedsecurity.sophos.com/2020/10/20/russian-government-hackers-charged-with-cybercrimes-by-the-us/ #governmentsecurity #cybercrime #notpetya #malware #doj #gru