The CyberWire Daily Podcast 3.25.22
Ep 1543 | 3.25.22

Fears of Russian escalation, with both chemical and cyber weapons, rise. DPRK APTs exploit Chrome vulnerabilities. Mustang Panda is back. Arrests made in the Lapsus$ case.

Show Notes

Fears of Russian escalation as Ukraine’s counteroffensive sees successes. Warnings of possible Russian cyberattacks gain context from attribution of the Viasat incident and two US unsealed indictments. CISA continues to recommend best practices. North Korean APTs exploit Chrome vulnerabilities. Mustang Panda is back. David Dufour from Webroot on ransomware gangs and cartels. Our guest is Liliana Monge of Sabio Coding Bootcamp on creating opportunities for those looking to pursue a career in tech. And boy, boy, your wild ways will break your mother’s heart.

Selected reading.

Ukrainian forces advance east of Kyiv as Russians fall back (Reuters)

Counteroffensive in Ukraine Shifts Dynamic of War (New York Times)

Ukrainian forces claim to destroy a Russian landing ship. (New York Times) 

Putin's war in Ukraine nearing possibly more dangerous phase (AP NEWS) 

Syrians watch in horror as Putin deploys the Aleppo playbook in Ukraine (CNN) 

Joe Biden: We will respond in kind if Vladimir Putin uses chemical weapons in Ukraine (The Telegraph) 

A month into the Russian invasion, Ukraine is still mostly online (The Record by Recorded Future)

Russian military behind hack of satellite communication devices in Ukraine at war’s outset, U.S. officials say (Washington Post) 

Hackers Attacked Satellite Terminals Through Management Network, Viasat Officials Say (Air Force Magazine)

Four Russian Government Employees Charged in Two Historical Hacking Campaigns Targeting Critical Infrastructure Worldwide (US Department of Justice) 

US charges four Russian hackers over cyber-attacks on global energy sector (the Guardian) 

North Korean Actors Exploited Chrome Flaw to Target U.S. Orgs (Decipher) 

Countering threats from North Korea (Google)

New Mustang Panda hacking campaign targets diplomats, ISPs (BleepingComputer) 

Chinese APT Combines Fresh Hodur RAT with Complex Anti-Detection (Threatpost)

Lapsus$: Oxford teen accused of being multi-millionaire cyber-criminal (BBC News)