Podcasts about anonymous sudan

Step inside AWS's cutting-edge approach to network protection with AWS VP and Distinguished Engineer Tom Scholl. In this eye-opening conversation, discover how threat detection tools like MadPot are helping AWS identify and disrupt DDoS-as-a-service providers who sell attack capabilities on the dark web. Scholl reveals how AWS's massive network scale provides unique insights into emerging threats, enabling proactive security measures and even the take down of criminal organizations like Anonymous Sudan. He also discusses AWS's approach to seamless security integration and the importance of implementing strong "front door" security measures to reinforce potential entry points in your network. This conversation is a must-watch for CISOs and security leaders looking to enhance their cloud security posture in 2025 and beyond.

Táblagépekből fonják a kerítést Bitport     2024-11-04 07:55:00     Mobiltech Kerítés A tabletpiac valósággal rakétázik: a legutóbbi negyedévben a szállítások több mint 20 százalékkal haladták meg az egy évvel ezelőtti szintet. A világ legnagyobb és leggazdagabb cégei fognak össze a mesterséges intelligencia fejlesztésére Tudás.hu     2024-11-04 05:03:40     Infotech Mesterséges intelligencia Microsoft Nvidia A Microsoft és a BlackRock a mesterséges intelligenciát fejlesztő alap kezdeményezésének atyjai, de ott van az MGX és az Nvidia is. A felek már az alapításnál betettek 30 milliárd dollárt, de az hamar 100 milliárd dollárra is nőhet. De mi a céljuk, és miért elengedhetetlen az ilyen úttörő fejlesztés? A mesterséges intelligencia pár hónapig olyan A hívásfogadó tudta anélkül irányítja át a hívásokat egy új Andorid csalás ICT Global     2024-11-04 14:33:17     Mobiltech Telefon Android A FakeCall nevű androidos malware új verziója képes eltéríteni a felhasználók bankját célzó kimenő hívásokat, és azokat átirányítani a támadó telefonszámára. Vírusokkal és járványokkal indul el a Magyar Tudomány Ünnepe Telex     2024-11-04 11:55:54     Tudomány Járvány Telex Kövesse élőben a Telexen Kemenesi Gábor előadását az ország legnagyobb tudományos rendezvénysorozatának megnyitójáról. Az Amazon kiberbiztonsági ügynökei előbukkantak az árnyékból ITBusiness     2024-11-04 04:37:09     Infotech Kiberbiztonság Amazon Szudán A 2010 óta létező Amazon fenyegetés-elhárító egység most kezd hírnevet szerezni magának, miután évekig a háttérben dolgozott. A cég bejelentette, hogy segített megzavarni az "Anonymous Sudan" elnevezésű csoport tevékenységét, amelyet nyugati célpontok elleni szolgáltatásmegtagadási támadások végrehajtásával vádoltak. Október 16-án két szudáni állam A Meta AI-modelljét használta a kínai hadsereg HWSW     2024-11-04 12:45:45     Infotech Kína Mesterséges intelligencia A Llama nyilvánosan hozzáférhető korábbi verzióját finomhangolták kínai kutatók az operatív döntéshozatalt segítő AI-eszköz fejlesztéséhez. Kérdéseket vet fel, hogy adatközpontok épülnek az erőművek mellé IT café     2024-11-04 13:01:00     Infotech USA Atomerőmű Amazon Az amerikai hatóságok máris belenyúltak egy projektbe, amely egy Amazon adatközpont és egy atomerőmű párosát érinti. Akciófigyelő: Egy hónapig tart a Honornál a Black Friday Mobilarena     2024-11-04 13:08:00     Mobiltech Black Friday Fekete Péntek Nem tudjuk, hogy miért, de nem ez a lényeg, hanem az elég ütősen csökkentett árak garmadája. Az ARM lehet az MI befektetési verseny váratlan kihívója SG.hu     2024-11-04 10:41:57     Infotech Japán A japán SoftBank által ellenőrzött brit chiptervező cég nagyobb részesedést akar szerezni az MI-piacon. Négy gamer eszköz, amivel igazán teljes lehet a játékélmény Player     2024-11-04 16:00:58     Mobiltech Asus Kicsi a bors, de erős, és ez a mondás tökéletesen igaz az Asus Rog legújabb gamer perifériáira, amiket most mutatunk. Legyen szó akár mobil gamingről, akár asztali gépről, ezek nélkül lehet játszani, csak nem érdemes. Milliárdokat kaszált az OpenAI FinTechRadar     2024-11-04 12:32:02     Modern Gazdaság Infotech Mesterséges intelligencia OpenAI 6,6 milliárd dolláros tőkebevonást jelentett be a cég, amellyel a mesterséges intelligencia (MI) fejlesztési verseny éllovasává válhat. Becsapás a mesterséges intelligencia kreálta zene kultura.hu     2024-11-04 10:03:06     Zene Zala Mesterséges intelligencia Készül Kékkői Zalán új szólólemeze, amelyről már ízelítőt mutatott a Big Picture szám képében. E kompozíció (mint az összes többi) – nem meglepő módon – instrumentális gitárzene. Az album címe elég egyértelmű: No Ai. Adódik a kérdés: mi baja a muzsikusnak a mesterséges intelligenciával? A feje tetejére állítja a munkaerőpiacot a mesterséges intelligencia Piac és Profit     2024-11-04 12:01:00     Infotech Mesterséges intelligencia A mesterséges intelligencia és annak különböző alkalmazásai gyors ütemben alakítják át a munka világát. A promptolás, vagyis a mesterséges intelligencia kérdésekre történő irányított használata, olyan készség, amely hamarosan elengedhetetlen lesz a vállalatok számára. A kérdés, hogy mindez miként érinti a munkaerőpiacot, a toborzást és a HR világát A további adásainkat keresd a podcast.hirstart.hu oldalunkon.

Táblagépekből fonják a kerítést Bitport     2024-11-04 07:55:00     Mobiltech Kerítés A tabletpiac valósággal rakétázik: a legutóbbi negyedévben a szállítások több mint 20 százalékkal haladták meg az egy évvel ezelőtti szintet. A világ legnagyobb és leggazdagabb cégei fognak össze a mesterséges intelligencia fejlesztésére Tudás.hu     2024-11-04 05:03:40     Infotech Mesterséges intelligencia Microsoft Nvidia A Microsoft és a BlackRock a mesterséges intelligenciát fejlesztő alap kezdeményezésének atyjai, de ott van az MGX és az Nvidia is. A felek már az alapításnál betettek 30 milliárd dollárt, de az hamar 100 milliárd dollárra is nőhet. De mi a céljuk, és miért elengedhetetlen az ilyen úttörő fejlesztés? A mesterséges intelligencia pár hónapig olyan A hívásfogadó tudta anélkül irányítja át a hívásokat egy új Andorid csalás ICT Global     2024-11-04 14:33:17     Mobiltech Telefon Android A FakeCall nevű androidos malware új verziója képes eltéríteni a felhasználók bankját célzó kimenő hívásokat, és azokat átirányítani a támadó telefonszámára. Vírusokkal és járványokkal indul el a Magyar Tudomány Ünnepe Telex     2024-11-04 11:55:54     Tudomány Járvány Telex Kövesse élőben a Telexen Kemenesi Gábor előadását az ország legnagyobb tudományos rendezvénysorozatának megnyitójáról. Az Amazon kiberbiztonsági ügynökei előbukkantak az árnyékból ITBusiness     2024-11-04 04:37:09     Infotech Kiberbiztonság Amazon Szudán A 2010 óta létező Amazon fenyegetés-elhárító egység most kezd hírnevet szerezni magának, miután évekig a háttérben dolgozott. A cég bejelentette, hogy segített megzavarni az "Anonymous Sudan" elnevezésű csoport tevékenységét, amelyet nyugati célpontok elleni szolgáltatásmegtagadási támadások végrehajtásával vádoltak. Október 16-án két szudáni állam A Meta AI-modelljét használta a kínai hadsereg HWSW     2024-11-04 12:45:45     Infotech Kína Mesterséges intelligencia A Llama nyilvánosan hozzáférhető korábbi verzióját finomhangolták kínai kutatók az operatív döntéshozatalt segítő AI-eszköz fejlesztéséhez. Kérdéseket vet fel, hogy adatközpontok épülnek az erőművek mellé IT café     2024-11-04 13:01:00     Infotech USA Atomerőmű Amazon Az amerikai hatóságok máris belenyúltak egy projektbe, amely egy Amazon adatközpont és egy atomerőmű párosát érinti. Akciófigyelő: Egy hónapig tart a Honornál a Black Friday Mobilarena     2024-11-04 13:08:00     Mobiltech Black Friday Fekete Péntek Nem tudjuk, hogy miért, de nem ez a lényeg, hanem az elég ütősen csökkentett árak garmadája. Az ARM lehet az MI befektetési verseny váratlan kihívója SG.hu     2024-11-04 10:41:57     Infotech Japán A japán SoftBank által ellenőrzött brit chiptervező cég nagyobb részesedést akar szerezni az MI-piacon. Négy gamer eszköz, amivel igazán teljes lehet a játékélmény Player     2024-11-04 16:00:58     Mobiltech Asus Kicsi a bors, de erős, és ez a mondás tökéletesen igaz az Asus Rog legújabb gamer perifériáira, amiket most mutatunk. Legyen szó akár mobil gamingről, akár asztali gépről, ezek nélkül lehet játszani, csak nem érdemes. Milliárdokat kaszált az OpenAI FinTechRadar     2024-11-04 12:32:02     Modern Gazdaság Infotech Mesterséges intelligencia OpenAI 6,6 milliárd dolláros tőkebevonást jelentett be a cég, amellyel a mesterséges intelligencia (MI) fejlesztési verseny éllovasává válhat. Becsapás a mesterséges intelligencia kreálta zene kultura.hu     2024-11-04 10:03:06     Zene Zala Mesterséges intelligencia Készül Kékkői Zalán új szólólemeze, amelyről már ízelítőt mutatott a Big Picture szám képében. E kompozíció (mint az összes többi) – nem meglepő módon – instrumentális gitárzene. Az album címe elég egyértelmű: No Ai. Adódik a kérdés: mi baja a muzsikusnak a mesterséges intelligenciával? A feje tetejére állítja a munkaerőpiacot a mesterséges intelligencia Piac és Profit     2024-11-04 12:01:00     Infotech Mesterséges intelligencia A mesterséges intelligencia és annak különböző alkalmazásai gyors ütemben alakítják át a munka világát. A promptolás, vagyis a mesterséges intelligencia kérdésekre történő irányított használata, olyan készség, amely hamarosan elengedhetetlen lesz a vállalatok számára. A kérdés, hogy mindez miként érinti a munkaerőpiacot, a toborzást és a HR világát A további adásainkat keresd a podcast.hirstart.hu oldalunkon.

