CyberWire Daily

2656 Episodo

1. Buggy APIs may expose credit scores. Dealing with ransomware. Iran-Israeli tensions are up. Russia says it will always see the Americans coming. Surge cyber capacity. NSA’s advice on OT security.

   Publicado: 29/4/2021
2. More intelligence on Ghostwriter, and a convergence of hacking and influence operations. Naikon APT has a new backdoor. FluBot returns. MAPP reconsidered. Defense counsel on Cellebrite.

   Publicado: 28/4/2021
3. The FBI and CISA take a look at the SVR, and offer advice for potential targets. Openness and information warfare. OPSEC and privacy. Babuk hits DC police. Social engineering notes.

   Publicado: 27/4/2021
4. Prankers on Zoom, with convincing video. Emotet takedown. US response to SolarWinds reviewed. Cancer therapy disrupted by attack on cloud provider. Oscar phishing.

   Publicado: 26/4/2021
5. Channeling the data avalanche. [CyberWire-X]

   Publicado: 25/4/2021
6. Marcelle Lee: Cyber sleuth detecting emerging threats. [Research] [Career Notes]

   Publicado: 25/4/2021
7. Bulletproof hosting (BPH) and how it powers cybercrime. [Research Saturday]

   Publicado: 24/4/2021
8. Three ransomware gangs up their game. The US Postal Inspection Service’s “Internet Covert Operations Program.” GCHQ warns of dependence on Chinese tech. Undersea cable security.

   Publicado: 23/4/2021
9. VPN users remediate systems. New Supernova infection. Cryptojacking botnet afflicts vulnerable Exchange Servers. Facebook takes down spyware groups. Ransomware. Cellebrite bug found.

   Publicado: 22/4/2021
10. SonicWall, Pulse Secure products under exploitation (mitigations are available). Power grid security. Cyber conflict in the Near Abroad. ISIS worries about Bitcoin. Bad passwords.

    Publicado: 21/4/2021
11. Codecov supply chain attack update. Babuk’s victim service. Catphishing in LinkedIn. Sanctioned company responds. SolarWinds, Exchange compromise TFs stand down. 5 Eyes notes. IoT risk.

    Publicado: 20/4/2021
12. Codecov may have sustained a supply chain attack. Natanz sabotage update. Big data gangs. Protecting ransomware gangs. Counterretaliation in the SolarWinds affair.

    Publicado: 19/4/2021
13. Aviv Grafi: There needs to be fundamental changes in security. [CEO] [Career Notes]

    Publicado: 18/4/2021
14. Social engineering: MINEBRIDGE RAT embedded to look like job résumés. [Research Saturday]

    Publicado: 17/4/2021
15. International reactions to US sanctions against Russia (positively reviewed in Europe and the UK, but panned by Russia). Continuing threats to the cold chain. Natanz back in business? Data breach note

    Publicado: 16/4/2021
16. Imposing costs and sending signals (and prominently naming Cozy Bear). More speculation about the Natanz explosion. And a shift in the criminal-to-criminal economy.

    Publicado: 15/4/2021
17. The IAEA investigates the Natanz incident (amid conflicting reports on the nature of the sabotage). Mopping up the SolarWinds Exchange Server hacks.

    Publicado: 14/4/2021
18. Natanz pre-emptive sabotage updates. NAME:WRECK DNS vulnerabilities. Tax phishing. ATM cards and advance-fee scams. Ransomware-induced cheese shortage.

    Publicado: 13/4/2021
19. Apparent cyber sabotage at Natanz. Arrest made in alleged plot to blow up AWS facility. Scraped data for sale in criminal fora. US senior cyber appointments expected soon.

    Publicado: 12/4/2021
20. Debra Danielson: Be fearless. [CTO] [Career Notes]

    Publicado: 11/4/2021