Notes on patches. Dark Pink industrial cyberespionage campaign in Asia. Kinsing cryptojacking. Hacktivist DDoS against Iran. Healthcare cyber risk management. Pokémon NFTs.
Patch Tuesday. CISA releases two ICS Advisories and makes some additions to its Known Exploited Vulnerabilities Catalog. Dark Pink APT is active against Asian targets. Kinsing cryptojacking targets Kubernetes instances. Ukrainian hacktivists conduct DDoS against Iranian sites. Risk exposure and a hospital's experience with ransomware. The Health3PT initiative seeks to manage 3rd-party risk. Tim Starks from the Washington Post’s Cyber 202 on cyber rising to the level of war crime. Our guest is Connie Stack, CEO of Next DLP, on the path to leadership within cyber for women. And phishing with Pokémon NFTs.
Selected reading.
The Daily 202 (Latest Cybersecurity 202)
Microsoft Releases January 2023 Security Updates (CISA) >
Adobe Releases Security Updates for Multiple Products (CISA)
Black Box KVM (CISA)
Delta Electronics InfraSuite Device Master (CISA)
Known Exploited Vulnerabilities Catalog (CISA)
Dark Pink (Group-IB)
New Dark Pink APT group targets govt and military with custom malware (BleepingComputer)
Kinsing cryptojacking. (CyberWire)
Ukraine at D+321: "Difficult in places." (CyberWire)
Iranian websites impacted by pro-Ukraine DDoS attacks (SC Media)
Ransomware attack against SickKids said to be unusual. (CyberWire)
Health3PT seeks a uniform approach to healthcare supply chain issues. (CyberWire)
Breaking the glass ceiling: My journey to close the leadership gap. (CyberWire, Creating Connections)
Pokémon NFTs used as malware vectors. (CyberWire)