CyberWire Daily

3271 Episodo

1. Silicon Valley Bank as phishbait. An “attack superhighway.” Unauthorized software in the workplace. YoroTrooper, a new cyberespionage threat actor. Hacktivists game, too. How crime pays.

   Publicado: 14/3/2023
2. Coping with Silicon Valley Bank's collapse. BatLoader's abuse of Google Search Ads. More on Emotet’s re-emergence. Medusa rising. NetWire collared. More-or-less quiet on the cyber front.

   Publicado: 13/3/2023
3. Bat El Azerad: Find your niche to bring to the table. [CEO] [Career Notes]

   Publicado: 12/3/2023
4. Files stolen from a sneaky SymStealer. [Research Saturday]

   Publicado: 11/3/2023
5. Cybercrime and cyberespionage: IceFire, DUCKTAIL, LIGHTSHOW, Remcsos, and a tarot card reader. US cyber budgets, strategy, and a DoD cyber workforce approach. Five new ICS advisories.

   Publicado: 10/3/2023
6. PlugX is now wormable. Compromised webcams found. Emotet is back. AI builds a keylogger. Cyber in the hybrid war. BEC comes to productivity suites.

   Publicado: 9/3/2023
7. Data breaches and IP. Current cyberespionage campaigns. A warning that the cyber phases of the hybrid war can’t be expected to be over, yet. Exfiltration via machine learning inference.

   Publicado: 8/3/2023
8. A new threat to routers. DoppelPaymer hoods collared. Ransomware hits a Barcelona hospital. Phishing in productivity suites. Espionage, hacktiism, and prank phone calls.

   Publicado: 7/3/2023
9. That crane might know what you’re shipping. Addressing the cybersecurity of water systems. Oakland’s ransomware incident is now a breach. Hybrid war. Investment scams.

   Publicado: 6/3/2023
10. Gabriela Smith-Sherman: Thriving in the chaos. [Cyber governance] [Career Notes]

    Publicado: 5/3/2023
11. New exploits are tricking Chrome. [Research Saturday]

    Publicado: 4/3/2023
12. More on how the US will implement its new National Cybersecurity Strategy. Emissary Panda and Mustang Panda are back. Responding to phishing. Royal ransomware. Water utility security.

    Publicado: 3/3/2023
13. CISA Alert AA23-061A – #StopRansomware: Royal ransomware.

    Publicado: 3/3/2023
14. CISA Alert AA23-059A – CISA red team shares key findings to improve monitoring and hardening of networks. [CISA Cybersecurity Alerts]

    Publicado: 3/3/2023
15. CyberWire commentary: Ukraine one year on. [Special Edition]

    Publicado: 3/3/2023
16. The US National Cybersecurity Strategy is out, and we have a preliminary look. CISA red-teams critical infrastructure. A new cryptojacker is out. Russia bans messaging apps. Hacktivist auxiliaries.

    Publicado: 2/3/2023
17. How an attack led to a breach that enabled further social engineering. Forensic visibility in the Google Cloud Platform. Hacktivist auxiliaries. Two 8Ks and a free decryptor.

    Publicado: 1/3/2023
18. Data breach at the US Marshals Service. Blind Eagle phishes in the service of espionage. Dish investigates its outages. Qakbot delivered via OneNote files. Memory-safe coding.

    Publicado: 28/2/2023
19. Artificial intelligence behaving badly? Or just tastelessly? Third-party risks. Signs that the advantage may be tilting toward the defender.

    Publicado: 27/2/2023
20. Mike Fey: Highs are high and lows are low. [CEO] [Career Notes]

    Publicado: 26/2/2023