The CyberWire Daily Podcast 3.15.23
Ep 1780 | 3.15.23

Patch Tuesday notes. SVB's and the cybersecurity sector. SVR's APT29 is phishing for access to information. Trends in the Russo-Ukraine cyberwar. LockBit counts coup (says LockBit).

Show Notes

Patch Tuesday notes. Silicon Valley Bank's collapse and its effects on the cybersecurity sector. SVR's APT29 used a Polish state visit to the US as phishbait. Regularizing hacktivist auxiliaries. Our guest is Crane Hassold from Abnormal Security with a look at threats to email. Grayson Milbourne from OpenText Cybersecurity addresses chaos within the supply chain. And LockBit claims to have compromised an aerospace supply chain.

Selected reading.

March 2023 Patch Tuesday: Updates and Analysis (CrowdStrike)

Microsoft Releases March 2023 Security Updates (Cybersecurity and Infrastructure Security Agency CISA)

Adobe Releases Security Updates for Multiple Products (Cybersecurity and Infrastructure Security Agency CISA)

Mozilla Releases Security Updates for Firefox 111 and Firefox ESR 102.9 (Cybersecurity and Infrastructure Security Agency CISA)

SAP Security Patch Day for March 2023 (Onapsis)

March Patch Tuesday review. (CyberWire)

What the collapse of Silicon Valley Bank means for cyber and the tech startup ecosystem. (CyberWire)

NOBELIUM Uses Poland's Ambassador’s Visit to the U.S. to Target EU Governments Assisting Ukraine (BlackBerry)

Ukraine Tracks Increased Russian Focus on Cyberespionage (Bank Info Security)

Ukraine scrambles to draft cyber law, legalizing its volunteer hacker army (Newsweek) 

Ransomware Group Claims Theft of Valuable SpaceX Data From Contractor (SecurityWeek)