The CyberWire Daily Podcast 4.5.23
Ep 1795 | 4.5.23

Genesis Market taken down. Proxyjackers exploit Log4j. Fast-encrypting Rorschach ransomware. More Killnet DDoS. Patch Zimbra now. Soft power and Russia’s hybrid war.

Show Notes

Genesis Market gets taken down. Proxyjackers exploit Log4j vulnerabilities. Fast-encrypting Rorschach ransomware uses DLL sideloading. Killnet attempts DDoS attacks against the German ministry. Carole Theriault ponders AI assisted cheating. Johannes Ullrich tracks malware injected in a popular tax filing website. Soft power and Russia’s hybrid war.

Selected reading.

'Operation Cookie Monster': International police action seizes dark web market (Reuters) 

Stolen credential warehouse Genesis Market seized by FBI (Register)

FBI Seizes Bot Shop ‘Genesis Market’ Amid Arrests Targeting Operators, Suppliers (KrebsOnSecurity)

Genesis Market, one of world’s largest platforms for cyber fraud, seized by police (Record)

'Operation Cookie Monster': FBI seizes popular cybercrime forum used for large-scale identity theft (CNN)

Cybercrime marketplace Genesis Market shut by FBI, international law enforcement (CNBC)

FBI seizes stolen credentials market Genesis in Operation Cookie Monster (BleepingComputer)

Notorious Genesis Market cybercrime forum seized in international law enforcement operation (CyberScoop)

Proxyjacking has Entered the Chat (Sysdig)

Rorschach – A New Sophisticated and Fast Ransomware (Check Point Research)

Russian hackers attack German ministry’s website (TVP World)

Zimbra Flaw Exploited by Russia Against NATO Countries Added to CISA 'Must Patch' List (SecurityWeek)

Zimbra vulnerability exploited by Russian hackers targeting Nato countries - CISA (Tech Monitor) 

CISA Adds One Known Exploited Vulnerability to Catalog (Cybersecurity and Infrastructure Security Agency CISA)

NVD - CVE-2022-27926 (National Vulnerability Database)

The Interview - Russian cyber weapons 'could do a lot of damage' in the US: Former counterterrorism czar (France 24)

Biden cybersecurity chief 'surprised' Russia has not hit US targets amid Ukraine war (Washington Examiner)

Ukrainian Cyber War Confirms the Lesson: Cyber Power Requires Soft Power (Council on Foreign Relations)