Podcasts about babuk

Van egy alkalmazás, ami a mesterséges intelligencia segítségével megmondja, mikor fogsz meghalni Player     2024-12-03 08:36:04     Infotech Mesterséges intelligencia Már a százötvenezret is meghaladta azoknak a felhasználóknak a száma, akik letöltötték a Death Clock, azaz Halálóra nevű alkalmazást. Az ötlet zseniális, de annyira morbid, hogy az ember fészkelődni kezd tőle. Oroszország letartóztatta a saját kiberbűnözőjét ITBusiness     2024-12-03 04:37:51     Infotech Kibertámadás Egy állítólagos egykori LockBit és Babuk zsarolóprogram-művelethez kapcsolódó személy, aki egyben az Egyesült Államok egyik legkeresettebb kiberbűnözője is, állítólag bilincsben végezte. A meleget bírod? Még a szaunát is túlélné a Casio órája InStyle Men     2024-12-03 04:10:01     Infotech Közösségi finanszírozás De egyelőre még csak terv, a közösségi finanszírozás nyithatja meg az utat a Casio CPP–002 előtt. M-3, az első magyar építésű elektronikus számítógép Rakéta     2024-12-03 07:24:07     Infotech MTA A gépet az MTA Kibernetikai Kutató Csoportjának munkatársai építették és fejlesztették. Készítésekor még nem is számítógépnek, hanem digitális, automatikus, programozható számológépnek nevezték, mivel a számítógép szó akkor még meg sem született. A kütyüket korlátlanul használó óvodásokon autizmusra jellemző tüneteket mutattak ki magyar kutatók Telex     2024-12-03 10:46:04     Tudomány Generáció Óvoda Autizmus Kütyü A rengeteg vizuális inger miatt teljes generációk nőhetnek fel a beszédértés zavaraival küzdve. Még 90 napig követ a Google Térkép, aztán adattörlésbe kezd ICT Global     2024-12-03 05:07:16     Infotech Google Térkép GPS Fordulóponthoz érkezett a Google Térkép. A keresőóriás eddig akkurátusan nyomon követte minden mozdulatát a felhasználónak. De most finomhangol a folyamaton. Új emberfajt fedezhettek fel 24.hu     2024-12-03 09:09:47     Tudomány Kína A szakértők ősi, kínai leleteket elemezve arra jutottak, hogy egy korábban ismeretlen fajjal van dolguk. A valóság elől menekülve tiktokoznak órákat a hazai fiatalok Bitport     2024-12-03 13:12:00     Mobiltech TikTok NMHH Egy nemrégiben végzett NMHH-kutatás szoftveres módszerekkel igyekezett pontosabb képett kapni a fiatal felnőttek mobilhasználati szokásairól. Harci drónt készített a Helsing SG.hu     2024-12-03 09:45:11     Tudomány Drón Startup Az európai védelmi technológiai startup igyekszik kihasználni az autonóm fegyverek iránti növekvő keresletet. Megvonták a bizalmat az Intel vezérigazgatójától HWSW     2024-12-03 09:42:47     Infotech Intel Pat Gelsingernek azonnali hatállyal mennie kellett a szenvedő processzorgyártó éléről. Óriási bajban a Google: katasztrófa előtt áll a gigacég? ATV     2024-12-03 07:37:00     Infotech Mesterséges intelligencia Google A mesterséges intelligencia (AI) feleslegessé teszi a legnépszerűbb keresőmotort. Úgy fest, hogy a Vénuszt sosem borították óceánok Player     2024-12-03 13:00:50     Infotech Világűr Úgy fest, hogy a Vénusz túlnyomórészt szén-dioxidból álló légkörében nincs elegendő vízgőz ahhoz, hogy azt feltételezhessük, a Naprendszer hozzánk igen közel keringő poklát egykor óceánok borították. Reklámok érkezhetnek az OpenAI ChatGPT-jébe is ITBusiness     2024-12-03 12:12:47     Cégvilág Infotech Mesterséges intelligencia Reklám ChatGPT OpenAI Az OpenAI, a ChatGPT készítője, reklámok bevezetését tervezi mesterséges intelligencia termékeiben, mivel új bevételi forrásokat keres és átalakul profitközpontú vállalattá. A további adásainkat keresd a podcast.hirstart.hu oldalunkon.

Van egy alkalmazás, ami a mesterséges intelligencia segítségével megmondja, mikor fogsz meghalni Player     2024-12-03 08:36:04     Infotech Mesterséges intelligencia Már a százötvenezret is meghaladta azoknak a felhasználóknak a száma, akik letöltötték a Death Clock, azaz Halálóra nevű alkalmazást. Az ötlet zseniális, de annyira morbid, hogy az ember fészkelődni kezd tőle. Oroszország letartóztatta a saját kiberbűnözőjét ITBusiness     2024-12-03 04:37:51     Infotech Kibertámadás Egy állítólagos egykori LockBit és Babuk zsarolóprogram-művelethez kapcsolódó személy, aki egyben az Egyesült Államok egyik legkeresettebb kiberbűnözője is, állítólag bilincsben végezte. A meleget bírod? Még a szaunát is túlélné a Casio órája InStyle Men     2024-12-03 04:10:01     Infotech Közösségi finanszírozás De egyelőre még csak terv, a közösségi finanszírozás nyithatja meg az utat a Casio CPP–002 előtt. M-3, az első magyar építésű elektronikus számítógép Rakéta     2024-12-03 07:24:07     Infotech MTA A gépet az MTA Kibernetikai Kutató Csoportjának munkatársai építették és fejlesztették. Készítésekor még nem is számítógépnek, hanem digitális, automatikus, programozható számológépnek nevezték, mivel a számítógép szó akkor még meg sem született. A kütyüket korlátlanul használó óvodásokon autizmusra jellemző tüneteket mutattak ki magyar kutatók Telex     2024-12-03 10:46:04     Tudomány Generáció Óvoda Autizmus Kütyü A rengeteg vizuális inger miatt teljes generációk nőhetnek fel a beszédértés zavaraival küzdve. Még 90 napig követ a Google Térkép, aztán adattörlésbe kezd ICT Global     2024-12-03 05:07:16     Infotech Google Térkép GPS Fordulóponthoz érkezett a Google Térkép. A keresőóriás eddig akkurátusan nyomon követte minden mozdulatát a felhasználónak. De most finomhangol a folyamaton. Új emberfajt fedezhettek fel 24.hu     2024-12-03 09:09:47     Tudomány Kína A szakértők ősi, kínai leleteket elemezve arra jutottak, hogy egy korábban ismeretlen fajjal van dolguk. A valóság elől menekülve tiktokoznak órákat a hazai fiatalok Bitport     2024-12-03 13:12:00     Mobiltech TikTok NMHH Egy nemrégiben végzett NMHH-kutatás szoftveres módszerekkel igyekezett pontosabb képett kapni a fiatal felnőttek mobilhasználati szokásairól. Harci drónt készített a Helsing SG.hu     2024-12-03 09:45:11     Tudomány Drón Startup Az európai védelmi technológiai startup igyekszik kihasználni az autonóm fegyverek iránti növekvő keresletet. Megvonták a bizalmat az Intel vezérigazgatójától HWSW     2024-12-03 09:42:47     Infotech Intel Pat Gelsingernek azonnali hatállyal mennie kellett a szenvedő processzorgyártó éléről. Óriási bajban a Google: katasztrófa előtt áll a gigacég? ATV     2024-12-03 07:37:00     Infotech Mesterséges intelligencia Google A mesterséges intelligencia (AI) feleslegessé teszi a legnépszerűbb keresőmotort. Úgy fest, hogy a Vénuszt sosem borították óceánok Player     2024-12-03 13:00:50     Infotech Világűr Úgy fest, hogy a Vénusz túlnyomórészt szén-dioxidból álló légkörében nincs elegendő vízgőz ahhoz, hogy azt feltételezhessük, a Naprendszer hozzánk igen közel keringő poklát egykor óceánok borították. Reklámok érkezhetnek az OpenAI ChatGPT-jébe is ITBusiness     2024-12-03 12:12:47     Cégvilág Infotech Mesterséges intelligencia Reklám ChatGPT OpenAI Az OpenAI, a ChatGPT készítője, reklámok bevezetését tervezi mesterséges intelligencia termékeiben, mivel új bevételi forrásokat keres és átalakul profitközpontú vállalattá. A további adásainkat keresd a podcast.hirstart.hu oldalunkon.

