Podcasts about moveit transfer

In this episode of The Cybersecurity Defenders Podcast, we discuss some cutting-edge intel coming out of LimaCharlie's community Slack channel.A high-severity security vulnerability in Progress Software's MOVEit Transfer software could allow cyberattackers to get around the platform's authentication mechanisms — and it's been spotted being actively exploited in the wild just hours after it was made public.A new version of the P2P worm, P2PInfect, that targets Redis servers running on both Linux and Windows systems, which is aimed at deploying both ransomware and cryptocurrency mining payloads, is out in the wild.The polyfill.io domain, used for providing backward compatibility for older browsers, has been shut down amid accusations of malicious activity after recently being acquired by Chinese firm Funnull, and was allegedly redirecting users to malicious sites and employing evasion techniques. The Germany-based company behind the world-famous remote desktop software TeamViewer has confirmed that in 2016 TeamViewer software was compromised.

LockBit drops files that may or may not be from the Federal Reserve. Progress Software patches additional flaws in MOVEit file transfer software. A popular polyfil open source library has been compromised. DHS starts staffing up its AI Corps. Legislation has been introduced to evaluate the manual operations of critical infrastructure during cyber attacks. Researchers discover a new e-skimmer targeting CMS platforms. A breach at Neiman Marchus affects nearly 65,000 people. South African health services grapple with ransomware amidst a monkeypox outbreak.  Medusa is back. On the Learning Layer, Sam and Joe discuss the CISSP's CAT format and how to walk into test day with confidence. The VA works to clear the backlog caused by the ransomware attack onChange Healthcare. Our 2024 N2K CyberWire Audience Survey is underway, make your voice heard and get in the running for a $100 Amazon gift card. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest On our Learning Layer segment, host Sam Meisenberg and Joe Carrigan continue their discussion of Joe's ISC2 CISSP certification journey using N2K's comprehensive CISSP training course, which includes a simulated Computer Adaptive Test (CAT) final exam. Sam and Joe discuss the CISSP's CAT format and how to walk into test day with confidence. Good luck Joe! Selected Reading Lockbit Leaks Files for Evolve Bank & Trust in Its Alleged ‘Federal Reserve' Data Dump (Metacurity) Progress Software warns of new vulnerabilities in MOVEit Transfer and MOVEit Gateway (Cyber Daily) Polyfill supply chain attack hits 100K+ sites (Sansec) Exclusive: DHS hires first 10 AI Corps members (Axios) US House bill seeks to assess manual operations of critical infrastructure during cyber attacks (Industrial Cyber) Caesar Cipher Skimmer targets popular CMS used by e-stores (Security Affairs) Neiman Marcus confirms breach. Is the customer data already for sale? (Malwarebytes) South Africa's national health lab hit with ransomware attack amid mpox outbreak (The Record) New Medusa malware variants target Android users in seven countries (Bleeping Computer) After Crippling Ransomware Attack, VA Is Still Dealing with Fallout, Trying to Pay Providers (Military.com) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Citrix is gearing for HIMSS 2024 with a guest blog series featuring insights and innovations from some of our key partners. This first post is written by Jason Mafera, Healthcare Field CTO at IGEL Technology.You can visit Citrix and IGEL at HIMSS booth #3212 to hear more about how the partnership is helping to redefine healthcare IT, empower providers, and enhance patient care.For healthcare providers, it's not a matter of IF but WHEN you'll be impacted by ransomware, which unfortunately is still finding victims and impacting care delivery. After seeing a post-pandemic drop, the rate of ransomware is accelerating again. Two groups getting attention lately are CIOp and BlackCat (ALPHV). ClOp's MOVEit Transfer hack to date has affected 15 million people and 121 organizations. BlackCat (ALPHV), skilled at exfiltration, threatened to leak photos and sensitive data of a plastic surgeon's patients and, according to a Check Point report, previously leaked patients' photos and medical records after an attack against American healthcare provider LVHN earlier this year.Host: Andy WhitesideCo-host: Bill SuttonCo-host: Philip SellersCo-host: Todd Smith

