The CyberWire Daily Podcast 3.7.23
Ep 1774 | 3.7.23

A new threat to routers. DoppelPaymer hoods collared. Ransomware hits a Barcelona hospital. Phishing in productivity suites. Espionage, hacktiism, and prank phone calls.

Show Notes

HiatusRAT exploits business-grade routers. International law enforcement action against the DoppelPaymer gang. Ransomware hits a major Barcelona hospital. Productivity suites are increasingly attractive as phishing grounds. Transparent Tribe’s romance scams. Cyberattacks briefly disrupt Russian websites and media outlets. Ashley Leonard, CEO of Syxsense, sits down with Dave to discuss their "Advancing Zero Trust Priorities'' report. Joe Carrigan on a warning from Microsoft about a surge in token theft. And trolling for disinfo raw material.

Selected reading.

Black Lotus Labs uncovers another new malware that targets compromised routers (Lumen Newsroom)

Germany and Ukraine hit two high-value ransomware targets | Europol (Europol)

European Police, FBI Bust International Cybercrime Gang (VOA)

German police lift lid on worldwide cyber blackmail gang (Deutsche Welle)

Europol Hits Alleged Members of DoppelPaymer Ransomware Group (Decipher) 

An international sting brings another win against ransomware gangs (Washington Post)

European police move in on DoppelPaymer (Computing)

Police Looking for Russian Suspects Following DoppelPaymer Ransomware Crackdown (SecurityWeek)

Cyberattack hits major hospital in Spanish city of Barcelona (AP NEWS).

Cyberattack Hits Major Hospital in Spanish City of Barcelona (SecurityWeek)

Barcelona's Hospital Clinic hit by ransomware cyberattack 'from outside Spain' (Euro Weekly News)

Phishers’ Favorites 2022 Year-in-Review (Vade)

Kremlin Website Down Amid Reports of Cyber Attacks on Russia (The Daily Beast) 

Russian diplomat blames West for recruiting hackers for operations against Moscow (TASS)

Don’t Answer That! Russia-Aligned TA499 Beleaguers Targets with Video Call Requests (Proofpoint)