Risky Business Podcast
April 28, 2021
Risky Business #621 -- Ultra professional criminal attackers ascendant
Presented by
CEO and Publisher
Technology Editor
On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including:
- USA imposes sanctions over SolarWinds campaign
- Enterprise border devices being attacked everywhere by all and sundry
- Malvertising is coming back
- Ultra professional criminal attackers are ascendant
- All the latest ransomware, supply chain and other infosec news
This week’s sponsor interview is with Brian Dye, CEO of Corelight. We speak to him about what he’s calling “Open NDR”. A lot of the big SOCs have settled on their preferred ways of sharing threat information, and Brian drops by to talk all about those trends.
Links to everything that we discussed are below and you can follow Patrick or Adam on Twitter if that’s your thing.
Brought to you by Corelight
Corelight: Evidence-Based NDR and Threat Hunting Platform
Show notes
Hackers go after SonicWall email appliances with three zero-days | The Record by Recorded Future
Hackers are exploiting a Pulse Secure 0-day to breach orgs around the world | Ars Technica
New Cring ransomware deployed via unpatched Fortinet VPNs | The Record by Recorded Future
Codecov discloses 2.5-month-long supply chain attack | The Record by Recorded Future
NSA says it found new critical vulnerabilities in Microsoft Exchange Server
Ransom Gangs Emailing Victim Customers for Leverage – Krebs on Security
UnitingCare Queensland hit by cyber attack - Security - iTnews
Ransomware gang wants to short the stock price of their victims | The Record by Recorded Future
How the Kremlin provides a safe harbor for ransomware
Malvertisers hacked 120 ad servers to load malicious ads | The Record by Recorded Future
Security researcher drops Chrome and Edge exploit on Twitter | The Record by Recorded Future
Recent Chromium bug used to attack Chinese WeChat users | The Record by Recorded Future
SAP systems usually come under attack 72 hours after a patch | The Record by Recorded Future
European cops collected data from encrypted chat service for weeks prior to cocaine bust
Colombia’s cartels target Europe with cocaine, corruption and torture | Drugs trade | The Guardian
Lawyer Asks For New Trial After Cellebrite Vulnerability Discovery
Cellebrite Pushes Update After Signal Owner Hacks Device
Signal Adds a Payments Feature—With a Privacy-Focused Cryptocurrency | WIRED
WhatsApp Spying Site Blames WhatsApp for Letting It Spy
Phone numbers for 533 million Facebook users leaked on hacking forum | The Record by Recorded Future
Facebook Wants to 'Normalize' the Mass Scraping of Personal Data
Palestinian Hackers Tricked Victims Into Installing iOS Spyware | WIRED
The UK Is Trying to Stop Facebook's End-to-End Encryption | WIRED
Hackers move $760 million from the 2016 Bitfinex hack | The Record by Recorded Future
'Fourth Amendment Is Not For Sale Act' Would Ban Clearview and Warrantless Location Data Purchases
Ill-advised research on Linux kernel lands computer scientists in hot water | The Daily Swig
Suspected North Korean hackers set up fake company to target researchers, Google says - CyberScoop
National security: Five Eyes split demands Australia reset with New Zealand
Dan Kaminsky: Tributes pour in for security researcher who died after short illness | The Daily Swig