The Cl0p gang moves its way into US government systems. It’ll take multiple showers to rinse out Shampoo malware. Hybrid war update. Arrests and indictments.
The US Government discloses exploitations of MOVEit vulnerabilities, and the Department of Energy is targeted by the Cl0p gang. CISA releases an updated advisory for Telerik vulnerabilities affecting Government servers. Shampoo malware emerges with multiple persistence mechanisms. How the IT Army of Ukraine can exemplify a cyber auxiliary. Russophone gamers are being targeted with ransomware. An alleged LockBit operator has been arrested. The FBI’s Deputy Assistant Director for cyber Cynthia Kaiser joins us with cybercriminal trends and recent successes. Our guest is Will Markow from Lightcast, speaking with Simone Petrella about data-driven strategic workforce decisions. And a federal grand jury indicts the alleged Discord Papers leaker.
US government hit by Russia's Clop in MOVEit mass attack (The Register)
Energy Department among ‘several’ federal agencies hit by MOVEit breach (Federal News Network)
CVE-2019-18935 Detail (NIST)
CVE-2017-9248 Detail (NIST)
Cryptographic Weakness (Telerik)
Cyber attacks on Rotterdam and Groningen websites (World Cargo News)
Suspected LockBit ransomware affiliate arrested, charged in US (BleepingComputer)