Podcasts
CyberWire Daily
Ep 1720
The CyberWire Daily Podcast 12.9.22
Ep 1720 | 12.9.22

Cobalt Mirage deploys Drokbk malware. Zombinder in the C2C market. Impersonation scams. CISA releases three new ICS advisories. And criminals prey on other criminals.

Show Notes
Transcript

Cobalt Mirage deploys Drokbk malware. Zombinder in the C2C market. Impersonation scams: that's not Ukraine’s Ministry of Digital Transformation. On the cyber front, nothing new. CISA releases three new ICS advisories. Caleb Barlow on attack surface management. Mike Hamilton from Critical Insight explains how state and local governments apply for the $1 billion allocated by the feds for cybersecurity funding. And criminals prey on other criminals.

Selected reading.

Drokbk Malware Uses GitHub as Dead Drop Resolver (Secureworks)

Zombinder: new obfuscation service used by Ermac, now distributed next to desktop stealers (ThreatFabric)

Crypto Winter: Fraudsters Impersonate Ukraine’s Government to Steal NFTs and Cryptocurrency (DomainTools)

Danish defence ministry says its websites hit by cyberattack (Reuters)

Kela website hit by DoS attack (Yle)

Advantech iView (CISA) 

AVEVA InTouch Access Anywhere (CISA)

Rockwell Automation Logix controllers (CISA) 

The scammers who scam scammers on cybercrime forums: Part 1 (Sophos News) 

Cyber-criminals Scammed Each Other Out of Millions in 2022 (Infosecurity Magazine)

CyberWire Daily
Podcast Info
HOST(S):
Dave Bittner
Dave Bittner is a security podcast host and one of the founders at CyberWire. He's a creator, producer, videographer, actor, experimenter, and entrepreneur. He's had a long career in the worlds of television, journalism and media production, and is one of the pioneers of non-linear editing and digital storytelling.
Schedule: Monday-Friday
Creator: CyberWire, Inc.
CyberWire Daily
ADVERTISEMENT
Sponsored by Kolide
Sponsored by Kolide

Kolide sends employees important, timely, and relevant security recommendations for their Linux, Mac, and Windows devices, right inside Slack. Kolide is perfect for organizations that want to move beyond a traditional lock-down model. Learn more.

Sponsored by KnowBe4
Sponsored by KnowBe4

KnowBe4, the provider of the world’s largest integrated security awareness training and simulated phishing platform. KnowBe4 helps organizations address the human element of security by raising awareness of social engineering tactics through a new-school approach to security awareness training. Learn more at KnowBe4.

Sponsored by Recorded Future
Sponsored by Recorded Future

Get trending information on hackers, exploits, and vulnerabilities every day for FREE with the Recorded Future Cyber Daily. Sign up now.