In today's episode, we discuss how cybercriminals exploit Facebook ads to distribute SYS01 password-stealing malware (https://www.bleepingcomputer.com/news/security/facebook-ads-for-windows-themes-push-sys01-info-stealing-malware/), Microsoft 365 Defender disruptions caused by recent Windows Server updates (https://www.bleepingcomputer.com/news/microsoft/june-windows-server-updates-break-microsoft-365-defender-features/), the SEXi ransomware rebranding to APT INC and targeting VMware ESXi servers (https://www.bleepingcomputer.com/news/security/sexi-ransomware-rebrands-to-apt-inc-continues-vmware-esxi-attacks/), and weaknesses in Squarespace security leading to domain hijacks targeting cryptocurrency businesses (https://krebsonsecurity.com/2024/07/researchers-weak-security-defaults-enabled-squarespace-domains-hijacks/). Video Episode: https://youtu.be/feJqlYfCHZw Sign up for digestible cyber news delivered to your inbox: https://news.thedailydecrypt.com Thanks to Jered Jones for providing the music for this episode. https://www.jeredjones.com/ Logo Design by https://www.zackgraber.com/ Tags Trustwave, Cybercriminals, Facebook Ads, Malware, Windows Server 2022, Microsoft 365 Defender, Network Detection and Response, Patch Tuesday, Ransomware, VMware ESXi, APT INC, Encryptors, Babuk, LockBit 3, Squarespace, Security Flaws, Domain Hijacks, Cryptocurrency Websites Search Phrases What are today's top cybersecurity news stories? How are cybercriminals using Facebook ads to distribute malware? Protecting against info-stealing malware in Facebook ads June Patch Tuesday updates Windows Server 2022 issues Microsoft 365 Defender affected by Windows updates Ransomware attacks on VMware ESXi servers APT INC ransomware and its impact on businesses How to mitigate ransomware attacks using Babuk and LockBit 3 encryptors Squarespace security flaws and domain hijacking incidents Securing your domain during migration from Google Domains to Squarespace

We are continuing demystifying a couple of terms that folks new to the realm of cyber security often mix up. Those are the  terms Exfil or DLP.  So by the end of the session you will surely understand where you stand the next time you will hear an Exfil has happened to so and so org or a DLP is require here.Make sure you listen to part 1 beforehand.And as alware before we get into the weeds, lets review the recent top trending news this week. These areBabuk variant decryption key made availableMandiant X account hacked - https://www.bleepingcomputer.com:  Decryptor for Babuk ransomware variant released after hacker arrested- https://grahamcluley.com:   Security firm Mandiant says it did not have 2FA enabled on its hacked Twitter account - https://www.nomoreransom.org: No-More-Ransom siteBe sure to subscribe! If you like the content. Follow me @iayusuf or read my blog at https://yusufonsecurity.comYou will find a list of all previous episodes in there too.

Swatting is on the rise. LoanDepot, the Toronto Zoo and the World Council of Churches all confirm ransomware attacks. Iran-linked hackers target Albania. Sea Turtle focuses on espionage and information theft. Fake “security researchers” offer phony ransomware recovery services. Could AI make KYC  EOL? Avast enhances Babuk decryption. Joe Carrigan looks at the human side of email security. And a group of midwives fail to deliver. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Today, we are joined by Joe Carrigan from JHU ISI on the human elements that impact email security  Selected Reading Tanya Chutkan, the judge overseeing Trump's federal election interference case, appears to be victim of 'swatting' Special counsel Jack Smith was targeted by attempted swatting on Christmas Day LoanDepot Takes Systems Offline Following Ransomware Attack Toronto Zoo hit by ransomware attack | Cybernews Rhysida ransomware gang takes responsibility for attack on World Council of Churches Wiper malware found in analysis of Iran-linked attacks on Albanian institutions Turkish espionage campaigns in the Netherlands "Security researcher" offers to delete data stolen by ransomware attackers Gen AI could make KYC effectively useless | TechCrunch  Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © 2023 N2K Networks, Inc.

Ep. 69 of the Cyber Law Revolution is live!In this episode, we dive into the DOJ and the FBI placing a bounty on the central figure beyond the development and deployment of the Hive, LockBit, and Babuk ransomware variants. We also discuss how this further demonstrates close cooperation between these groups.Keep those questions, calls, comments, etc. coming – 410-917-5189 or spollock@mcdonaldhopkins.com

Talos researchers recently discovered a new ransomware group called "RA Group." This week, Nick Biasni joins Jon to discuss this new threat actor and the modified Babuk ransomware they've already used in attacks against a wide range of companies in the U.S. and South Korea. Nick talks about the group's use of source code that's already been leaked, where they could be headed next and what this group may signal for the larger ransomware landscape. Other helpful links:Threat Source newsletter (May 11, 2023) — So much for that ransomware declineTalos Takes Ep. #71 (includes more details about the "double extortion" tactics of ransomware)

Cyber agencies warn of BianLian ransomware. There's a new gang using leaked Baduk-based ransomware. Chinese government-linked threat actors target TP-link routers with custom malware. ChatGPT-themed fleeceware is showing up in online stores. Ukraine is now a member of NATO's Cyber Centre. Tim Starks from the Washington Post shares insights on section 702 renewal. Our guest is Ismael Valenzuela from BlackBerry sharing the findings from their Global Threat Intelligence Report. And the CIA's offer to Russian officials may have had some takers. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/95 Selected reading. #StopRansomware: BianLian Ransomware Group (Cybersecurity and Infrastructure Security Agency CISA)  Newly identified RA Group compromises companies in U.S. and South Korea with leaked Babuk source code (Cisco Talos Blog)  The Dragon Who Sold His Camaro: Analyzing Custom Router Implant (Check Point Research) Fake ChatGPT Apps Scam Users Out of Thousands of Dollars, Sophos Reports (GlobeNewswire News Room)  Ukraine joins NATO Cyber Centre (Computing)  Russian Officials Unnerved by Ukraine Bloodshed Are Contacting CIA, Agency Says (Wall Street Journal)

On this week's show Patrick Gray and Adam Boileau discuss the week's security news. They cover: Wazawaka charged, sanctioned PlugwalkJoe extradited, pleads guilty BlackBerry thinks Cuba ransomware is a front for Russian intelligence Anonymous Sudan pops up in Israel Microsoft's Outlook patch fail Much, much more This week's show is brought to you by Bloodhound Enterprise. Andy Robbins is this week's sponsor guest. He talks about how graph theory could help us to uncover more lolbins. Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes Alleged Babuk ransomware gang leader ‘Wazawaka' indicted, sanctioned by US Who is the Network Access Broker ‘Wazawaka?' – Krebs on Security British man involved in Twitter hack extradited to US, pleads guilty to numerous cybercrimes Cybercriminals who targeted Ukraine are actually Russian government hackers, researchers say | TechCrunch Slapdash attempt to hack rocket sirens may be cause for serious alarm about Iran | The Times of Israel Twitter's Encrypted DMs Are Deeply Inferior to Signal and WhatsApp | WIRED Twitter under fire for restricting content before Turkish presidential election - CBS News Three opposition media outlets hit by cyber attack Patrick Gray on Twitter: "https://t.co/n5b7wPjI6Y https://t.co/UmDbHbhEcS" / Twitter (1) Patrick Gray on Twitter: "Switched to a domain validated username at the other place. Very easy. https://t.co/U46zABPnJl" / Twitter Emerging ransomware group quickly hits 4 critical infrastructure providers | Cybersecurity Dive A ransomware source code leak spawned at least 10 ‘Babuk' imitators, researchers say Philadelphia Inquirer unable to go to print due to ‘cyber incident' Hackers attempt to extort Dragos and its executives in suspected ransomware attempt | CyberScoop Dallas says it 'will likely take weeks to get back to full functionality' after ransomware attack Swiss tech giant ABB confirms ‘IT security incident' CISA: Bl00dy Ransomware Gang using printer vulnerability to attack schools Capita says responding to ransomware attack will cost up to £20 million National Gallery of Canada recovering from ransomware incident Yum Brands faces class action suits from employees after ransomware attack | Cybersecurity Dive Knocking down Hive: How the FBI ran its own ransomware decryption operation Leak of MSI UEFI signing keys stokes fears of “doomsday” supply chain attack | Ars Technica FBI nukes Russian Snake data theft malware with self-destruct command The FBI's New Malware Eradication Service Is on Thin Legal Ice Cisco warns of new ‘Greatness' phishing-as-a-service tool seen in the wild VMware's ‘target-rich environment' is growing more volatile, CrowdStrike warns | Cybersecurity Dive UK's National Crime Agency wins major legal challenge over Encrochat hack Inside the Italian Mafia's Encrypted Phone of Choice Microsoft releases fix for patched Outlook issue exploited by Russian hackers Scammer Made Thousands Selling 'Leaked' Frank Ocean Tracks That Were Fake, AI-Generated

