CyberWire Daily

3271 Episodo

1. Clickfraud and third-parties (both SDKs and stores). Trojanized TOR browser steals from Russian users. WiFi bugs. Sketchy jailbreak. Big Tech on free speech. Cooperation against terrorism.

   Publicado: 18/10/2019
2. Cozy Bear never really left. Iran denies it suffered a US cyberattack. Malicious WAV files. Darknet dragnet hauls in child exploitation ring. Graboid infests Docker hosts.

   Publicado: 17/10/2019
3. Cyber retaliation for a kinetic attack, again. Industrial espionage from China. Botnet does sextortion. Typosquatting the other candidate. A poor approach to reputation management.

   Publicado: 16/10/2019
4. Ransomware hits US, French companies. ISPs as combat support arms. Lawful intercept gone rogue? Lazarus Group is back and in GitHub. China’s security laws and security risks.

   Publicado: 15/10/2019
5. Decrypting ransomware for good. — Research Saturday

   Publicado: 12/10/2019
6. Ransomware and a zero-day. A newly discovered espionage platform. FIN7’s new tricks. Beijing speaks and Apple listens. A visit to NSA’s Cybersecurity Directorate.

   Publicado: 11/10/2019
7. Alleged DIA leaker. Europol cybergang study. Protecting the DIB. Chinese information operations.

   Publicado: 10/10/2019
8. Twitter and two-factor authentication. Privacy concerns. The US Senate Intelligence Committee reports on Russian troll farms. Turla is back with some new tricks.

   Publicado: 9/10/2019
9. Riding herd on Mustang Panda. Drupalgeddon2 is out in the wild. VPN warnings and mitigations. Patch notes. An offer to share intelligence about Huawei. Presidential sites get low privacy grades.

   Publicado: 8/10/2019
10. Iran hacks for influence. Brazilian PII up for auction. Prince Harry vs. Fleet Street. Electrical infrastructure cyber risk. Paying ransom. HildaCrypt developers say they’re going straight.

    Publicado: 7/10/2019
11. The fuzzy boundaries of APT41. — Research Saturday

    Publicado: 5/10/2019
12. Android vulnerability exploited in the wild. Careless spycraft. The Eye on the Nile. A new Chinese threat actor. A spoiling attack in the CryptoWars. Take election interference, please.

    Publicado: 4/10/2019
13. A new threat group, Avivore, is called out in the Airbus hack. Ransomware and VPN exploit warnings. EU tells Facebook to take down some content, everywhere. Spearphishing ANU. SandCat’s bad opsec.

    Publicado: 3/10/2019
14. RATs, ransomware, payloads, and unsecured data: a look at the cybercriminal underground.

    Publicado: 2/10/2019
15. Piling on sanctions. The disinformation-as-a-service black market. Technological sovereignty through R&D investment? Ransomware continues to rise. NSA’s new Cybersecurity Directorate.

    Publicado: 1/10/2019
16. Industrial firms disclose cyber incidents. US DHS to check airliner cybersecurity. RCMP security case update. Bulletproof host taken down. Gnosticplayers. Royal phish.

    Publicado: 30/9/2019
17. Focusing on Autumn Aperture. — Research Saturday

    Publicado: 28/9/2019
18. Supply chain hacks versus Airbus. Phishing around Google Cloud. Masad Clipper and Stealer on the criminal-to-criminal market. Quick zero-day exploitation. DoorDash hack. Inside JTF Ares.

    Publicado: 27/9/2019
19. Lazarus Group in India. Suspected Chinese APT uses fake Narrator. Fleeceware. DNI testimony. TalkTalk hacker charged in US. Yahoo breach compensation. Chameleon spam campaign.

    Publicado: 26/9/2019
20. Notes on Tortoiseshell. Fancy Bear snuffles around embassies and foreign ministries. Poison Carp targets Tibetan groups. GandCrab unretires. And Chameleon’s curious spam.

    Publicado: 25/9/2019