Risky Business Podcast

June 02, 2021

Risky Business #626 -- Russian ransomware beef simmers

Presented by

Patrick Gray
Patrick Gray

CEO and Publisher

Adam Boileau
Adam Boileau

Technology Editor

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including:

  • Ransomware attack threatens Australian and US beef supply
  • Talos dubs Russian ransomware crews “privateers”
  • NYTimes writes another bad story
  • More Fortinet pwnage
  • Belgian government rolls Hafnium IR and finds, well, something else
  • Google unveils new rowhammer techniques
  • Much, much more

Haroon Meer of Thinkst Canary is this week’s sponsor guest. Thinkst is spinning up a labs division, but they’ll be doing something different to the same-old bug hunting. That’s a quality conversation.

Links to everything that we discussed are below and you can follow Patrick or Adam on Twitter if that’s your thing.

Risky Business #626 -- Russian ransomware beef simmers
0:00 / 0:00

Show notes

Full impact still being assessed in JBS cyber-security attack - Beef Central

JBS to bring most plants online after ransomware attack - Axios

JBS Cyber Hack: Meat Supplier Shuts Down Some Slaughterhouses After Attack - Bloomberg

Hackers hit Australian meatworks giant | 7NEWS.com.au

Colonial hack exposed TSA’s light-touch oversight of pipeline cybersecurity - The Washington Post

TSA cyber requirements would fine pipeline operators for lax security practices

Biden budget seeks $750 million to respond to SolarWinds compromises, plus billions more for cyber

Security researchers suggest naming state-harbored hackers 'privateers'

Russia Appears to Carry Out Hack Through System Used by U.S. Aid Agency - The New York Times

The SolarWinds Hackers Aren’t ‘Back.’ They Never Went Away | WIRED

Ex-US ambassador, anti-corruption activists in Ukraine were targets of suspected Russian phishing

US seizes two domains used by the SVR in recent hacking campaign | The Record by Recorded Future

SVR cyberspies used iOS zero-day in recent phishing campaign | The Record by Recorded Future

FBI says an APT breached a US municipal government via an unpatched Fortinet VPN | The Record by Recorded Future

Days before a report, Chinese hackers removed malware from infected networks | The Record by Recorded Future

Belgium government discovers old 2019 hack during Hafnium investigation | The Record by Recorded Future

Possible Chinese hackers pose as UN, human rights group to eavesdrop on beleaguered Uyghur population

Faulty emailing tool prevented Accellion from notifying customers of attacks | The Record by Recorded Future

The FBI will feed hacked passwords directly into Have I Been Pwned | The Record by Recorded Future

Macron says wiretapping ‘not acceptable between allies’ after report adds details about old NSA program - The Washington Post

Malware campaign targets server hosting software CWP | The Record by Recorded Future

Fujitsu suspends ProjectWEB platform after Japanese government hacks | The Record by Recorded Future

Hackers target Japanese government, transportation entities

Using Fake Reviews to Find Dangerous Extensions – Krebs on Security

Boss of ATM Skimming Syndicate Arrested in Mexico – Krebs on Security

Russian hacker Pavel Sitnikov arrested for sharing malware source code | The Record by Recorded Future

French authorities seize their third dark web marketplace | The Record by Recorded Future

WhatsApp’s Fight With India Has Global Implications | WIRED

Threema, the European rival to Signal, wins pivotal privacy battle in Swiss Court | The Daily Swig

Apple’s M1 Chip Has a Fascinating Flaw | WIRED

Google says Rowhammer attacks are gaining range as RAM is getting smaller | The Record by Recorded Future

No, it doesn’t just crash Safari. Apple has yet to fix exploitable flaw | Ars Technica

Inside The ‘World’s Largest’ Video Game Cheating Empire

'FIND THIS FUCK:' Inside Citizen’s Dangerous Effort to Cash In On Vigilantism

Hacktivist Posts Massive Scrape of Crime App Citizen to Dark Web