In today's podcast we cover four crucial cyber and technology topics, including: 1.        Chinese actors taking over TP-Link home routers 2.        Belkin Smart Plug vulnerable to compromise 3.        Google addition of Top-Level Domains stirs controversy 4.        Russian man sanctioned by U.S. for part in various ransomware attacks  I'd love feedback, feel free to send your comments and feedback to  | cyberandtechwithmike@gmail.com

[Referências do Episódio] - Lancefly: Group Uses Custom Backdoor to Target Orgs in Government, Aviation, Other Sectors - https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/lancefly-merdoor-zxshell-custom-backdoor - Water Orthrus's New Campaigns Deliver Rootkit and Phishing Modules - https://www.trendmicro.com/en_us/research/23/e/water-orthrus-new-campaigns-deliver-rootkit-and-phishing-modules.html - Newly identified RA Group compromises companies in U.S. and South Korea with leaked Babuk source code - https://blog.talosintelligence.com/ra-group-ransomware/ - Vulnerabilities Uncovered Affect Thousands of Internet-Connected Devices Worldwide - https://www.otorio.com/blog/teltonkia-cloud-takeover-vulnerability-exposed/ - Triple Threat: Breaking Teltonika Routers Three Ways - https://claroty.com/team82/research/triple-threat-breaking-teltonika-routers-three-ways  [Ficha técnica] Apresentação: Carlos Cabral Roteiro: Carlos Cabral e Daniel Venzi Edição de áudio: Paulo Arruzzo Narração de encerramento: Bianca Garcia Projeto gráfico: Julian Prieto

Babuk source code provides criminal inspiration. CISA and FBI release a joint report on PaperCut. There are more bad bots out there than anyone would like. Phishing-as-a-service tools in the C2C market. CISA's Eric Goldstein advocates the adoption of strong controls, defensible networks and coordination of strategic cyber risks. Our cyberwire producer Liz Irvin speaks with Crystle-Day Villanueva, Learning and Development Specialist for Lumu Technologies. And KillNet's short-lived venture, with a dash of regret. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/92 Selected reading. Babuk code used by 9 ransomware gangs to encrypt VMWare ESXi servers (Bleeping Computer) Ransomware actors adopt leaked Babuk code to hit Linux systems (Decipher) Hypervisor Ransomware | Multiple Threat Actor Groups Hop on Leaked Babuk Code to Build ESXi Lockers (SentinelOne) Malicious Actors Exploit CVE-2023-27350 in PaperCut MF and NG (CISA) CVE-2023-27350 Detail (NIST) Proofpoint Emerging Threats Rules (Proofpoint) 2023 Imperva Bad Bot Report (Imperva) New phishing-as-a-service tool “Greatness” already seen in the wild (Cisco Talos) Ukraine at D+442: Russians say the Ukrainian counteroffensive has begun. (CyberWire)

Podcast: Control Loop: The OT Cybersecurity Podcast (LS 28 · TOP 10% what is this?)Episode: Cyber threat intelligence in the OT space.Pub date: 2022-12-14Microsoft offers predictions for Russia's war in Ukraine. A wiper targets the diamond industry. New version of Babuk ransomware hits manufacturing company. Cyberattacks against the manufacturing industry. Cybersecurity for farming equipment. CISA issues ICS advisories. Guest Kaleb Flem, Senior Cyber Threat Intel Analyst at Southern California Edison, discusses maximizing threat intelligence at a utility. And, in Part 2 of 2 on the Learning Lab, Mark Urban and Dragos' CISO Steve Applegate talk about starting an OT cybersecurity program.Control Loop News Brief.Predictions for Russia's war in Ukraine.Preparing for a Russian cyber offensive against Ukraine this winter (Microsoft)A wiper targets the diamond industry.Fantasy – a new Agrius wiper deployed through a supply‑chain attack (ESET)New version of Babuk ransomware hits manufacturing company.Morphisec Discovers Brand New Babuk Ransomware Variant in Major Attack (Morphisec)Cyberattacks against the manufacturing industry.BlackBerry/Make UK Research Reveals UK Manufacturing Sector Under Threat as Almost Half Suffer Cyberattack in the Last 12 Months (BlackBerry)Cybersecurity for farms.Tractors vs. threat actors: How to hack a farm (ESET)CISA's ICS advisories.CISA Releases Three Industrial Control Systems Advisories (CISA)Iguana triggers blackout.Rogue iguana causes widespread power outage in Lake Worth Beach (The Sun Sentinel)Control Loop Interview.Guest Kaleb Flem, Senior Cyber Threat Intel Analyst at Southern California Edison, discusses maximizing threat intel at a utility.Control Loop Learning Lab.Part 2 of 2 has Dragos CISO Steve Applegate talking with Dragos' Mark Urban about starting an OT cybersecurity program. The podcast and artwork embedded on this page are from CyberWire Inc., which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Microsoft offers predictions for Russia's war in Ukraine. A wiper targets the diamond industry. New version of Babuk ransomware hits manufacturing company. Cyberattacks against the manufacturing industry. Cybersecurity for farming equipment. CISA issues ICS advisories. Guest Kaleb Flem, Senior Cyber Threat Intel Analyst at Southern California Edison, discusses maximizing threat intelligence at a utility. And, in Part 2 of 2 on the Learning Lab, Mark Urban and Dragos' CISO Steve Applegate talk about starting an OT cybersecurity program. Control Loop News Brief. Predictions for Russia's war in Ukraine. Preparing for a Russian cyber offensive against Ukraine this winter (Microsoft) A wiper targets the diamond industry. Fantasy – a new Agrius wiper deployed through a supply‑chain attack (ESET) New version of Babuk ransomware hits manufacturing company. Morphisec Discovers Brand New Babuk Ransomware Variant in Major Attack (Morphisec) Cyberattacks against the manufacturing industry. BlackBerry/Make UK Research Reveals UK Manufacturing Sector Under Threat as Almost Half Suffer Cyberattack in the Last 12 Months (BlackBerry) Cybersecurity for farms. Tractors vs. threat actors: How to hack a farm (ESET) CISA's ICS advisories. CISA Releases Three Industrial Control Systems Advisories (CISA) Iguana triggers blackout. Rogue iguana causes widespread power outage in Lake Worth Beach (The Sun Sentinel) Control Loop Interview. Guest Kaleb Flem, Senior Cyber Threat Intel Analyst at Southern California Edison, discusses maximizing threat intel at a utility. Control Loop Learning Lab. Part 2 of 2 has Dragos CISO Steve Applegate talking with Dragos' Mark Urban about starting an OT cybersecurity program. 

