The CyberWire Daily Podcast 5.9.23
Ep 1819 | 5.9.23

State-sponsored and state-promoted cyber campaigns. A look at Royal ransomware. A new wave of BEC. Man-in-the-middle attacks rising.

Show Notes

An analysis of Royal ransomware. PaperCut vulnerability detection methods can be bypassed. Man-in-the-middle phishing attacks are on the rise. A new wave of BEC attacks from an unexpected source. Thomas Etheridge from CrowdStrike, has the latest threat landscape trends. Our guest is Dan Amiga of Island with insights on the enterprise browser category. And a look into recent Russian cyberattacks against Ukraine.

Selected reading.

Threat Assessment: Royal Ransomware (Unit 42)

PaperCut Exploitation - A Different Path to Code Execution (VulnCheck)

New PaperCut RCE exploit created that bypasses existing detections (Bleeping Computer)

Man-in-the-Middle (MitM) attacks reaching inboxes increase 35% since 2022 (Cofense)

Exploring the Rise of Israel-Based BEC Attacks (Abnormal Security)

Russians launch mass cyber attack on online service for queueing to cross border by trucks (Ukrainska Pravda)

Reverting UAC-0006: Mass distribution of SmokeLoader using the "accounts" theme (CERT-UA#6613) (CERT-UA)