Cyber Round Up: Intel Security Releases 2016 Threat Predictions, Massive Hack of Prisoner Phone Call Records, Charges in JP Morgan Chase Hack

• Intel Security Releases its Threat Predictions for 2016 (ITPro Portal): According to ITPro Portal, Intel Security released its McAfee Labs Threats Predictions Report, that examines the cyber threats on the horizon for 2016 and makes predictions related to cyber threats projected into the 2020 timeframe.

This report makes several predictions:

• Intel expects an uptick in attacks on both hardware and firmware and a resulting increase in the number of tools available to initiate attacks,
• This uptick is largely the result of operating systems and hardware being hardened to currently known attacks,
• Expect an increase in the use of ransomware –> parties have been able to make money using this, which attracts greater adoption of this malfeasance,
• Intel anticipates an increased use of information sharing between public and private entities

The full report can be found here; whereas the IT Pro Portal article is here.

• Massive Hack of Prisoner Phone calls (The Intercept): According to this article, a massive breach at Securus Technologies revealed that over 70 million records of phone calls were recorded between 2011 and 2014.  Of particular interest is the article’s assertion that nearly 14,000 conversations between attorneys and inmates were recorded in spite of the constitutional protections afforded privileged communications.  From a cyber perspective, the fact that Securus touts its service meets “rigorous standards for security” raises some concerns since a hacker was able to obtain 70 million phone call records, according to the article. The full text of the article can be found here.
• Charges Announced in JP Morgan Chase Hack (Health Care InfoSecurity): According to this article, three men were indicted for their alleged involvement in a massive hacking effort that was directed against JP Morgan Chase as well as 11 other U.S. businesses within the financial sector.  These attacks took place between 2012 and 2015 and allowed these hackers to obtain personally identifiable information (PII) on approximately 100 million customers of these 12 companies, according to this article. This article indicates that this hacking effort was part of an on-going, long-term criminal enterprise which generated hundreds of millions of dollars in ill-gotten gains.  The full text of the article can be found here.