CyberWire Daily

2656 Episodes

1. A quick look at some threats from China and North Korea, some engaged in collection, some in theft. BlackCat and other ransomware operators. And a view of cyberwar from Ukraine’s SSU.

   Published: 9/18/2023
2. Karl Mattson: Defer gratification. (CISO) [Career Notes]

   Published: 9/17/2023
3. A look into the emotions and anxieties of the highest levels of decision-making. [Research Saturday]

   Published: 9/16/2023
4. Peach Sandstorm cyberespionage. Criminal attacks against a Colombian telco and two major US casino firms. A thief in the browser. And the Greater Manchester Police are on a virtual manhunt.

   Published: 9/15/2023
5. Ransomware and materiality. MetaStealer hits businesses. Two looks at cloud risks. His Highness, the Large Language Model.

   Published: 9/14/2023
6. How one access broker gets its initial access (it’s through novel phishing). Be alert for deepfakes, US authorities say. The Pentagon’s new cyber strategy. And a reminder: yesterday was Patch Tuesday.

   Published: 9/13/2023
7. Phishing with Facebook Messenger bots. Redfly hits a national power grid. Nice platform you got there…shame if something happened to it. MGM Resorts grapples with a “cybersecurity issue.”

   Published: 9/12/2023
8. UK's NCA and NCSC release a study of the cybercriminal underworld. HijackLoader's growing share of the C2C market. Russia's hacker diaspora in Turkey. Cyber diplomacy, free and frank..

   Published: 9/11/2023
9. Caroline Wong: A passion for teaching. [CSO] [Career Notes]

   Published: 9/10/2023
10. No honor in being a criminal. [Research Saturday]

    Published: 9/9/2023
11. Apple issues an emergency patch. Aerospace sector under attack. DPRK spearsphishes security researchers. Notes from the hybrid war, including Starlink’s judgments on jus in bello.

    Published: 9/8/2023
12. Microsoft releases results of investigation into cloud email compromise. A buggy booking service. Adversary emulation for OT networks. Identity protection trends. Notes from the hybrid war.

    Published: 9/7/2023
13. Agent Tesla still hits unpatched systems. Hot wallet hacks. AI and DevSecOps. Notes on Fancy Bear and NoName057(16). And some curious trends in the cyber labor market.

    Published: 9/6/2023
14. In today’s symposium, we talk about a new strand of Chae$ malware, some developments in social engineering, privateers in a hybrid war, cyber ops as combat support, and some default passwords.

    Published: 9/5/2023
15. Interview Select: Jeff Welgan, Chief Learning Officer at N2K Networks is expanding on the NICE framework in strategic workforce intelligence. [Interview selects]

    Published: 9/4/2023
16. Rick Doten: There is a rainbow of different roles in cybersecurity. [VP] [Career Notes]

    Published: 9/3/2023
17. Thwarting Muddled Libra. [Research Saturday]

    Published: 9/2/2023
18. DPRK cyberespionage update. New cybercriminal TTPs. The state of DevSecOps. Hacktivism and the nation-state. Cyberwar lessons learned. A free decryptor for Key Group ransomware.

    Published: 9/1/2023
19. GREF and Earth Estries from China. GRU’s Sandworm surfaces again, wielding “Infamous Chisel.” Hacktivist nuisances in the hybrid war. A zero-day is discovered. And the Wolverines are back online.

    Published: 8/31/2023
20. An international hunt bags Qakbot’s infrastructure. Anticipating remediation. Adversaries in the middle. More effective phishbait. Air travel disruption was a glitch, not an attack. Hybrid war update.

    Published: 8/30/2023