CyberWire Daily

3271 Odcinki

1. Google's not being ghosted from vulnerabilities. [Research Saturday]

   Opublikowany: 26.08.2023
2. Phishing kits in the C2C market. Cyberespionage, Pyongyang and Beijing editions. Ransomware under the radar. A new hacktivist group says it doesn’t much care for NATO corruption.

   Opublikowany: 25.08.2023
3. Trends in the cybercriminal underworld. The prosecution of Lapsus$ and Tornado Cash. More developments in Russia’s hybrid war.

   Opublikowany: 24.08.2023
4. A creepy new geolocation payload for Smoke Loader. Speed of criminal attack, malware delivery, and the evolution of malicious AI. Ransomware at a Belgian social services agency.

   Opublikowany: 23.08.2023
5. A cyberespionage operation of unclear provenance shifts its targets. Cyberattacks on voting in Ecuador. Other notes from the cyber underworld. And doxing the Duma.

   Opublikowany: 22.08.2023
6. DPRK tried to hit RoK-US military exercises. Australian domain administrator auDA may have been breached. WoofLocker's tech support scam. US warns of cyber threats to space systems.

   Opublikowany: 21.08.2023
7. Luke Vander Linden: With age comes knowledge. [VP] [Career Notes]

   Opublikowany: 20.08.2023
8. Politicians targeted by RomCom. [Research Saturday]

   Opublikowany: 19.08.2023
9. Phishing for Zimbra credentials. Developments in PlayCrypt and Cuba ransomware. #NoFilter exploitation. Cyber gangs (and some services) threaten security researchers. Anglo-Saxonia update.

   Opublikowany: 18.08.2023
10. A seemingly legitimate but actually bogus host for a proxy botnet. PowerShell Gallery vulnerabilities. Cyber incident at Clorox. Scamming would be beta-testers. Cyber updates from Russia’s hybrid war.

    Opublikowany: 17.08.2023
11. China accuses the US of cyberespionage. Backdoors found in NetScaler. Account hijacking campaigns. Raccoon Stealer gets an update. Cryptocurrency recovery scams. Narrative control in the hybrid war.

    Opublikowany: 16.08.2023
12. Investigating China’s Storm-0558. Monti ransomware is back. Evasive phishing. Realtors’ MLS taken down in ransomware incident. News from Russia’s hybrid war. And in-game scams.

    Opublikowany: 15.08.2023
13. Attacks on industrial systems in Europe and Africa. LolekHosted arrests. Notes from the hybrid war. The CSRB will investigate the cyberespionage campaign that exploited Microsoft Exchange.

    Opublikowany: 14.08.2023
14. Dr. Georgianna Shea: Don't wait to take the initiative. [Technologist] [Career Notes]

    Opublikowany: 13.08.2023
15. It's raining credentials. [Research Saturday]

    Opublikowany: 12.08.2023
16. Tehran’s social engineering. CSRB reports on Lapsus$. Call for comment on open-source standards. Coping with a tight labor market. Two private sector incidents in Russia’s hybrid war.

    Opublikowany: 11.08.2023
17. A new Magecart campaign. Gootloader’s legal bait. Cryptowallet vulnerabilities. News from the hybrid war. And DARPA’s AI Cybersecurity Challenge.

    Opublikowany: 10.08.2023
18. Cyberespionage by several intelligence services, some of contracted out. Developments in the cyber underworld. Vulnerabilities reported in CPUs. Some notes on Patch Tuesday.

    Opublikowany: 9.08.2023
19. Challenges to intelligence-sharing. The complexity of supply-chain security. Ransomware developments. Notes on Russia’s hybrid war, including possible sensor data manipulation.

    Opublikowany: 8.08.2023
20. Pyongyang’s new friendship with Moscow apparently only goes so far. Reptile rootkit in the wild. Cloudzy updates. Cl0p’s torrents. And notes on cyber phases of Russia’s hybrid war.

    Opublikowany: 7.08.2023