It’s 5:05, on Tuesday, November 15th, 2022, the 319th day of the year. This is your daily update of open source and cybersecurity news that might have slipped by the major news sources. We have 20 reporters from around the world. Today’s updates are from Tracy Bannon with an exclusive update on Pushwoosh, Olimpiu Pop a few kilometers from the Ukraine border in Transylvania, Romania, Edwin Kwan in Sydney Australia, Kadi Grigg in Alexandria Virginia, and Derek Weeks in Bethesda Maryland. Let’s get to it!
🇺🇸 Trac Bannon, Camp Hill, Pennsylvania
Exclusive: Russian software disguised as American finds its way into U.S. Army, CDC apps
https://www.reuters.com/technology/exclusive-russian-software-disguised-american-finds-its-way-into-us-army-cdc-2022-11-14/
🇷🇴Olimpiu Pop, Transylvania, Romania
Russian Ransomware Attacks on Ukrainian Companies
Bill Toulas: https://www.bleepingcomputer.com/author/bill-toulas/
BleepingComputer: https://www.bleepingcomputer.com/news/security/ukraine-says-russian-hacktivists-use-new-somnia-ransomware/
Britannica: The Vietnam War and the Media: https://www.britannica.com/topic/The-Vietnam-War-and-the-media-2051426
🇦🇺 Edwin Kwan, Sydney, Australia
Bleeping Computer: New extortion scam threatens to damage sites’ reputation, leak data
https://www.bleepingcomputer.com/news/security/new-extortion-scam-threatens-to-damage-sites-reputation-leak-data/
Sergiu Gatlan: https://www.bleepingcomputer.com/author/sergiu-gatlan/
🇺🇸 Kadi Grigg, Alexandria, VA
GitHub’s Octoverse Report finds 97% of apps use open source software
Taryn Plumb: https://venturebeat.com/author/taryn-plumb/
Venture Beat: https://venturebeat.com/programming-development/github-releases-open-source-report-octoverse-2022-says-97-of-apps-use-oss/
GitHub Octoverse Report: https://octoverse.github.com/
🇺🇸 Mark Miller, New York City
WordPress hacked through lame SEO “campaign”
Ben Martin: https://blog.sucuri.net/author/benmartin
Secui: https://blog.sucuri.net/2022/11/massive-ois-is-black-hat-redirect-malware-campaign.html
PublicWWW: https://publicwww.com/websites/%22ois.is%22/
🇺🇸 Derek Weeks, Bethesda, Maryland
Opinion: Will software liability ever change?
Bruce Schneier: https://www.schneier.com/crypto-gram/archives/2002/0415.html
Chinmayi Sharma: https://www.lawfareblog.com/contributors/csharma
John Speed Meyers: https://www.lawfareblog.com/contributors/jmeyers
James Howison: https://www.lawfareblog.com/contributors/jhowison
Lawfare: The Securing Open Source Software Act Is Good, but Whatever Happened to Legal Liability? https://www.lawfareblog.com/securing-open-source-software-act-good-whatever-happened-legal-liability