Drex covers three recent cybersecurity victories, where law enforcement and private companies collaborated to take down high-profile cybercriminals. From the arrest of “Bitcoin Bro” for identity theft and device fraud, to the dismantling of the notorious Anonymous Sudan hacker group responsible for thousands of attacks, and finally, the apprehension of a cybercriminal linked to leaking FBI InfraGard data. Tune in for a snapshot of how the cybersecurity community is scoring wins against cyber threats.Remember, Stay a Little Paranoid Subscribe: This Week HealthTwitter: This Week Health LinkedIn: Week HealthDonate: Alex's Lemonade Stand: Foundation for Childhood Cancer

On this week's show Patrick Gray and Adam Boileau discuss the week's cybersecurity news, including: SEC fines tech firms for downplaying the Solarwinds hacks Anonymous Sudan still looks and quacks like a Russian duck Apple proposes max 10 day TLS certificate life Oopsie! Microsoft loses a bunch of cloud logs Veeam and Fortinet are bad and should feel bad North Koreans are good (at hacking) And much, much more. This week's episode is sponsored by Proofpoint. Chief Strategy Officer Ryan Kalember joins to talk about their work keeping up with prolific threat actor SocGholish. This episode is also available on Youtube. Show notes Four cyber companies fined for SolarWinds disclosure failures U.S. charges Sudanese men with running powerful cyberattack-for-hire gang Hacker Charged With Seeking to Kill Using Cyberattacks on Hospitals | WIRED Risky Biz News: Anonymous Sudan's Russia Links Are (Still) Obvious Microsoft confirms partial loss of security log data on multiple platforms | Cybersecurity Dive Risky Biz News: Apple wants to reduce the lifespan of TLS certificates to 10 days Encrypted Chat App ‘Session' Leaves Australia After Visit From Police Crypto platform Radiant Capital says $50 million in digital coins stolen following account compromises North Korean hackers use newly discovered Linux malware to raid ATMs - Ars Technica Brazil Arrests ‘USDoD,' Hacker in FBI Infragard Breach – Krebs on Security Here's how SIM swap in alleged bitcoin pump-and-dump scheme worked - Ars Technica Critical Veeam CVE actively exploited in ransomware attacks | Cybersecurity Dive FortiGate admins report active exploitation 0-day. Vendor isn't talking. - Ars Technica Hackers reportedly impersonate cyber firm ESET to target organizations in Israel The latest in North Korea's fake IT worker scheme: Extorting the employers

Insurance giant Globe Life facing extortion attempts after data theft from subsidiary Infamous hacker USDoD possibly arrested in Brazil Anonymous Sudan masterminds indicted Thanks to today's episode sponsor, Conveyor  It's spooky season, and nothing's scarier than all of your account execs asking if you're done with their customer security questionnaires. Don't worry—Conveyor is here to help.   Conveyor's market leading AI automates the most time-consuming parts of customer security reviews: answering security questionnaires and sharing security docs like your SOC 2 with customers.   Get instant AI answers to questionnaires and host an enterprise-grade trust center where customers can download documents and self-serve answers to their own questions.   End the horror show. Try it for free at www.conveyor.com. Get the story behind the headlines at CISOSeries.com.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird. You can find the newsletter version of this podcast here. Show notes Risky Biz News: Anonymous Sudan's Russia Links Are (Still) Obvious

Brazilian authorities arrest the alleged “USDoD” hacker. The DoJ indicts the alleged operators of Anonymous Sudan. CISA and its partners warn of Iranian brute force password attempts. A new report questions online platforms' ability to detect election disinformation. Recent security patches address critical vulnerabilities in widely-used platforms. North Korean threat actors escalate their fake IT worker schemes. CISA seeks comment on Product Security Bad Practices. Dealing effectively with post-breach stress. Tim Starks, Senior Reporter at CyberScoop, joins us to discuss “What's new from this year's Counter Ransomware Initiative summit.” Redbox DVD rental machines get a reboot.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest We welcome back Tim Starks, Senior Reporter at CyberScoop, to discuss “What's new from this year's Counter Ransomware Initiative summit, and what's next.” Selected Reading Hacker allegedly behind attacks on FBI, Airbus, National Public Data arrested in Brazil (The Record) Two Sudanese Nationals Indicted for Alleged Role in Anonymous Sudan Cyberattacks on Hospitals, Government Facilities, and Other Critical Infrastructure in Los Angeles and Around the World (US Department of Justice) Iranian Hackers Using Brute Force on Critical Infrastructure (GovInfo Security) Before US election, TikTok and Facebook fail to block harmful disinformation. YouTube succeeds (Global Witness) F5 BIG-IP Updates Patch High-Severity Elevation of Privilege Vulnerability (Security Week) Cisco Patches High-Severity Vulnerabilities in Analog Telephone Adapters (Security Week) GitHub patches critical vulnerability in its Enterprise Servers (CyberScoop) North Korea Escalates Fake IT Worker Schemes to Extort Employers (Infosecurity Magazine) CISA Seeks Feedback on Upcoming Product Security Flaws Guidance (Infosecurity Magazine) Helping Your Team Cope With the Stress of a Cyber Incident (BankInfo Security) Tinkerers Are Taking Old Redbox Kiosks Home and Reverse Engineering Them (404 Media) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show. Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

In today's podcast we cover four crucial cyber and technology topics, including: 1.        Cloudflare mitigates largest DDoS campaign to date 2.        U.S. indicts two Anonymous Sudan hacktivists 3.        French algorithm used to detect fraud may be biased4.        North Korean job scam schemes get new angle I'd love feedback, feel free to send your comments and feedback to  | cyberandtechwithmike@gmail.com

In today's episode of the Security Swarm Podcast, Andy and Eric Siron discuss the Monthly Threat Report of August 2024. They cover the aftermath of the CrowdStrike incident, Microsoft's proposed enhancements to improve the security of their ecosystem, as well as the discovery of a vulnerability in AMD processors that could allow persistent malware.  Additionally, they discuss the emergence of new AI jailbreak attacks, which can bypass content restrictions and generate harmful outputs and a VMware ESXi vulnerability that could allow attackers to gain access to virtual machines.  Key Takeaways:  The CrowdStrike incident highlights the need for rigorous software testing. Microsoft is moving forward with some changes and guidance on kernel access as a direct response to the CrowdStrike incident. Researchers have discovered a vulnerability in AMD processors that could allow threat actors to embed persistent malware, underscoring the ongoing battle against advanced threats. The Olympic Games have been the target of dozens of foiled cyberattacks, demonstrating the high-stakes nature of nation-state cyber conflicts. There is a new critical vulnerability in the VMware ESXi Hypervisor that allows authentication bypass. Broadcom has released a patch  Timestamps:  (01:00) CrowdStrike Incident and Lessons Learned   (04:14) Importance of Proper Software Testing and Development Processes  (7:21) Potential Consequences of Rushed Software Updates   (28:18) AI Jailbreak Attacks and Generative AI Risks   (33:43) VMware ESXi Vulnerability and Potential Ransomware Implications   (37:53) Bumblebee Loader and the Threat of Rapid Active Directory Compromise   (39:41) HealthEquity Data Breach and the Normalization of PII Breaches   (40:17) Anonymous Sudan and Their Disruptive DDOS Attacks  (41:54) Cyber Attacks on the Olympic Games and the Role of Nation-State Actors   Episode Resources: Full Monthly Threat Report Podcast episode on Anonymous Sudan AMD CPU Vulnerability Info Webinar where Andy covers the ways threat actors use Generative AI  VMware ESXi Authentication Bypass Exploit Security Swarm Podcast re: threat actor attacks on the Olympic Games

Romain Basset is back for another podcast episode. Today, Andy and Romain discuss the notorious threat actor group, Anonymous Sudan. They explore who this group is, their affiliations, motivations, and the tactics, techniques, and procedures (TTPs) they employ.   The discussion includes an overview of various types of threat actor groups, situating Anonymous Sudan within this landscape, and providing a detailed background on the group's emergence, targets, and the significant impact of their attacks.  Key Takeaways:  Anonymous Sudan is a threat actor group that sits between being an activist group and a state-sponsored cyber-criminal group.    The group is known for highly disruptive and visible DDoS attacks, often targeting large organizations and infrastructure like Microsoft's Azure, OneDrive, and Outlook.com.  Anonymous Sudan utilizes a variety of DDoS techniques and tools, including HTTP floods, SYN floods, UDP floods, and ICMP floods, often coordinating with other botnets to amplify the impact. Anonymous Sudan's tactics appear focused on disruption and visibility, aiming to make a public impact and spread their political/religious messaging.    Timestamps:  (02:43) - Categories of Threat Actor Groups  (05:44) - Ties Between Anonymous Sudan and Russia  (10:59) - Tools Used by Anonymous Sudan  (15:47) - Techniques and Procedures of Anonymous Sudan  (24:08) - Typical DDoS Attack Procedure  Episode Resources:  Next-gen Microsoft Security and Compliance Management to meet your Requirements  

NETSCOUT SYSTEMS, INC. has released findings from its 2H2023 DDoS Threat Intelligence Report that dissects trends and attack methodologies adversaries use against service providers, enterprises, and end-users. The information cited in the report is gathered from NETSCOUT's unparalleled internet visibility at a global scale, collecting, analysing, prioritising, and disseminating data on DDoS attacks from 214 countries and territories, 456 vertical industries, and more than 13,000 Autonomous System Numbers (ASNs). Driven by tech-savvy and politically motivated hacktivist groups and an increase in DNS water torture attacks, NETSCOUT observed more than 7 million DDoS attacks in the second half of 2023, representing a 15% increase from the first half of the year. Hacktivism Increases Ten-Fold Distributed denial-of-service (DDoS) hacktivism transcended geographic borders during the past year, exemplifying a shift in the global security landscape. Groups like NoName057(016) and Anonymous Sudan, as well as lone hackers and small collectives, are increasingly using DDoS to target those ideologically opposed to them, for example: Peru experienced a 30% increase in attacks tied to protests of former Peruvian President Fujimori's release from prison on 6th December Poland experienced a surge in attacks at the end of 2023 associated with a regime change and statements reaffirming Poland's support of Ukraine in the Russia-Ukraine conflict Anonymous Sudan attacked X (formerly Twitter) to influence Elon Musk regarding Starlink service in Sudan, and it attacked Telegram for suspending its main channel NoName057(016), Anonymous Sudan, and Killnet have taken credit for DDoS attacks in Ukraine, Russia, Israel, and Palestine targeting communications infrastructure, hospitals, and banks. Daily attacks from hacktivists increased more than ten-fold between the first and second halves of 2023. NoName057(016) topped the list of DDoS adversaries in 2023, targeting 780 websites across 35 countries. Water Torture Attacks Rise Targeting critical systems at the heart of the Internet's control plane, DNS (Domain Name System) water torture attacks have been on the rise since the end of 2019. DNS query floods designed to overwhelm authoritative DNS servers experienced a massive 553% increase from 1H2020 to 2H2023. Rather than targeting one website or server, adversaries go after entire systems, resulting in even more damage. Gaming and Gambling Targeted NETSCOUT findings point to gaming - and the gambling associated with gaming - as a primary target for DDoS attacks. Threat actors are drawn to the sector's substantial financial value and the goal of disrupting competitors, especially during online esports tournaments. Historically, 80-90% of all DDoS attacks are related to gaming and gambling. NETSCOUT assessed attacks on enterprises in these sectors, determining that more than 100,000 DDoS attacks were deployed against those in gaming, and over 20,500 were made against those tied to gambling in 2023. In addition, based on NETSCOUT's observations of the DDoS threat landscape, approximately 1% of DDoS attacks are suppressed from originating networks. "Global adversaries have become more sophisticated in the past year attacking websites and overloading servers to lockout customers and inflict digital chaos to influence geopolitical issues," stated Richard Hummel, senior threat intelligence lead, NETSCOUT. "The relentless barrage of DDoS threats drives up costs and creates security fatigue for network operators. They cannot safeguard their digital assets without the proper advanced DDoS protection leveraging predictive, real-time threat intelligence." Multiple decades of experience working with the world's largest service providers and enterprises give NETSCOUT far-reaching visibility into the global internet to discern the pulse of the digital world. Our capacity to monitor and respond to DDoS attacks is powered by our ATLAS platform, which enables us to anal...

C dans l'air l'invité du 12 mars 2024 avec le vice-amiral Arnaud Coustillière, directeur du Pôle d'Excellence Cyber, co-auteur de Soldat de la cyberguerre, publié aux éditions Tallandier. Depuis dimanche, plusieurs services de l'État ont été visés par des attaques informatiques d'une "intensité inédite". Une cellule de crise a été activée immédiatement, "pour déployer des contre-mesures et garantir la continuité des services informatiques", poursuit le communiqué de Matignon. L'impact de ces attaques aurait été "réduit pour la plupart des services" et l'accès aux sites de l'État rétabli rapidement. Pour l'heure, les services français ne mentionnent ni les sites visés, ni l'origine présumée des attaques. Mais plusieurs groupes de hackers ont revendiqué ces attaques sur Telegram. Parmi eux, Anonymous Sudan, un groupe qui soutient la Russie et plusieurs causes islamistes. Ces hackers évoquent une "cyberattaque massive" qui vise les ministères de l'Économie, de la Culture, de la Transition écologique, les services du Premier ministre ou la Direction générale de l'aviation civile (DGAC). Arnaud Coustillière est le directeur du Pôle d'Excellence Cyber. Il a commandé plusieurs navires de combat et a contribué à la création de la cyberdéfense du ministère des Armées dont il a été le premier COMCYBER de 2011 à 2017. Avec Aude Leroy, il publie "Soldat de la cyberguerre" aux éditions Tallandier, dans lequel il raconte l'histoire de cette création de la cyberdéfense militaire française et de sa montée en puissance.

