Podcasts about apt10

Today we talk about Chegg and the current events that pertain to their security posture (the FTC had to step in), a China backed APT10 group, and a Dropbox breach that entailed 130 GitHub repos of compromised source code. / Check Out My Links Below // Twitch: https://www.twitch.tv/officialwillip Substack: https://hackerhub.substack.com/ LinkedIn: https://www.linkedin.com/in/w-parks/ Twitter: https://twitter.com/OfficialWilliP YouTube: https://www.youtube.com/@officialwillip / Disclaimer //Much of the information on or related to OfficialWilliP's social media platforms (Twitch, Twitter, YouTube. etc.) is transcribed/presented as part of his own legal learning experiences. Everything that is showcased on these platforms is according to legal guidelines and should be considered for entertainment purposes only. Methods used or showcased on these platforms may be deemed malicious and illegal if repeated on assets you do not personally own. I do not make any warranties about the completeness, correctness, reliability, and accuracy of this information. Any action you take upon the information on these platforms is strictly at your own risk and OfficialWilliP will not be held liable for any losses, damages, or otherwise legal action taken in connection to the use of this information.

ShadowTalk host Nicole alongside guests Ivan give you the latest in threat intelligence. This week they cover: -APT10 leveraging antivirus to deploy LODEINFO malware -New Azov data wiper attempting to frame security researchers -New Emotet malicious spam campaign Get this week's intelligence summary at: https://resources.digitalshadows.com/weekly-intelligence-summary/weekly-intelligence-summary-04-nov ***Resources from this week's podcast*** Q3 2022 Vulnerability Roundup https://www.digitalshadows.com/blog-and-research/q3-2022-vulnerability-roundup/ 2023 Cyber Threat Predictions https://www.digitalshadows.com/blog-and-research/2023-cyber-threat-predictions/ Subscribe to our threat intelligence email: https://info.digitalshadows.com/SubscribetoEmail-Podcast_Reg.html Also, don't forget to reach out to - shadowtalk@digitalshadows.com - if you have any questions, comments, or suggestions for the next episodes.

A daily look at the relevant information security news from overnight.Episode 229 - 29 April 2022REvil revived - https://www.techtarget.com/searchsecurity/news/252516434/REvil-ransomware-attacks-resume-but-operators-are-unknownSynology warning - https://www.bleepingcomputer.com/news/security/synology-warns-of-critical-netatalk-bugs-in-multiple-products/Phishing RedLine - https://www.zdnet.com/article/this-phishing-campaign-delivers-malware-that-steals-your-passwords-and-chat-logs/Dos Ukraine - https://www.bleepingcomputer.com/news/security/ukraine-targeted-by-ddos-attacks-from-compromised-wordpress-sites/Three Frogs- https://threatpost.com/apt-id-3-separate-actors/179435/

There's a maneuver lull in Russia's hybrid war against Ukraine, but fire and cyber ops continue. The US provides cyber assistance to Ukraine. The Cicada call of Stone Panda. Phony e-commerce sites seek to harvest banking credentials. CISA offers some advice and some guidance. Hydra Market sanctioned. Awais Rashid from Bristol University on anonymous communication systems. Our guest is Armaan Mahbod of DTEX Systems with a look at supermalicious insiders. And the most popular password is... For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/11/66 Selected reading. Russian military ‘weeks' from being ready for new push as war takes its toll (The Telegraph) Russia's failure to take down Kyiv was a defeat for the ages (AP NEWS) U.S. Cyber Command providing cyber expertise and intelligence in Ukraine's fight against Russia (FedScoop)  Cyber Command chief: U.S. has 'stepped up' to protect Ukraine's networks (The Record by Recorded Future)  How Ukraine has defended itself against cyberattacks – lessons for the US (FIU News)  Cicada: Chinese APT Group Widens Targeting in Recent Espionage Activity (Symantec)  Fake e‑shops on the prowl for banking credentials using Android malware (WeLiveSecurity)  CISA adds Spring4Shell vulnerability, Apple zero-days to exploited catalog (The Record by Recorded Future)  LifePoint Informatics Patient Portal (CISA)  Rockwell Automation ISaGRAF (CISA)  Johnson Controls Metasys (CISA)  Philips Vue PACS (Update A) (CISA) Treasury Sanctions Russia-Based Hydra, World's Largest Darknet Market, and Ransomware-Enabling Virtual Currency Exchange Garantex (U.S. Department of the Treasury) Most Common Passwords 2022 - Is Yours on the List? (CyberNews)

[Referências do Episódio] - Nova campanha do APT10 - https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/cicada-apt10-china-ngo-government-attacks - Tentativas de exploração da Spring4Shell detectadas pela Microsoft -https://www.bleepingcomputer.com/news/security/microsoft-detects-spring4shell-attacks-across-its-cloud-services/ - Nova versão do crypter 3LOSH ganha popularidade - https://blog.talosintelligence.com/2022/04/asyncrat-3losh-update.html - Ataque recente do Armagedon na Ucrânia - https://cert.gov.ua/article/39138 - Fechamento do Hydra Market - https://www.wired.com/story/hydra-market-shutdown/ [Ficha técnica] Roteiro e apresentação: Carlos Cabral Edição de áudio: Paulo Arruzzo Narração de encerramento: Bianca Garcia Projeto gráfico: Julian Prieto

