The CyberWire Daily Podcast 7.8.22
Ep 1615 | 7.8.22

An update on cyber operations in Russia’s hybrid war. NPM compromise updates. CISA releases ICS security advisories. Free ransomware decryptors released. Disneyland's Instagram account hijacked.

Show Notes

An update on cyber operations in the hybrid war. NPM compromise updates. Free decryptors for AstraLocker and Yashma ransomware. Johannes Ullrich from SANS on attacks against Perimeter Security Devices. Our guest is Sonali Shah from Invicti Security with a look at DevSecOps anxiety. And who’s the villain who hijacked the Instagram account of Disneyland?

Selected reading.

Russia-Ukraine war: List of key events, day 135 (Al Jazeera)

Russia-Ukraine war: Putin warns Moscow has 'barely started' its campaign (The Telegraph) 

Russian Cybercrime Trickbot Group is systematically attacking Ukraine (Security Affairs) 

US finance sector encouraged to stay vigilant against retaliatory Russian cyberattacks (SC Magazine) 

Someone may be prepping an NPM crypto-mining spree (Register) 

ICS CERT Advisories (CISA)

Free decryptor released for AstraLocker, Yashma ransomware victims (BleepingComputer) 

Disneyland’s Instagram Account Hacked With a Series of Profane, Racist Posts (Wall Street Journal)