Risky Business #705 -- USA's Turla takedown marks a shift in tactics

US authorities just aren't as shy as they used to be…
10 May 2023 » Risky Business

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news. They cover:

  • Joe Sullivan’s sentencing
  • MSI key material leak
  • Merck to be paid in NotPetya claim
  • The FBI takes down Turla’s Snake malware operation
  • Much, much more

This week’s show is brought to you by Gigamon. Chaim Mazal, Gigamon’s CSO, is this week’s sponsor guest. He’s talking about how the company’s gear is acting as a data source for network security products.

Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that’s your thing.

Show notes

Former Uber CSO avoids prison time for ransomware coverup | Cybersecurity Dive
Merck cyber coverage upheld in NotPetya decision, seen as victory for policyholders | Cybersecurity Dive
Home / Twitter
Hunting Russian Intelligence “Snake” Malware | CISA
Justice Department Announces Court-Authorized Disruption of Snake Malware Network Controlled by Russia’s Federal Security Service | OPA | Department of Justice
Iranian state-sponsored hackers exploiting printer vulnerability
Iran: Fake It Till You Make It - by Tom Uren
Hacktivists Target Iran’s Foreign Ministry, Leak Trove Of Data
New Cactus ransomware encrypts itself to evade antivirus
White House considers ban on ransom payments, with caveats | Cybersecurity Dive
Hamas armed wing announces suspension of bitcoin fundraising | Reuters
FBI, Ukraine seize cryptocurrency exchanges for abetting cybercriminals
Dallas still recovering from ransomware on eve of municipal election | Cybersecurity Dive
Dallas restores core emergency dispatch systems | Cybersecurity Dive
Hackers hijacked a university's emergency system to threaten students and faculty
Organizations slow to patch GoAnywhere MFT vulnerability even after Clop ransomware attacks
$10M Is Yours If You Can Get This Guy to Leave Russia – Krebs on Security
Coming to DEF CON 31: Hacking AI models | CyberScoop
Google Is Rolling Out Passkeys, the Password-Killing Tech, to All Accounts | WIRED
US Court Rules for Corellium in Apple Copyright Case
SafeGraph Lands US Air Force Contract After Targeting Abortion Clinics | WIRED