On this week's show Patrick Gray and Adam Boileau discuss the week's security news, including: Ukraine sanctions may lead to Russia going “cyber feral” Brian Krebs links Red Cross breach to Iranian actor APT10 uses cred stuffing as misdirection Report: Global logistics behemoth Expeditors ransomwared NFT thefts still hilarious Inside the epic KlaySwap hack Much, much more In this week's sponsor interview Thinkst Canary's Marco Slaviero talks about some work they've done on introducing a “Safety Net” against AWS token enumeration edge cases. That's a very interesting interview. Links to everything that we discussed are below and you can follow Patrick or Adam on Twitter if that's your thing. Show notes White House attributes Ukraine DDoS incidents to Russia's GRU - CyberScoop U.S. issues blanket warning on potential of destructive Russian hacks Russian hackers have probably penetrated critical Ukraine computer networks, U.S. says - The Washington Post Ukraine dismantles social media bot farm spreading "panic" - The Record by Recorded Future US says Russian hackers breached multiple DOD contractors - The Record by Recorded Future Red Cross blames hack on Zoho vulnerability, suspects APT attack - The Record by Recorded Future Red Cross Hack Linked to Iranian Influence Operation? – Krebs on Security Deep dive into hack against Iranian state TV yields wiper malware, other custom tools VMware Horizon servers are under active exploit by Iranian state hackers | Ars Technica Chinese hackers linked to months-long attack on Taiwanese financial sector - The Record by Recorded Future San Francisco 49ers confirm ransomware attack - The Record by Recorded Future Global logistics giant Expeditors suffers cyberattack, shuts down operations systems - FreightWaves Vodafone Portugal struggles to restore service following cyberattack | Ars Technica The US Crackdown on Spyware Vendors Is Only Beginning People Whose NFTs Were Stolen Are Getting Wildly Different Refunds from OpenSea Scam artists swindle NFTs worth 'millions' in OpenSea phishing attack | ZDNet KlaySwap crypto users lose funds after BGP hijack - The Record by Recorded Future Jaw-dropping Coinbase security bug allowed users to steal unlimited cryptocurrency | The Daily Swig For signs of cryptocurrency laundering, look closely at Moscow firms, report says Srsly Risky Biz: Thursday February 17 More data on Canadian 'Freedom Convoy' donors leaked -website | Reuters Stream Episode 179: Truck Yeah, Canada feat Dan Boeckner by QAnon Anonymous | Listen online for free on SoundCloud FBI sees increase in use of virtual meeting platforms for BEC scams - The Record by Recorded Future This Is the ‘Hacking' Investigation Into Journalist Who Clicked ‘View Source' on Government Website Bhima Koregaon case: New report finds activist Rona Wilson was targeted by hackers linked to cyber espionage - The Washington Post Thousands of npm accounts use email addresses with expired domains - The Record by Recorded Future EARN IT Act gets no changes to encryption language in Senate committee SEC's breach notification proposal one step closer to a final vote In touch with Reality Winner - The Record by Recorded Future A “Safety Net” for AWS Canarytokens

[Referências do Episódio] - Relatório Tempest: 5 ameaças que pautaram 2021 e o que esperar de 2022 - https://cloud.mkt.tempest.com.br/relatorio-ameacas-2021-2022 - Pesquisa do IDC sobre gastos em segurança no Brasil - https://www.zdnet.com/article/security-spend-to-reach-1-billion-in-brazil-in-2022/?utm_source=pocket_mylist - Campanha do Xenomorph - https://www.threatfabric.com/blogs/xenomorph-a-newly-hatched-banking-trojan.html - Uso do Zerologon pelos operadores da Qbot - https://thedfirreport.com/2022/02/21/qbot-and-zerologon-lead-to-full-domain-compromise/ - Campanha do APT10 - https://medium.com/cycraft/supply-chain-attack-targeting-taiwan-financial-sector-bae2f0962934 - Sobre o APT10 - https://malpedia.caad.fkie.fraunhofer.de/actor/stone_panda [Ficha técnica] Roteiro e apresentação: Carlos Cabral Edição de áudio: Paulo Arruzzo Narração de encerramento: Bianca Garcia Projeto gráfico: Julian Prieto

Russia escalates its hybrid war against Ukraine, with cyber implications for the rest of the world. Xenomorph banking Trojan hits European Android users. APT10's months-long espionage campaign against Taiwan's banks. Hive ransomware's flawed encryption is good news. Trickbot's place in the C2C market. Joe Carrigan shares the latest evolution of business email compromise. John Pescatore's Mr. Security Answer Person returns. And there's a right way and a wrong way to keep your teen offline. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/11/35

Cuộc triển lãm nghệ thuật đương đại Á  Châu-Thái Bình Dương Triennial tại Queensland Art Gallery & Gallery of Modern Art ở Brisbane lần thứ 10 qui tụ hàng trăm tác phẩm của 150 nghệ sĩ từ khắp nơi trong khu vực nhưng không nghệ sĩ ngoại quốc nào có thể đến đây do biên giới bị đóng vì COVID.

