CyberWire Daily

3271 Episodo

1. Another speculative execution flaw. LokiBot evolves. APT41 moonlights. Scammers exploit tragedies. Black Hat notes.

   Publicado: 7/8/2019
2. Fancy Bear is snuffling around corporate IoT devices. Machete takes its cuts at Venezuelan military targets. What Mr. Kim is buying. MegaCortex goes for automation. Vigilantes, misconfigurations, etc.

   Publicado: 6/8/2019
3. Ransomware attacks in Mexico and Germany. Wipers in criminal service. Supervising Siri and Alexa. Mass shooters find inspiration and online expression.

   Publicado: 5/8/2019
4. Package manager repository malware detection — Research Saturday

   Publicado: 3/8/2019
5. Spearphishing utility companies. Bellingcat as gadfly, and target. Facebook takes down more coordinated inauthenticity. Card skimming. Tech regulation. Random acts of cruelty.

   Publicado: 2/8/2019
6. Capital One investigation update. Don’t give up on the cloud. Exposed databases and backdoors. Cybercrime as high-stakes poker. Phishing the financials. Bots on holiday.

   Publicado: 1/8/2019
7. Capital One breach update. CISA warns of avionics CAN bus vulnerabilities. More attacks on local Louisiana governments. Change at the SEC. Cyber summer school for NATO, EU diplomats.

   Publicado: 31/7/2019
8. Capital One sustains a major data breach. Phishing in LinkedIn. VxWorks patches and mitigations. Brute-forcing NAS credentials. LAPD doxed?

   Publicado: 30/7/2019
9. Bears sniff at Bellingcat. Magecart in spoofed domains. MyDoom is still active. Shipboard malware was Emotet. Hutchins sentenced. Digital assistants have big ears. Taxes owed on alt-coin gains.

   Publicado: 29/7/2019
10. Special Edition - Cult of the Dead Cow author Joseph Menn extended interview

    Publicado: 28/7/2019
11. Day to day app fraud in the Google Play store — Research Saturday

    Publicado: 27/7/2019
12. Winnti and other Chinese espionage activity. Volume I of the US Senate report on election meddling is out. Ransomware from Sabine, Louisiana, to Johannesburg, South Africa.

    Publicado: 26/7/2019
13. News about Russian and Chinese government threat actors. Powerful crimeware active in Brazil. BlueKeep really needs to be patched. Messenger Kids issues. Dispatches from the cryptowars.

    Publicado: 25/7/2019
14. Lancaster University breached. Kazakhstan is testing out HTTPS interception. The UK postpones its decision on Huawei’s 5G gear. The FTC is requiring Facebook to set up a privacy committee.

    Publicado: 24/7/2019
15. Venezuela blames power failure on exotic sabotage, again. Huawei may have built North Korea’s 3G wireless networks. Were record privacy fines high enough? Logic bombing the customer.

    Publicado: 23/7/2019
16. FSB contractor hacked. Pegasus now able to rummage clouds? Iranian cyber ops spike. Fraudulent student profiles. Judgement in Equifax FTC case. NSA hoarder gets nine years.

    Publicado: 22/7/2019
17. Special Edition — The Fifth Domain coauthor Richard A. Clarke

    Publicado: 21/7/2019
18. Nansh0u not your normal cryptominer — Research Saturday

    Publicado: 20/7/2019
19. Following K3chang. Bulgaria’s tax agency breach. An alternative currency gets some incipient regulatory scrutiny. Why towns are hit with ransomware. A hair-care hack.

    Publicado: 19/7/2019
20. TrickBot’s new tricks. Poisoning the ad supply chain. Clouds get schooled. Novel phishing tackle, but stale bait. Cyberwar powers. Election interference. FaceApp fears. Bad macro suspect arrested.

    Publicado: 18/7/2019