CyberWire Daily

3271 Episodo

1. Moscow poorly served by its intelligence services, say London and Washington. Cyber phases of the hybrid war. A new zero-day, and some resurgent criminal activity.

   Publicado: 31/3/2022
2. Taking down bot farms. Cyber aggression. Kinetic influence ops, Spamming yourself? CS control system advisories. Sanctions are also biting Russian cyber gangs.

   Publicado: 30/3/2022
3. Cyber phases of a hybrid war continue at a nuisance level. IcedID’s distribution vectors. Automating software supply-chain attacks. CISA offers power supply risk mitigation guidance.

   Publicado: 29/3/2022
4. Notes on the cyber aspects of the ongoing hybrid war. DDoS in the Marshall Islands. Lapsus$ Group post mortems. US FCC sanctions Kaspersky. CISA adds Known Exploited Vulnerabilities to its Catalog.

   Publicado: 28/3/2022
5. The breakdown of Shuckworm's continued cyber attacks against Ukraine. [Research Saturday]

   Publicado: 26/3/2022
6. Fears of Russian escalation, with both chemical and cyber weapons, rise. DPRK APTs exploit Chrome vulnerabilities. Mustang Panda is back. Arrests made in the Lapsus$ case.

   Publicado: 25/3/2022
7. Updates on Russia’s hybrid war against Ukraine. The leader of the Lapsus$ Gang may be a 16-year-old living with his Mom. Wanted cybercriminals. Hacktivism’s sometimes wayward aim.

   Publicado: 24/3/2022
8. Insider Risk Excellence Awards. [CyberWire-X]

   Publicado: 24/3/2022
9. British-American warnings of a Russian cyber threat, and Russia’s response. More on the Lapsus$ gang incidents at Microsoft and Okta. And Secureworks looks at Conti and sees a criminal ecosystem.

   Publicado: 23/3/2022
10. White House adds its voice to CISA’s Shields Up, warning of the possibility of Russian cyberattacks. New malware strains described, new criminal attack techniques observed.

    Publicado: 22/3/2022
11. Hacktivism, protestware, and information operations in a hybrid war. Brazi-based cyber gangs active in extortion. Steganography opens a backdoor. A free decryptor for Diavol ransomware.

    Publicado: 21/3/2022
12. Derek Manky: Putting the rubber to the road. [Threat Intelligence] [Career Notes]

    Publicado: 20/3/2022
13. Implications of data leaks of sensitive OT information. [Research Saturday]

    Publicado: 19/3/2022
14. Hacktivism and other cyberattacks continue against Russian targets, but some hacktivism may go too far. C2C market notes. Advice from CISA and NIST. Prank calls as statecraft.

    Publicado: 18/3/2022
15. Debunking deepfakes. Hacktivism and information warfare. The prospect of “splinternets.” Germany warns of security product risks. Disruption of Ukrainian ISPs. New wrinkles in phishing.

    Publicado: 17/3/2022
16. Ukrainian President Zelenskyy addresses the US Congress, as Russia’s hybrid war continues. LokiLocker ransomware flies a false flag. CISA warns of Russian cyber threat. Advance fee arrest.

    Publicado: 16/3/2022
17. Disinformation and cyberattacks in Russia’s hybrid war against Ukraine. DDoS attack hits Israeli telcos. Captured tools are old news. Recent trends in cybercrime.

    Publicado: 15/3/2022
18. Russia’s hybrid war against Ukraine becomes more firepower intensive, but hackers make their mark. Cybercrime does business as usual.

    Publicado: 14/3/2022
19. Kristin Strand: Be firm in your goals. [Consultant] [Career Notes]

    Publicado: 13/3/2022
20. The story of REvil: From origin to beyond. [Research Saturday]

    Publicado: 12/3/2022