iRobot Roomba Combo j7+: társ a takarításban Android Portál     2023-11-01 07:52:50     Infotech Otthon Párkapcsolat Innováció Robot Webáruház A robotporszívók piacán bőven van innováció, amit a legújabb Roomba is bizonyít. Az iRobot Roomba Combo j7+, amely itthon több webshopból és kereskedőtől is beszerezhető, az első padlótisztító robot, amely teljesen visszahúzható felmosóval rendelkezik. Ez lehetővé teszi, hogy a 2 az 1-ben robotporszívó és mop mindkét feladatot egyetlen takarítási m Olyat tud megjeleníteni az okostelefonod, amire eddig gondolni sem mertél Mínuszos     2023-11-01 06:33:25     Mobiltech Telefon MÁV Zrt. Okostelefon Böngésző Okostelefonon is megjeleníthetők a vasútállomások utastájékoztató tábláinak adatai: a rendkívüli forgalmi változások, menetidők, vágányszámok, figyelmeztetések. A Magyar Államvasutak közleménye szerint az adatok a mikorindul.hu címen keresztül érhetők el, amely után a kiválasztott állomás nevét kell a böngésző címsorába beírni. A megtekintést az eg Novembertől rendkívüli fényességgel ragyog a Jupiter a keleti égbolton Rakéta     2023-11-01 06:12:03     Tudomány Világűr A Naprendszer bolygókirályának is nevezett Jupiter most pénteken kerül oppozícióba, azaz a Földdel való szembenállásba. A bolygó 12 éves keringése során 2023 januárjában került a legközelebb a Naphoz. Így a 12 éves keringési ciklusában tavaly szeptemberben és idén novemberben van nagy oppozícióban, vagyis ekkor a legközelebbi és legfényesebb a Jupi Az Apple újradefiniálta a processzorok fogalmát Igényesférfi.hu     2023-11-01 09:27:04     Infotech Apple Halloween A techóriás halloweeni hangulatú “Scary Fast” névre keresztelt eseményén az érdeklődők ízelítőt kaphattak számos hardveres újdonságból, többek között az Apple újgenerációs processzorjai is bemutatkoztak. Az esemény elnevezése – “Scary Fast” – egyértelműen utal az Apple által kifejlesztett szilikon chipek új szériájára, mindemellett pedig az őszi id Rengeteg windowsos gépen ott van, és most bajba kerülhet, aki telepítette: támadás érte a CCleanert hvg.hu     2023-11-01 12:03:00     Infotech Windows A windowsos berkekben gyakran használt számítógép-karbantartó szoftver is áldozatául vált a MOVEit Transfer fájlátviteli szolgáltatást érintő támadássorozatnak, személyes adatok is illetéktelen kezekbe kerültek. Kvantum előtti csend IT Business     2023-11-01 10:37:51     Infotech Energia Mesterséges intelligencia Klímaváltozás A kvantum-számítástechnika azzal kecsegtet, hogy egy szép napon megoldja majd az emberiség előtt álló legbonyolultabb feladatokat, amelyekre ma még nem, vagy csupán korlátozott mértékben vagyunk képesek. A mesterséges intelligencia ipara, a mezőgazdaság, az egészségügy, az energiaszektor, a klímaváltozás az anyagtudományok – és még sokáig lehetne s Kiszivárgott képek alapján valóban sokkal kisebbnek tűnik a PlayStation 5 új változata PCW     2023-11-01 09:33:06     Infotech PlayStation A gigantikus eredetit egy lényegesen karcsúbb és alacsonyabb modell válthatja fel. Kerülhet-e a flow-ba a mesterséges intelligencia? Digital Hungary     2023-11-01 08:36:07     Infotech Mesterséges intelligencia Internet Hungary Vajon képesek lehetünk flow-ba hozni az algoritmust, vagy az képes flow-ba hozni minket? És mi történik, ha manipulatív célokra használják az így előidézett állapotot? A választ az Internet Hungary konferencián Vécsey Zsadány, az Aleas Group társalapítója adta meg. Az éjszakai béke megmentője InStyle Men     2023-11-01 09:05:48     Infotech Az éjszakákat ideális esetben alvással töltjük, de ha mégis ki kell kelni az ágyból, nem baj, ha nem vaksötétben botorkálunk. Kezdik nagyon komolyan venni a mesterséges intelligenciát a nyugati vezetők Tudás.hu     2023-11-01 07:36:16     Infotech Mesterséges intelligencia Titkosszolgálat A mesterséges intelligencia (artificial intelligence, AI) biztonságos alkalmazásáról és kockázatairól  kezdődik kétnapos magas szintű nemzetközi konferencia Angliában. A találkozót Bletchley Park kastélyában, a brit katonai hírszerzés kódfejtésre szakosodott egykori titkos központjában tartják. Itt működött a második világháború idején az a csoport Drónmegsemmisítő földi robotot mutatott be a Rheinmetall newtechnology.hu     2023-11-01 04:33:53     Cégvilág USA Drón Robot Az amerikai fegyvergyártó legújabb fejlesztése az ún. „okos közeli légvédelem” (Shorad) technológiáján nyugvó Skyranger 30 rendszer. A bűvös meghatározás mögött lényegében egy tankszerű, legénység nélküli föld-levegő fegyvert kell érteni. Az Amerikai Hadsereg Szövetség idei rendezvényén bemutatott jármű percenként 1250 darab 30 milliméteres lövedék Nagy változást hozhat az egészségügyben az MI HáziPatika     2023-11-01 07:33:00     Tudomány Mesterséges intelligencia Innováció A mesterséges intelligencia lehetőség, amely alapjaiban változtathatja meg az egészségügy működését, de addig még sok innovációs projektre és úttörő vállalati kezdeményezésre lesz szükség. 2023 legjobb találmányai: a 12 900 sörtés fogkefe, a Lego Braille kockák és a mesterséges intelligenciával működő járóbot hvg.hu     2023-11-01 10:03:00     Infotech USA Mesterséges intelligencia LEGO Az amerikai TIME magazin idén is összeállította az év 200 legjobb találmányának listáját. Az akadálymentesítés és a kisegítő lehetőségek terén bőven van miből válogatni. Nézzék az idei év legizgalmasabbjait azon eszközök közül, melyek megkönnyítik az idősebb vagy elesettebb emberek (és családtagjaik) életét.