Des attaques informatiques ont visé de nombreux sites de l'État français depuis dimanche. Des attaques "inédites" par leur ampleur, selon Matignon. Plusieurs groupes de hacktivistes ont revendiqué ces piratages, dont Anonymous Sudan, un groupe qui vise régulièrement les ennemis désignés de la Russie et de l'Islam. Les raisons de ces attaques ne sont pas claires mais leur impact a été "limité", affirme le gouvernement, la plupart des sites ayant été rétablis.

Our 148th episode with a summary and discussion of last week's big AI news! Read out our text newsletter and comment on the podcast at https://lastweekin.ai/ Email us your questions and feedback at contact@lastweekin.ai Timestamps + links: (00:00:00) Intro / Banter Tools & Apps(00:02:43) Google Deepmind unveils its most advanced AI image generator, Imagen 2 (00:08:21) Anthropic will help users if they get sued for copyright infringement (00:13:50) Midjourney Alpha is here with AI image generations on the web (00:16:34) Instagram introduces gen-AI powered background editing tool (00:17:09) Microsoft drastically expands Azure AI Studio to include Llama 2 Model-as-a-Service, GPT-4 Turbo with Vision (00:18:54) ChatGPT Is Apparently Becoming Lazy as It Has Started Asking Users to Solve Their Own Problems (00:22:17) You can create your own AI songs with this new Copilot extension (00:23:57) Stability AI announces paid membership for commercial use of its models Applications & Business(00:25:42) ByteDance is secretly using OpenAI's tech to build a competitor (00:31:55) Intel unveils new AI chip to compete with Nvidia and AMD (00:36:36) Chinese chip-related companies shutting down with record speed — 10,900, or around 30 per day, shut down in 2023 (00:40:11) TSMC mentions 1.4nm process tech for the first time, says 2nm remains on track (00:42:57) Meta has done something that will get Nvidia and AMD very, very worried — it gave up on GPU and CPU to take a RISC-y route for AI training and inference acceleration (00:46:17) Nvidia rushes to deliver modified AI GPU chips to China customers, allegedly places 'Super Hot Run' priority order with TSMC (00:49:17) Sam Altman's OpenAI agrees to pay German media giant Axel Springer for using its content to train AI models Projects & Open Source(00:52:20) Introducing DeciLM-7B: The Fastest and Most Accurate 7 Billion-Parameter LLM to Date (00:57:27) Introducing Stable Zero123: Quality 3D Object Generation from Single Images Research & Advancements(01:00:42) FunSearch: Making new discoveries in mathematical sciences using Large Language Models (01:09:12) OpenAI Demos a Control Method for Superintelligent AI (01:16:41) Cheating Fears Over Chatbots Were Overblown, New Research Suggests (01:18:13) SwitchHead: Accelerating Transformers with Mixture-of-Experts Attention (01:20:04) CogAgent: A Visual Language Model for GUI Agents (01:21:10) Limits to the Energy Efficiency of CMOS Microprocessors Policy & Safety(01:24:24) OpenAI announces ‘Preparedness Framework' to track and mitigate AI risks (01:32:08) Pro-China YouTube Network Used A.I. to Malign U.S., Report Finds (01:37:07) AI is a danger to the financial system, regulators warn for the first time (01:38:42) Anonymous Sudan hacking group sets sights on ChatGPT (01:40:33) Scenario planning for an AGI future (01:42:51) The widening web of effective altruism in AI security Synthetic Media & Art(01:49:22) Facebook Is Being Overrun With Stolen, AI-Generated Images That People Think Are Real (01:52:34) Pakistan's former prime minister is using an AI voice clone to campaign from prison

In the latest epsiode of the Weekly Security Sprint, Dave and Andy talked about the following topics: Announcement! Venue Security, The IAVM Podcast Series! A new monthly podcast starting in 2024. Venue Security, The IAVM Podcast Series is our newest podcast as Gate 15's founder and Managing Director, Andy Jabbour hosts short interviews with venue safety and security experts from the International Association of Venue Managers' (IAVM) Venue Safety and Security Committee (VSSC) and other special guests from the IAVM community.  SHIELDS READY. The Department of Homeland Security (DHS), the Cybersecurity and Infrastructure Security Agency (CISA), and the Federal Emergency Management Agency (FEMA) launched the new Shields Ready campaign to encourage the critical infrastructure community to focus on strengthening resilience. Resilience is the ability to prepare for, adapt to, withstand, and rapidly recover from disruptions caused by changing conditions. CISA Launches Critical Infrastructure Security and Resilience Month 2023   Scams. ‘with sales come scams'. https://www.ncsc.gov.uk/news/black-friday-bargain-hunters-warned-of-enhanced-online-scams-after-millions-lost-last-year  MDM The Truth Crisis | The Rising Threat of Online Misinformation and Disinformation The Gate 15 Interview: Malicious Info Operations & MDM, the Space Sector, supply chain resilience, the City of Light, and nudging the world in a better direction. Nerd Out: EP 41. Dave Clark joins to talk about MDM and other nerd topics.   Ransomware. Ransomware Actors Continue to Gain Access through Third Parties and Legitimate System Tools. CYBERSECURITY ADVISORY - #StopRansomware: Royal Ransomware, November 13, 2023 update Security Affairs: DOLLY.COM PAYS RANSOM, ATTACKERS RELEASE DATA ANYWAY Brazen ransomware attack on US unit of Chinese banking giant has financial sector on alert Risky Biz News: Clop is coming after your SysAid servers Basically all of Maine had data stolen by a ransomware gang; Maine's state agencies are the latest victims in the far-reaching MOVEit file transfer tool hack. Boeing data published by Lockbit hacking gang Cerber Ransomware Exploits Atlassian Confluence Vulnerability CVE-2023-22518 Same threats, different ransomware; A threat cluster's switch from Vice Society to Rhysida Hive Ransomware's Offspring: Hunters International Takes the Stage Ransomed[.]vc Sunsets Operations, Auctions Off Infrastructure Critical Vulnerability: SysAid CVE2023-47246   Quick Hits Critical infrastructure Updates: Major Australian Ports Affected By Cyber Incident Operations at DP World Australia resume, though ‘doesn't mean the incident has concluded' Washington state transportation services partially restored after cyberattack The NSA Seems Pretty Stressed About the Threat of Chinese Hackers in US Critical Infrastructure Sandworm Disrupts Power in Ukraine Using a Novel Attack Against Operational Technology International Terrorism: Five right-wing terrorists arrested throughout Europe with the support of Eurojust and Europol Israel: Mossad foils Hezbollah terror plot against Jews in Brazil FEMA and CISA Release Joint Guidance on Planning Considerations for Cyber Incidents Faith-Based and Israel-Gaza Related Updates: OpenAI blames DDoS attack for ongoing ChatGPT outage. In a series of Telegram messages seen by TechCrunch, hacktivist group Anonymous Sudan took credit for the alleged attack. In the messages, Anonymous Sudan said the reason it targeted OpenAI is due to the company's “general biasness towards Israel and against Palestine”. Earthquake Preparedness. FEMA's Earthquake & Wind Programs Branch, along with the National Earthquake and Hazard Reduction Program (NEHRP), is excited to announce the updated Earthquake Safety Checklist (FEMA B-526). CISA, NSA, and Partners Release New Guidance on Securing the Software Supply Chain FEMA's National Business Emergency Operations Center (NBEOC) - YouTube  

Hacktivists are hitting dozens of government websites and media outlets amid the war in Israel and Gaza, disrupting and overloading targeted systems. Since the Russian invasion of Ukraine, prominent hacktivist groups like "Anonymous Sudan" and "Killnet" that back Russian interests have emerged; they have also found their way into the current Israel-Gaza conflict.

In today's podcast we cover four crucial cyber and technology topics, including: 1.        Anonymous Sudan banned from Telegram, attacks service 2.        Airbus data found for sale by criminals 3.        France says iPhone12 unsafe, requests removal from market 4.        Poland Senate says Spyware used unjustly by ruling party  I'd love feedback, feel free to send your comments and feedback to  | cyberandtechwithmike@gmail.com

On the latest tech this week we are taking a look at some of the events that took place in the tech world recently. Starting with Amazon getting sued by shareholders, Microsoft discontinuing WordPad, and much more. Episode timeline 02:17 X to collect Biometric and employment data 06:00 Anonymous Sudan hacks X 10:05 Pixel 8 leaks 13:25 Google search looking for AI future 15:19 Amazon get sued by shareholders 19:00 Microsoft to discontinue WordPad Contact the hosts Henok Tsegaye Twitter Instagram LinkedIn Abdulhamid Oumer Twitter Instagram linkedIn

Timestamps: 0:00 Starfield crashes on Intel GPUs 1:26 Lenovo unveils Legion Go handheld 2:49 Intel takes lead in Arizona fab race 3:54 Volcanica Coffee 4:30 QUICK BITS 4:35 Gigabyte Gen5 1000 SSD hits 12GB/s 5:12 Anonymous Sudan hacks X, others 5:53 AMD Fluid Motion Frames for all! 6:27 Honor V Purse phone 6:57 Age of Empires, ants test war tactics News Sources: https://lmg.gg/Fzc4X

The Cybercrime Magazine Podcast brings you daily cybercrime news that airs each day on WCYB Digital Radio, the first and only 7x24x365 Internet radio station devoted to cybersecurity. Our host keeps you on the cutting edge of cyber with a rundown of the latest cyberattacks, hacks, data breaches, and more. Don't miss an episode! Airs every half-hour on WCYB Digital Radio and every day on our podcast. Listen to today's news at https://soundcloud.com/cybercrimemagazine/sets/cybercrime-daily-news

China deploys tools used against Uyghurs in broader espionage. The Five Eyes call out a GRU cyberespionage campaign. Russian hacktivist auxiliaries hit Czech banks and the platform formerly known as Twitter. A Spring-Kafka zero-day is discovered. Deepen Desai from Zscaler explains RedEnergy Stealer-as-a-Ransomware attacks. Luke Nelson of UHY Consulting on ransomware's impact on schools. And, hey, go Wolverines: the University of Michigan overcomes a cyberattack that delayed the academic year. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/166 Selected reading. BadBazaar espionage tool targets Android users via trojanized Signal and Telegram apps (We Live Security)  Earth Estries Targets Government, Tech for Cyberespionage (Trend Micro)  Infamous Chisel Malware Analysis Report (Cybersecurity and Infrastructure Security Agency CISA) UK and allies support Ukraine calling out Russia's GRU for new malware campaign (NCSC)  Hackers Attack Czech Banks, Demanding End of Support For Ukraine (Brno Daily)  More Russian attacks on Czech banks: Hackers call for end of support to Ukraine (Expats.cz) Anonymous Sudan hacks X to put pressure on Elon Musk over Starlink (BBC News)  Contrast Assess uncovers Spring-Kafka deserialization zero day (Contrast Security) U. Michigan restores campus internet after cyberattack disrupts first week of classes (EdScoop) Internet restored on University of Michigan campus, ongoing issues still expected (mlive) University of Michigan isn't disclosing details of internet outage cyberattack (Detroit Free Press) Expert weighs in on school cyberattacks as University of Michigan makes progress on internet outages (CBS News) Learn more about your ad choices. Visit megaphone.fm/adchoices