The IT Army of Ukraine claims responsibility for DDoS against a Russian bank. North Korea exploits an Internet Explorer vulnerability. A new variant of Babuk ransomware has been reported. Blind spots in air-gapped networks. Rob Boyce from Accenture has insights on the most recent ransomware trends. Our guest is Nathan Howe from Zscaler with the latest on Zero Trust. And the hacking of cats and dogs. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/11/234 Selected reading. IT Army of Ukraine Hit Russian Banking Giant with Crippling DDoS Attack (HackRead)  Internet Explorer 0-day exploited by North Korean actor APT37 (Google) Morphisec Discovers Brand New Babuk Ransomware Variant in Major Attack (PRWeb) Bypassing air-gapped networks via DNS (Pentera)  What to Know About an Unlikely Vector for Cyber Threats: Household Pets (Insurance Journal)

A daily look at the relevant information security news from overnight - 13 June, 2022Episode 243 - 13 June 2022Hello XD upgrades- https://www.bleepingcomputer.com/news/security/hello-xd-ransomware-now-drops-a-backdoor-while-encrypting/Conti targets Intel - https://www.cpomagazine.com/cyber-security/conti-ransomware-develops-proof-of-concept-code-for-firmware-attacks/WannaFriendMe out of the Blox- https://www.techradar.com/news/this-ransomware-can-only-be-decrypted-by-going-to-the-roblox-storeWeb3 Wallet seed stealer - https://www.securityweek.com/chinese-hackers-adding-backdoor-ios-android-web3-wallets-seaflower-campaignBluetooth fingerprint - https://threatpost.com/bluetooth-signals-track-smartphones/179937/Sentient AI? - https://www.theregister.com/2022/06/13/google_lamda_sentient_claims/Hi, I'm Paul Torgersen. It's Monday June 13th, 2022, and this is a look at the information security news from overnight. From BleepingComputer.comResearchers report increased activity of the Hello XD ransomware, which is based on the leaked source code of Babuk, with two significant notes. One is that the operators are now deploying an upgraded sample featuring stronger encryption that includes custom packing for detection avoidance and encryption algorithm changes. And two, they are now including an open-source backdoor named MicroBackdoor. Lots of details in the article. From CPOMagazine.comm:An analysis of leaked chats from the Conti ransomware group have found two items of note. Evidently the cybercrime group was planning firmware attacks targeting the Intel Management Engine. Such a compromise would allow threat actors to introduce a backdoor on Intel devices and execute commands without detection by OS-based security tools. The other interesting piece is that the chat logs seem to confirm a link between the Conti group and the Russian Foreign Services Bureau. Color me not surprised. From TechRadar.com:A new ransomware group called WannaFriendMe, is targeting gamers with the Chaos ransomware, which tries to pass itself off as Ryuk. The strange thing is, the decryptor is so easy, my kid can get it. I only say that because to get the decryptor, you need to log into a Roblox account and buy a specific game pass. Costs about $20. From SecurityWeek.com:Cybercriminals likely operating out of China are distributing backdoored versions of iOS and Android Web3 wallets in an effort to steal users' seed phrase. This previously unreported campaign, dubbed SeaFlower, has been described as one of the most technically sophisticated threats targeting users of Web3 wallets ever seen. Details in the article. From ThreatPost.comResearchers warn Bluetooth signals can be used to track device owners via a unique fingerprinting of the radio signal. Their paper suggests that minor manufacturing imperfections in hardware are unique to each device, and cause measurable distortions which can be used as a basically a fingerprint to track a specific device. Details and a link to the research in the article. And last today, from The Register.comYou ever see the movie Her? Well, since 2021, Google's Responsible AI team, has been tasked with talking to LaMDA, or Language Model for Dialogue Applications. This project was built by fine-tuning a family of Transformer-based neural language models specialized for dialog, with up to 137 billion model parameters. Someone on that team has recently been placed on paid administrative leave for violating Google's confidentiality policies. This person has gone on record stating that they believe the application has exhibited self-awareness and is now a sentient being. That is quite enough from me today. Have a great rest of your day. Like and subscribe, and until tomorrow, be safe out there.

Rook, a new ransomware strain which appears to be created from the Babuk source code leak appears in the wild.Researchers say Log4J flaw will take years to fully address owing to the sheer number of nested dependencies.The ransomware gang which breached Gigabyte provides a free decryptor after realising they hit the US police.

Rook ransomware is yet another spawn of the leaked Babuk code Russia fines Google $100m over "illegal" content Fake Christmas Eve termination notices used as phishing lures Thanks to our episode sponsor, Lookout Complexity is the enemy of security. With an integrated Zero Trust platform, Lookout makes things simple. Whether data is on employees' smartphones or in the cloud, Lookout enables organizations to protect sensitive information no matter where it goes. Discover why IDC named the Lookout CASB a major player in its latest MarketScape at lookout.com/idc. For the stories behind the headlines, head to CISOseries.com.

VIDEO: 60 let vězení hrozí vývojáři malwaru TrickBot - SecurityCast Ep#82 - YouTube Facebook žaluje občana Ukrajiny za to, že údajně ukradl data více než 178 milionům uživatelů Facebooku a následně je prodával; Státní příslušník Ruska, o kterém se předpokládá, že je členem týmu pro vývoj malwaru TrickBot, byl vydán do USA; Němečtí vyšetřovatelé údajně identifikovali Rusa, o kterém se domnívají, že je jedním z hlavních členů gangu za ransomwarem REvil; Nový dekryptor pro Babuk od Avastu; ENISA Threat Landscape Report; MITRE CWE Most Important Hardware Weaknesses; Nový update pro Google Chrome; Web Content Filtering v MS Defender for Endpoint; Nový podcast Světlá Strana Internetu. Sledujte nás na Twitteru @AlefSecurity a @jk0pr

Guest Michael DeBolt, Chief Intelligence Officer from Intel471, joins Dave Bittner to discuss their work on "How Groove Gang is shaking up the Ransomware-as-a-Service market to empower affiliates." McAfee Enterprise ATR believes, with high confidence, that the Groove gang is associated with the Babuk gang, either as a former affiliate or subgroup. These cybercriminals are happy to put aside previous Ransomware-as-a-Service hierarchies to focus on the ill-gotten gains to be made from controlling victim's networks, rather than the previous approach which prioritized control of the ransomware itself. The research can be found here: How Groove Gang is shaking up the Ransomware-as-a-Service market to empower affiliates

Guest Michael DeBolt, Chief Intelligence Officer from Intel471, joins Dave Bittner to discuss their work on "How Groove Gang is shaking up the Ransomware-as-a-Service market to empower affiliates." McAfee Enterprise ATR believes, with high confidence, that the Groove gang is associated with the Babuk gang, either as a former affiliate or subgroup. These cybercriminals are happy to put aside previous Ransomware-as-a-Service hierarchies to focus on the ill-gotten gains to be made from controlling victim's networks, rather than the previous approach which prioritized control of the ransomware itself. The research can be found here: How Groove Gang is shaking up the Ransomware-as-a-Service market to empower affiliates

This week's Threat Intel news in 6 minutes:New malware technique observed using CLFS log files to evade detection.REvil returns after 2 months of hiding, attacks UK based ITSP with DDoS attacks.Babuk source code leaked by ransomware developer dying due to stage 4 lung cancer.

With David on holiday, Ahmed and I are holding down the fort for this week's Kaspersky Transatlantic Cable podcast.   We open the show with a pair of stories about Apple. In the first, the company is holding off on the rollout of its controversial CSAM — for now. Then, we look at the aftermarket for iPhone chargers, which includes the OMG Cable, a charger with a built in hotspot that steals credentials, and Ahmed continues his habit of making me look dumb with his obscure trivia.   Getting back to our slate of stories, we discuss a new vulnerability in Confluence that further bolsters our “updates are important” stance. (Despite the patch being available, criminals are exploiting this PoC for those who have yet to update their servers.)   From there we head to the infosec drama story of the week, with the ransomware-as-a-service gang. In this story, a former member of the group has leaked the source code for Babuk Locker on a criminal forum. The note attached to the leak is one for the ages, including terminal cancer and the phrase “I will have time to live like a human.”   From there, it's over to Latin America, where El Salvador has become the first country to embrace Bitcoin, including issuing $30 in the cryptocurrency to users who install the government-backed wallet.   To close out the podcast, we discuss NFTs and a fraudulent Banksy NFT that sold for more than $330,000. In a happy turn of events, the buyer was refunded most of the money.

