Risky Business Podcast
July 28, 2021
Risky Business #632 -- The Kaseya incident wasn't nearly as big as we thought
Presented by
CEO and Publisher
Technology Editor
On this week’s show Patrick Gray and Adam Boileau discuss recent security news, including:
- Analysis suggests the Kaseya REvil incident was actually a bit of a fizzer
- They also obtained a decrypt key and no one knows how
- EU to follow US Treasury on Bitcoin controls
- Israeli Government has eyes on NSO fallout
- PetitPotam Active Directory technique is very bad news
- Much, much more…
This week’s show is brought to you by Remediant. Remediant makes a PAM solution that’s, well, quite different from the traditional password-vault style solutions. That’s put them in an interesting situation lately with Gartner. Remediant scored an honourable mention as a PAM to take note of, alongside Microsoft, but the thing is they don’t even qualify as a PAM vendor under Gartner’s own criteria. This might mean the analyst firms need to re-jig the way they evaluate and rank tech given there are so many more ways to skin cats these days. Remediant co-founder Paul Lanzi will join me in this week’s sponsor slot to talk through all of that.
Links to everything that we discussed are below and you can follow Patrick or Adam on Twitter if that’s your thing.
Brought to you by Remediant
Cybersecurity that works for you
Show notes
Security Researchers’ Hunt to Discover Origins of the Kaseya VSA Mass Ransomware Incident
Kaseya says it didn't pay ransomware gang for decryption key after hacks affected hundreds
Kaseya obtains universal decryptor for REvil ransomware victims
Port cyber attack: Now Road freighters concerned about goods
Chat logs show how Egregor, an $80 million ransomware gang, handled negotiations with little mercy
FBI tracking more than 100 active ransomware groups
New Haron ransomware gang emerges, borrows from Avaddon and Thanos - The Record by Recorded Future
Spammer floods the Babuk ransomware gang's forum with gay porn GIFs - The Record by Recorded Future
Justice Department officials urge Congress to pass ransomware notification law
Government said to form team to deal with fallout of NSO spyware revelations | The Times of Israel
NSO Group CEO Claims BDS Is Probably Behind Damning Investigation
KB5005413: Mitigating NTLM Relay Attacks on Active Directory Certificate Services (AD CS)
A Controversial Tool Calls Out Thousands of Hackable Websites | WIRED
PlugwalkJoe Does the Perp Walk – Krebs on Security
UK man arrested in Spain for role in Twitter 2020 hack - The Record by Recorded Future
Praying Mantis APT targets IIS servers with ASP.NET exploits - The Record by Recorded Future
VPN servers seized by Ukrainian authorities weren’t encrypted | Ars Technica
Accused CIA leaker Joshua Schulte allowed to represent himself at next Vault 7 trial