Hour 1 * Guest: Dr. Scott Bradley, Founder and Chairman of the Constitution Commemoration Foundation and the author of the book and DVD/CD lecture series “To Preserve the Nation.” In the Tradition of the Founding Fathers – FreedomsRisingSun.com * Russian hackers promise takedown of European banking system – ‘Within 48 hours … nothing will save you' – WND.com The Russian activist groups are known by the names KillNet, Anonymous Sudan and REvil. * Halderman Report on Voting Machine Vulnerabilities Finally Released, Validates Mike Lindell's Warnings – Brannon Howse, FrankSpeech.com * Dozens of Ottawa High School Students Stage Walkout to Protest Gender Ideology – EpochTimes.com * US government agencies hit in global hacking spree – Reuters. Hour 2 * Rep. Jim Jordan Threatens White House With Subpoenas Over Social Media Censorship! * They Will Never Impeach Joe, Will They? * White Starbucks manager fired over racist claims wins $25 million! * Lawmaker Tells Californians to Flee State Over Bill Favoring ‘Gender-Affirming' Parents. * An AI Program Is Pretending to Be Jesus and Thousands of Lost Young People Are Flocking to It – The Western Journal. * Taiwan prepares for war with China. * Nearly 1 in 5 adults say they've been diagnosed with depression – CDC. * A recently released report from a Planned Parenthood watchdog group revealed that the abortion chain's CEOs are among the highest-paid in the country's nonprofit sector. * Catholic pro-life organization American Life League's STOPP International is dedicated to exposing the “true nature of Planned Parenthood” by documenting “its anti-life, anti-family programs,” according to its website. * Governor Newsom Proposes 28th Amendment to the US Constitution. * Pledge of GAY-legiance: White House under fire for replacing Old Glory with Pride flag during LGBT event. --- Support this podcast: https://podcasters.spotify.com/pod/show/loving-liberty/support

WormGPT is a new AI threat. TeamTNT seems to be back. Chinese intelligence services actively pursue British MPs. Gamaredon's quick info theft. Russia's FSB bans Apple devices. The troll farmers of the Internet Research Agency may not yet be down for the count. Anonymous Sudan claims a "demonstration" attack against PayPal, with more to come. Carole Theriault looks at popular email lures. My conversation with N2K president Simone Petrella on the White House's National Cybersecurity Strategy Implementation Plan. And, friends, don't take this typo to Timbuktu. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/134 Selected reading. WormGPT, an "ethics-free" text generator. (CyberWire) TeamTNT (or someone a lot like them) may be preparing a major campaign. (CyberWire) Chinese government hackers ‘frequently' targeting MPs, warns new report (Record)  Gamaredon hackers start stealing data 30 minutes after a breach (BleepingComputer)  Russia-linked APT Gamaredon starts stealing data from victims between 30 and 50 minutes after the initial compromise (Security Affairs) Armageddon in Ukraine – how one Russia-backed hacking group operates (CyberSecurity Connect) Russian hacking group Armageddon increasingly targets Ukrainian state services (Record) Russia bans officials from using iPhones in U.S. spying row (Apple Insider) Prigozhin's Media Companies May Resume Work As Mutiny Fallout Dissipates, FT Reports (Radio Free Europe | Radio Liberty) Anonymous Sudan claims it hit PayPal with 'warning' DDoS cyberattack (Tech Monitor)  Typo leaks millions of US military emails to Mali web operator (Financial Times)

NATO considers Article 5 in cyberspace, while Cyberattacks conducted in the Russian interest target the NATO summit. Anonymous Sudan remains a nuisance-level irritant. Cl0p's surprising use of MOVEit exploits. Asylum Ambuscade is a case study in privateering. There are reports of a breach at Razer. An indictment in a cyber incident at a California water treatment facility. Genesis Market's fire sale. Carole Theriault on the data Amazon customers provide with some suggestions on curbing it. Our guest is Dmitri Bestuzhev, senior director in Cyber Threat Intelligence for Blackberry. And Amazon Prime Day is upon us–the crooks have noticed. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/130 Selected reading. A Cybersecurity Wish List Ahead of NATO Summit (SecurityWeek) NATO's Christian-Marc Lifländer on how the alliance can take a ‘proactive' cyber stance (Record) Ukraine has set the standard on software power (POLITICO) RomCom Threat Actor Suspected of Targeting Ukraine's NATO Membership Talks at the NATO Summit (BlackBerry) Threat group testing more sophisticated DDoS hacks, authorities warn (Cybersecurity Dive) Move It on Over: Reflecting on the MOVEit Exploitation (Huntress) Cl0p has yet to deploy ransomware while exploiting MOVEit zero-day (SC Media)  Asylum Ambuscade: crimeware or cyberespionage? (WeLiveSecurity) Crimeware Group Asylum Ambuscade Ventures Into Cyber-Espionage (Infosecurity Magazine) Razer investigates data breach claims, resets user sessions (BleepingComputer)  Razer Data Breach: Alleged Database and Backend Access Sold for $100k (HackRead) Alleged Razer data breach: Hacker demands US$100K in crypto in exchange for stolen data (Vulcan Post) Razer gets pwned as hackers steal source code (Cyber Security Connect)  Razer Cyber Attack: Gaming Hardware Giant Faces Data Breach (The Cyber Express)  Amazon Prime Day: Buyers Beware of Phishing Campaigns Targeting Online Shoppers (Veriti) Tracy Resident Charged With Computer Attack On Discovery Bay Water Treatment Facility (US Attorney for the Northern District of California) Tracy man indicted for illegally accessing water treatment network (CBS News) Technician Indicted for Hacking California Water Treatment Facility (HackRead) Tracy Man Charged With Computer Attack On Discovery Bay Water Treatment Facility (Contra Costa News)  Genesis Market gang tries to sell platform after FBI disruption (Record)  Amazon Prime Day: Buyers Beware of Phishing Campaigns Targeting Online Shoppers (Veriti) 

Chinese cyberespionage campaign against European governments. The Port of Nagoya closes over ransomware attack. BlackCat and SEO poisoning. LockBit seeks to extort a semiconductor manufacturer. Professionals in the cyber underworld. CISA issued a DDoS alert for US companies and government agencies. Microsoft debunks claims of data theft by Anonymous Sudan. Matt O'Neill from the US Secret Service speaks with Dave Bittner about sextortion. Rick Howard sits down with Michael Fuller of AWS to talk about the kill chain. And Avast releases a free decryptor for Akira. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/126 Selected reading. Chinese Threat Actors Targeting Europe in SmugX Campaign - Check Point Research (Check Point Research) Hackers target European government entities in SmugX campaign (BleepingComputer) Chinese hackers target European embassies with HTML smuggling technique (Record) Japan's largest port stops operations after ransomware attack (BleepingComputer)  BlackCat ransomware pushes Cobalt Strike via WinSCP search ads (BleepingComputer) BlackCat Operators Distributing Ransomware Disguised as WinSCP via Malvertising (The Hacker News) TSMC Says Supplier Hacked After Ransomware Group Claims Attack on Chip Giant (SecurityWeek) TSMC confirms data breach after LockBit cyberattack on third-party supplier (TechCrunch) Taiwan Semiconductor Denies LockBit's $70M Hack Claim (Bank Info Security) Semiconductor giant says IT supplier was attacked; LockBit makes related claims (Record) DoS and DDoS Attacks against Multiple Sectors (Cybersecurity and Infrastructure Security Agency CISA) CISA issues DDoS warning after attacks hit multiple US orgs (BleepingComputer) Microsoft denies data breach, theft of 30 million customer accounts (BleepingComputer) Microsoft Denies Major 30 Million Customer-Breach (Infosecurity Magazine) Decrypted: Akira Ransomware (Avast Threat Labs)

An update on Barracuda ESG exploitation. Camaro Dragon's current cyberespionage tools spread through infected USB drives. The Mirai botnet is spreading through new vectors. Midnight Blizzard is out and about . Ukraine is experiencing a "wave" of cyberattacks during its counteroffensive. Karen Worstell from VMware shares her experience with technical debt. Rick Howard speaks with CJ Moses, CISO of Amazon Web Services. And Anonymous Sudan turns out to be no more anonymous or Sudanese than your Uncle Louie. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/120 Selected reading. Barracuda ESG exploitation (Proofpoint) Beyond the Horizon: Traveling the World on Camaro Dragon's USB Flash Drives (Check Point Research) Chinese malware accidentally infects networked storage (Register) Akamai SIRT Security Advisory: CVE-2023-26801 Exploited to Spread Mirai Botnet Malware (Akamai). Mirai botnet targets 22 flaws in D-Link, Zyxel, Netgear devices (BleepingComputer)  Neuberger: Ukraine experiencing a ‘surge' in cyberattacks as it executes counteroffensive (Record)  Microsoft warns of rising NOBELIUM credential attacks on defense sector (HackRead). Anonymous Sudan: neither anonymous nor Sudanese (Cybernews)

On this week's show Patrick Gray and Adam Boileau discuss the week's security news. They cover: Albanian authorities raid MEK over Iran hacks Microsoft admits “Anonymous Sudan” took down its services US Government puts $10m bounty on CL0P A deeper look at the Barracuda hack campaign Much, much more This week's show is brought to you by Material Security. We'll be hearing from one of Material's friends – Courtney Healey, senior manager of insider threat at Coinbase – in this week's sponsor interview. Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes Police raid Iranian opposition camp in Albania, seize computers | AP News Risky Biz News: Microsoft embarrassingly admits it got DDoSed into the ground by Anonymous Sudan Anonymous Sudan and Killnet strike again, target EIB Pro-Russian hackers remain active amid Ukraine counteroffensive | CyberScoop Hackers infect Russian-speaking gamers with fake WannaCry ransomware US puts $10M bounty on Clop as federal agencies confirm data compromises | Cybersecurity Dive (1) Catherine Herridge on Twitter: "Tonight, sources tell @cbsnews senior government officials are racing to limit impact - of what one cyber expert calls - potentially the largest theft + extortion event in recent history. USG official says no evidence to date US MIL or INTEL compromised. https://t.co/R4f6naFqFx" / Twitter U.S. government says several agencies hacked as part of broader cyberattack Clop names a dozen MOVEit victims, but holds back details | Cybersecurity Dive Another MOVEit vulnerability found, as state and federal agencies reveal breaches | Cybersecurity Dive Barracuda ESG Zero-Day Vulnerability (CVE-2023-2868) Exploited Globally by Aggressive and Skilled Actor, Suspected Links to China | Mandiant New DOJ unit will focus on prosecuting nation-state cybercrime EU states told to restrict Huawei and ZTE from 5G networks ‘without delay' The US Navy, NATO, and NASA Are Using a Shady Chinese Company's Encryption Chips | WIRED Widow of slain Saudi journalist Jamal Khashoggi files suit against Pegasus spyware maker Jamal Khashoggi's wife to sue NSO Group over Pegasus spyware | Jamal Khashoggi | The Guardian Bipartisan bill would protect Americans' data from export abroad District of Nebraska | Massachusetts Man Sentenced for Computer Intrusion | United States Department of Justice I Was Sentenced to 18 Months in Prison for Hacking Back - My Story | HackerNoon CID-FLYER-TEMPLATE New FCC privacy task force takes aim at data breaches, SIM-swaps | CyberScoop Bloodied Macbooks and Stacks of Cash: Inside the Increasingly Violent Discord Servers Where Kids Flaunt Their Crimes Russian National Arrested and Charged with Conspiring to Commit LockBit Ransomware Attacks Against U.S. and Foreign Businesses | OPA | Department of Justice BrianKrebs: "Haha love it when a data ranso…" - Infosec Exchange

