Topic: Cyber Malware

National Security Advisor Jake Sullivan and Microsoft reported the discovery of destructive malware in Ukrainian government computer networks. While the U.S. has not officially attributed the attack to Russia, Sullivan noted it fits the Russian "playbook." The hosts discuss Ukraine's reputation as a hub for cyber activity and the history of CrowdStrike.

Cliff Stoll laments the transition of the internet from an academic playground to a weaponized tool for political manipulation and cyber warfare. He cites Stuxnet and the 2016 election interference as examples of how the theft of information is used to bend global events. Stoll hopes that advancements like facial recognition and two-factor authentication will eventually make phishing attacks, such as the one on John Podesta, less effective.

A suspected cyber attack originating from outside the United States caused significant printing and delivery delays for the LA Times and other Tribune Publishing newspapers. The malware disrupted the software systems used to format and print the papers. While some officials hint at foreign state actors like Russia, skeptics suggest the issue may have been a internal technical "glitch" or poorly managed update.

The FBI has issued a confidential alert to international banks regarding a coordinated "ATM jackpotting" attack. This cyber crime involves hacking into a bank's system to force machines to dispense all their cash in minutes. Unlike credit card skimming, this method targets the bank's internal software, potentially allowing criminals to empty hundreds of machines simultaneously.

The FBI issued a public service announcement recommending that home and small office users reboot their routers to disrupt "VPN Filter" malware. This foreign-actor malware is capable of collecting information and rendering devices inoperable. Experts suggest that power cycling the devices can clear volatile memory and help identify infected hardware, particularly those with compromised DNS settings.

ABC News reported that Russian hackers penetrated U.S. power grids and water plants using "Black Energy" malware. However, the official ICS-CERT report indicates the malware has been present since 2011 and has not been used to actually target control environments. The government's security recommendations—such as using strong passwords and firewalls—suggest a basic level of negligence in critical infrastructure protection.

The Washington Post hosted a cyber security symposium featuring Janet Napolitano, which is described as an "advertorial" event likely funded by defense contractors. The introduction to the event used fear-based language regarding malware and Trojan horses to justify increased government surveillance and spending. Napolitano, who famously does not use email, was presented as an expert "steeped in cyber."

A PBS segment claiming the U.S. was the first to use offensive cyber weapons via Stuxnet is challenged. The hosts recount the history of the Morris Worm from the 1980s and discuss long-standing Russian and Chinese cyber operations. An anecdote about Kevin Mitnick illustrates how social engineering, such as leaving "confidential" discs in offices, is used to distribute malware.

Security researcher Bruce Schneier is cited regarding the discovery of the Stuxnet worm, a sophisticated piece of malware designed to infect industrial control systems. Experts speculate the worm is a military-grade cyber-missile targeted at Iran's Bushehr nuclear power plant. The hosts question if the narrative surrounding the virus is being used as a false flag to justify internet regulation.