CyberWire Daily

3271 Avsnitt

1. Update: VMware ESXi exploitations. Super Bowl cyber risks. Scalping bots. The curious case of the Moscow billboards.

   Publicerades: 2023-02-07
2. Unpatched VMware ESXi instances attacked. Okatpus is back. Update on LockBit’s ransomware attack on ION. Charlie Hebdo hack attributed to Iran.

   Publicerades: 2023-02-06
3. Yasmin Abdi: Find your community. [Security Engineer] [Career Notes]

   Publicerades: 2023-02-05
4. “Shift Left”: A case for threat-informed pentesting. [CyberWire-X]

   Publicerades: 2023-02-05
5. Can ransomware turn machines against us? [Research Saturday]

   Publicerades: 2023-02-04
6. Cyberespionage, and ransomware as misdirection. A new Python-based supply chain attack. Traffic on the Static Expressway. KillNet continues to plague hospitals. And Telegram may be compromised.

   Publicerades: 2023-02-03
7. Cisco fixes vulnerabilities in ICS appliances. NIST’s anti-phishing guidelines. OneNote exploitation. HeadCrab malware. Recent actions by Russian threat actors. Trends in state-directed cyber ops.

   Publicerades: 2023-02-02
8. How the C2C market sustains ransomware gangs. In Russia’s war, intelligence services deploy wipers, and hacktivist auxiliaries handle the DDoS. And a look into other corners of the cyber underworld.

   Publicerades: 2023-02-01
9. The cybercriminal labor market and the campaigns it’s supporting. Russia’s Killnet is running DDoS attacks against US hospitals, but Russia says, hey, it’s the real victim here.

   Publicerades: 2023-01-31
10. Criminal evolutions, disgruntled insiders, and gangsta wannabes. New wiper attacks hit Ukrainian targets, with less effect than the first rounds early last year. And support your local hacktivist?

    Publicerades: 2023-01-30
11. Charlie Moore: Pilot to head honcho in cyber. [Cyber Command] [Career Notes[

    Publicerades: 2023-01-29
12. Interview with the AI, part one. [Special Editions]

    Publicerades: 2023-01-29
13. Flagging firmware vulnerabilities. [Research Saturday]

    Publicerades: 2023-01-28
14. An update on the Hive ransomware takedown. More DDoS from Killnet. Advisories from CISA, and an addition to the Known Exploited Vulnerabilties Catalog.

    Publicerades: 2023-01-27
15. Remote monitoring and management tools abused. Russian and Iranian cyberespionage reported. The world according to the CIO. And if volume is your secret, maybe look for a better secret.

    Publicerades: 2023-01-26
16. CISA Alert AA23-025A – Protecting against malicious use of remote monitoring and management software. [CISA Cybersecurity Alerts]

    Publicerades: 2023-01-26
17. TA444 and crypto theft on behalf of the Dear Successor. CryptoAPI spoofing vulnerability described. New Python-based malware campaign. User headspace. Tanks vs. hacktivists.

    Publicerades: 2023-01-25
18. Cyber Marketing Con 2022: From the horse’s mouth: CISO Q&A on solving the cyber marketer’s dilemma. [Special Editions]

    Publicerades: 2023-01-25
19. Disentangling cybercrime from cyberespionage. A threat to the IoT supply chain. What do you do with the hacktivists when they stop being hacktivists? A retired FBI Special Agent is indicted.

    Publicerades: 2023-01-24
20. Contractor error behind FAA outage. OneNote malspam. Vastflux ad campaign disrupted. Ukraine moves closer to CCDCOE membership. Alerts for gamblers and gamers.

    Publicerades: 2023-01-23