The CyberWire Daily Podcast 11.23.22
Ep 1710 | 11.23.22

Watch out for abuse of pentesting tools. Cyber attack on Guadeloupe. Ducktail’s evolution. Cybersecurity for ports. ICS security advisories. And stay safe shopping during the holidays.

Show Notes

Another pentesting tool may soon be abused by threat actors. Cyberattack disrupts Guadeloupe. Ducktail evolves and expands. Warning of the potential disruption cyberattacks might work against European ports. CISA releases eight industrial control system advisories. Patrick Tiquet, VP of Security and Architecture at Keeper Security, talks about the FedRAMP authorization process. Bryan Vorndran of the FBI Cyber Division with reflections on ransomware. And stay safe on Black Friday (and Cyber Monday, and Panic Saturday, and…you get the picture.

Selected reading.

Nighthawk: An Up-and-Coming Pentest Tool Likely to Gain Threat Actor Notice (Proofpoint)

Making Cobalt Strike harder for threat actors to abuse (Google Cloud Blog)

Guadeloupe government fights 'large-scale' cyberattack (AP NEWS)

Vietnam-Based Ducktail Cybercrime Operation Evolving, Expanding (SecurityWeek)

Cyber as important as missile defences - ex-NATO general (Reuters)

CISA Releases Eight Industrial Control Systems Advisories (CISA) 

Black Friday and Cyber Monday risks. (CyberWire)