CyberWire Daily

2656 Episodo

1. Targets from DuckTail. [Research Saturday]

   Publicado: 7/10/2023
2. Advice on security, from Washington, DC and Washington State. The Predator Files have bad news on privacy. Notes on the hybrid war. And LoveGPT is not your soulmate.

   Publicado: 6/10/2023
3. Security risks in the hardware and software supply chains. Patches and proofs-of-concept. A look at recent incidents hitting major corporations. Online surveillance and social credit in Russia.

   Publicado: 5/10/2023
4. A phishnet for the C-suite. Rootkit delivered by typosquatting. Stream-jacking in YouTube. Risk management. Hybrid war, and the laws thereof.

   Publicado: 4/10/2023
5. Where ICS touches the Internet. BunnyLoader traded in C2C markets. Phantom Hacker scams. API risks. Cybersecurity attitudes and behavior. DHS IG reports on two cyber issues. Updates on the hybrid war.

   Publicado: 3/10/2023
6. Adventures of ransomware, and other developments in cybercrime. Cyberespionage and hybrid warfare. A government shutdown averted. Cybersecurity Awareness Month is underway.

   Publicado: 2/10/2023
7. Ted Wagner: Get that hands on experience. [CISO] [Career Notes]

   Publicado: 1/10/2023
8. Downloading cracked software. [Research Saturday]

   Publicado: 30/9/2023
9. Malicious ads in a chatbot. A vulnerability gets some clarification. Cl0p switches from Tor to torrents. Influence operations as an adjunct to WMD. And NSA’s new AI Security Center.

   Publicado: 29/9/2023
10. Buckworm APT’s specialized tools. Cyberattack against Johnson Controls. Oversight panel reports on Section 702. Cyber in election security, and in the US industrial base. Hacktivism versus Russia.

    Publicado: 28/9/2023
11. What up in the underworld’s C2C markets. An update on the Sony hack claims. Notes on cyberespionage, from Russia, China, and parts unknown. And there’s a market for bugs.

    Publicado: 27/9/2023
12. Crooks phish for guests; spies phish for drone operators. ZenRAT is used in an info-stealing campaign. More MOVEit-related incidents (some involving Cl0p). DeFi platforms hit. The UK hunts forward.

    Publicado: 26/9/2023
13. Cyberespionage in East and Southeast Asia, for both intelligence collection and domestic security, Spyware tools tracked. Shifting cyber targets in Russia’s hybrid war. Securing the Super Bowl.

    Publicado: 25/9/2023
14. Threat intelligence discussion with Chris Krebs. [Special Edition]

    Publicado: 25/9/2023
15. Merritt Baer: No one has to go down for you to go up. [CISO] [Career Notes]

    Publicado: 24/9/2023
16. Behind the Google shopping ad masks. [Research Saturday]

    Publicado: 23/9/2023
17. Enter Sandman. A look at an initial access broker. Iran’s OilRig hits Israeli targets. Cyber ops and soft power. Update on casino ransomware attacks. Bermuda’s government sustains cyberattacks.

    Publicado: 22/9/2023
18. Don’t get snatched. Trends in phishing, cyber insurance claims, and threats to academic institutions. Hacktivism in the hybrid war. Updates on the ICC attack. MGM says its casinos are back.

    Publicado: 21/9/2023
19. Hacking the ICC. ShroudedSnooper active, simple, and novel. New criminal malware used against Chinese-speakers. More on the materiality of cyberattacks.

    Publicado: 20/9/2023
20. Ransomware in Colombia. An accidental data exposure. Cyberespionage hits unpatched systems. An attack on IT systems disrupts industrial production. Bots and bad actors.

    Publicado: 19/9/2023