Overnight Cybersecurity: House panel releases Fusion GPS testimony | Senate votes to extend NSA spy program | Russian hackers find new political targets

View in your browser       Welcome to OVERNIGHT CYBERSECURITY, your daily rundown of the biggest news in the world of hacking and data privacy. We're here to connect the dots as leaders in government, policy and industry try to counter the rise in cyber threats. What lies ahead for Congress, the administration and the latest company under siege? Whether you're a consumer, a techie or a D.C. lifer, we're here to give you ...   THE BIG STORIES: --HOUSE INTEL PANEL RELEASES FUSION GPS TRANSCRIPT: The House Intelligence Committee Thursday afternoon released the full transcript of its interview with Glenn Simpson, the co-founder of opposition research firm Fusion GPS. The panel voted early Thursday to release the transcript from its seven-hour interview with Simpson, whose firm was behind the controversial "Steele dossier," which linked President Trump to Russia. Sen. Dianne Feinstein (D-Calif.) earlier this month unilaterally released the transcript of Simpson's closed-door interview with the Senate Judiciary Committee after Simpson asked that the testimony be made public.  --IN OVER 150 PAGES OF TESTIMONY released by the committee, Simpson alleged a constellation of business deals that he said suggested the Russians could be laundering money through then-candidate Donald Trump. Simpson stopped short of saying the firm had found definitive proof of such dealings, telling investigators that, "evidence, I think, is a strong word." Some of Trump's dealings, Simpson told lawmakers, showed "patterns of buying and selling that we thought were suggestive of money laundering." The testimony is likely to reinforce battle lines surrounding the dossier, a compendium of opposition research memos compiled by former British spy Christopher Steele as part of the firm's research into the real estate mogul. Some of the allegations in the memos have been disproven, and Republicans have largely argued that the document is a politically motivated hit job on the president. Democrats, meanwhile, have argued that the dossier could provide the framework for meaningful inquiry into Trump's alleged ties to Russia, citing Steele's credibility in the intelligence community.  To read the rest of our coverage, click here. To read the full transcript, click here. --RUSSIAN HACKERS FIND POST-2016 TARGETS: Russia's cyber operations against the United States are showing signs of accelerating even as lawmakers grapple with how to deter and respond to the threat. Moscow-linked hackers have expanded to new political targets, including the U.S. Senate, in the wake of the hacking and disinformation campaign during the 2016 presidential race. The hackers, said to have links to Russia's GRU military intelligence unit, are part of the same group that was implicated in the 2016 hacks of the Democratic National Committee (DNC) and Hillary Clinton's campaign. The cybersecurity firm Trend Micro revealed last week that the cyber espionage group known as APT 28, "Fancy Bear" or "Pawn Storm" had begun targeting the Senate in June, orchestrating a phishing campaign using fake websites to steal official credentials for the Senate's email system. --Fancy Bear has been active since the mid-2000s, conducting cyber espionage operations that have been widespread across the globe, with a particular eye to members of NATO. "By and large, we see global coverage," said Adam Meyers, vice president of intelligence at CrowdStrike, a cyber firm that tracks a number of Russian state-sponsored cyber groups. "We haven't really seen them stop or slow down." Some cybersecurity experts who have tracked the group's operations for years say they saw an increase in activity in 2016, particularly with regards to the targeting of political organizations. "It's definitely going more political, and their activity has increased," said Ed Cabrera, chief cybersecurity officer at Trend Micro. "We definitely saw a marked increase in volume in 2016." While experts say it is too early to give a full accounting of the group's activity in 2017, early signs suggest that Moscow's hackers are expanding their list of targets to fit Russia's broader geopolitical objectives. To read the rest of our piece, click here.   A LEGISLATIVE UPDATE:  SENATE VOTES TO EXTEND SPY PROGRAM: The Senate on Thursday passed an extension of a government surveillance program, sending the bill to President Trump's desk. Senators voted 65-34 on the bill, which includes a six-year extension with minimal changes to the National Security Agency (NSA) program. The vote comes after a tension-filled hour on the Senate floor earlier this week. Opponents tried, but failed, to mount a filibuster to force additional debate on the legislation, with both sides spotted lobbying key holdouts. Opponents rallied against the bill ahead of Thursday's vote, arguing the legislation is being rushed through. "The American people deserve better than the legislation before us. ... The American people deserve better than warrantless wiretapping," said Sen. Martin Heinrich (D-N.M.). He added that senators should "consider the gravity of the issues at hand and to oppose reauthorization until we can have a real opportunity for debate and reform." But the legislation, which also cleared the House last week, appeared likely to pass. Supporters only needed 51 votes on Thursday, giving them more breathing room, compared to the 60 votes needed on Tuesday's procedural hurdle. Senate Majority Leader Mitch McConnell (R-Ky.) urged his colleagues to back extending the program ahead of Thursday's vote, calling it "one of the most important tools" for national security officials. "The men and women we trust to protect this country say this capability is essential to their missions. They tell us that is has saved American lives. That is why we cannot let this capability lapse. The world remains dangerous," he said. The law, known as Section 702 of the Foreign Intelligence Surveillance Act, allows the NSA to collect texts and emails of foreigners abroad without an individualized warrant, even when they communicate with Americans in the U.S. To read the rest of our piece, click here.   