The cybercriminal labor market and the campaigns it’s supporting. Russia’s Killnet is running DDoS attacks against US hospitals, but Russia says, hey, it’s the real victim here.
Some perspective on the cybercriminal labor market. DocuSign is impersonated in a credential-harvesting campaign. Social engineering pursues financial advisors. Killnet is active against the US healthcare sector. Mr. Security Answer Person John Pescatore has thoughts on cryptocurrency. Ben Yelin and I debate the limits of section 230. And, hey, who’s the real victim in cyberspace? A hint: probably not you, Mr. Putin.
Perspectives on the cybercriminal labor market. (CyberWire).
Cybercrime job ads on the dark web pay up to $20k per month (BleepingComputer)
Application security risks. (CyberWire)
Survey gives insight into new app security challenges (Cisco App Dynamics)
Ukraine at D+341: Killnet hits US hospitals.(CyberWire)
HC3 TLP Clear Analyst Note: Pro-Russian Hacktivist Group Threat to HPH Sector (American Hospital Association)
HHS, AHA Warn of Surge in Russian DDoS Attacks on Hospitals (Gov Info Security)
Russian hackers allegedly take down Duke University Hospital’s website (Carolina Journal)