The Cyberwire

"The Cyberwire.  The Black Basta ransomware riddle."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 27 July 2024, 2220 UTC.

Content and Source:  Subscription from https://feedly.com.   https://feedly.com/i/subscription/feed%2Fhttps%3A%2F%2Fthecyberwire.com%2Ffeeds%2Frss.xml

Please scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

The CyberWire

9K followers22 articles per week#security#ciso#tech
22

Yesterday

The Black Basta ransomware riddle.
2 TTPs
17h
Dick O'Brien from Symantec Threat Hunter team is talking about their work on "Ransomware Attackers May Have Used Privilege Escalation Vulnerability as Zero-day." Also going to provide some background/history on Black Basta. CVE-2024-26169 in the Windows Error Reporting Service, patched on March 12, 2024, allowed privilege escalation. Despite initial claims of no active exploitation, recent analysi
FBI and DOJ thwart North Korean cyber scheme.
1d
A North Korean hacker is indicted for major cyberattacks. CrowdStrike’s in recovery mode. Phishing thrives in the wake of BSOD chaos. Wiz spells out no to Alphabet's $23bn offer. France goes full clean-up. Israel's secret shield in spyware saga. KOSA and COPPA 2.0 promise safer surfing for kids. N2K’s CSO Rick Howard speaks with Steve Schmidt, CSO of Amazon, about the culture of security and what

Jul 25, 2024

Playing doctor with cyberattacks.
2d
A North Korean hacking group targets healthcare, energy and finance. Leaked Leidos documents surface on the dark web. A Middle Eastern financial institution suffered a record-breaking DDoS attack. The latest tally on the fallout from the Crowdstrike outage. A cybersecurity audit of HHS reveals significant cloud security gaps. Docker patches a critical vulnerability for the second time. Google anno

Jul 24, 2024

Healthcare hassles and hefty heists.
2d
This week, Maria Varmazis host of the N2K daily space show, T-Minus, joins Dave and Joe, as they celebrate Maria joining the Hacking Humans podcast every week! Maria's story is from a listener this week who writes in with a story on an IT company that is a third party for a healthcare company, and the dangers that can come from that. Dave and Joe share some listener follow up from Michael, who sha
Blue screens of death: A deep dive into the Microsoft CrowdStrike outage.
2d
This week we are joined by Caleb Barlow to discuss the legal and policy implications of the CrowdStrike incident. Early last Friday, the Microsoft CrowdStrike outage began due to a faulty update to CrowdStrike's Falcon sensor software on Windows, leading to widespread "blue screens of death." The CrowdStrike IT outage has disrupted 8.5 million devices globally, causing major operational issues. In
Ghost accounts haunt GitHub.
3d
Stargazer Goblin hosts malicious code repositories on GitHub. Crowdstrike blames buggy validations checks for last week’s major incident. The Breachforums database reveals threat actor OPSEC. Windows Hello for Business (WHfB) was found vulnerable to downgrade attacks. A medical center in the U.S. Virgin Islands is hit with ransomware. Interisle analyzes the phishing landscape. The FTC orders eight
Microsoft’s The BlueHat Podcast joins the N2K CyberWire network.
3d
N2K Networks, a leader in cyber workforce intelligence, today announced the launch of The BlueHat Podcast, the latest podcast from the Microsoft Security team to join the leading cybersecurity media network. The show will air on the N2K CyberWire network and joins the ranks of other popular Microsoft Security podcasts, including The Microsoft Threat Intelligence Podcast, Afternoon Cyber Tea with A

