The CyberWire Daily Podcast 7.21.22
Ep 1624 | 7.21.22

Notes on the underworld: emerging, enduring, and vanishing gangs, and their C2C markets. More spearphishing of Ukrainian targets. US CYBERCOM releases IOCs obtained from Ukrainian networks.

Show Notes

A criminal talent broker emerges. Developing threats to financial institutions. Phishing through PayPal. Lessons to be learned from LAPSUS$, post-flameout. More spearphishing of Ukrainian targets. US Cyber Command releases IOCs obtained from Ukrainian networks. Johannes Ullrich from SANS on the value of  keeping technology simple. Our guests are Carla Plummer and Akilah Tunsill from the organization Black Girls in Cyber. And not really honor, but honor’s self-interested first cousin.

Selected reading.

Atlas Intelligence Group (A.I.G) – The Wrath of a Titan (Cyberint)

'AIG' Threat Group Launches With Unique Business Model (Dark Reading)

Buy, Sell, Steal, EvilNum Targets Cryptocurrency, Forex, Commodities (Proofpoint)

Sending Phishing Emails From PayPal (Avanan) 

Brazen, Unsophisticated and Illogical: Understanding the LAPSUS$ Extortion Group (Tenable®)

Evacuation and Humanitarian Documents used to Spear Phish Ukrainian Entities (Mandiant)

Cyber National Mission Force discloses IOCs from Ukrainian networks (U.S. Cyber Command) 

The Evolution of Cybercrime: Why the Dark Web is Supercharging the Threat Landscape and How to Fight Back (HP Wolf Security)