VIDEO ZDE: Apple pod nátlakem pozastavil plán scanovat všechna svá zařízení – SecurityCast Ep#74 - YouTube Apple pozastavil plány skenovat zařízení pro škodlivý materiál s dětskou pornografií; Malware Snake Keylogger se přes prázdniny dostal do Top 3 nejrozšířenějších škodlivých kódů na světě; Na ruském hackerském fóru zveřejnil údajný člen ransomware skupiny Babuk úplný zdrojový kód tohoto ransomwaru; Aktivní zneužívání Confluence Server & Confluence Data Center: CVE-2021-26084; Novinky okolo LockFile ransomwaru; Doporučení pro manažery KB se týká rozsáhlých phishingových kampaní, které zneužívají open redirect odkazy. Sledujte nás na Twitteru @AlefSecurity a @Jk0pr.

Bro. Darrel Babuk is an architect specializing in heritage buildings and historical preservation. In this Square & Compass episode, we discuss how his career as an architect affects his understanding of Freemasonry. You can contact Bro. Babuk at: Boreas Architecture & Civic Design Inc. dbabuk@boreasarchitecture.ca (www.boreasarchitecture.ca). It was a pleasure having him once again appear on the Podcast, to review some amazing pictures of beautiful Masonic Temples/Lodges and Buildings! Learn about funding opportunities for heritage buildings here: https://nationaltrustcanada.ca/what-we-offer/funding-for-historic-places All opinions expressed are those of Square & Compass Promotions and the guest(s), and do not necessarily reflect the opinions of the Windsor Masonic Temple and/or the Grand Lodge of Canada in the Province of Ontario.

There has been a worrying rise in ransomware activity. Recent attacks on organizations like the Houston Rockets and the emergence of Babuk ransomware have caused major concern. Tyler Moffitt, Senior Security Analyst at Webroot, an OpenText company, returns to the podcast to address these developments and how companies can protect themselves through multi-level security planning.

In this weeks episode: Doppelpaymer looks to be performing a fairy obvious rebrand, The Babuk groups new ransomware forum ironically held to ransom, the no more ransom initiative saves over a billion in payments after 5 years in operation.

On this week's edition of the Kaspersky Transatlantic Cable podcast, Ahmed, Dave, and I discuss a variety of topics. We kick off the program with a story from the EU and a new look at making Bitcoin and other cryptocurrencies more trackable. The proposed changes in the EU could take up to two years to enact, and we have a lot of questions. From there, we jump to a story about a ransomware hit on ransomware group Babuk. After that, it's Dave's interview about the dangers of image-based sexual abuse and how we can stop it. Then, it's off to a round of our recurring quiz, where I continue to suck. Then, following a break for our second interview —a look at a new children's book featuring Midori Kuma — it's the latest in REvil-v-Kaseya saga. In this latest wrinkle, Kaseya obtained a universal decryptor. Finally, it's back to the UK, where a leak of gun forum users has gun owners on edge, and a brief discussion of Amazon shutting down NSO activity on its servers.

On this week's show Patrick Gray and Adam Boileau discuss recent security news, including: Analysis suggests the Kaseya REvil incident was actually a bit of a fizzer They also obtained a decrypt key and no one knows how EU to follow US Treasury on Bitcoin controls Israeli Government has eyes on NSO fallout PetitPotam Active Directory technique is very bad news Much, much more… This week's show is brought to you by Remediant. Remediant makes a PAM solution that's, well, quite different from the traditional password-vault style solutions. That's put them in an interesting situation lately with Gartner. Remediant scored an honourable mention as a PAM to take note of, alongside Microsoft, but the thing is they don't even qualify as a PAM vendor under Gartner's own criteria. This might mean the analyst firms need to re-jig the way they evaluate and rank tech given there are so many more ways to skin cats these days. Remediant co-founder Paul Lanzi will join me in this week's sponsor slot to talk through all of that. Links to everything that we discussed are below and you can follow Patrick or Adam on Twitter if that's your thing. Show notes Security Researchers' Hunt to Discover Origins of the Kaseya VSA Mass Ransomware Incident Kaseya says it didn't pay ransomware gang for decryption key after hacks affected hundreds Kaseya obtains universal decryptor for REvil ransomware victims Joe Tidy on Twitter: "The impact of the South African port cyber attack is getting worse. The Road Freight Association (RFA) said it was “dismayed and gravely concerned” about the cyber-attack on Durban Port. https://t.co/iT1WAP165Z https://t.co/ipssCVfSIo" / Twitter Port cyber attack: Now Road freighters concerned about goods Chat logs show how Egregor, an $80 million ransomware gang, handled negotiations with little mercy FBI tracking more than 100 active ransomware groups New Haron ransomware gang emerges, borrows from Avaddon and Thanos - The Record by Recorded Future BlackMatter ransomware targets companies with revenue of $100 million and more - The Record by Recorded Future Spammer floods the Babuk ransomware gang's forum with gay porn GIFs - The Record by Recorded Future No More Ransom celebrates success in helping 600k people recover from ransomware attacks | The Daily Swig Justice Department officials urge Congress to pass ransomware notification law New EU legislation to ban anonymous cryptocurrency wallets, transfers - The Record by Recorded Future Government said to form team to deal with fallout of NSO spyware revelations | The Times of Israel ‘If You're Not A Criminal, Don't Be Afraid'—NSO CEO On ‘Insane' Hacking Allegations Facing $1 Billion Spyware Business NSO Group CEO Claims BDS Is Probably Behind Damning Investigation New PetitPotam attack forces Windows servers to authenticate with an attacker - The Record by Recorded Future HD Moore on Twitter: "It is wild to see *unauthenticated* RCE via NTLM relay attacks, again, in 2021: https://t.co/CiS4bKH8oV (decades since smbrelay / karma / karmetasploit PoCs)" / Twitter KB5005413: Mitigating NTLM Relay Attacks on Active Directory Certificate Services (AD CS) A Controversial Tool Calls Out Thousands of Hackable Websites | WIRED IDEMIA fixes vulnerability that can allow threat actors to open doors remotely - The Record by Recorded Future PlugwalkJoe Does the Perp Walk – Krebs on Security UK man arrested in Spain for role in Twitter 2020 hack - The Record by Recorded Future Praying Mantis APT targets IIS servers with ASP.NET exploits - The Record by Recorded Future Botnet operator who proxied traffic for other cybercrime groups pleads guilty - The Record by Recorded Future Chinese hacking group APT31 uses mesh of home routers to disguise attacks - The Record by Recorded Future VPN servers seized by Ukrainian authorities weren't encrypted | Ars Technica Accused CIA leaker Joshua Schulte allowed to represent himself at next Vault 7 trial Seriously Risky Business

This week: Dr. Doug talks Elon saying scary things, Exotic Programming languages, Babuk, Kaseya, Petitpotam, litigation and of course the Expert Commentary of Jason Wood on this edition of the Security Weekly News!   Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn137

This week: Dr. Doug talks Elon saying scary things, Exotic Programming languages, Babuk, Kaseya, Petitpotam, litigation and of course the Expert Commentary of Jason Wood on this edition of the Security Weekly News!   Show Notes: https://securityweekly.com/swn137 Visit https://www.securityweekly.com/swn for all the latest episodes!   Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly

This week: Dr. Doug talks Elon saying scary things, Exotic Programming languages, Babuk, Kaseya, Petitpotam, litigation and of course the Expert Commentary of Jason Wood on this edition of the Security Weekly News!   Show Notes: https://securityweekly.com/swn137 Visit https://www.securityweekly.com/swn for all the latest episodes!   Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly

In this week's bulletin we're discussing:Criminal VPN service taken down by law enforcement, who claim to have seized customer logs.Code to exploit windows print spooler service accidentally released, disable ASAP.Babuk ransomware building tool leaked to VT and immediately used by copycats.

