CyberWire Daily

2656 Episodes

1. Michael DeBolt: From acting to cyber. [Intelligence] [Career Notes]

   Published: 4/3/2022
2. Living security: the current state of XDR. [CyberWire-X]

   Published: 4/3/2022
3. A popular malware scheme and pay-per-install services. [Research Saturday]

   Published: 4/2/2022
4. Epistemic closure in a hybrid war. Wiper used against VIasat modems. US Treasury sanctions more Russian actors. Remediating Spring4shell. Notes from law enforcement. And we’re not joking.

   Published: 4/1/2022
5. Moscow poorly served by its intelligence services, say London and Washington. Cyber phases of the hybrid war. A new zero-day, and some resurgent criminal activity.

   Published: 3/31/2022
6. Taking down bot farms. Cyber aggression. Kinetic influence ops, Spamming yourself? CS control system advisories. Sanctions are also biting Russian cyber gangs.

   Published: 3/30/2022
7. Cyber phases of a hybrid war continue at a nuisance level. IcedID’s distribution vectors. Automating software supply-chain attacks. CISA offers power supply risk mitigation guidance.

   Published: 3/29/2022
8. Notes on the cyber aspects of the ongoing hybrid war. DDoS in the Marshall Islands. Lapsus$ Group post mortems. US FCC sanctions Kaspersky. CISA adds Known Exploited Vulnerabilities to its Catalog.

   Published: 3/28/2022
9. The breakdown of Shuckworm's continued cyber attacks against Ukraine. [Research Saturday]

   Published: 3/26/2022
10. Fears of Russian escalation, with both chemical and cyber weapons, rise. DPRK APTs exploit Chrome vulnerabilities. Mustang Panda is back. Arrests made in the Lapsus$ case.

    Published: 3/25/2022
11. Updates on Russia’s hybrid war against Ukraine. The leader of the Lapsus$ Gang may be a 16-year-old living with his Mom. Wanted cybercriminals. Hacktivism’s sometimes wayward aim.

    Published: 3/24/2022
12. Insider Risk Excellence Awards. [CyberWire-X]

    Published: 3/24/2022
13. British-American warnings of a Russian cyber threat, and Russia’s response. More on the Lapsus$ gang incidents at Microsoft and Okta. And Secureworks looks at Conti and sees a criminal ecosystem.

    Published: 3/23/2022
14. White House adds its voice to CISA’s Shields Up, warning of the possibility of Russian cyberattacks. New malware strains described, new criminal attack techniques observed.

    Published: 3/22/2022
15. Hacktivism, protestware, and information operations in a hybrid war. Brazi-based cyber gangs active in extortion. Steganography opens a backdoor. A free decryptor for Diavol ransomware.

    Published: 3/21/2022
16. Derek Manky: Putting the rubber to the road. [Threat Intelligence] [Career Notes]

    Published: 3/20/2022
17. Implications of data leaks of sensitive OT information. [Research Saturday]

    Published: 3/19/2022
18. Hacktivism and other cyberattacks continue against Russian targets, but some hacktivism may go too far. C2C market notes. Advice from CISA and NIST. Prank calls as statecraft.

    Published: 3/18/2022
19. Debunking deepfakes. Hacktivism and information warfare. The prospect of “splinternets.” Germany warns of security product risks. Disruption of Ukrainian ISPs. New wrinkles in phishing.

    Published: 3/17/2022
20. Ukrainian President Zelenskyy addresses the US Congress, as Russia’s hybrid war continues. LokiLocker ransomware flies a false flag. CISA warns of Russian cyber threat. Advance fee arrest.

    Published: 3/16/2022