On this week's show Patrick Gray and Adam Boileau discuss the week's security news. They cover: Albanian authorities raid MEK over Iran hacks Microsoft admits “Anonymous Sudan” took down its services US Government puts $10m bounty on CL0P A deeper look at the Barracuda hack campaign Much, much more This week's show is brought to you by Nucleus Security. We'll be hearing from one of Material's friends – Courtney Healey, senior manager of insider threat at Coinbase – in this week's sponsor interview. Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes Police raid Iranian opposition camp in Albania, seize computers | AP News Risky Biz News: Microsoft embarrassingly admits it got DDoSed into the ground by Anonymous Sudan Anonymous Sudan and Killnet strike again, target EIB Pro-Russian hackers remain active amid Ukraine counteroffensive | CyberScoop Hackers infect Russian-speaking gamers with fake WannaCry ransomware US puts $10M bounty on Clop as federal agencies confirm data compromises | Cybersecurity Dive (1) Catherine Herridge on Twitter: "Tonight, sources tell @cbsnews senior government officials are racing to limit impact - of what one cyber expert calls - potentially the largest theft + extortion event in recent history. USG official says no evidence to date US MIL or INTEL compromised. https://t.co/R4f6naFqFx" / Twitter U.S. government says several agencies hacked as part of broader cyberattack Clop names a dozen MOVEit victims, but holds back details | Cybersecurity Dive Another MOVEit vulnerability found, as state and federal agencies reveal breaches | Cybersecurity Dive Barracuda ESG Zero-Day Vulnerability (CVE-2023-2868) Exploited Globally by Aggressive and Skilled Actor, Suspected Links to China | Mandiant New DOJ unit will focus on prosecuting nation-state cybercrime EU states told to restrict Huawei and ZTE from 5G networks ‘without delay' The US Navy, NATO, and NASA Are Using a Shady Chinese Company's Encryption Chips | WIRED Widow of slain Saudi journalist Jamal Khashoggi files suit against Pegasus spyware maker Jamal Khashoggi's wife to sue NSO Group over Pegasus spyware | Jamal Khashoggi | The Guardian Bipartisan bill would protect Americans' data from export abroad District of Nebraska | Massachusetts Man Sentenced for Computer Intrusion | United States Department of Justice I Was Sentenced to 18 Months in Prison for Hacking Back - My Story | HackerNoon CID-FLYER-TEMPLATE New FCC privacy task force takes aim at data breaches, SIM-swaps | CyberScoop Bloodied Macbooks and Stacks of Cash: Inside the Increasingly Violent Discord Servers Where Kids Flaunt Their Crimes Russian National Arrested and Charged with Conspiring to Commit LockBit Ransomware Attacks Against U.S. and Foreign Businesses | OPA | Department of Justice BrianKrebs: "Haha love it when a data ranso…" - Infosec Exchange

Senator Ron Wyden (D-Ore.) is to moral panics over privacy what Andreessen Horowitz is to cryptocurrency startups. He's constantly trying to blow life into them, hoping to justify new restrictions on government or private uses of data. His latest crusade is against the intelligence community's purchase of behavioral data, which is generally available to everyone from Amazon to the GRU. He has launched his campaign several times, introducing legislation, holding up Avril Haines's confirmation over the issue, and extracting a Director of National Intelligence report on the topic that has now been declassified. It was a sober and reasonable explanation of why commercial data is valuable for intelligence purposes, so naturally WIRED magazine's headline summary was, “The U.S. Is Openly Stockpiling Dirt on All Its Citizens.” Matthew Heiman takes us through the story, sparking a debate that pulls in Michael Karanicolas and Cristin Flynn Goodwin. Next, Michael explains IBM's announcement that it has made a big step forward in quantum computing.  Meanwhile, Cristin tells us, the EU has taken another incremental step forward in producing its AI Act—mainly by piling even more demands on artificial intelligence companies. We debate whether Europe can be a leader in AI regulation if it has no AI industry. (I think it makes the whole effort easier, pointing to a Stanford study suggesting that every AI model we've seen is already in violation of the AI Act's requirements.) Michael and I discuss a story claiming persuasively that an Amazon driver's allegation of racism led to an Amazon customer being booted out of his own “smart” home system for days. This leads us to the question of how Silicon Valley's many “local” monopolies enable its unaccountable power to dish out punishment to customers it doesn't approve of. Matthew recaps the administration's effort to turn the debate over renewal of section 702 of FISA. This week, it rolled out some impressive claims about the cyber value of 702, including identifying the Colonial Pipeline attackers (and getting back some of the ransom). It also introduced yet another set of FBI reforms designed to ensure that agents face career consequences for breaking the rules on accessing 702 data.  Cristin and I award North Korea the “Most Improved Nation State Hacker” prize for the decade, as the country triples its cryptocurrency thefts and shows real talent for social engineering and supply chain exploits. Meanwhile, the Russians who are likely behind Anonymous Sudan decided to embarrass Microsoft with a DDOS attack on its application level. The real puzzle is what Russia gains from the stunt.  Finally, in updates and quick hits, we give deputy national cyber director Rob Knake a fond sendoff, as he moves to the private sector, we anticipate an important competition decision in a couple of months as the FTC tries to stop the Microsoft-Activision Blizzard merger in court, and I speculate on what could be a Very Big Deal – the possible breakup of Google's adtech business. Download 463rd Episode (mp3) You can subscribe to The Cyberlaw Podcast using iTunes, Google Play, Spotify, Pocket Casts, or our RSS feed. As always, The Cyberlaw Podcast is open to feedback. Be sure to engage with @stewartbaker on Twitter. Send your questions, comments, and suggestions for topics or interviewees to CyberlawPodcast@gmail.com. Remember: If your suggested guest appears on the show, we will send you a highly coveted Cyberlaw Podcast mug! The views expressed in this podcast are those of the speakers and do not reflect the opinions of their institutions, clients, friends, families, or pets.

Senator Ron Wyden (D-Ore.) is to moral panics over privacy what Andreessen Horowitz is to cryptocurrency startups. He's constantly trying to blow life into them, hoping to justify new restrictions on government or private uses of data. His latest crusade is against the intelligence community's purchase of behavioral data, which is generally available to everyone from Amazon to the GRU. He has launched his campaign several times, introducing legislation, holding up Avril Haines's confirmation over the issue, and extracting a Director of National Intelligence report on the topic that has now been declassified. It was a sober and reasonable explanation of why commercial data is valuable for intelligence purposes, so naturally WIRED magazine's headline summary was, “The U.S. Is Openly Stockpiling Dirt on All Its Citizens.” Matthew Heiman takes us through the story, sparking a debate that pulls in Michael Karanicolas and Cristin Flynn Goodwin. Next, Michael explains IBM's announcement that it has made a big step forward in quantum computing.  Meanwhile, Cristin tells us, the EU has taken another incremental step forward in producing its AI Act—mainly by piling even more demands on artificial intelligence companies. We debate whether Europe can be a leader in AI regulation if it has no AI industry. (I think it makes the whole effort easier, pointing to a Stanford study suggesting that every AI model we've seen is already in violation of the AI Act's requirements.) Michael and I discuss a story claiming persuasively that an Amazon driver's allegation of racism led to an Amazon customer being booted out of his own “smart” home system for days. This leads us to the question of how Silicon Valley's many “local” monopolies enable its unaccountable power to dish out punishment to customers it doesn't approve of. Matthew recaps the administration's effort to turn the debate over renewal of section 702 of FISA. This week, it rolled out some impressive claims about the cyber value of 702, including identifying the Colonial Pipeline attackers (and getting back some of the ransom). It also introduced yet another set of FBI reforms designed to ensure that agents face career consequences for breaking the rules on accessing 702 data.  Cristin and I award North Korea the “Most Improved Nation State Hacker” prize for the decade, as the country triples its cryptocurrency thefts and shows real talent for social engineering and supply chain exploits. Meanwhile, the Russians who are likely behind Anonymous Sudan decided to embarrass Microsoft with a DDOS attack on its application level. The real puzzle is what Russia gains from the stunt.  Finally, in updates and quick hits, we give deputy national cyber director Rob Knake a fond sendoff, as he moves to the private sector, we anticipate an important competition decision in a couple of months as the FTC tries to stop the Microsoft-Activision Blizzard merger in court, and I speculate on what could be a Very Big Deal – the possible breakup of Google's adtech business. Download 463rd Episode (mp3) You can subscribe to The Cyberlaw Podcast using iTunes, Google Play, Spotify, Pocket Casts, or our RSS feed. As always, The Cyberlaw Podcast is open to feedback. Be sure to engage with @stewartbaker on Twitter. Send your questions, comments, and suggestions for topics or interviewees to CyberlawPodcast@gmail.com. Remember: If your suggested guest appears on the show, we will send you a highly coveted Cyberlaw Podcast mug! The views expressed in this podcast are those of the speakers and do not reflect the opinions of their institutions, clients, friends, families, or pets.

The BlackCat gang crosses Reddit's path, threatening to leak stolen data. Mystic Stealer malware evades and creates a feedback loop in the C2C market. RDStealer is a new cyberespionage tool, seen in the wild. The United States offers a reward for information on the Cl0p ransomware gang. KillNet, REvil, and Anonymous Sudan form a "DARKNET Parliament" and “sanction” the European banking system. The British Government commits £25 million in cybersecurity aid to Ukraine. Ben Yelin explains cyber disclosure rules proposed by the SEC. Rick Howard speaks with Nancy Wang of AWS about the importance of backups and restores. And what researchers are turning up in cloud honeypots. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/117 Selected reading. Reddit: Hackers demand $4.5 million and API policy changes (Computing) Mystic Stealer – Evolving “stealth” Malware (Cyfirma) Mystic Stealer: The New Kid on the Block (Zscaler) Unpacking RDStealer: An Exfiltration Malware Targeting RDP Workloads (Bitdefender) MOVEit Transfer and MOVEit Cloud Vulnerability (Progress Software) CVE-2023-35708 Detail (NIST) U.S. Energy Dept gets two ransom notices as MOVEit hack claims more victims (Reuters) US govt offers $10 million bounty for info on Clop ransomware (BleepingComputer) Ransomware Group Starts Naming Victims of MOVEit Zero-Day Attacks (SecurityWeek) A bear in wolf's clothing: Insights into the infrastructure used by Anonymous Sudan to attack Australian organisations (CyberCX) Anonymous Sudan: Religious Hacktivists or Russian Front Group? (Trustwave) UK to give Ukraine major boost to mount counteroffensive (UK Government) 2023 Honeypotting in the Cloud Report: Attackers Discover and Weaponize Exposed Cloud Assets and Secrets in Minutes (Orca Security)

In this episode of Storm Watch, the hosts discuss various cybersecurity topics, including a Fortinet vulnerability, a DDoS attack on Microsoft Outlook, the ongoing issues with Log4j, and the "MOVEit" vulnerability. The hosts first talk about a new Fortinet vulnerability, expressing their snarky comments about the company's security issues. They then move on to discuss a recent DDoS attack on Microsoft Outlook, which caused significant downtime for users. The attack was attributed to Anonymous Sudan, a hacktivist group that uses open proxy services to launch their attacks. The hosts mention that with the current political climate and upcoming presidential election, more DDoS attacks can be expected. Next, they discuss the "MOVEit" vulnerability, which has been exploited by attackers to target various organizations, including some governments. The hosts emphasize the importance of staying on top of security updates and patches to protect against such attacks. They also mention their community Slack channel, where they encourage users to share information on niche software and research partnerships. Finally, the hosts touch on the resurgence of Log4j scans, suggesting that attackers may be targeting organizations that have restored backups or deployed old images without the necessary patches in place. They also mention a recent Verizon DBIR report that highlighted Log4j vulnerabilities, possibly contributing to the renewed interest in exploiting them. The hosts conclude by emphasizing the importance of staying vigilant and up-to-date with security measures to protect against these ongoing threats. Join our Community Slack >> Learn more about GreyNoise >>  

* Guest: Dr. Scott Bradley, Founder and Chairman of the Constitution Commemoration Foundation and the author of the book and DVD/CD lecture series “To Preserve the Nation.” In the Tradition of the Founding Fathers - FreedomsRisingSun.com * Russian hackers promise takedown of European banking system - 'Within 48 hours … nothing will save you' - WND.com The Russian activist groups are known by the names KillNet, Anonymous Sudan and REvil. * Halderman Report on Voting Machine Vulnerabilities Finally Released, Validates Mike Lindell's Warnings - Brannon Howse, FrankSpeech.com * Dozens of Ottawa High School Students Stage Walkout to Protest Gender Ideology - EpochTimes.com * US government agencies hit in global hacking spree - Reuters.