For nearly 30 years, the Asia Pacific Triennial of Contemporary Art has been a signature exhibition for Brisbane's Gallery of Modern Art/Queensland Art Gallery. This weekend the gallery's celebrating a milestone with the opening of the 10th APT showcasing significant art and culture of the region.

In this episode, Mihai Sora is joined by Ruth McDougall and Ruha Fifita to discuss the 10th Asia Pacific Triennial of Contemporary Art (APT10) showing at the Queensland Art Gallery and Gallery of Modern Art in Brisbane from 4 December. They discuss how Pacific art is a powerful vehicle for building and maintaining connections across communities, the uniquely collaborative nature of Pacific art, and how to reframe art as less of an ‘industry' and more as a meaning-making cultural activity that delivers new learning for artists and their audiences. Mihai Sora is the Project Director of the Australia-Papua New Guinea Network at the Lowy Institute, Ruth McDougall is curator for Pacific art for APT10 and Ruha Fifita is an interdisciplinary artist born and raised in the Kingdom of Tonga, who has exhibited throughout the Pacific and who has curated a number of projects for APT10.See omnystudio.com/listener for privacy information.

In this episode, Mihai Sora is joined by Ruth McDougall and Ruha Fifita to discuss the 10th Asia Pacific Triennial of Contemporary Art (APT10) showing at the Queensland Art Gallery and Gallery of Modern Art in Brisbane from 4 December. They discuss how Pacific art is a powerful vehicle for building and maintaining connections across communities, the uniquely collaborative nature of Pacific art, and how to reframe art as less of an ‘industry' and more as a meaning-making cultural activity that delivers new learning for artists and their audiences. Mihai Sora is the Project Director of the Australia-Papua New Guinea Network at the Lowy Institute, Ruth McDougall is curator for Pacific art for APT10 and Ruha Fifita is an interdisciplinary artist born and raised in the Kingdom of Tonga, who has exhibited throughout the Pacific and who has curated a number of projects for APT10.

Sutthirat Supaparinya lives and works in Chiang Mai, Thailand. Her works encompass a wide variety of mediums such as installation, objects, still and moving images. Through her works, she questions and interprets public information and reveals or question what’s structure affect her/us as a national/global citizen. Her recent projects focus on history and the impact of human activities on other humans and the landscape. Sutthirat seeks to cultivate freedom of expression through her art practice. As a visual artist among the art community in Chiang Mai, she has participated in the founding and operation of CAC – Chiangmai Art Conversation since 2013. She was a director of Asian Culture Station (ACS) in the year 2016-2019 when CAC partnered with the Japan Foundation Asia Center Tokyo to establish the project. CAC aims to promote contemporary art in Chiang Mai while ACS activated Asian culture and its network. Sutthirat earned a BFA in painting from the Faculty of Fine Arts at Chiang Mai University and a postgraduate diploma in Media Arts from Hochschule Fuer Grafik und Buchkunst in Leipzig, Germany. She is a 2005 Imaging Our Mekong media fellowship and a 2010 Asian Cultural Council fellowship at International Studio & Curatorial Program – ISCP in New York City. She was selected to participate in the International Creator Residency Program at the Tokyo Wonder Site Aoyama in 2012, Foundation Künstlerdorf Schöppingen, NRW, Germany in 2013 and Wellington Asia Residency Exchange, New Zealand in 2015. She was nominated for the Prudential Eye Awards 2016 shortlist in ‘Best Emerging Artist Using Digital/Video’, Singapore. Winners of Institut Français for an artist-in-residence at Cité Internationale des Arts, Paris, France in 2018. Museums and galleries that have featured Sutthirat’s work include Tokyo Photographic Art Museum, Hiroshima City Museum of Contemporary Art, Mori Art Museum, Japan, Jim Thompson Art Center, Maiiam Contemporary Art Museum, Gallery Ver, Thailand, Queensland Art Gallery and Sherman Contemporary Art Foundation, Australia, the Solomon R. Guggenheim Museum, USA, Singapore Art Museum and ArtScience Museum, Singapore, Kuandu Museum of Fine Arts, Taiwan, Hong Kong Arts Centre, Hong Kong and Centre for Contemporary Art Ujazdowski Castle, Poland. International festivals and biennials; Koganecho Bazzar 2011 in Yokohama, Yebisu International Festival for Art & Alternative Visions 2012 and 2018, Japan, EVA International [Ireland’s Biennial] in Limerick City, Ireland, 12th Gwangju Biennale, Gwangju, South Korea, Cairo Biennale 13 in Cairo, Egypt and Biennale Jogja Equator #5, Yogyakarta, Indonesia. The highlight of upcoming exhibitions such as After Hope: Videos of Resistance, the video program under #MuseumFromHome and engage with art at a distance policy, the Asian Art Museum, San Francisco, USA [Open from Spring 2021] and The 10th Asia Pacific Triennial of Contemporary Art (APT10), Queensland Art Gallery | Gallery of Modern Art, Brisbane, Queensland, Australia [27 November 2021 – 25 April 2022]. Recently, she is a fellow of the DAAD Artists-in-Berlin Program in 2021, the one-year artist in residence in Berlin, Germany. When Need Moves the Earth, synchronized 3 – channel video, 2014 ©Sutthirat Supaparinya Ten Places in Tokyo, synchronized 10 – channel video, 2016, ©Sutthirat Supaparinya These are the books that she is reading which were mentioned in the interview - Here are the links to books that Sutthirat Supaparinya is reading: Most of them are old books and a rare find. [1] https://www.se-ed.com/product/Pirates-of-Tarutao-The.aspx?no=9789748904696&nomobile=true [2] เสียงแผ่นดิน และอ้อยในปากช้าง [3] https://m.se-ed.com/Product/Detail/2229090006237 [4] เส้นทางยุคศรีอาริยะ บันทึกกบฏ