On this week’s Cyber Security Brief podcast, Dick O’Brien fills us in on the latest research we have published on our blog about how a growing number of ransomware attackers are using virtual machines in their attacks. We also discuss a few other ransomware-related stories, including REvil introducing a new Linux version of its ransomware, a Babuk ransomware builder being leaked online, and a couple of stories showing the amount of money that can be involved in ransomware operations. Elsewhere, the FBI recently released a report stating that over-60s lost around $1 billion through online fraud in 2020, the U.S. Secret Service released a cyber crime Most Wanted list, a FIN7 gang member was jailed, and the EU launched a new cyber security unit.

22 mai 2021 Shamelessplug iHack 19 juin Formation cybersécurité aux entreprises - Séminaire de Sherbrooke - Réussi! FIC 2021 (7, 8 & 9 septembre) 15 au 19 novembre, Hack in Paris Hackfest Shop Join Discord Shownotes and Links 20210512 - «La brèche»: l'affaire Huawei, comme un film à suspense 20210521 - FBI: Conti ransomware gang attacked more than 400 orgs, including 911 centers La ville de Fullerton retire ses accusations de piratage contre deux bloggeurs ayant dévoilé des failles de sécurité Les méchants utilisent la désinformation anti-vaxx pour profiter de la pandémie Incluant un exemple cocasse d'abus de QR-code en Australie Un black market stoppé par les Douanes Françaises. Des rebonds possibles avec des pirates Québécois ? Pièces d'identité, photographies … un pirate informatique diffuse des centaines de documents de clients et clientes d'une boutique canadienne de vente de cannabis. Oculus Quest 2: vous valez au moins 500$ pour Facebook 20210521 - Mobile Punch: une appli provoque un énorme conflit Apple défend le modèle du Apple AppStore en invoquant que les logiciels installés par les utilisateurs représentent un “risque inacceptable”. Le business du ransomware possède de multiples ramifications économiques toutes aussi étonnantes que inquiétantes. Après le traducteur, le graphiste, le webmaster, voici le fournisseur de Service Après-vente pour groupes de maîtres chanteurs. Les pirates informatiques cachés derrière le groupe de rançonneurs Darkside ne répondent plus. Ont-ils décidé de changer de nom et de méthode ou les autorités viennent-elles de mettre fin à leur business pirate ? Le groupe de pirates informatiques caché derrière le ransomware Babuk vient de diffuser 250Go de données appartenant à la police de Washington. Les autorités ont voulu payer, mais pas assez pour les pirates ! 20210519 - Israel bombed two Hamas cyber targets Segment Vulnérabilité Disclaimer On vous rappelle de toujours respecter les lois en vigueur, et en cas de doute, n'hésitez pas à consulter un professionnel du droit afin de toujours rencontrer vos obligations en tant que citoyens responsables. Preuve - ClicSanté Reportage TVA Risk = 4/5 Éric Caire Preuve QR Code Retportage TVA Risk = 5/5 Éric Caire Échelle de risque (changement possible) Vulnérabilité Gouvernementale: 0 / 5 Éric Caire = Aucun Risque 5 / 5 Éric Caire = Risque Critique Vulnérabilité autre: 0 / 5 Steve Waterhouse = Aucun Risque 5 / 5 Steve Waterhouse = Risque Critique Crew Patrick Mathieu Steve Waterhouse Jacques Sauvé Damien Bancal Richer Dinelle Guillaume Morissette Crédits Montage audio par Hackfest Communication Music Cardamohm - A Seed - Take Off Locaux virtuels par 8x8

Tras 10 años de secretismo bajo acuerdo de confidencialidad, ya sabemos lo que pasó en el famoso hackeo a la RSA y sus tokens SecureID. Si usas productos de Apple, vigila, problemas de privacidad en la plataforma Find My de Apple pueden exponer tu ubicación y anonimato. Unos periodistas tardan menos de 10 minutos en encontrar la cuenta de pagos online del presidente Joe Biden tras un inocente comentario. El nuevo ataque "scheme flooding" de rastreo y desanonimización de usuarios de la web, conoce las aplicaciones que tienes instaladas. Continúan los ataques ransomware, esta vez la víctima es la policía metropolitana de Washington con consecuencias muy graves. Una vulnerabilidad de 21 años permite comprometer el sistema de entretenimiento de aeronaves Boeing 747, pero que no cunda el pánico, porque este sistema se ha retirado del mercado. Notas y referencias en tierradehackers.com Twitch: twitch.tv/tierradehackers

This podcast will give you a summary of the latest news related to cyber intelligence and proactive cyber security in only a few minutes. The podcast is aimed at professionals who are short on time, or for anyone who would like to know a bit more about what is REALLY happening out there in the cyber world. The focus of this podcast will be on the latest cyber events for non-technical people; anyone can listen and understand. ---- https://news.nucleon.sh/2021/05/24/cyber-news-update-63/(opens in a new tab) One of the USA's largest pipelines, which carries refined gasoline and jet fuel from Texas up the East Coast to New York, was forced to shut down after being hit by ransomware in a vivid demonstration of the vulnerability of energy infrastructure to cyberattacks. The operator of the system, Colonial Pipeline had shut down its 5,500 miles of pipeline, which it says carries 45 percent of the East Coast’s fuel supplies, in an effort to contain the breach. Also, An Incident that happened a while ago and worth mentioning is potentially sensitive information leak from the Washington, D.C., police department that was allegedly breached by a ransomware attack from a group seeking a payout. A group called Babuk claimed to be behind the attack. In a post made on its website, the group threatened to release information pulled from the department's systems if they were not paid an undisclosed amount. Screenshots of alleged arrest records and internal memos were posted on Babuk's website and re-shared online. Sensitive information was not revealed as much as it's known. That’s it for this podcast, stay safe and see you in the next podcast. Don’t forget to visit www.cybercure.ai for the latest podcasts on cyber intelligence.

Welcome to episode 202 of the Kaspersky Transatlantic Cable podcast. While much of the cyberworld will be juggling sales pitches and panels at RSA, we’re focusing on stories that will have more of an immediate impact on your security needs. We open the episode discussing the latest with DarkSide. Are they dead? Did they hit Toshiba? Moving along, we discuss the reemergence of Fin7 and its posing as a legitimate cybersecurity research firm. Staying on the topic of crime, but in sunny Brazil, the LatAm arm of our Global Research and Analysis team (GReAT) takes a look at an emergent financial Trojan called Bizarro. I chat with Fabio Assolini from the team to see why people should care and why the region is such a hotbed of financial crime. Then it’s the latest in the DC Police vs. Babuk. It seems police tried to negotiate a ransom, but the crooks were not too interested. We then take a look at the need for patching at home and the office with Maria Namestnikova of GReAT Russia. To close out the podcast we discuss a new texting scam involving deliveries in the UK and a lot of money lost.

Today's podcast looks at questions raised by announcements from the Darkside, REvil and Babuk ransomware gangs, and a possible explanation of why a U.S. pipeline had to shut last week after a ransomware attack

Questo il menu della puntata odierna:• Colonial Pipeline: cosa è successo veramente, tutti i dettagli.• Babuk vs Polizia di Washington: i retrosena.• Grave data breach al Ministero della Giustizia italiano.

In today's podcast we cover four crucial cyber and technology topics, including: 1. Babuk ransomware releases information of police after failure to pay 2. Researcher discloses vulnerabilities in Wi-Fi known as FragAttacks 3. Microsoft addresses wormable vulnerability exploiting HTTP protocol stack 4. Crypto.com suffers glitch slowing down transactions, duplicating purchases I'd love feedback, feel free to send your comments and feedback to  | cyberandtechwithmike@gmail.com

U.S. declares emergency in 17 states over fuel pipeline cyber attack Japanese manufacturer Yamabiko targeted by Babuk ransomware Microsoft May 2021 Patch Tuesday fixes 55 flaws, 3 zero-days Thanks to our episode sponsor, Altitude Networks Imagine an employee just left and went to a competitor: did they take proprietary documents or critical roadmaps with them? Did they add a backdoor access via personal accounts to documents? You’re a cloud-forward company on G Suite, how would you know your data is at risk? Altitude Networks can automatically tell you who is trying to steal your critical cloud data from G Suite and Office 365. Altitude Networks is addressing the data security gap in Google Workspace and Office 365. Check them out at AltitudeNetworks.com and be sure your sensitive data stays when your employees leave! For the stories behind the headlines, head to CISOseries.com.