A LIGHTER CLICK:  A British television writer is developing a TV show about cyber warfare. (Variety)   A REPORT IN FOCUS:  Cybersecurity firm Proofpoint released its fourth quarter 2017 threats report late Wednesday, which contains a number of takeaways about the cyber landscape at the end of last year. The firm found that cyber actors are increasingly turning to malicious document attachments rather than malicious URLs to target would-be victims via email. According to the report, the count of emails holding malicious documents increased by 300 percent over the previous quarter. Meanwhile, ransomware continues to be the most popular malware, accounting for 57 percent of malicious emails analyzed by the company. "The fourth quarter of 2017 saw a number of shifts in the threat landscape, from a return to malicious document attachments after Q3's spike in URLs to the emergence of coin mining modules in major malware strains like The Trick banking Trojan," Proofpoint wrote in a blog post accompanying the report. "Through these shifts, however, ransomware remained the top threat by volume across the Proofpoint customer base, while threats in social media channels continued to increase across the board quarter-over-quarter." To read the full threat report, click here.   WHAT'S IN THE SPOTLIGHT:  KASPERSKY: Kaspersky Lab filed an injunction in court on Wednesday in an attempt to block the Trump administration's order that bans its products from being used on federal systems, after the government deemed that Kaspersky antivirus software posed a "security risk." The Department of Homeland Security (DHS) in September issued a directive that removed and banned software developed by the Moscow-based firm, citing concerns about the firm's ties to the Russian government. The company, which has repeatedly maintained that it operates independently of the Kremlin, argued that it did not receive proper notice about the order or a chance to contest the underlying evidence used to reach the ban decision. "DHS did not provide Plaintiffs prior notice of the [Binding Operational Directive (BOD)], nor a prior opportunity to contest the purported evidence underlying it," the court document reads. "Plaintiffs filed this action seeking rescission of the BOD, and now move for a preliminary injunction to stem the continuing significant damage to Kaspersky Lab's reputation and the loss of sales resulting from the BOD," it continued. DHS said in September that the company's software posed "information security risks" because they "provide broad access to files and elevated privileges on the computers on which the software is installed, which can be exploited by malicious cyber actors to compromise those information systems." "The Department is concerned about the ties between certain Kaspersky officials and Russian intelligence and other government agencies, and requirements under Russian law that allow Russian intelligence agencies to request or compel assistance from Kaspersky and to intercept communications transiting Russian networks," DHS said in its statement. Agencies and departments had a December deadline to remove the Kaspersky products. The cybersecurity firm said the debarment has damaged their reputation, which has consequentially impacted their business. DHS said their decision was based on information already available in the public view -- like newspaper reports and congressional testimonies. Media reports have detailed at least one occasion in which the Russian intelligence apparatus used Kaspersky antivirus software to identify and then steal classified information. The company, however, is challenging the bureau's use of "open source" data, stating that they used "often anonymous, and uncorroborated media stories and other self-serving public statements" to reach its decision. To read the rest of our piece, click here.   IN CASE YOU MISSED IT: Links from our blog, The Hill, and around the Web. Apple to allow iPhone users to disable battery slowdowns. (The Hill) Facebook appoints American Express CEO as first black board member. (The Hill) OP-ED: Bitcoin's real story isn't the rampant speculation, but its untold potential. (The Hill) Lebanon-linked hackers have been exposed in a new hacking campaign. (Axios) The House Intelligence Committee has delayed Hope Hicks' testimony. (CNN) U.S. intelligence officials have gathered evidence of Chinese ships violating U.N. sanctions on North Korea. (The Wall Street Journal) Hackers are stealing Bitcoin and other digital currencies. (Bloomberg) The Federal Trade Commission has released its annual privacy and data security overview. (FTC)   If you'd like to receive our newsletter in your inbox, please sign up here.           Did a friend forward you this email? Sign up for Cybersecurity Newsletters     Forward Cybersecurity Newsletters       Privacy Policy  |  Manage Subscriptions  |  Unsubscribe  |  Email to a friend  |  Sign Up for Other Newsletters   The Hill 1625 K Street, NW 9th Floor, Washington DC 20006 ©2016 Capitol Hill Publishing Corp., a subsidiary of News Communications, Inc.

