The CyberWire Daily Podcast 9.6.23
Ep 1900 | 9.6.23

Agent Tesla still hits unpatched systems. Hot wallet hacks. AI and DevSecOps. Notes on Fancy Bear and NoName057(16). And some curious trends in the cyber labor market.

Show Notes

There’s a new Agent Tesla variant. Lost credentials and crypto wallet hacks. Tension between DevSecOps and AI. Fancy Bear makes an attempt on Ukrainian energy infrastructure. A look at NoName057(16). Tim Starks from the Washington Post's Cybersecurity 202. Simone Petrella and Helen Patton discuss People as a security first principle. And cybersecurity jobs seem to be getting tougher (say the people who are doing them).

Selected reading.

New Agent Tesla Variant Being Spread by Crafted Excel Document (Fortinet Blog) 

World's Largest Cryptocurrency Casino Stake Hacked for $41 Million (Hackread) 

Crypto casino loses $41 million to hot wallet hackers (BleepingComputer) 

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach (KrebsOnSecurity) 

Global DevSecOps Report on AI Shows Cybersecurity and Privacy Concerns Create an Adoption Dilemma (GitLab)

APT28 cyberattack: msedge as a bootloader, TOR and services as a control center (CERT-UA#7469) (CERT-UA)

Ukraine's CERT Thwarts APT28's Cyberattack on Critical Energy Infrastructure (The Hacker News)

Ukraine says an energy facility disrupted a Fancy Bear intrusion (Record)

What's in a NoName? Researchers see a lone-wolf DDoS group (Record) 

New Research from TechTarget’s Enterprise Strategy Group and the ISSA Reveals Continuous Struggles within Cybersecurity Professional Workforce - ISSA International (ISSA International) 

Life and Times 2023 Download Landing Page (ISSA International) 

E-book: The Life and Times of Cybersecurity Professionals Volume VI (ESG Global) 

Layoffs list extended by Malwarebytes, Fortinet, Veriff, SecureWorks (Cybernews)