CyberWire Daily

3271 Episodes

1. Ransomware hits another US farm co-op, as Russan gangs seem to continue attacks without interference from Moscow. A new APT is described. REvil was cheating? CISA warns about Conti.

   Published: 23/09/2021
2. Ransomware is rising, and governments try to evolve an effective response. A look at the cyber underworld. Snooping smartphones. An advance fee scam is criminal business as usual.

   Published: 22/09/2021
3. BlackMatter hits an Iowa agricultural cooperative. US Treasury Department moves against ransomware’s support system. FBI gave Kaseya the REvil decryptor. Camorra cybercriminals arrested.

   Published: 21/09/2021
4. Electioneering, domestic, but with international implications. The Mirai botnet is exploiting OMIGOD. Container shipper sustains data breach. Odd ads. Phishing with Mr. Musk’s name.

   Published: 20/09/2021
5. Limor Kessem: Be an upstander. [Security Advisor] [Career Notes]

   Published: 19/09/2021
6. An IoT educational exercise reveals a far-reaching vulnerability. [Research Saturday]

   Published: 18/09/2021
7. Patch that password manager. The hidden hand of the troll farm. Election meddling. Coin-mining’s costs, and a crackdown in China. If you really loved me, you’d speculate in Dogecoin....or something.

   Published: 17/09/2021
8. A CSO's 9/11 Story: CSO Perspectives Bonus.

   Published: 17/09/2021
9. Election-season cyber incidents in Germany. South Africa works to recover from a ransomware attack on government networks. Cryptojacking botnet moves to Windows targets. Ransomware notes.

   Published: 16/09/2021
10. No crackdown on ransomware from Moscow (at least so far). Cyber Partisans in Belarus. A long-running Chinese cyber campaign. Phishing and other cybercrime. Mercenaries.

    Published: 15/09/2021
11. NSO Group’s Pegasus was installed in a zero-click exploit: iOS users should patch. Vermillion Strike hits Linux systems. Enforcing the law against cybercrime.

    Published: 14/09/2021
12. The continuing problem of Meris and its bot-driven DDoS. Mustang Panda visits Indonesia. DPRK’s social media battlespace prep. Al Qaeda marks 9/11’s anniversary. And REvil seems to be back.

    Published: 13/09/2021
13. Joe Bradley: A bit of a winding road. [Chief Scientist] [Career Notes]

    Published: 12/09/2021
14. A Google Chrome update that just didn't feel right. [Research Saturday]

    Published: 11/09/2021
15. Investigations--the SEC looks into Solarigate, German prosecutors inquire into GhostWriter. The Meris botnet is responsible for recent DDoS attacks. Implausible deniability. The SINET 16 are announced

    Published: 10/09/2021
16. Credential theft at the UN? Intelligence services and privateers. DDoS hits a big multinational. A look at AlphaBay 2.0. Notes on the C2C marketplace.

    Published: 9/09/2021
17. BladeHawk Android cyberespionage campaign in progress. Labor Day was quiet, but the gangs are now back at it. REvil’s remnant stirs. Bulletproof hosting. Phishing keywords.

    Published: 8/09/2021
18. A threat from Ragnar Locker. GhostWriter in the Bundestag. BKA bought Pegasus. Taliban sifts data for potential opponents. France-Visas hacked. Modified apps. Privacy notes. A TrickBot arrest.

    Published: 7/09/2021
19. Security operations centers: a first principle idea. [CSO Perspectives]

    Published: 6/09/2021
20. Natali Tshuva: Impacting critical industries. [CEO] [Career Notes]

    Published: 5/09/2021