The CyberWire Daily Podcast 12.23.22
Ep 1730 | 12.23.22

PolyVice and Royal ransomware make nuisances of themselves. US warns that KillNet can be expected to go after the healthcare sector. CISA’s plans for stakeholder engagement.

Show Notes

The Vice Society may be upping its marketing game. Royal ransomware may have a connection to Conti. Royal delivers ransom note by hacked printer. KillNet goes after healthcare. CISA's Stakeholder Engagement Strategic Plan. Adam Meyers from CrowdStrike looks at cyber espionage. Giulia Porter from RoboKiller does not want to talk to you about your car’s extended warranty. And holiday wishes to all.

Selected reading.

Custom-Branded Ransomware: The Vice Society Group and the Threat of Outsourced Development (SentinelOne)

Vice Society ransomware gang switches to new custom encryptor (BleepingComputer) 

Conti Team One Splinter Group Resurfaces as Royal Ransomware with Callback Phishing Attacks (Trend Micro)

Researchers Link Royal Ransomware to Conti Group (SecurityWeek)

Major Australian university dealing with suspected cybersecurity attack (7NEWS) 

Printers at Queensland's second-largest university spit out ransomware messages after cyber attack (ABC) 

Pro-Russian Hacktivist Group ‘KillNet’ Threat to HPH Sector (HC3)

HHS alert warns KillNet hacktivist group targeted US healthcare entity (SC Media) 

HC3 Analyst Note TLP Clear Pro-Russian Hacktivist Group Killnet Threat to HPH Sector December 22, 2022 | AHA (American Hospital Association)

 Strategic Plan for Stakeholder Engagement (CISA)