On this week’s show Patrick and Mark Piper discuss the week’s security news, including: UK unveils Cyber Force US passes surprisingly sane IoT security law Symantec drops some APT10 research MobileIron bugs getting a decent workout courtesy of state-backed attackers Much, much more… This week’s show is brought to you by ExtraHop Networks. Its VP of Security, Matt Cauthorn, joins the show this week to talk about how we might fare – technology wise – as COVID-19 cases spiral out of control in some parts of the world. With most of the heavy lifting on accelerated cloud adoption and work-from-home already done, Matt thinks the IT side of things is much better prepared for a second major pandemic-induced disruption than it was back in March. Links to everything that we discussed are below and you can follow Patrick or Pipes on Twitter if that’s your thing. Show notes UK formally unveils GCHQ's offensive cyber-operation shop After years of work, Congress passes 'internet of things' cybersecurity bill — and it's kind of a big deal Symantec implicates APT10 in sweeping hacking campaign against Japanese firms State-sponsored hackers try to exploit flaw in popular mobile software, UK warns The malware that usually installs ransomware and you need to remove right away | ZDNet Biotech research firm Miltenyi Biotec hit by ransomware, data leaked Ransomware attack forces web hosting provider Managed.com to take servers offline | ZDNet Hacker leaks the user data of event management app Peatix | ZDNet Fake Zoom invite cripples Aussie hedge fund with $8m hit Tradies frustrated by banks as business email scam costs them $51,000 - ABC News Australia’s spy agencies caught collecting COVID-19 app data | TechCrunch This Bluetooth Attack Can Steal a Tesla Model X in Minutes | WIRED Baidu's Android apps caught collecting sensitive user details | ZDNet Double-dipping scammers don't need malware to grab card numbers and turn a profit, report says GoDaddy Employees Used in Attacks on Multiple Cryptocurrency Services — Krebs on Security Liquid crypto-exchange says hacker accessed internal network, stole user data | ZDNet New WAPDropper malware abuses Android devices for WAP fraud | ZDNet Google Is Testing End-to-End Encryption in Android Messages | WIRED Abusive add-ons aren’t just a Chrome and Firefox problem. Now it’s Edge’s turn | Ars Technica A Facebook Messenger Flaw Could Have Let Hackers Listen In | WIRED Cisco Webex bugs allow attackers to join meetings as ghost users | ZDNet Exploitation of Cisco Security Manager RCE flaws ‘imminent’ | The Daily Swig Minor controversy erupts over chained iOS exploit that harvests researchers’ crash dumps | The Daily Swig Patrick Gray on Twitter: "Have a read of their security expert’s website. Seriously. Check out the services page: https://t.co/w5Nv9zeeWE https://t.co/F2bwzK9n8G" / Twitter Office of National Intelligence - IT Systems Engineer

In today's podcast we cover four crucial cyber and technology topics, including: 1. Nearly 24 thousand databases with usernames/passwords exposed 2. Sodinokibi impacts managed.com, services unavailable 3. LAPD bans use of commercial facial recognition 4. APT10 activity uncovered revealing use of LOLBins and ZeroLogon vulnerability I'd love feedback, feel free to send your comments and feedback to | cyberandtechwithmike@gmail.com

In today's podcast we cover four crucial cyber and technology topics, including: 1. EU sanctions Chinese, Russian cyber actors 2. IndieFlix exposes millions of records via misconfigured cloud storage 3. Zoom flaw may have exposed meetings 4. Drizly breach results in loss of 2.5 million customers' data I'd love feedback, feel free to send your comments and feedback to | cyberandtechwithmike@gmail.com