Overnight Regulation: Trump creates new religious protections for health workers | Senate confirms FCC commish to full term | Mulvaney asks Fed to withhold additional consumer bureau funds

View in your browser     Welcome to Overnight Regulations, your daily rundown of news from the federal agencies, Capitol Hill and the courts. It's Thursday evening here in Washington where a government shutdown is looking more likely than it did yesterday. Check out The Hill's live blog for the latest on the shutdown talks   THE BIG STORY  The Health and Human Services Department under President Trump created a new division within the agency Thursday to better protect federal health works who refuse to perform certain procedures like abortion for religious or moral reasons. As Jessie Hellmann reports, the new division under the Office of Civil Rights (OCR) will be responsible for investigating complaints filed by workers claiming that their employers have violated their religious rights.  "No one should be forced to choose between helping sick people and living by one's deepest moral or religious convictions, and the new division will help guarantee that victims of unlawful discrimination find justice," OCR Director Roger Severino said at the announcement ceremony Thursday morning.  "We are saying, with the launch of this division, you do not need to shed your religious identity, you do not need to shed your moral convictions to be a part of the public square." Here's why this is a big deal:  Democrats and civil rights advocates are worried the move will allow workers to deny individual's access to healthcare.  The American Civil Liberties Union is planning to take legal action.  A big win for anti-abortion rights groups: Republicans and anti-abortion groups often complained that the Obama administration did not enforce federal laws that protect health workers and institutions from having to violate their religious or moral beliefs by participating in abortions or other procedures. Read the full story here.    REG ROUNDUP  Tech: The Senate Commerce Committee voted to confirm Commissioner Brendan Carr for a full five-year term at the Federal Communications Commission. The panel advanced the nomination in a 14-13 party-line vote on Thursday. Carr, a Republican, was nominated and confirmed in August to a partial term that was set to expire later this year. "Thank you to @SenateCommerce for acting on my renomination today & for ... advancing it to the full Senate," Carr wrote on Twitter. "If reconfirmed, I look forward to continuing [to] advance policies that will create jobs, spur investment, and grow the economy for the benefit of all Americans." Harper Neidig has the story here.    Environment: Federal government researchers said Thursday that 2017 was the second-hottest year on record in terms of global average surface temperatures. The finding by NASA follows three years in a row in which global temperature hit a new record. Last year's average temperature was eclipsed only by 2016's. The heat average is part of a trend of more than four decades of rising global temperatures, which researchers say is nearly certain to be a sign of climate change, attributable primarily to greenhouse gas emissions caused by human activity. Timothy Cama has the story here.    Tech: The Senate on Thursday passed an extension of a government surveillance program, sending the bill to President Trump's desk. Senators voted 65-34 on the bill, which includes a six-year extension with minimal changes to the National Security Agency (NSA) program. The vote comes after a tension-filled hour on the Senate floor earlier this week. Opponents tried, but failed, to mount a filibuster to force additional debate on the legislation, with both sides spotted lobbying key holdouts. And opponents rallied against the bill ahead of Thursday's vote, arguing the legislation is being rushed through. Read Jordain Carney's story here.   Justice: The Senate Judiciary Committee advanced 17 judicial nominees, several of which were vehemently opposed by Democrats, to the floor for a vote Thursday, along with three nominees for top posts in the Department of Justice (DOJ). The committee hearing largely focused on Thomas Farr, whom Trump tapped for a lifetime seat on the federal district court for the Eastern District of North Carolina. Sen. Cory Booker (D-N.J.), one of the committee's newest members, pushed Committee Chairman Sen. Chuck Grassley (R-Iowa) to hold Farr's nomination and schedule a second hearing. Farr has faced accusations of lying to the Judiciary Committee during his confirmation hearing in September about his involvement in a scheme to intimidate black voters during Jesse Helms's campaign for a North Carolina Senate seat in 1992. Read the full story here.    