Known Exploited Vulnerabilities. Fool’s gold. Hacktivists come in both dissident and loyal varieties. Naming and shaming the shameless.

CISA adds to its Known Exploited Vulnerabilities Catalog. Cl0p claims responsibility for GoAnywhere exploitation. Victims mine for gold; attackers use pig butchering tactics. Hacktivists disrupt Iranian television during Revolution Day observances. Killnet claims a DDoS attack against NATO earthquake relief efforts. CyberWire UK Correspondent Carole Theriault asks what can we learn from the recent Roomba privacy snafu? Rick Howard looks at first principles we considered along the way. And can you name and shame the shameless?

Selected reading.

CISA Adds Three Known Exploited Vulnerabilities to Catalog (CISA) 

GoAnywhere MFT Zero-Day Exploitation Linked to Ransomware Attacks (SecurityWeek) 

Clop ransomware claims it breached 130 orgs using GoAnywhere zero-day (BleepingComputer) 

Fool’s Gold: dissecting a fake gold market pig-butchering scam (Sophos)

Iranian State TV Hacked During President's Speech on Revolution Day (HackRead) 

Russian hackers disrupt Turkey-Syria earthquake relief (The Telegraph)

Hacking marketplace emerges from Killnet partnership, seeks pro-Russia donations (SC Media)

Russian Government evaluates the immunity to hackers acting in the interests of Russia (Security Affairs)

Russia’s Ransomware Gangs Are Being Named and Shamed (WIRED)