Today   APT10 hit harder than we thought https://www.channele2e.com/news/cloud-hopper-attacks-vs-msps/ Pokemon Go gives insight into AR  https://www.cbc.ca/news/canada/nova-scotia/pokemon-canada-military-bases-1.5393774 https://www.statista.com/statistics/665640/pokemon-go-global-android-apple-users/ AND California's privacy law hits tomorrow, and what you need to know https://www.vox.com/recode/2019/12/30/21030754/ccpa-california-privacy-law-rights-explained  

Good Morning and Welcome to the ProactiveIT Cyber Security Daily number 34.  It is Tuesday December 31, 2019. I am your host Scott Gombar. Happy New Year!! This podcast is brought to you by Nwaj Tech, a Client Focused and Security Minded IT Consultant based in Central Connecticut.  You can visit us at nwajtech.com Cloud Hopper cyberattacks, launched by APT10 vs. MSPs and CSPs worldwide, were larger than previously disclosed, a new report says The Curious Case of 20 Unsecured Buckets Containing Nearly 48 Million Records Special Olympics New York Hacked to Send Phishing Emails https://www.hipaajournal.com/category/hipaa-breach-news/ Ambulance Company Pays $65,000 to Settle Allegations of Longstanding HIPAA Noncompliance

A daily look at the relevant information security news from overnight.Episode 160 - 25 September 2019APT10 after utilities - https://www.zdnet.com/article/17-us-utility-firms-targeted-by-mysterious-state-sponsored-group/New Fancy Bear attack - https://threatpost.com/zebrocy-retools-political-attacks/148593/U.S. vets sammed - https://www.bleepingcomputer.com/news/security/fake-employment-site-created-to-target-veterans-with-malware/Wyoming hospital ransomware - https://www.darkreading.com/attacks-breaches/wyoming-hospital-the-latest-to-be-hit-with-ransomware-attack/d/d-id/1335895Apple open access - https://techcrunch.com/2019/09/24/apple-bug-full-access-keyboards/

APT10 has been phishing in US utilities. Google wins a big round over the EU’s right to be forgotten. European courts are also considering binding contractual clauses and Privacy Shield, which together have facilitated transatlantic data transfer. Twenty-seven nations agree on “responsible state behavior in cyberspace.” A hawkish take on Huawei’s 5G ambitions. And Edward Snowden’s book is being used as phishbait (not, we hasten to say, by Mr. Snowden). Johannes Ullrich from the SANS Technology Institute on the security issues with local host web servers. Guest is Fleming Shi from Barracuda with research on city/state ransomware attacks. For links to all of today's stories check our our CyberWire daily news brief: https://thecyberwire.com/issues/issues2019/September/CyberWire_2019_09_24.html  Support our show

In this week’s Cyber Security Brief, it’s episode 52, and the last one before we take a short summer break – we will be back with you in August, with more essential stories and trends from the world of cyber security. This week, we discuss the Cloud Security Threat Report that was recently released by Symantec, reports that APT10 compromised the networks of at least 10 telecoms companies, and the unusual circumstances that led to the arrest of a member of the Anonymous Belgium hacking group. Also, how a bug allowed the past owners of Nest cameras to spy on current owners, even after a factory reset. Finally, as the value of Bitcoin surges again, we have two cryptocurrency-related stories as two brothers are arrested in relation to the massive Bitfinex hack that occurred in 2016, and a new coinminer is emulating Linux to target both Windows and Mac systems. Don’t forget, while we are off air, we will still be posting blogs and tweets, so make sure to follow us on Twitter (@ThreatIntel), and to read our blogs at https://www.symantec.com/blogs/threat-intelligence and on Medium at https://medium.com/threat-intel.

いやーすっかりご無沙汰しちゃいましたが。 最近の話題といったらやっぱり米中経済摩擦、特にHuawei問題だと思うわけですが、いまさらワタシがその話題を振り返ってもおもしろくもなんともありませんので、その話題の合間にちょろちょろ見えていた、テック産業にまつわるちょっとヤバめのニュースについてお話をしています。 関連リンク： LUCIFER/ルシファー サイバー攻撃にミサイルで対抗──イスラエルはサイバー・ルビコン川を渡ったか | ニューズウィーク日本版 オフィシャルサイト 外部からのサイバー攻撃に制裁、EUが方針固める | サイバーセキュリティ.com 【セキュリティ ニュース】日本も狙う「APT10」にあらたな動き - 一見問題ない実行ファイルから攻撃展開（1ページ目 / 全2ページ）：Security NEXT サイバー攻撃は武力攻撃　日米2プラス2で明記 | 大紀元 ネタ帳はこちら エッジのたたないポッドキャスト ネタ帳 たぶん戦争のやり方とゆーかはじめ方がわかんないんじゃないかと思うんですれども Music From: Megaminute / Akcija (License CC-by) 43 Days / Kemi Helwa (License CC-by)

Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/ IOCs: APT10/Operation Cloud Hopper – Indicators of Compromise v3.csv  

Alex Guirakhoo and newcomer to the pod Travis Randall (@puppyozone) join HVR this week to discuss updates to the JasperLoader malware loader, APT28’s newly observed link shortening technique, Gnosticplayers allegedly stole information from an Australian graphics design companies, and APT10 malware loaders. After that, Richard Gold (@drshellface) and Simon Hall (@5ecur1tySi) discuss the Remote Desktop Protocol vulnerability that everyone has been hyped up about in the last couple of weeks. Be sure to download the full intelligence summary at resources.digitalshadows.com. In more news, Photon Research Team has published a new report! The overall main finding of the paper is that Photon found there were 2.3 billion files currently being exposed online via file shares like SMB or Amazon S3 buckets. We are going to do a deep dive episode about that for next week’s episode. (Report) Too Much Information: The Sequel: https://info.digitalshadows.com/TooMuchInfoTheSequel-podcast.html (Blog) 2.3 billion files exposed across online file storage technologies: https://www.digitalshadows.com/blog-and-research/2-billion-files-exposed-across-online-file-storage-technologies/

This week, we welcome back Levi Gundert, Recorded Future’s vice president of intelligence and risk. In a wide-ranging conversation, we discuss Insikt Group’s research into APT10, the challenges of authentication at scale, the importance of framing communication in terms of quantifying risk, and what it means to be an ethical hacker. Levi also shares the potential trends he’ll be following in the coming year.

This week, we welcome back Levi Gundert, Recorded Future's vice president of intelligence and risk. In a wide-ranging conversation, we discuss Insikt Group's research into APT10, the challenges of authentication at scale, the importance of framing communication in terms of quantifying risk, and what it means to be an ethical hacker. Levi also shares the potential trends he'll be following in the coming year.

In today’s podcast, we hear that VFEmail has sustained a devastating, data-destroying attack. The EU considers whether it should, can, or will make a coordinated response to China’s APT10. A US Executive Order outlines a strategy to maintain superiority in artificial intelligence. Norway warns, again, of the risk of GPS jamming. US Army Stryker vehicles were hacked during testing last year. And some Marines are getting ahead of themselves, downloading close air support control apps to personal tablets. Johannes Ullrich from SANS and the ISC Stormcast podcast on using hardware flaws for network access. Guest is Shane Harris from the Washington Post with an update on the Paul Whelan case in Russia. For links to all of today's stories check our our CyberWire daily news brief: https://thecyberwire.com/issues/issues2019/February/CyberWire_2019_02_12.html  Support our show

In today’s podcast, we hear about social engineering, with a few new twists. Some airlines may be exposing passenger data with insecure check-in links. APT10 may be lying low, for now, but the US Department of Homeland Security expects the cyber spies to be back. A researcher finds a macOS Keychain bug, but would rather not tell Apple about it. Governments in Europe and North America continue to assess risks associated with Huawei and ZTE. And a Trojan hides in The Sims 4. Awais Rashid from Bristol University with thoughts on the challenges of securing smart phones. Carole Theriault explores recent concerns over popular video app VLC Player security issues with Sophos’ Paul Ducklin. For links to all of today's stories check our our CyberWire daily news brief: https://thecyberwire.com/issues/issues2019/February/CyberWire_2019_02_07.html  Support our show

In today’s podcast, we hear that Chinese threat group APT10 seems to have been busy lately, and up to its familiar industrial espionage. More governments express skepticism about Chinese manufacturers. The US report on election security is out: influence ops were found to have had no material effect on the midterms. Lithuania worries about Russian election meddling. A reverse RDP attack risk is reported. An industrial IoT remote code flaw. And congratulations to the finalists in RSA’s Innovation Sandbox. Emily Wilson from Terbium Labs on biometrics for sale on the dark web. Guest is Katie Nickels from MITRE on the ATT&CK knowledge base. For links to all of today's stories check our our CyberWire daily news brief: https://thecyberwire.com/issues/issues2019/February/CyberWire_2019_02_06.html  Support our show

This week's Risk & Repeat podcast discusses how a Chinese state-sponsored threat group known as APT10 hacked into managed service providers to gain access to their clients.

This week's Risk & Repeat podcast discusses how a Chinese state-sponsored threat group known as APT10 hacked into managed service providers to gain access to their clients.

