The CyberWire Daily Podcast 3.1.23
Ep 1770 | 3.1.23

How an attack led to a breach that enabled further social engineering. Forensic visibility in the Google Cloud Platform. Hacktivist auxiliaries. Two 8Ks and a free decryptor.

Show Notes

The LastPass data breach built on an earlier attack. Forensic visibility and the Google Cloud Platform. An overview of hacktivist auxiliaries in Russia's war against Ukraine. Dish acknowledges sustaining a cyberattack. MKS Instruments discloses a ransomware incident. Carole Theriault has a lesson about ChatGPT and school systems. Ann Johnson from Afternoon Cyber Tea speaks with Stacy Hughes from Voya Financial about her journey to being CISO. And Bitdefender releases a decryptor for MortalKombat ransomware.

Selected reading.

LastPass sustains a second data breach. (CyberWire)

Incident 2 – Additional details of the attack (LastPass Support) 

LastPass Says DevOps Engineer Home Computer Hacked (SecurityWeek) 

LastPass: Keylogger on home PC led to cracked corporate password vault (Naked Security) 

LastPass data was stolen by hacking an employee’s home computer (The Verge) 

LastPass says employee’s home computer was hacked and corporate vault taken (Ars Technica) 

LastPass is in Big Trouble (Gizmodo) 

LastPass: DevOps engineer hacked to steal password vault data in 2022 breach (BleepingComputer) 

The LastPass security breach is still going from bad to worse (Cybersecurity Connect) 

Mitiga on forensic visibility and the Google Cloud Platform. (CyberWire)

Mitiga Security Advisory: Insufficient Forensic Visibility in GCP Storage (Mitiga) 

Google Cloud Platform Exfiltration: A Threat Hunting Guide (Mitiga)

The Cyber Warfare Report (GroupSense) 

Dish Network confirms ransomware attack behind multi-day outage (BleepingComputer)

DISH tells SEC that ransomware attack caused outages; personal info may have been stolen (The Record from Recorded Future News)

Ransomware attack on chip supplier causes delays for semiconductor groups (Financial Times)

Bitdefender Releases Decryptor for MortalKombat Ransomware (Bitdefender Labs) 

Victims of MortalKombat ransomware can now decrypt their locked files for free (The Record from Recorded Future News)