In today's podcast we cover four crucial cyber and technology topics, including: 1. Australia and U.S. warn of "campaign" of Avaddon ransomware attacks 2. Babuk ransomware targets Japanese manufacturer after claiming possible retirement3. Threat actor compromises nearly 27% of TOR exit relays 4. New York authorities discover nearly 81% of Net Neutrality comments faked I'd love feedback, feel free to send your comments and feedback to  | cyberandtechwithmike@gmail.com

Updates on the DarkSide ransomware attack on Colonial Pipeline. Other ransomware strains, including Avaddon and Babuk are out, and dangerous. Guidelines on 5G threat vectors. Lemon Duck cryptojackers are looking for vulnerable Exchange Server instances. A bogus, malicious Chrome app is circulating by smishing. Ben Yelin examines an online facial recognition platform. Our guest is Mathieu Gorge of VigiTrust on the privacy risks of video and audio recordings. And an update on an espionage trial. For links to all of today's stories check out our CyberWire daily news brief: https://www.thecyberwire.com/newsletters/daily-briefing/10/90

ShadowTalk hosts Alec, Ivan, Sean, and Digital Shadows CISO, Rick, bring you the latest in threat intelligence. This week they cover: - Sean discusses Pulse Secure VPN vulnerabilities - what are the latest updates and who is being targeted? - The team talks about supply chain compromise - what is it? - Sean takes us through the DDoS attack on Belnet - Babuk is hanging up their hat - Ivan brings us the latest - Ryuk gets ahold of bio research through a student Get this week’s intelligence summary at: https://resources.digitalshadows.com/digitalshadows/weekly-intelligence-summary-07-may ***Resources from this week’s podcast*** Pulse Secure: https://www.bleepingcomputer.com/news/security/pulse-secure-fixes-vpn-zero-day-used-to-hack-high-value-targets/ Belnet: https://www.zdnet.com/article/this-massive-ddos-attack-took-large-sections-of-a-countrys-internet-offline/ Babuk: https://threatpost.com/babuk-ransomware-gang-mulls-retirement/165742/ Ryuk: https://www.zdnet.com/article/ryuk-ransomware-finds-foothold-in-bio-research-institute-through-a-student-who-wouldnt-pay-for-software/#ftag=RSSbaffb68 The Technology Adoption Lifecycle Of Genesis Market Blog: https://www.digitalshadows.com/blog-and-research/the-technology-adoption-lifecycle-of-genesis-market/ The Top 5 Dark Web Monitoring Use Cases Blog: https://www.digitalshadows.com/blog-and-research/the-top-5-dark-web-monitoring-use-cases/ Password Day Blog: https://www.digitalshadows.com/blog-and-research/creating-security-aware-passwords/ Also, don’t forget to reach out to - shadowtalk@digitalshadows.com

Compliance based legislation and Solarwinds data restoration is just too slow. Incident response, Babuk ransomware group targets the FBI, CISA and the United States, another supply chain breach this time with Passwordstate,  Vendors' thirst for customer data will hold back progress with zero knowledge architecture.  Microsoft 365 should be backed up and all backups are not created equally. And yes, self attestation is worthless.Eric TaylorTwitter: barricadecyberYoutube: barricade cyber solutions - YouTubewww.barricadecyber.comShiva MaharajTwitter: kontinuummspwww.kontinuum.com Articles mentioned:Ransomware gang Babuk claims DC's Metropolitan Police was last caper – then goes dark | SC Media (scmagazine.com)Illinois Attorney General computer system breached early Saturday morning | State and Regional News | qctimes.comPasswordstate users warned to ‘reset all passwords' after attackers plant malicious update | TechCrunchA ransomware gang made $260,000 in 5 days using the 7zip utility (bleepingcomputer.com)BARRICADE CYBER Ransomware Remediation Services, Incident Response and Penetration Testing.KONTINUUM IT support that's actually supportive.FASTMAIL Your data is for you, no one else. That includes your email, calendars, contacts, notes, and files! --- This episode is sponsored by · Anchor: The easiest way to make a podcast. https://anchor.fm/app Support this podcast: https://anchor.fm/amplifiedandintensified/support

This week's DMV Cap:NATIONALPfizer began Phase 1 clinical trials of the drug called PF-07321332.During a House committee meeting in Louisiana, State rep. Ray Garofalo Jr. proposed a controversial bill that would ban schools from teaching “divisive concepts” about race and sex; claims there was "good' in slavery.Disturbing bodycam footage shows two police officers placing arms and knees on Mario Gonzalez’s back to keep him restrained.The FDA  is working toward issuing proposed product standards to ban menthol as a flavor in cigarettes and ban all characterizing flavors (including menthol) in cigars.Tucker Carlson of Fox News Network wants you to confront people wearing masks, calling it “uncomfortable.” LOCALCongratulations Virginia for advancing equality across the state with the LGBTQ+ Advisory Board.For the first time in over 10 years, Virginia’s minimum wage has increased. The increase now makes minimum wage at $9.50.A group named Babuk has hacked the DC Police Department. They stole information from 5 officers’ that includes social security numbers, home addresses, cell phone numbers, polygraph results, name of relatives, health and financial information, and more.HOW WELL DO YOU KNOW THE DMV?**********Follow us: https://ifigaveadamn.com/ Facebook: http://facebook.com/ifigaveadamnInstagram: https://www.instagram.com/ifigaveadamn/Twitter: https://twitter.com/ifigaveadamn**********The views and opinions expressed in If I Gave a Damn! Podcast are those of the hosts or their guests and do not necessarily reflect the official policy or position of their employer. Any content provided by our bloggers or authors are of their opinion and are not intended to malign any religion, ethnic group, club, organization, company, individual or anyone or anything.**********#ifigaveadamn #IIGAD #podcast #podcasts #newepisode #washingtondc #maryland #virginia #dmv **********Sound Effects: ZapSplat

Possible data exposure at the Philippines’ Office of the Solicitor General. In the US, FISA surveillance targets dropped during 2020’s pandemic. The Babuk gang says it’s giving up encryption to concentrate on doxing. A new version of the Buer loader is out in the wild. Rick Howard looks at security in the energy sector. Betsy Carmelite from Booz Allen Hamilton on telemedicine security concerns. The US Justice Department undertakes a review of its cybersecurity policies and strategy. For links to all of today's stories check out our CyberWire daily news brief: https://www.thecyberwire.com/newsletters/daily-briefing/10/84

Questa settimana parliamo di:- Banca di Credito Cooperativo di Roma- La storia di Babuk e la Polizia di Washington- Laurent Perrier (champagne!)- PasswordState attaccato- 10.000 Antifurti Home a rischio- Rubati 20 Milioni di account da BigBasket- Digital Ocean subisce furto dei dati di pagamento dei clienti

Babuk ransomware operators announce shutdown Now we need to worry about deepfake satellite images QNAP hit with AgeLocker ransomware Thanks to our episode sponsor, Aptible Compliance teams have a ton of work to do such as completing access reviews, mitigating risks, and collecting evidence towards an audit pst Aptible Comply can help automate all of those things. The last thing the compliance team should be spending time on is sharing infosec documentation. That’s why we also created Rooms. Now your security docs are instantly available to your customers; no back-and-forth to sign NDAs, watermark docs, or provide new docs. Focus on compliance and help the sales team close deals with Rooms. Go to aptible.com/ciso to create your free Room now.