Jul 23, 2024

Craig Nelson on Simulating Attacks with Microsoft’s Red Team
3d
Craig Nelson, leader of Microsoft's Red Team joins Nic Fillingham and Wendy Zenone on this week's episode of The BlueHat Podcast. Craig explains how the Red Team simulates attacks on Microsoft's infrastructure to identify vulnerabilities and protect customer data stored in the cloud. He emphasizes the importance of these simulated attacks in preparing for real threats and describes the collaborati
Compelling Cyber Narratives with David J. Ebner
3d
Storytelling in cybersecurity doesn't have to be dry. There are stories of espionage, state-sponsored attacks, and ransom scenarios that are dramatic and engaging when told well. Today's special guest, David J. Ebner, the president and founder of Content Workshop, a content agency specializing in cybersecurity companies, is an expert in taking these technical topics and turning them into compellin
Don't mess with the NCA.
4d
UK law enforcement relieves DigitalStress. Congress summons Crowdstrike’s CEO to testify. FrostyGoop malware turned off the heat in Ukraine. EvilVideo is a zero-day exploit for Telegram. Daggerfly targets Hong Kong pro-democracy activists. Google has abandoned its plan to eliminate third-party cookies. The FCC settles with Tracfone Wireless over privacy and cybersecurity lapses. Wiz says no to Goo

Jul 22, 2024

CrowdStrike and Microsoft battle blue screens across the globe.
5d
Mitigation continues on the global CrowdStrike outage. UK police arrest a suspected member of Scattered Spider. A scathing report from DHS says CISA ignored a directive to cut ties with a faulty contractor. Huntress finds SocGholish distributing AsyncRAT. Ransomware takes down the largest trial court in the U.S. A US regulator finds many major banks inadequately manage cyber risk. CISA adds three

Jul 21, 2024

End of feed

Comments

Post a Comment

Please leave a comment about our recent post.

Popular posts from this blog

SecurityWeek Briefing.

Image
"Microsoft offers up to $15,000 in New AI Bug Bounty Program." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 13 October 2023, 2020 UTC.  Content provided by email subscription to "SecurityWeek Briefing." Source:  https://mail.google.com/mail/u/0/#inbox/FMfcgzGtxdZHmrfcBkMDJSSNTtHlmhQX ("SecurityWeek Briefing"). Please click link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). SecurityWeek News Briefing | Friday, October 13, 2023 CISA Now Flagging Vulnerabilities, Misconfigurations Exploited by Ransomware Juniper Networks Patches Over 30 Vulnerabilities in Junos OS In Other News : Ex-Uber Security Chief Appeal, New Offerings From Tech Giants, Crypto Bounty Dozens of Squid Proxy Vulnerabilities Remain Unpatched 2 Years After Disclosure Microsoft Offers Up to $15,000 in New AI Bug Bounty Program Researcher Co
Read more

SecurityWeek Briefing.

Image
"Health Care Solutions giant disrupted by Cyberattack." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 19 October 2023, 2033 UTC.  Content provided by email subscription to "SecurityWeek Briefing." Source:  https://mail.google.com/mail/u/0/?tab=rm&ogbl#inbox/FMfcgzGwHLhdlHbpbQJXqhLLSvQbhdnC ("SecurityWeek Briefing"). Please click link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). SecurityWeek News Briefing | Thursday, October 19, 2023 Healthcare Solutions Giant Disrupted by Cyberattack Thousands of Remote IT Workers Sent Wages to North Korea to Help Fund Weapons Program CipherStash Raises $3 Million for Encryption-in-Use Technology US Government Releases Anti-Phishing Guidance Google Play Protect Gets Real-Time Code Scanning Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,00
Read more

The Hacker News

Image
" French authorities launch operation to remover PlugX malware from infected systems." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 28 July 2024, 1505 UTC. Content and Source:   https://thehackernews.com/ Please check link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). French Authorities Launch Operation to Remove PlugX Malware from Infected Systems  Jul 27, 2024   Malware / Cyber Intelligence French judicial authorities, in collaboration with Europol, have launched a so-called "disinfection operation" to rid compromised hosts of a known malware called PlugX. The Paris Prosecutor's Office, Parquet de Paris, said the initiative was launched on July 18 and that it's expected to continue for "several months." It further said around a hundred victims located in France, Malta, Portugal, Croatia, Slov
Read more