Cybersecurity Programs Expire, Global Forum, NIST Guide, ICE Data Buys, VMware Zero-Day, and More

Federal Cybersecurity Programs at Risk

• ⚠️ Major federal cybersecurity programs are set to expire due to government shutdown, including the Cyber Security Information Sharing Act of 2015 and a $1 billion state and local grant program.
• 🏛️ Senate gridlock has stalled reauthorization efforts, with concerns raised about weakened US defenses and potential free speech abuses.
• 📉 Without these programs, threat sharing and cyber defenses are expected to diminish, increasing risks for Americans.

Global Cybersecurity Forum and NIST Guidance

• 🌍 Global leaders convened in Riyadh for the Global Cybersecurity Forum, focusing on AI, quantum computing, and international cooperation against evolving cyber threats.
• 💡 Discussions highlighted AI's dual role and the importance of resilience over preventive strategies.
• 🛠️ NIST released a concise guide (Special Publication 1334) for managing cybersecurity risks from removable media in operational technology environments, emphasizing procedural, physical, and technical controls.

Data Privacy and Exploited Vulnerabilities

• 📍 ICE has resumed purchasing smartphone location data through surveillance tools, reversing earlier assurances and drawing criticism for potential warrantless tracking.
• 🔓 A VMware vulnerability (CVSS 7.8) has been exploited as a zero-day since October 2024, allowing privilege escalation, with attribution to a Chinese state-sponsored group.
• 🎣 ClickFix-style attacks are surging, abusing native OS functions and user behavior to bypass technical controls and spread across platforms.
• 💻 Researchers disclosed Battering RAM, a hardware attack that bypasses memory encryption and boot-time defenses on Intel and AMD systems with a low-cost device.
• 📄 A new Matrix PDF toolkit converts PDFs into interactive lures for phishing and malware delivery, bypassing email defenses.

Data Breaches and Infrastructure Vulnerabilities

• 🚨 Three companies reported breaches impacting approximately 3.7 million people across North America, exposing sensitive data including social security numbers.
• 💥 In Texas, a stray bullet pierced a fiber optic cable, cutting off internet, phone, and TV service for 25,000 people, highlighting infrastructure fragility.

Doge Report and Oversight Challenges

• 📊 A report from Senate Democrats details concerns about the Department of Government Efficiency (DOGE) operating outside privacy and cybersecurity laws at agencies like SSA and GSA.
• 🚫 Oversight efforts were reportedly rebuffed and blocked, with agencies allegedly operating in violation of existing cyber security laws.
• 🗳️ The report's actionable impact is questionable, with potential avenues including legislative tweaks or future funding conditions, but individual recourse is limited to voting or potential court action.