GET HEIRLOOM SEEDS & NON GMO SURVIVAL FOOD HERE: https://heavensharvest.com/ USE Code WAM to get FREE shipping in the United States! GET AN EXTENDED FREE TRIAL FOR ICKONIC WHEN YOU SIGN UP HERE: https://www.ickonic.com/affiliate/josh10 HELP SUPPORT US AS WE DOCUMENT HISTORY HERE: https://gogetfunding.com/help-wam-cover-history/ GET YOUR APRICOT SEEDS at the life-saving Richardson Nutritional Center HERE: https://rncstore.com/r?id=bg8qc1 Josh Sigurdson reports on claims by a so-called group of pro Russian "hacktivists" (Killnet, Anonymous Sudan and REvil) that within the next 24 hours, there will be a massive cyber attack on the European banking system due to their attacks on everyday people as well as for supporting Ukraine. This seems like an obvious false flag warning. In order for banks to switch to the new cashless system, they'd need to go down anyways. This seems like the perfect excuse. It would also cause chaos which would be the perfect storm for government. "Order out of chaos." The whole system can be reset without people even realizing it. This will be blamed on the Russians if it does indeed occur giving them a scapegoat. Meanwhile, in the United States, simultaneously as this threat is launched, US Federal Government agencies were hit in a global cyber attack. CISA says they're working "urgently to understand impacts." This is part of the perfect storm to bring us into a new technocratic environment. They create the problem and come in as the solution. Stay tuned for more from WAM! BUY GOLD AND SILVER HERE: https://kirkelliottphd.com/wam/ BUY YOUR PRIVATE CLEARPHONE HERE: https://www.r1kln3trk.com/3PC4ZXC/F9D3HK/ LION ENERGY: Never Run Out Of Power! PREPARE NOW! https://www.r1kln3trk.com/3PC4ZXC/D2N14D/ GET VITAMINS AND SUPPLEMENTS FROM DR. ZELENKO HERE: https://zstacklife.com/?ref=WAM GET TIM'S FREE Portfolio Review HERE: https://bit.ly/redpilladvisor And become a client of Tim's at https://www.TheLibertyAdvisor.com STOCK UP ON STOREABLE FOODS HERE: http://wamsurvival.com/ OUR GOGETFUNDING CAMPAIGN: https://gogetfunding.com/help-keep-wam-alive/ OUR PODBEAN CHANNEL: https://worldaltmedia.podbean.com/ Or SPOTIFY: https://open.spotify.com/show/5JWtlXypfL8iR8gGMg9MME Find us on Vigilante TV HERE: https://vigilante.tv/c/world_alternative_media/videos?s=1 FIND US on Rokfin HERE: https://rokfin.com/worldalternativemedia FIND US on Gettr HERE: https://www.gettr.com/user/worldaltmedia See our EPICFUNDME HERE: https://epicfundme.com/251-world-alternative-media JOIN OUR NEWSLETTER HERE: https://www.iambanned.com/ JOIN our Telegram Group HERE: https://t.me/worldalternativemedia JOIN US on Rumble Here: https://rumble.com/c/c-312314 FIND WAM MERCHANDISE HERE: https://teespring.com/stores/world-alternative-media FIND OUR CoinTree page here: https://cointr.ee/joshsigurdson JOIN US on SubscribeStar here: https://www.subscribestar.com/world-alternative-media We will soon be doing subscriber only content! Follow us on Twitter here: https://twitter.com/WorldAltMedia Help keep independent media alive! Pledge here! Just a dollar a month can help us alive! https://www.patreon.com/user?u=2652072&ty=h&u=2652072 BITCOIN ADDRESS: 18d1WEnYYhBRgZVbeyLr6UfiJhrQygcgNU World Alternative Media 2023

The Five Eyes, alongside a couple of allies, issue a LockBit advisory. AI aids in proofreading phishing attacks. Anonymous Sudan mounts nuisance-level DDoS attacks against US companies. France alleges a disinformation campaign conducted by Russian actors. KillNet says it's partnered with the less-well-known Devil Sec. The private cybersecurity industry's effect on the war in Ukraine. Carole Theriault ponders oversharing on social media. Our guest is Duncan Jones from Quantinuum on the threats of Harvest Now, Decrypt Later tactics. And a note on this month's Patch Tuesday. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/114 Selected reading. Understanding Ransomware Threat Actors: LockBit (Joint Cybersecurity Advisory) U.S. Measures in Response to the Crisis in Sudan (US Department of State) Generative AI Enables Threat Actors to Create More (and More Sophisticated) Email Attacks (Abnormal Security) France Accuses Russia of Online Disinformation Campaign (Bloomberg) The Private Sector's Evolving Role in Conflict—From Cyber Assistance to Intelligence (R Street) Microsoft Patches Critical Windows Vulns, Warns of Code Execution Risks (SecurityWeek) Patch Tuesday: Critical Flaws in Adobe Commerce Software (SecurityWeek) Patch Tuesday fixes 4 critical RCE bugs, and a bunch of Office holes (Naked Security)

Welcome to Cyber Briefing, the newsletter that informs you about the latest cybersecurity advisories, alerts, incidents and news every weekday.

This week on Privacy Please, we talk about how Microsoft Outlook, the popular cloud email service, faced a series of outages on Monday after a reported hack by a pro-Russian group called Anonymous Sudan. The group claimed to have launched a distributed denial-of-service (DDoS) attack on Outlook as part of a campaign against US companies and infrastructure.  Support the show

The Cl0p gang claims responsibility for the MOVEit file transfer vulnerability. Verizon's DBIR is out. Palo Alto Networks takes a snapshot of last year's threat trends. A new criminal campaign targets Android users wishing to install modified apps. A smishing campaign is expanding into the Middle East. Cisco observes compromised vendor and contractor accounts as an access point for network penetration. Cyclops ransomware acts as a dual threat. Anonymous Sudan demands $1 million to stop attacks on Microsoft platforms. Ben Yelin explains a groundbreaking decision on border searches. Our guest is Matt Caulfield of Oort with insights on identity security. And a deepfaked martial law announcement airs on Russian provincial radio stations. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/108 Selected reading. Clop ransomware claims responsibility for MOVEit extortion attacks (BleepingComputer) CVE-2023-34362 Detail (National Institute of Standards and Technology) Microsoft links Clop ransomware gang to MOVEit data-theft attacks (BleepingComputer) BA, BBC and Boots hit by cyber security breach with contact and bank details exposed (Sky News) 2023 Data Breach Investigations Report (Verizon) 2023 Unit 42 Network Threat Trends Research Report (Unit 42) Tens of Thousands of Compromised Android Apps Found by Bitdefender Anomaly Detection Technology (Bitdefender) Chinese-speaking phishing ring behind latest fake fee scam targeting Middle East; another campaign exposed (Group-IB) Adversaries increasingly using vendor and contractor accounts to infiltrate networks (Cisco Talos) Cyclops Ransomware and Stealer Combo: Exploring a Dual Threat (Uptycs) U.S. Measures in Response to the Crisis in Sudan (US Department of State) Microsoft's Outlook.com is down again on mobile, web (BleepingComputer) Kremlin: fake Putin address broadcast on Russian radio stations after 'hack' (Reuters) Deep fake video of Putin declaring martial law is broadcast in parts of Russia (Semafor) Peskov called "Putin's emergency appeal" shown on some TV networks as a hack (TASS) Proceedings of the 2023 U.S.-Ukraine Cyber Dialogue (US Department of State)

Anonymous Sudan responds to remarks from the US Secretary of State by targeting Lyft and American hospitals. NSA releases an advisory on North Korean spearphishing campaigns. The US government's Moonlighter satellite will test cybersecurity in orbit. "Operation Triangulation" offers an occasion for Russia to move closer to IT independence. The SEC drops cases over improper access to Adjudication Memoranda. Executives and board members are easy targets for threat actors trolling for sensitive information. Rick Howard targets Zero Trust. The FBI's Deputy Assistant Director for Cyber Cynthia Kaiser shares trends from the IC3 Annual Report. And KillNet seems to say it's disbanding…or is it? For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/107 Selected reading. U.S. Measures in Response to the Crisis in Sudan (US Department of State) U.S., ROK Agencies Alert: DPRK Cyber Actors Impersonating Targets to Collect Intelligence (US National Security Agency) North Korea Using Social Engineering to Enable Hacking of Think Tanks, Academia, and Media (Joint Cybersecurity Advisory) CISA Adds One Known Exploited Vulnerability to Catalog (Cybersecurity and Infrastructure Security Agency) CVE-2023-34362 Detail (National Institute of Standards and Technology) Zero-Day Vulnerability in MOVEit Transfer Exploited for Data Theft (Mandiant) SpaceX launch sends upgraded solar arrays to International Space Station (Spaceflight Now) Moonlighter Fact Sheet (The Aerospace Corporation) Uncle Sam wants DEF CON hackers to pwn this Moonlighter satellite in space (The Register) Russia wants 2 million phones with home-grown Aurora OS for use by officials (The Record) Russia accuses U.S. of hacking thousands of iPhones (Axios) Operation Triangulation: iOS devices targeted with previously unknown malware (Kaspersky) Operation Triangulation: Mysterious attack on iPhones (ComputerBild) Killnet hacktivists say they're disbanding (Cybernews) Second Commission Statement Relating to Certain Administrative Adjudications (US Securities and Exchange Commission) Ponemon: Understanding the Serious Risks to Executives' Personal Cybersecurity & Digital Lives (BlackCloak)

Siberin Günlüğü'nde bu hafta Tuğba Öztürk, abisinin başına gelen dolandırıcılık olayını ve Anonymous Sudan adlı hacktivist grubun Scandinavian Airlines (SAS)'tan 3 milyon dolar fidye talep etmesini ele alıyor. Keyifli dinlemeler

On this week's show Patrick Gray and Adam Boileau discuss the week's security news. They cover: China's lolbin-powered intrusions into critical infrastructure Trend Micro backs BlackBerry's Cuba call Anonymous Sudan shakes down Scandanavian Airlines Iranian opposition party MEK publishes gargantuan leak Much, much more This week's show is brought to you by Kubernetes security company KSOC. Jimmy Mesta is this week's sponsor guest and he joins us to talk about the big security challenges in Kubernetes. Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes Volt Typhoon targets US critical infrastructure with living-off-the-land techniques | Microsoft Security Blog (1) New Messages! U.S. warns China could hack infrastructure, including pipelines, rail systems | Reuters Factbox: What is Volt Typhoon, the alleged China-backed hacking group? | Reuters Chinese Malware Hits Systems on Guam. Is Taiwan the Real Target? - The New York Times COSMICENERGY: New OT Malware Possibly Related To Russian Emergency Response Exercises | Mandiant Void Rabisu's Use of RomCom Backdoor Shows a Growing Shift in Threat Actors' Goals Hacker group Anonymous Sudan demands $3 million from Scandinavian Airlines Iranian dissidents take over high-security servers of regime presidency | Iran-linked hackers Agrius deploying new ransomware against Israeli orgs Exclusive: Chinese hackers attacked Kenyan government as debt strains grew | Reuters Risky Biz News: PyPI to enforce 2FA, reduce stored IP addresses NSO spyware used in Armenia-Azerbaijan conflict, report finds Mercenary mayhem: A technical analysis of Intellexa's PREDATOR spyware SMS pumping fraud: take care how you configure MFA - TechHQ Full Disclosure: Printerlogic multiple vulnerabilities Barracuda Networks issue added to CISA vulnerability list Barracuda patches actively exploited zero-day vulnerability in email gateways | Cybersecurity Dive Developing: RaidForums users db leaked Phishing Domains Tanked After Meta Sued Freenom – Krebs on Security Broad coalition of advocacy groups urges Slack to protect users' messages from eavesdropping | CyberScoop