Of course, everyone seems to be talking about how 'Apple is Doomed' once again. We talk a bit about that, but there's plenty of other interesting tech news and tips to cover this week as we move into our third year of the Notnerd podcast. Make sure to join the Notnerd Facebook Group and let us know how you tech better. We're also looking for your ProTips and Picks of the Week. Show Notes and Links: Backblaze secure cloud backups (00:50) Notnerd Episode 1: Define Notnerd (03:25) Huawei punishes 2 employees for tweeting from iPhone (04:45) How much of the internet is fake? (06:20) Dave’s Pro Tip of the Week: Advanced Do Not Disturb Mode (08:40) What to expect from CES 2019 - This bike comes with Amazon Alexa for directions (12:30) Windows 10 passes Windows 7 in market share (14:20) What’s going on with Apple? Letter from Tim Cook to Apple investors (17:30) New single Day Apple App Store record sales on New Year’s Day (23:00) Apple Watch is now a bigger business for Apple than iPod ever was (23:20) This clever AI hid data from its creators to cheat at its appointed task (25:20) The best apps for managing your kid’s phone for 2018 (27:20) Security: China’s APT10 hacking group targets MSPs (30:20) Delete the Weather Channel app if you’re concerned about your location data (32:15) Bonus Odd Take: Merriam-Webster: Time Traveler for new words (34:10) Picks of the Week: Dave: Anker PowerCore Fusion, Portable Charger 5000mAh with Dual USB Wall Charger, Foldable Plug and PowerIQ, Battery Pack for iPhone, iPad, Android, Samsung Galaxy and More (36:15) Nate: Zoom.us online meetings (39:55) Leave an iTunes Review and be featured on the Podcast Random Amazon purchase (42:15) Support Notnerd on Patreon and get cool stuff - Thanks Dillon Gentry! (45:05) Give the gift of Amazon Prime!  As always, thank you for listening! Brought to you by #OneBackupIsNoneBackup Shop Amazon: Amazon.Notnerd.com Subscribe and Review in iTunes Contact Info: www.Notnerd.com Twitter - @N0tnerd, Nate - @NetBack, Dave - @DavyB Notnerd Facebook Email - info@Notnerd.com Call or text 608.618.NERD(6373) If you would like to help support Notnerd financially, mentally or physically, please contact us via any of the methods above. Consider any product/app links to be affiliate links.

Fancy Bear, APT10, Lazarus Group, Charming Kitten. These are all the names given to government hacker groups.And if you pay any attention to cybersecurity news you heard about Russian hackers, Chinese hackers, and groups that are usually called APTs—government-sponsored hackers. This week we're talking with Eva Galperin, the director of cybersecurity with the Electronic Frontier Foundation. Eva has been researching APTs for years, investigating these state hackers from all over every corner of the globe. Because countries everywhere are growing their cyber armies and there's no signs of that slowing down. See acast.com/privacy for privacy and opt-out information.

Fancy Bear, APT10, Lazarus Group, Charming Kitten. These are all the names given to government hacker groups.And if you pay any attention to cybersecurity news you heard about Russian hackers, Chinese hackers, and groups that are usually called APTs—government-sponsored hackers. This week we’re talking with Eva Galperin, the director of cybersecurity with the Electronic Frontier Foundation. Eva has been researching APTs for years, investigating these state hackers from all over every corner of the globe. Because countries everywhere are growing their cyber armies and there’s no signs of that slowing down. See acast.com/privacy for privacy and opt-out information.

Hacker spoofing bypasses two factor authentication - https://www.zdnet.com/article/hacker-spoofing-bypasses-two-factor-authentication-security-in-gmail-secure-email-services/Huawei router flaw - https://threatpost.com/huawei-router-default-credential/140234/Microsoft patches zero day flaw - https://nakedsecurity.sophos.com/2018/12/20/update-now-microsoft-patches-another-zero-day-flaw/China hacked IBM and HPE - https://www.reuters.com/article/us-china-cyber-hpe-ibm-exclusive/exclusive-china-hacked-hpe-ibm-and-then-attacked-clients-sources-idUSKCN1OJ2OYNo DDos for Christmas - https://www.zdnet.com/article/law-enforcement-shut-down-ddos-booters-ahead-of-annual-christmas-ddos-attacks/A daily look at the relevant information security news from overnight.Episode 47 - 21 December, 2018

ISIS returns to its grim inspiration. China's APT10 collects against Japan. An Internet Explorer zero-day is reported undergoing exploitation in the wild. Twitter won't sell Kaspersky any more ads, but doesn't have any specific explanation for why not. For its part Kaspersky says it's going to donate its Twitter advertising budget to the Electronic Frontier Foundation. Bad but expected news about router security. ZTE's regulatory troubles. Cracka with Attitude will do time. Malek Ben Salem from Accenture Labs on the malicious use of AI. 