Finance: The acting director of the Consumer Financial Protection Bureau (CFPB) asked the Federal Reserve on Wednesday to withhold additional funding from the agency for the second quarter of fiscal 2018. Acting CFPB Director Mick Mulvaney requested $0 from the Fed to fund bureau operations for three months in a letter to Fed chairwoman Janet Yellen. While Mulvaney said the CFPB's expects to spend $145 million in the next quarter, he intends to fund it through the bureau's $177 million emergency reserve account with the Fed's New York branch. "I have been assured that the funds in the currently in the Bureau Fund are sufficient for the Bureau to carry out its statutory mandates for the next fiscal quarter while striving to be efficient, effective and accountable," Mulvaney wrote. Mulvaney's empty request is his latest effort to reshape and reign in the CFPB. The agency announced Wednesday that it would allow companies subject to its new payday lending rule to apply for a delay in complying with its first deadline. And Mulvaney announced Thursday that the CFPB would solicit complaints about its practices as he looks to loosen its hold on the financial services industry. Sylvan Lane has more here.   Finance: More on Mulvaney's shake-up at CFPB... The new leaders of the Consumer Financial Protection Bureau (CFPB) are taking the most significant step yet toward unwinding rules panned by the finance industry and the GOP. The CFPB announced this week that it would delay compliance with new regulatory rules for short-term, high-interest loans, commonly known as payday loans. The agency said it is considering how to roll back those rules. The reassessment is part of acting Director Mick Mulvaney's broader push to rescind the bureau's most aggressive regulations and refocus the agency's work on promoting consumer freedom. Mulvaney's move is a 180-degree turn from former CFPB Director Richard Cordray, who saw it as his mission to enact protections for vulnerable consumers. Cordray, who is now running for governor of Ohio as a Democrat, called the intended review of the rule a "truly shameful action by the interim pseudo-leaders." More from Sylvan here.   Energy: Florida Sen. Bill Nelson (D) is blocking quick confirmation of three Trump administration nominees, saying he hasn't gotten sufficient assurances regarding offshore drilling off Florida's coasts. Nelson spokesman Ryan Brown said the senator sent Interior Secretary Ryan Zinke a letter last week seeking details on Zinke's pledge to remove Florida from consideration for drilling. But Zinke hasn't responded to that letter, prompting the hold late Wednesday on three Interior Department nominees. Brown said Nelson "will keep the holds in place until Zinke rescinds the draft five-year drilling plan published in the Federal Register on Jan. 8 and replaces it with a new draft plan that preserves the current moratorium in the eastern Gulf of Mexico beyond 2022 and fully protects all of Florida's coasts from the threat of both offshore drilling and seismic testing." After a brief meeting last week with Florida Gov. Rick Scott (R), Zinke said Florida's waters would be taken out of the drilling plan. Read more from Timothy Cama here.   IN OTHER NEWS Pruitt accelerates efforts to remake the EPA – The Wall Street Journal  Lawmakers grill SpaceX, Boeing on safety of commercial crew capsules -- The Wall Street Journal This week's bitcoin crash was all about fraud and regulation -- The Verge France, Germany to make joint bitcoin regulation proposal at G20 summit -- Reuters Two blockchain ETFs are launching -- but the SEC asked them to take blockchain out of their names -- Business Insider Italy's antitrust opens probe into Apple, Samsung complaints -- Reuters Religious freedom vs. patient rights: The new HHS division explained – The Washington Post  Got a tip? Send it to your Overnight host at lwheeler@thehill.com and follow her on Twitter @wheelerlydia.          Did a friend forward you this email? Sign up for Regulation Newsletters     Forward Regulation Newsletters       Privacy Policy  |  Manage Subscriptions  |  Unsubscribe  |  Email to a friend  |  Sign Up for Other Newsletters   The Hill 1625 K Street, NW 9th Floor, Washington DC 20006 ©2016 Capitol Hill Publishing Corp., a subsidiary of News Communications, Inc.

Breaking News: Freedom Caucus backs funding bill, clearing way for House passage

View in your browser     Freedom Caucus backs funding bill, clearing way for House passage The House Freedom Caucus has endorsed a deal with GOP leadership to support a short-term government funding bill, putting the House on track to pass the stopgap on Thursday night and send it to the Senate. The caucus endorsed the deal on Thursday night, after warning they had the votes to defeat it earlier in the day. Read the full story here         SPONSORED CONTENT   Healthcare Leadership Council    Seniors Need the Senate to Finish the Job. Urge Your Senator to Repeal the IPAB Today. Protectmedicarenow.org             Did a friend forward you this email? Sign up for Breaking News     Forward Breaking News       Privacy Policy  |  Manage Subscriptions  |  Unsubscribe  |  Email to a friend  |  Sign Up for Other Newsletters   The Hill 1625 K Street, NW 9th Floor, Washington DC 20006 ©2016 Capitol Hill Publishing Corp., a subsidiary of News Communications, Inc.