CyberWire Daily

3271 Episodo

1. APTs transitioning to the cloud. [CyberWire-X]

   Publicado: 11/7/2021
2. Dealing illicit goods on encrypted chat apps. [Research Saturday]

   Publicado: 10/7/2021
3. Kaseya continues to work through its REvil days, as does the US Administration. In other news, there’s cyberespionage in Asia, the PrintNightmare fix, and Black Widow as phishbait.

   Publicado: 9/7/2021
4. Cyber conflict sputters in Ukraine? Kaseya delays VSA patch, offers assistance to REvil’s victims. US mulls retaliation for privateering. PrintNightmare patch. Another extradition run at Julian Assang

   Publicado: 8/7/2021
5. Kaseya works on patching VSA as Washington mulls retaliation and Moscow says it has nothing to do with it. Microsoft patches PrintNightmare. The Lazarus Group is back.

   Publicado: 7/7/2021
6. The Kaseya ransomware incident. Ransomware threats to industrial firms. Malicious Android apps stole Facebook credentials. The Tokyo Olympics and cyber risk.

   Publicado: 6/7/2021
7. Dwayne Price: Sharing information. [Project Management] [Career Notes]

   Publicado: 4/7/2021
8. Malware in pirated Windows installation files. [Research Saturday]

   Publicado: 3/7/2021
9. Mitigating PrintNightmare. New ransomware strains in circulation. Router firmware patched. Russia denies brute-forcing anyone. What the reinsurance rates tell us.

   Publicado: 2/7/2021
10. Large-scale GRU brute-forcing campaign in progress. IndigoZebra in Afghanistan. A ransomware gang scorecard. A cyber most-wanted list. Are the phone lines open?

    Publicado: 1/7/2021
11. A look at some threats to ICS endpoints. EternalBlue remains a problem. US preparing attribution of the Microsoft Exchange Server hack. DoubleVPN seized. An arrest in the Gozi case.

    Publicado: 30/6/2021
12. A look at the cybercriminal underground, its commodity tools, its rising gangs, how it recruits talent and affiliates, and even how it raises investments.

    Publicado: 29/6/2021
13. Nobelium is back. A signed driver is gamer-focused malware. Idle hands. Third-party cloud risk. Bad practices. A net assessment of national cyber power.

    Publicado: 28/6/2021
14. Introducing Security Unlocked: CISO Series with Bret Arsenault–Leading an Inclusive Workforce: Emma Smith, Vodafone

    Publicado: 27/6/2021
15. Maria Thompson-Saeb: Be flexible and make it happen. [Program Management] [Career Notes]

    Publicado: 27/6/2021
16. Exhibiting advanced APT-like behavior. [Research Saturday]

    Publicado: 26/6/2021
17. REvil is back. Misconfiguration with major effect. Mining Monero. Judgments against market-rigging hackers. A FIN7 operator is sentenced.

    Publicado: 25/6/2021
18. Notes on current cyber criminal campaigns. Will Exercise Cyber Flag show the way toward an expedition to the virtual shores of a metaphorical Tripoli?

    Publicado: 24/6/2021
19. Cyberespionage, in Central Europe and South Asia. Iranian state media sites seized. Sale of inspection and tracing tools leads to an indictment in France. Cooperation, foreign and domestic.

    Publicado: 23/6/2021
20. Malicious Google ads lead to spoofed Signal and Telegram pages, and then on to malware. LV’s REvil roots. Vulnerable defense contractors. And bogus AIS position reports in the Black Sea.

    Publicado: 22/6/2021