The CyberWire Daily Podcast 9.27.23
Ep 1915 | 9.27.23

What up in the underworld’s C2C markets. An update on the Sony hack claims. Notes on cyberespionage, from Russia, China, and parts unknown. And there’s a market for bugs.

Show Notes

A Joint Advisory warns of Beijing's "BlackTech" threat activity. ShadowSyndicate is a new ransomware as a service operation. A Smishing Triad in the UAE. Openfire flaw actively exploited against servers. AtlasCross is technically capable and, above all, "cautious." Xenomorph malware in the wild. DDoS and API attacks hit the financial sector. In our Industry Voices segment, Joe DePlato from Bluestone Analytics demystified dark net drug markets. Our guest is Richard Hummel from Netscout with the latest trending DDoS vectors. And the FCC chair announces plans to restore net neutrality.

Selected reading.

CISA, NSA, FBI and Japan Release Advisory Warning of BlackTech, PRC-Linked Cyber Activity (Cybersecurity and Infrastructure Security Agency) 

Dusting for fingerprints: ShadowSyndicate, a new RaaS player? (Group-IB)

Smishing Triad Stretches Its Tentacles into the United Arab Emirates (Security Affairs)

Hackers actively exploiting Openfire flaw to encrypt servers (BleepingComputer) 

Vulnerability in Openfire messaging software allows unauthorized access to compromised servers (Dr.Web) 

Suspicious New Ransomware Group Claims Sony Hack (Dark Reading) 

Sony investigates cyberattack as hackers fight over who's responsible (BleepingComputer) 

Sony Investigating After Hackers Offer to Sell Stolen Data (SecurityWeek) 

Xenomorph Malware Strikes Again: Over 30+ US Banks Now Targeted (Threat Fabric)

The High Stakes of Innovation: Attack Trends in Financial Services (Akamai)

FACT SHEET: FCC Chairwoman Rosenworcel Proposes to Restore Net Neutrality Rules (Federal Communications Commission) 

Ukraine: Russian hackers infiltrating software supply chains (Computing)

Russian hacking operations target Ukrainian law enforcement (CyberScoop) 

Ukraine accuses Russian spies of hacking law enforcement (Register) 

Russian hackers target Ukrainian government systems involved in war crimes investigations (Record) 

Ukraine Cyber Defenders Prepare for Winter (Bank Info Security)