The CyberWire Daily Podcast 10.24.22
Ep 1689 | 10.24.22

US unseals cases against PRC intelligence officers. Daixin ransomware is an active threat. FBI warns of Iranian threat group. Iran’s nuclear agency discloses hack. Hybrid war and threats to infrastructure.

Show Notes

Breaking: US unseals three cases against Chinese intelligence officers. CISA says Daixin Team ransomware is an active threat. The FBI warns of Iranian threat group's activity. Meanwhile the Iranian nuclear agency says its email was hacked. Norway is concerned about threats to oil and gas infrastructure. A drop in ransomware correlates with Russia's hybrid war. Ann Johnson from Afternoon Cyber Tea speaks with AJ Yawn from ByteChek about breaking into the cybersecurity industry. Josh Ray from Accenture describes threats to the satellite industry. And cyber offense may be proving harder than thought.

Selected reading.

CISA Alert AA22-294A – #StopRansomware: Daixin Team. (CyberWire)

#StopRansomware: Daixin Team (CISA)

CISA Warns of Daixin Team Hackers Targeting Health Organizations With Ransomware (The Hacker News)

Iranian Cyber Group Emennet Pasargad Conducting Hack-and-Leak Operations Using False-Flag Personas (FBI)

FBI warns Iranian hackers active ahead of the U.S. midterms (NBC News)

FBI Warns of Attacks From Iranian Threat Group Emennet Pasargad (Decipher)

Iran Hackers Behind Attempt on US Election Are Still Active (Gov Info Security)

FBI warns of ‘hack-and-leak’ operations from group based in Iran (The Record by Recorded Future)

Iran's Atomic Energy Agency Says Its E-Mail Server Was Hacked (RadioFreeEurope/RadioLiberty)

Iran says ‘specific foreign country’ behind hacktivist leak of atomic energy emails (The Record by Recorded Future)

Iran’s Top Nuclear Agency Says Its Email Servers Were Hacked (Bloomberg) 

Ukraine Could Still Face Cyberattacks, Experts Say (CNET)

Fears over Russian threat to Norway's energy infrastructure (AP NEWS)

Norway PM: Russia poses ‘real and serious’ cyber threat to oil and gas industry (The Record by Recorded Future) 

Ukraine war cuts ransomware as Kremlin co-opts hackers (The Telegraph) 

Q&A: Kenneth Geers on the cyber war between Ukraine and Russia (The Record by Recorded Future)