Podcasts
CyberWire Daily
Ep 1697
The CyberWire Daily Podcast 11.3.22
Ep 1697 | 11.3.22

“Static expressway” tactics in credential harvesting. Emotet is back. Black Basta linked to Fin7. RomCom hits Ukrainian targets and warms up against the Anglo-Saxons. Cyber cooperation?

Show Notes
Transcript

Leveraging Microsoft Dynamics 365 Customer Voice for credential harvesting. Emotet is back. Black Basta ransomware linked to Fin7. A Russophone gang increases activity against Ukrainian targets. Betsy Carmelite from Booz Allen Hamilton on adversary-informed defense. Our guest is Tom Gorup of Fortra’s Alert Logic with a view on cybersecurity from a combat veteran. And Russia regrets that old US lack of cooperation in cyberspace–things would be so much better if the Anglo-Saxons didn’t think cyberspace was the property of the East India Company. Or something like that.

Selected reading.

Abusing Microsoft Customer Voice to Send Phishing Links (Avanan) 

Emotet botnet starts blasting malware again after 5 month break (BleepingComputer) 

Black Basta Ransomware | Attacks Deploy Custom EDR Evasion Tools Tied to FIN7 Threat Actor (SentinelOne) 

RomCom Threat Actor Abuses KeePass and SolarWinds to Target Ukraine and Potentially the United Kingdom (BlackBerry) 

Russia cyber director warns no U.S. cooperation risks "mutual destruction" (Newsweek)

CyberWire Daily
Podcast Info
HOST(S):
Dave Bittner
Dave Bittner is a security podcast host and one of the founders at CyberWire. He's a creator, producer, videographer, actor, experimenter, and entrepreneur. He's had a long career in the worlds of television, journalism and media production, and is one of the pioneers of non-linear editing and digital storytelling.
Schedule: Monday-Friday
Creator: CyberWire, Inc.
CyberWire Daily
ADVERTISEMENT
Sponsored by ExtraHop
Sponsored by ExtraHop

ExtraHop is on a mission to stop advanced threats. ExtraHop combines cloud-scale AI with network intelligence to help enterprises detect and respond to threats––before they compromise your business. With complete visibility from ExtraHop, enterprises can detect intrusions, hunt threats, and investigate incidents with confidence. Learn more at ExtraHop.

Sponsored by KnowBe4
Sponsored by KnowBe4

KnowBe4 is the world’s largest security awareness training and simulated phishing platform that helps you manage the ongoing problem of social engineering. Their new school security awareness training platform is user-friendly and intuitive. It was built to scale for busy IT pros that have 16 other fires to put out. Learn more at KnowBe4.com.

Sponsored by Strata Identity
Sponsored by Strata Identity

Strata, the #1 platform for Identity Orchestration, integrates multi-cloud and hybrid identity infrastructure and allows enterprises to enforce consistent identity and access policies. Strata empowers IT and cybersecurity teams to architect identity that’s forever modern and permanently flexible. Learn more.