CyberWire Daily

3271 Episodo

1. A Symposium, a wet dress, a new fund, and it’s only Monday. [T-Minus Space Daily]

   Publicado: 19/4/2023
2. Iranian threat actor exploits N-day vulnerabilities. Subdomain hijacking vulnerabilities. The Discord Papers. An update on Russia’s NTC Vulkan. And weather reports, not a Periodic Table.

   Publicado: 18/4/2023
3. Developments in the Discord Papers, including notes on influencers and why they seek influence. Tax season scams. KillNet’s selling, but is anyone buying?

   Publicado: 17/4/2023
4. Jack Chapman: Shielding against the bad guys. [Threat Intelligence] [Career Notes]

   Publicado: 16/4/2023
5. New Dero cryptojacking operation concentrates on locating Kubernetes. [Research Saturday]

   Publicado: 15/4/2023
6. "Read the Manual" and the ransomware-as-a-service market. Bitter APT against energy companies. Cozy Bear sighting. Hacktivist auxiliaries hit Canadian targets. Aan arrest in the Discord Papers case.

   Publicado: 14/4/2023
7. Transparent Tribe seems to want people’s lab notes, and other stories of cyberespionage. The FBI warns of juicejacking. And the Discord leaker seems to have been a 20-something influencer.

   Publicado: 13/4/2023
8. Patch Tuesday notes. Cyber mercenaries described. Voice security and fraud. CISA’s update to its Zero Trust Maturity Model. Updates on Russia’s hybrid war against Ukraine.

   Publicado: 12/4/2023
9. IAM trends. RagnarLocker as a critical infrastructure threat. AI hype as phishbait. Updates on the hybrid war: leaks and hacks.

   Publicado: 11/4/2023
10. A look at Iran’s MERCURY APT. Updates on Russia's hybrid war, including some apparent leaks and some apparent doxing. And notes on cloud security trends.

    Publicado: 10/4/2023
11. Karen Worstell: Keep your feet planted. [Strategy] [Career Notes]

    Publicado: 9/4/2023
12. A dark side to LLMs. [Research Saturday]

    Publicado: 8/4/2023
13. Stopping Cobalt Strike abuse. Leaks are mingled with disinformation. Google offers advice for board members. Securing cars and their garages. CISA releases ICS advisories.

    Publicado: 7/4/2023
14. New phishing techniques. Arrests in the Genesis Market case. APT43’s Archipelago. Disinformation at the UN, and drop-shipping for Mother Russia.

    Publicado: 6/4/2023
15. Genesis Market taken down. Proxyjackers exploit Log4j. Fast-encrypting Rorschach ransomware. More Killnet DDoS. Patch Zimbra now. Soft power and Russia’s hybrid war.

    Publicado: 5/4/2023
16. Cyber appeasement? Western Digital discloses cyberattack. Rilide malware is in active use. Mantis has new mandibles. Challenges of threat hunting. Small, medium, and large criminal enterprises.

    Publicado: 4/4/2023
17. "Cylance" ransomware (no relation to Cylance). Update on the 3CX incident. The FSB's arrest of Evan Gershkovich. Ukrainian hacktivist social engineering in the hybrid war.

    Publicado: 3/4/2023
18. Alon Jackson: Sometimes you feel like an octopus. [CEO] [Career Notes]

    Publicado: 2/4/2023
19. Blackfly flies back again. [Research Saturday]

    Publicado: 1/4/2023
20. A glimpse into Mr. Putin’s cyber war room. 3CXDesktopAppsupply chain risk. XSS flaw in Azure SFX can lead to remote code execution. AlienFox targets misconfigured servers.

    Publicado: 31/3/2023