On this week's show Patrick Gray and Adam Boileau discuss the week's security news. They cover: China's lolbin-powered intrusions into critical infrastructure Trend Micro backs BlackBerry's Cuba call Anonymous Sudan shakes down Scandanavian Airlines Iranian opposition party MEK publishes gargantuan leak Much, much more This week's show is brought to you by Kubernetes security company KSOC. Jimmy Mesta is this week's sponsor guest and he joins us to talk about the big security challenges in Kubernetes. Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes Volt Typhoon targets US critical infrastructure with living-off-the-land techniques | Microsoft Security Blog (1) New Messages! U.S. warns China could hack infrastructure, including pipelines, rail systems | Reuters Factbox: What is Volt Typhoon, the alleged China-backed hacking group? | Reuters Chinese Malware Hits Systems on Guam. Is Taiwan the Real Target? - The New York Times COSMICENERGY: New OT Malware Possibly Related To Russian Emergency Response Exercises | Mandiant Void Rabisu's Use of RomCom Backdoor Shows a Growing Shift in Threat Actors' Goals Hacker group Anonymous Sudan demands $3 million from Scandinavian Airlines Iranian dissidents take over high-security servers of regime presidency | Iran-linked hackers Agrius deploying new ransomware against Israeli orgs Exclusive: Chinese hackers attacked Kenyan government as debt strains grew | Reuters Risky Biz News: PyPI to enforce 2FA, reduce stored IP addresses NSO spyware used in Armenia-Azerbaijan conflict, report finds Mercenary mayhem: A technical analysis of Intellexa's PREDATOR spyware SMS pumping fraud: take care how you configure MFA - TechHQ Full Disclosure: Printerlogic multiple vulnerabilities Barracuda Networks issue added to CISA vulnerability list Barracuda patches actively exploited zero-day vulnerability in email gateways | Cybersecurity Dive Developing: RaidForums users db leaked Phishing Domains Tanked After Meta Sued Freenom – Krebs on Security Broad coalition of advocacy groups urges Slack to protect users' messages from eavesdropping | CyberScoop

On this week's show Patrick Gray and Adam Boileau discuss the week's security news. They cover: Wazawaka charged, sanctioned PlugwalkJoe extradited, pleads guilty BlackBerry thinks Cuba ransomware is a front for Russian intelligence Anonymous Sudan pops up in Israel Microsoft's Outlook patch fail Much, much more This week's show is brought to you by Bloodhound Enterprise. Andy Robbins is this week's sponsor guest. He talks about how graph theory could help us to uncover more lolbins. Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes Alleged Babuk ransomware gang leader ‘Wazawaka' indicted, sanctioned by US Who is the Network Access Broker ‘Wazawaka?' – Krebs on Security British man involved in Twitter hack extradited to US, pleads guilty to numerous cybercrimes Cybercriminals who targeted Ukraine are actually Russian government hackers, researchers say | TechCrunch Slapdash attempt to hack rocket sirens may be cause for serious alarm about Iran | The Times of Israel Twitter's Encrypted DMs Are Deeply Inferior to Signal and WhatsApp | WIRED Twitter under fire for restricting content before Turkish presidential election - CBS News Three opposition media outlets hit by cyber attack Patrick Gray on Twitter: "https://t.co/n5b7wPjI6Y https://t.co/UmDbHbhEcS" / Twitter (1) Patrick Gray on Twitter: "Switched to a domain validated username at the other place. Very easy. https://t.co/U46zABPnJl" / Twitter Emerging ransomware group quickly hits 4 critical infrastructure providers | Cybersecurity Dive A ransomware source code leak spawned at least 10 ‘Babuk' imitators, researchers say Philadelphia Inquirer unable to go to print due to ‘cyber incident' Hackers attempt to extort Dragos and its executives in suspected ransomware attempt | CyberScoop Dallas says it 'will likely take weeks to get back to full functionality' after ransomware attack Swiss tech giant ABB confirms ‘IT security incident' CISA: Bl00dy Ransomware Gang using printer vulnerability to attack schools Capita says responding to ransomware attack will cost up to £20 million National Gallery of Canada recovering from ransomware incident Yum Brands faces class action suits from employees after ransomware attack | Cybersecurity Dive Knocking down Hive: How the FBI ran its own ransomware decryption operation Leak of MSI UEFI signing keys stokes fears of “doomsday” supply chain attack | Ars Technica FBI nukes Russian Snake data theft malware with self-destruct command The FBI's New Malware Eradication Service Is on Thin Legal Ice Cisco warns of new ‘Greatness' phishing-as-a-service tool seen in the wild VMware's ‘target-rich environment' is growing more volatile, CrowdStrike warns | Cybersecurity Dive UK's National Crime Agency wins major legal challenge over Encrochat hack Inside the Italian Mafia's Encrypted Phone of Choice Microsoft releases fix for patched Outlook issue exploited by Russian hackers Scammer Made Thousands Selling 'Leaked' Frank Ocean Tracks That Were Fake, AI-Generated

On this week's show Patrick Gray and Adam Boileau discuss the week's security news. They cover: Wazawaka charged, sanctioned PlugwalkJoe extradited, pleads guilty BlackBerry thinks Cuba ransomware is a front for Russian intelligence Anonymous Sudan pops up in Israel Microsoft's Outlook patch fail Much, much more This week's show is brought to you by Bloodhound Enterprise. Andy Robbins is this week's sponsor guest. He talks about how graph theory could help us to uncover more lolbins. Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes Alleged Babuk ransomware gang leader ‘Wazawaka' indicted, sanctioned by US Who is the Network Access Broker ‘Wazawaka?' – Krebs on Security British man involved in Twitter hack extradited to US, pleads guilty to numerous cybercrimes Cybercriminals who targeted Ukraine are actually Russian government hackers, researchers say | TechCrunch Slapdash attempt to hack rocket sirens may be cause for serious alarm about Iran | The Times of Israel Twitter's Encrypted DMs Are Deeply Inferior to Signal and WhatsApp | WIRED Twitter under fire for restricting content before Turkish presidential election - CBS News Three opposition media outlets hit by cyber attack Patrick Gray on Twitter: "https://t.co/n5b7wPjI6Y https://t.co/UmDbHbhEcS" / Twitter (1) Patrick Gray on Twitter: "Switched to a domain validated username at the other place. Very easy. https://t.co/U46zABPnJl" / Twitter Emerging ransomware group quickly hits 4 critical infrastructure providers | Cybersecurity Dive A ransomware source code leak spawned at least 10 ‘Babuk' imitators, researchers say Philadelphia Inquirer unable to go to print due to ‘cyber incident' Hackers attempt to extort Dragos and its executives in suspected ransomware attempt | CyberScoop Dallas says it 'will likely take weeks to get back to full functionality' after ransomware attack Swiss tech giant ABB confirms ‘IT security incident' CISA: Bl00dy Ransomware Gang using printer vulnerability to attack schools Capita says responding to ransomware attack will cost up to £20 million National Gallery of Canada recovering from ransomware incident Yum Brands faces class action suits from employees after ransomware attack | Cybersecurity Dive Knocking down Hive: How the FBI ran its own ransomware decryption operation Leak of MSI UEFI signing keys stokes fears of “doomsday” supply chain attack | Ars Technica FBI nukes Russian Snake data theft malware with self-destruct command The FBI's New Malware Eradication Service Is on Thin Legal Ice Cisco warns of new ‘Greatness' phishing-as-a-service tool seen in the wild VMware's ‘target-rich environment' is growing more volatile, CrowdStrike warns | Cybersecurity Dive UK's National Crime Agency wins major legal challenge over Encrochat hack Inside the Italian Mafia's Encrypted Phone of Choice Microsoft releases fix for patched Outlook issue exploited by Russian hackers Scammer Made Thousands Selling 'Leaked' Frank Ocean Tracks That Were Fake, AI-Generated

Discord sees a third-party data breach. Black Basta conducts a ransomware attack against technology company ABB. Intrusion Truth returns to dox APT41. Anonymous Sudan looks like a Russian front operation. Attribution and motivation of "RedStinger" remain murky. CISA summarizes Russian cyber offensives. Remote code execution exploits Ruckus in the wild. Our guest is Dave Russell from Veeam with insights on data protection. Matt O'Neill from the US Secret Service on their efforts to thwart email compromise and romance scams. And espionage by way of YouTube comments. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/93 Selected reading. Discord discloses data breach after support agent got hacked (Bleeping Computer) Discord suffered a data after third-party support agent was hacked (Security Affairs) Multinational tech firm ABB hit by Black Basta ransomware attack (Bleeping Computer) Breaking: ABB confirms cyberattack; work underway to restore operations (ET CISO) Black Basta conducts ransomware attack against Swiss technology company ABB (The CyberWire) They dox Chinese hackers. Now, they're back. (Washington Post) What's Cracking at the Kerui Cracking Academy? (Intrusion Truth) Posing as Islamists, Russian Hackers Take Aim at Sweden (Bloomberg) Anonymous Sudan: Threat Intelligence Report (TrueSec) Uncovering RedStinger - Undetected APT cyber operations in Eastern Europe since 2020 (Malwarebytes) Russian ‘Red Stealer' cyberattacks target breakaway territories in Ukraine (Cybernews) Russia Cyber Threat Overview and Advisories (CISA) Known Exploited Vulnerabilities Catalog (CISA) CISA Adds Seven Known Exploited Vulnerabilities to Catalog (CISA) CISA warns of critical Ruckus bug used to infect Wi-Fi access points (Bleeping Computer) Security Bulletins (Ruckus) ROK union leaders charged with spying for North Korea in ‘movie-like' scheme (NK News)

Google targets CryptBot malware infrastructure. FIN7 attacked Veeam servers to steal credentials. Ransomware-as-a-service offering threatens Linux systems. Evasive Panda targets NGOs in China. Anonymous Sudan is active against targets in Israel. Russian ransomware operations aim at disrupting supply chains into Ukraine. Our guest is Stuart McClure, CEO of Qwiet AI. Microsoft's Ann Johnson stops by with her take on the RSA conference. And bots want new kicks. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/81 Selected reading. Continuing our work to hold cybercriminal ecosystems accountable (Google) Google Disrupts Massive CryptBot Malware Operation (Decipher) Google disrupts malware that steals sensitive data from Chrome users (TechCrunch)  FIN7 Hackers Caught Exploiting Recent Veeam Vulnerability (SecurityWeek) RTM Locker Ransomware as a Service (RaaS) Now on Linux (Uptycs)  Evasive Panda APT group delivers malware via updates for popular Chinese software (WeLiveSecurity)  NSA sees 'significant' Russian intel gathering on European, U.S. supply chain entities (CyberScoop)  Ukraine at D+427: Russian cyberattacks and disinformation before Ukraine's spring offensive. (CyberWire) Releasing leak suspect a national security risk, feds say (AP NEWS) Pentagon leak suspect may still have access to classified info, court filings allege (the Guardian)  Netacea Quarterly Index: Top 5 Scalper Bot Targets of Q1 2023 (Netacea)

Har Anonymous Sudan gang i endnu et storstilet angreb? Vi ved det ikke, men vi spørger Steffen Friis fra Vipre Security. Nu er der gang i busreklamer med bare bryster igen. Vi tjekker op på, hvor folket står. Der er ny strategi til pandaerne i Københavns Zoo. TikTok påstår, at man kan åbne en bil fra en længere rækkevidde end normalt, hvis man tager billåsen op til hovedet. Jan ringer ind og påstår, at bekræftigelse er det mest brugte ord i Danmark, som ikke er i ordbogen. Værter: Martin Plauborg & Sebastian Lund. Redaktør: Oliver Bøttner. Reporter: Simon De Assis. Medvirkende: Steffen Friis, Vipre Security.

