Podcasts
CyberWire Daily
Ep 1647
The CyberWire Daily Podcast 8.23.22
Ep 1647 | 8.23.22

Iranian APT data extraction tool described. LockBit gang comes under DDoS. Twitter whistleblower security claims made public. Greek natural gas supplier under cyberattack. Updates on a hybrid war.

Show Notes
Transcript

Iranian APT data extraction tool described. LockBit gang comes under DDoS. Twitter whistleblower security claims made public. Poland and Ukraine conclude cybersecurity agreement. Greek national natural gas supplier under criminal cyberattack. Update to the Joint Alert on Zimbra exploitation. Addition to CISA's Known Exploited Vulnerabilities Catalog. Johannes Ullrich from SANS on Control Plane vs. Data Plane vulnerabilities. Our guest is David Nosibor, Platform Solutions Lead for UL to discuss SafeCyber Phase II. And, finally, targeting and trolling, with an excursus on Speedos. Really.

Selected reading.

New Iranian APT data extraction tool (Google)

LockBit gang hit by DDoS attack after Entrust leaks (Register) 

Former security chief claims Twitter buried ‘egregious deficiencies’ (Washington Post) 

Ex-Twitter exec blows the whistle, alleging reckless and negligent cybersecurity policies (CNN) 

Twitter’s Ex-Security Head Files Whistleblower Complaint (Wall Street Journal)

Deception, Bots, and Foreign Agents: The Twitter Whistleblower’s Biggest Allegations (Time)

The Ministry of Digital Transformation, State Service of Special Communication and Information Protection and the Council of Ministers of the Republic of Poland signed Memorandum of understanding in the cybersecurity field. (State Service of Special Communication and Information Protection) 

Greek natural gas operator suffers ransomware-related data breach (BleepingComputer) 

Greek gas operator refuses to negotiate with ransomware group after attack (The Record by Recorded Future)

Announcement | (DESF)

Threat Actors Exploiting Multiple CVEs Against Zimbra Collaboration Suite (CISA) 

US government really hopes you've patched your Zimbra server (Register)

CISA Adds One Known Exploited Vulnerabilities to Catalog (CISA) 

Speedo-wearing Russian tourists leak defence secrets on Twitter (The Telegraph)

CyberWire Daily
Podcast Info
HOST(S):
Dave Bittner
Dave Bittner is a security podcast host and one of the founders at CyberWire. He's a creator, producer, videographer, actor, experimenter, and entrepreneur. He's had a long career in the worlds of television, journalism and media production, and is one of the pioneers of non-linear editing and digital storytelling.
Schedule: Monday-Friday
Creator: CyberWire, Inc.
CyberWire Daily
ADVERTISEMENT
Sponsored by SpyCloud
Sponsored by SpyCloud

SpyCloud protects consumers, employees, suppliers, and citizens from the dangers of compromised identity. Its solutions make breached information actionable to prevent fraud— enabling a proactive, automated response that negates the value of stolen data before it can be used to cause harm. Learn more.

Sponsored by Recorded Future
Sponsored by Recorded Future

Get trending information on hackers, exploits, and vulnerabilities every day for FREE with the Recorded Future Cyber Daily. Sign up now.

Sponsored by Axonius
Sponsored by Axonius

Axonius is the cybersecurity asset management platform that correlates asset data from existing solutions to provide an always up-to-date inventory, uncover gaps, and automate action, giving security and IT teams the confidence to control complexity. Learn more.