The CyberWire Daily Podcast 12.21.22
Ep 1728 | 12.21.22

Developing a banking Trojan into a newer, more effective form. Cyberattacks on media outlets. Abuse of AWS Elastic IP transfer. Notes on the hybrid war. And cybercrooks are inspired by Breaking Bad.

Show Notes

The Godfather banking Trojan has deep roots in older code. FuboTV was disrupted around its World Cup coverage. The Guardian has been hit with an apparent ransomware attack. A threat actor abuses AWS Elastic IP transfer. Moldova may be receiving more Russian attention in cyberspace. CISA releases six industrial control system advisories. Ben Yelin looks at legislation addressing health care security. Our guest is Hugh Njemanze of Anomali with advice on preparing for the holiday break. And criminals are impersonating other criminals' underworld souks.

Selected reading.

Godfather: A banking Trojan that is impossible to refuse (Group-IB)

FuboTV outage during World Cup semifinal was caused by cyberattack (Record)

Guardian hit by serious IT incident believed to be ransomware attack (the Guardian) 

Elastic IP Hijacking — A New Attack Vector in AWS (Mitiga)

Telegram Hack Exposes Growing Russian Cyber Threat in Moldova (Balkan Insight)

Fuji Electric Tellus Lite V-Simulator (CISA)

Rockwell Automation GuardLogix and ControlLogix controllers (CISA)

ARC Informatique PcVue (CISA)

Rockwell Automation MicroLogix 1100 and 1400 (CISA)

Delta 4G Router DX-3021 (CISA)

Prosys OPC UA Simulation Server (CISA)

The scammers who scam scammers on cybercrime forums: Part 3 (Sophos News)