Efter koranbränningen vid Turkiets ambassad blir svenska hemsidor attackerade av gruppen Anonymous Sudan. Men ryska intressen verkar ligga bakom. I februari 2023 släcks hemsidor som tillhör stora svenska företag, myndigheter och institutioner ned. Bland annat drabbas SAS, SVT, flera universitet och sjukhus.Snart står det klart att hackergruppen Anonymous Sudan ligger bakom överbelastningsattackerna.– Min första reaktion var ju "yeah, right", och ganska mycket skepsis till att det här verkligen skulle vara en rörelse från från Sudan, säger IT-säkerhetsexperten Leif Nixon.Misstänka kopplingar till RysslandFöretaget Truesec som jobbar med datasäkerhet lyfter fram en annan aktör bakom Anonymous Sudan, hackergruppen Killnet. En grupp som är tydligt pro-rysk, och som har genomfört flera attacker mot länder som stödjer Ukraina.– Det följer väl ett ganska tydligt ryskt modus operandi på så sätt att att den ryska underrättelsetjänsten länge har jobbat med med aggressiva cyberoperationer på många olika sätt, säger Per-Erik Nilsson, forskare på Totalförsvarets forskningsinstitut, FOI.Mycket pekar alltså mot att gruppen Anonymous Sudan är en del av något större än protesterna mot koranbränningarna.Medverkande:Therese Naess, chef för Nationellt cybersäkerhetscenter.Leif Nixon, IT-säkerhetsexpert.Per-Erik Nilsson, forskare på Totalförsvarets forskningsinstitut, FOI. Anton Linné, cybersäkerhetsexpert.Programledare: Bo Torbjörn Ek och Sara SundbergProducent: Karin HållstenTekniker: Mats JonssonLjud från: Sveriges Radio, Youtube, The Guardian, Telegram

On this week's show Patrick Gray and Adam Boileau discuss the week's security news, including: A look at LastPass's intrusion post mortem A very stable genius decided to ransomware the US Marshals Service Why Signal's complaints about UK's Online Safety Act are bad faith Much, much more… This week's show is brought to you by Tines, the no-code automation platform. Its co-founder and CEO Eoin Hinchy joins the show in the sponsor slot, and you can check out a Tines demo we recorded with Eoin on YouTube. Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes Additional details of the attack - LastPass Support LastPass says employee's home computer was hacked and corporate vault taken | Ars Technica 'Major' U.S. Marshals Service hack compromises sensitive info DISH tells SEC that ransomware attack caused outages; personal info may have been stolen - The Record from Recorded Future News DISH says ‘system issue' affecting internal servers, phone systems - The Record from Recorded Future News Danish hospitals hit by cyberattack from ‘Anonymous Sudan' - The Record from Recorded Future News 'A year of cyberwar' with Russia: An inside look from a top Ukrainian cybersecurity official | CyberScoop Russia blames hackers as commercial radio stations broadcast fake air strike warnings - The Record from Recorded Future News Dutch intelligence: Many cyberattacks by Russia are not yet public knowledge - The Record from Recorded Future News Signal CEO: We “1,000% won't participate” in UK law to weaken encryption | Ars Technica White House cybersecurity strategy to force large companies to make systems secure by design | CyberScoop Popular IBM file transfer tool vulnerable to cyberattacks, CISA says - The Record from Recorded Future News A world of hurt for Fortinet and ManageEngine after users fail to install patches | Ars Technica Gigamon Exits NDR Market, Sells ThreatInsight Business to Fortinet Cisco ClamAV anti-malware scanner vulnerable to serious security flaw | The Daily Swig How I Broke Into a Bank Account With an AI-Generated Voice Hackers use ChatGPT phishing websites to infect users with malware - The Record from Recorded Future News Venture capital financing of cyber companies slid to $18.5 billion in 2022 - The Record from Recorded Future News Tines Automation Platform - YouTube

“Anonymous Sudan” blæste til kamp mod Danmark og varslede en bølge hackerangreb mod danske hjemmesider, blandt andet hospitaler i region Hovedstaden.I virkeligheden tyder meget på, at det er russerne, der står bag, lyder det nu fra flere sider. Søren Liborius stemmer i koret, og han arbejder indgående med russisk desinformation.Han mener, at nogle medier alt for hurtigt hopper med på de russiske kampagner uden at faktatjekke historierne.Gæst:Søren Liborius, chefkonsulent i EU's fælles udenrigstjeneste East StratCom Task ForceVært:Niels Frederik RickersTilrettelægger:Toke GrippingRedaktør:Mille Ørsted

[Referências do Episódio] - Investigating the PlugX Trojan Disguised as a Legitimate Windows Debugger Tool - https://www.trendmicro.com/en_us/research/23/b/investigating-the-plugx-trojan-disguised-as-a-legitimate-windows.html - Ukraine says Russian hackers backdoored govt websites in 2021 - https://www.bleepingcomputer.com/news/security/ukraine-says-russian-hackers-backdoored-govt-websites-in-2021/ - Post do Marcus Murray sobre o takedown dos servidores do Anonymous Sudan - https://www.linkedin.com/posts/marcusmurrayse_threatintel-ddos-falseflag-activity-7034511549331353601-tkvZ/ - Anonymous Sudan: Threat Intelligence Report - https://files.truesec.com/hubfs/Reports/Anonymous%20Sudan%20-%20Publish%201.2%20-%20a%20Truesec%20Report.pdf [Ficha técnica] Apresentação: Carlos Cabral Roteiro: Carlos Cabral e Daniel Venzi Edição de áudio: Paulo Arruzzo Narração de encerramento: Bianca Garcia Projeto gráfico: Julian Prieto

Fanny Wijk pratar om ett nedlagt förslag om husbyggen, även kallad “en socialistisk småhusslakt” av moderaten Hampus Magnusson. Linnea Rönnqvist pratar Anonymous Sudan – som inte verkar vara så anonyma längre.Dessutom kommer influencern och proffsryttaren Carl Hedin och pratar om Göteborg horse show och att inte veta hur många hästar man egentligen äger.Och så blir det fredagsquiz som vanligt! Hosted on Acast. See acast.com/privacy for more information.

On this week's show Patrick Gray and Adam Boileau discuss the week's security news, including: Why Twitter had to kill SMS 2FA A look at Meta's new verification service How a ransomware attack disrupted the semiconductor supply chain Why Anonymous Sudan is probably a Russian info op Microsoft mixes up public and private keys in Azure B2C (for real) Much, much more This week's show is brought to you by Proofpoint. Its Executive Vice President of Cybersecurity Strategy Ryan Kalember joins the show in the sponsor slot. Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes How to Protect Yourself From Twitter's 2FA Crackdown | WIRED Elon Musk Says Twitter Lost $60mn a Year Because 390 Telcos Used Bot Accounts to Pump A2P SMS | Commsrisk Twitter's Two-Factor Authentication Change ‘Doesn't Make Sense' | WIRED Elon Musk on Twitter: "@MKBHD Twitter is getting scammed by phone companies for $60M/year of fake 2FA SMS messages" / Twitter rat king

Græskarl er død og skal begraves - spørgsmålet er hvor? Danmark er blevet hacket af en gruppe, der kalder sig Anonymous Sudan. Vi forsøger at finde ud af, om gruppen har noget med Sudan at gøre, og om Danmark er i sikkerhed fremover. Steffen Friis fra Vipre Security hjælper os med at blive klogere. Adrian Lloyd Hughes har opført sig specielt i 'Klog på sprog'. Claus Hjort Frederiksen er blevet tiltalt. Vi slutter som altid med en lytterpåstand. Denne gang fra Freja, der påstår, at rygere ikke er dyrere for samfundet end ikke-rygere. Værter: Martin Plauborg & Sebastian Lund. Producer: Oliver Bøttner. Reporter: Simon De Assis. Medvirkende: Steffen Friis, IT-ekspert ved Vipre Security Jakob Kjellberg, professor i sundhedsøkonomi ved VIVE

David Druid undrar om han får gå på "handikapptoan"! Linnea Wikblad har pajat dyra glas! Vi pratar med en av Sveriges främsta fotografer, Alexander Mahmoud om att "ta kort". Babs Drougge på P3 Nyheter rapporterar om de kaosiga festerna hos Polisen och hackergruppen som kallar sig Anonymous Sudan. Får Linnea Wikblad fira sin födelsedag trots att den krockar med årsdagen för Rysslands invasion av Ukraina? Dessutom: David Druid har haft en riktig killdag med sin son! Programledare: David Druid och Linnea Wikblad

Kalle Berg kommer med det glädjande budet om att vårens första trana har siktats vid Hornborgarsjön. Fanny Wijk rapporterar kring det senaste gällande Sverige och Finlands stormiga NATO-relation. Dessutom blir det: 25 år i parkeringskö för ö-bor, Krossad konst, nedkyld alligator i damm, Anonymous Sudan och får man kalla ett barn för tjock i barnlitteraturen?Dagens gäst: Anders Eriksson, chef för kalla-fall gruppen i region väst. Han pratar om mordet i Stuvkällaren och hur det är att jobba med de mest svårlösta brotten. Hosted on Acast. See acast.com/privacy for more information.

Babs Drougge och Matilda Rånge på P3 Nyheter förklarar morgonens stora nyheter, alltid tillsammans med programledarna för Morgonpasset i P3: Linnéa Wikblad och David Druid. Svenska myndigheter och företag har återigen blivit utsatta för it-attacker, och precis som förra gången har en hackergrupp som kallar sig Anonymous Sudan tagit på sig attacken. Men cybersäkerhetsexperten Marcus Murray tror snarare att det rör sig om ryska hackare som vill påverka svenska intressen.Sen pratar vi om att Polisen har börjat kika på ett alkoholförbud i sina lokaler, efter en rad urspårade fester. Enligt en granskning av Expressen präglas festerna av slagsmål, sexuella trakasserier och spyor.

Under februari 2023 går ett antal svenska siter ner till följd av en riktad överbelastningsattack. hackergruppen Anonymous Sudan tar på sig attacken och skriver att detta beror på de koranbrännningarna som skett. Är det verkligen hela förklaringen eller är Sverige en bricka i ett större spel? Vissa experter menar att Ryssland ligger bakom detta för att skapa instabilitet i landet eftersom Sverige ansökt om NATO-medlemskap. Vad är en överbelastningsattack (DDoS) och hur kan man förhindra en sådan? IT-säkerhetspodden går igenom hela händelsekedjan samt tittar på attacken med mer teknisk blick också.   

Under den senaste veckan har svenska organisationer plågats av överbelastningsattacker. Webbplatser tillhörande allt från regioner och lärosäten till transportföretag och mediaföretag har gjorts oåtkomliga. Gruppen som ligger bakom attackerna kallar sig Anonymous Sudan, och i meddelanden på Telegram varnar gruppen för vad de tänker ställa till med i det svenska samhället. Frågan är bara hur allvarliga dessa attacker är? I veckans podd hävdar Nikka och Peter att attackerna inte alls är så farliga som Anonymous Sudan vill ge sken av. Nikka ifrågasätter därtill ifall Anonymous Sudan överhuvudtaget har några kopplingar till Sudan. Se fullständiga shownotes på https://go.nikkasystems.com/podd185.

Welcome to Cyber Briefing, a short newsletter that informs you about the latest cybersecurity advisories, alerts and incidents every weekday. First time seeing this? Please subscribe. Hello World! It's February 16, 2023. Welcome to a new edition of Cyber Briefing by CyberMaterial. Let's review the latest cybersecurity alerts, advisories and incidents Cyber Alerts Recently patched IBM Aspera Faspex vulnerability exploited in the wild Experts warn of 'Beep', a new evasive malware that can fly under the radar Emsisoft says hackers are spoofing its certs to breach networks Hackers start using Havoc post-exploitation framework in attacks GitHub Copilot update stops AI model from revealing secrets Cyber Incidents City of Oakland issued a local state of emergency after recent ransomware attack Sweden's main public TV broadcaster disrupted by cyberattacks Scandinavian Airlines hit by cyberattack, ‘Anonymous Sudan' claims responsibility

Kalle Berg pratar om hackernätverket Anonymous Sudan som tagit på sig gårdagens överbelastningsattacker mot olika mindre flygplatser runt om i Sverige. Men är de verkligen från Sudan? Experter menar att bevisen pekar mot Ryssland. Fanny Wijk reder ut ett infekterat bråk i en församling i Ucklum som bland annat involverar uppblåsbara snögubbar, och som i veckan ledde till att prästen där lämnade sin anställning.Och så pratar vi skidskytte-VM med sportreporter Emma Tonnvik. Några svenska medaljer har det blivit, trots en i övrigt massiv norsk dominans. Hosted on Acast. See acast.com/privacy for more information.