In this week's episode - Another supply chain style attack, this time breaches an enterprise password manager, Babuk gets uncomfortably close to the plot of a bond film, threatening to expose informants if ransom goes unpaid and the “most reliable” UK rail network hit by ransomware as directors mail account hijacked.

In today's podcast we cover four crucial cyber and technology topics, including: 1. Albany area school district cancels in class learning after ransomware attack 2. Criminals deploying "flubot" via SMS message centered on package tracking 3. Reverb music marketplace leaks user data 4. Babuk Group threatens to leak police data to local gangs if not paid I'd love feedback, feel free to send your comments and feedback to  | cyberandtechwithmike@gmail.com

FBI, CISA, detail SVR cyber activities. Nine US Combatant Commands see declassification as an important tool in information warfare. A convergence of OPSEC and privacy? Apple fixes a significant Gatekeeper bypass flaw. Babuk ransomware hits DC police. A new twist in credential harvesting. Ben Yelin considers the FTCs stance on racially biased algorithms. Our guest Tony Howlett from SecureLink tracks the evolution of threat hunting. And that was no hack; it was just a careless tweet. For links to all of today's stories check out our CyberWire daily news brief: https://www.thecyberwire.com/newsletters/daily-briefing/10/80

This week in the Security Weekly News: Dirty emojis, Nvidia zero-days, Shlayer, Cozy Bear, Emotet, Babuk, iOS 14.5, and Jason Wood returns for Expert Commentary!   Show Notes: https://securityweekly.com/swn117 Visit https://www.securityweekly.com/swn for all the latest episodes!   Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly

This week in the Security Weekly News: Dirty emojis, Nvidia zero-days, Shlayer, Cozy Bear, Emotet, Babuk, iOS 14.5, and Jason Wood returns for Expert Commentary!   Show Notes: https://securityweekly.com/swn117 Visit https://www.securityweekly.com/swn for all the latest episodes!   Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly

This week in the Security Weekly News: Dirty emojis, Nvidia zero-days, Shlayer, Cozy Bear, Emotet, Babuk, iOS 14.5, and Jason Wood returns for Expert Commentary!   Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn117

Update on the Codecov supply chain attack. The Babuk gang says they’ve debugged their decryptor. MI5 warns of “industrial scale” catphishing in LinkedIn. Positive Technologies responds to US sanctions. The US stands down the two Unified Coordination Groups it established to deal with the SolarWinds and Exchange Server compromises. Are all Five Eyes seeing eye-to-eye on China? Ben Yelin explains the legal side of the FBI removing webshells following the Microsoft Exchange Server hack. Our guest is May Habib from Writer on how the AI is helping the security industry with outdated and problematic terminology. And, psst: your kitchen appliances are a bunch of sellouts...or something. For links to all of today's stories check out our CyberWire daily news brief: https://www.thecyberwire.com/newsletters/daily-briefing/10/75

In today's podcast we cover four crucial cyber and technology topics, including: 1. Researchers find attackers exploit ProxyLogon to mine Monero 2. WhatsApp flaws could expose user sessions 3. Houston Rockets suffer ransomware, data theft 4. Michigan man sues police after facial recognition leads to false arrest I'd love feedback, feel free to send your comments and feedback to  | cyberandtechwithmike@gmail.com

*) Ex-cop charged in shooting of Black motorist Kim Potter, the white cop who shot and killed Black man Daunte Wright, has been arrested and charged with second degree manslaughter. Minneapolis has been roiled by nightly protests after Potter appeared to have mistaken her gun for her Taser when she killed Wright on Sunday. Meanwhile, protests are also continuing in major US cities against police brutality against people of colour. *) Derek Chauvin’s defence team face quagmire Staying in Minneapolis, Derek Chauvin’s defence team will continue presenting their case. Their latest witness, the former chief medical examiner for the state of Maryland, testified that George Floyd's heart problems and drug use contributed to a sudden heart attack that caused his death. The defence team, who’ve taken a knock in the trial so far, face a crucial decision over whether to put Chauvin on the witness stand. *) Denmark halts use of AstraZeneca vaccine Denmark has halted the use of the AstraZeneca's Covid-19 vaccine, becoming Europe's first country to do so. It's because of concerns about rare cases of blood clotting among recipients. The move could delay Denmark's vaccination programme by several weeks. *) Houston Rockets works with FBI after being hit by major cyberattack The Houston Rockets basketball team's internal systems have been hacked. Bloomberg reports that the Babuk hacking group claims to have stolen 500GB of data, including contracts, non-disclosure agreements and financial data. The Rockets have roped in the FBI to investigate the cyberattack. *) NFT art fetches $16.8M at Sotheby's An NFT piece by digital artist Pak has sold for a whopping $16.8M at a Sotheby's online auction. The Sotheby's sale had a complex structure, including a series of digital cubes which collectors could buy for $500 to $1,500 each, receiving a number of NFTs based on how many cubes they owned. Last month, an NFT piece sold for $69.3M at Christie’s, in the first sale ever by a major auction house of a piece of art that does not exist in physical form.

In this S&C Clip, Architect Bro. Darrel Babuk discusses the Danger of Deferred Maintenance for/on Masonic Buildings. All opinions expressed are those of Square & Compass Promotions and the guest(s), and do not necessarily reflect the opinions of the Windsor Masonic Temple and/or Grand Lodge of Canada in the Province of Ontario. Find the video here!

In this S&C Clip, Architect Bro. Darrel Babuk discusses how a Mason can "Live Life Like a Mason." All opinions expressed are those of Square & Compass Promotions and the guest(s), and do not necessarily reflect the opinions of the Windsor Masonic Temple and/or Grand Lodge of Canada in the Province of Ontario. Video for this clip available via Patreon!

In this S&C Clips, Bro. Darrel Babuk discusses the relationship between neuro-science and architecture, geometry, and how pleasing people find geometric ratios. All opinions expressed are those of Square & Compass Promotions and the guest(s), and do not necessarily reflect the opinions of the Windsor Masonic Temple and/or Grand Lodge of Canada in the Province of Ontario. Find the video here!

In this S&C Clip, Architect Bro. Darrel Babul discusses how, so often, "10%" of Masons do 90% of the work and, more importantly, how to avoid it! All opinions expressed are those of Square & Compass Promotions and the guest(s), and do not necessarily reflect the opinions of the Windsor Masonic Temple and/or the Grand Lodge of Canada in the Province of Ontario. You can find the video here!

In this S&C Clip, Architect Bro. Darrel Babuk discusses whether Geometry (and math) is invented by man or a discovery from the GAOTU. All opinions expressed are those of Square & Compass Promotions and the guest(s), and do not necessarily reflect the opinions of the Windsor Masonic Temple and/or Grand Lodge of Canada in the Province of Ontario. Find the video here!

In this S&C Clip, Darrel Babuk discusses the risks associated with underused heritage buildings (especially Masonic Temples). All opinions expressed are those of Square & Compass Promotions and the guest(s), and do not necessarily reflect the opinions of the Windsor Masonic Temple and/or the Grand Lodge of Canada in the Province of Ontario. You can find the video here!

Bro. Darrel Babuk is an architect specializing in heritage buildings and historical preservation. In this Square & Compass episode, we discuss how his career as an architect affects his understanding of Freemasonry. You can contact Bro. Babuk at: Boreas Architecture & Civic Design Inc. dbabuk@boreasarchitecture.ca (www.boreasarchitecture.ca). Bro. Babuk also shared the following excellent Masonic Links: https://www.urbanremainschicago.com/news-and-events/2018/02/10/demolition-nearing-its-end-on-clarence-hatzfelds-south-masonic-temple-building/ https://www.urbanremainschicago.com/news-and-events/2018/01/11/clarence-hatzfelds-south-side-masonic-temple-1921-undergoing-demolition/ https://www.urbanremainschicago.com/news-and-events/2017/10/19/remnants-lost-and-found-in-logan-square-masonic-temples-attic/. All opinions expressed are those of Square & Compass Promotions and the guest(s), and do not necessarily reflect the opinions of the Windsor Masonic Temple and/or the Grand Lodge of Canada in the Province of Ontario. You will be able to find the video here!