Shayna Cook (cook_shayna) is a policy analyst with the Education Policy program at New America. She is a member of the Learning Technologies project. Shayna researches and reports on innovation, new technologies, and digital equity issues concerning children from birth through third grade. She is a former teacher who graduated from American University with a master's degree in education, focusing on policy and leadership. She holds a bachelor's degree in classics from Howard University. In this episode, we discussed: how states can use federal funding to promote family engagement. how schools can more effectively incorporate technology to promote family engagement. how to evaluate engagement programs to determine how they improve learning outcomes. Resources: New America's Education Policy Program New Guidance on Using the Every Student Succeeds Act to Support Early Learning by Shayna Cook (New America, 2016) Lower Ed: The Troubling Rise of For-Profit Colleges in the New Economy by Tressie McMillan Cottom NEWS ROUNDUP Sinclair is acquiring Tribune broadcasting, the companies announced on Monday, for a cool $3.9 billion. Tribune owns 42 tv stations in 33 markets, WGN, digital multicast network Antenna TV, minority stakes in the TV Food Network and CareerBuilder, and a variety of real estate assets, according to the companies' press release. Even after the Republican controlled FCC threw it a bone at its last open meeting by reinstating the UHF discount, which lets broadcasters half the size of the audience their UHF stations reach, thereby enabling broadcast companies to own more stations, Sinclair may still need to divest some its stations to fall under the 39 percent cap on the national audience. Sinclair is Chaired by David Smith--a key supporter of Donald Trump. ---- President Trump signed an executive order establishing a new American Technology Council which will be tasked with coming up with ways to transform and modernize the federal government. It's not clear yet which companies will participate, but Tony Romm at Recode notes that Google, Facebook, Amazon, Microsoft have huddled with the administration in the past.  Mike Allen at Axios reported the creation of the Council was spearheaded by Trump advisor and son-in-law Jared Kushner and that the council will hold a summit in June to map out a plan for the duration of the Trump administration. Two lawmakers also created a bi-partisan Digital Trade Caucus last week which is aimed at protecting cross-border digital trade from protectionism. Minnesota Republican Erik Paulsen and Washington Democrat Suzan DelBene made the announcement last week. The Department of Justice has announced a criminal investigation into Uber.  The New York Times reported in March that the company was using a software called Greyball to circumvent local authorities in areas where Uber hasn't been approved yet. Now a grand jury in Northern California has subpoenaed documents from Uber related to the matter. Dan Levine has the story in Reuters. The State Department wants to intensify its scrutiny of visa applicants. The agency published a document last week, in line with the Trump administration's efforts to subject visa applicants to "extreme vetting", which outlines plans to require visa applicants to provide five years worth of their social media handles, phone numbers and email addresses. The public will have a chance to comment on the new proposed rules until May 18th. Yaganeh Torbati and Mica Rosenberg report in Reuters. The reined-in National Security Agency still collected 151 million phone records in 2016. Charlie Savage reports in the New York Times that the NSA previously collected billions of phone records per day, according to a transparency report released last week. The Department of Homeland Security warned of an emerging espionage campaign led by Chinese hackers. The hacker group APT10 or MenuPass group has targeted construction, aerospace, engineering and telecom companies in the past, but security analysts are now saying they found evidence that the group could now be working in tandem with the Chinese government to collect military secrets from the United States.  Chris Bing has the story in CyberScoop. Elon Musk's SpaceX boosted a classified U.S. Spy Satellite into orbit on Monday May 1st at 7:14AM. The payload is a National Reconnaissance Office satellite. SpaceX is trying to ramp up its commercial space flight program following an explosion last September that halted it. However, last week's launch was SpaceX's 4th successful launch since January, and it was flawless. Andy Pasztor reports in the Wall Street Journal. Finally, a report by an engineer at Facebook found the company rejects code submitted by female engineers at a rate that is 35% higher than their male counterparts. Facebook's most recent diversity report shows women comprise just 17% of Facebook's technical workforce. Deepa Seetharaman reports in the Wall Street Journal.

In today's podcast, we hear about how a Word zero-day is spreading the Dridex banking Trojan. Amazon third-party sellers bitten by reused passwords. IBM catches Mirai mining Bitcoins. Symantec discerns Longhorn tools in WikiLeaks' Vault 7. Tensions over Syria's civil war seem to be behind the Shadow Brokers' return. ISIS is now attempting to recruit women to the Caliphate. Germany considers a cyber first-use doctrine. Crypto wars flare in Europe as French Presidential candidate Macron takes a strong anti-encryption line. The University of Maryland Center for Health and Homeland Security’s Ben Yelin weighs in on the FCC’s rollback of ISP privacy rules. Dario Forte from DF Labs cautions against AI hype. A Penn State professor takes the 2017 Gödel Prize for his work on differential privacy.

In today's podcast we hear about Operation TradeSecret, which joins Operation Cloudhopper: both appear to be facets of a Chinese cyberespionage campaign. 20,000 loan applications are exposed by a third-party IT vendor. North Korea's Lazarus Group still has banks in its crosshairs. A study shows that mobile users are in a complicated relationship with their apps. US Congressional hearings into Russian influence operations and allegations of US surveillance continue. IBM’s Wendi Whitmore joins us from the 2017 Women in Cybersecurity Conference. Palo Alto Networks’ Rick Howard describes the cloud paradigm shift. And tomorrow is OpIsrael; Israeli enterprises say they're prepared.