iRobot Roomba Combo j7+: társ a takarításban Android Portál     2023-11-01 07:52:50     Infotech Otthon Párkapcsolat Innováció Robot Webáruház A robotporszívók piacán bőven van innováció, amit a legújabb Roomba is bizonyít. Az iRobot Roomba Combo j7+, amely itthon több webshopból és kereskedőtől is beszerezhető, az első padlótisztító robot, amely teljesen visszahúzható felmosóval rendelkezik. Ez lehetővé teszi, hogy a 2 az 1-ben robotporszívó és mop mindkét feladatot egyetlen takarítási m Olyat tud megjeleníteni az okostelefonod, amire eddig gondolni sem mertél Mínuszos     2023-11-01 06:33:25     Mobiltech Telefon MÁV Zrt. Okostelefon Böngésző Okostelefonon is megjeleníthetők a vasútállomások utastájékoztató tábláinak adatai: a rendkívüli forgalmi változások, menetidők, vágányszámok, figyelmeztetések. A Magyar Államvasutak közleménye szerint az adatok a mikorindul.hu címen keresztül érhetők el, amely után a kiválasztott állomás nevét kell a böngésző címsorába beírni. A megtekintést az eg Novembertől rendkívüli fényességgel ragyog a Jupiter a keleti égbolton Rakéta     2023-11-01 06:12:03     Tudomány Világűr A Naprendszer bolygókirályának is nevezett Jupiter most pénteken kerül oppozícióba, azaz a Földdel való szembenállásba. A bolygó 12 éves keringése során 2023 januárjában került a legközelebb a Naphoz. Így a 12 éves keringési ciklusában tavaly szeptemberben és idén novemberben van nagy oppozícióban, vagyis ekkor a legközelebbi és legfényesebb a Jupi Az Apple újradefiniálta a processzorok fogalmát Igényesférfi.hu     2023-11-01 09:27:04     Infotech Apple Halloween A techóriás halloweeni hangulatú “Scary Fast” névre keresztelt eseményén az érdeklődők ízelítőt kaphattak számos hardveres újdonságból, többek között az Apple újgenerációs processzorjai is bemutatkoztak. Az esemény elnevezése – “Scary Fast” – egyértelműen utal az Apple által kifejlesztett szilikon chipek új szériájára, mindemellett pedig az őszi id Rengeteg windowsos gépen ott van, és most bajba kerülhet, aki telepítette: támadás érte a CCleanert hvg.hu     2023-11-01 12:03:00     Infotech Windows A windowsos berkekben gyakran használt számítógép-karbantartó szoftver is áldozatául vált a MOVEit Transfer fájlátviteli szolgáltatást érintő támadássorozatnak, személyes adatok is illetéktelen kezekbe kerültek. Kvantum előtti csend IT Business     2023-11-01 10:37:51     Infotech Energia Mesterséges intelligencia Klímaváltozás A kvantum-számítástechnika azzal kecsegtet, hogy egy szép napon megoldja majd az emberiség előtt álló legbonyolultabb feladatokat, amelyekre ma még nem, vagy csupán korlátozott mértékben vagyunk képesek. A mesterséges intelligencia ipara, a mezőgazdaság, az egészségügy, az energiaszektor, a klímaváltozás az anyagtudományok – és még sokáig lehetne s Kiszivárgott képek alapján valóban sokkal kisebbnek tűnik a PlayStation 5 új változata PCW     2023-11-01 09:33:06     Infotech PlayStation A gigantikus eredetit egy lényegesen karcsúbb és alacsonyabb modell válthatja fel. Kerülhet-e a flow-ba a mesterséges intelligencia? Digital Hungary     2023-11-01 08:36:07     Infotech Mesterséges intelligencia Internet Hungary Vajon képesek lehetünk flow-ba hozni az algoritmust, vagy az képes flow-ba hozni minket? És mi történik, ha manipulatív célokra használják az így előidézett állapotot? A választ az Internet Hungary konferencián Vécsey Zsadány, az Aleas Group társalapítója adta meg. Az éjszakai béke megmentője InStyle Men     2023-11-01 09:05:48     Infotech Az éjszakákat ideális esetben alvással töltjük, de ha mégis ki kell kelni az ágyból, nem baj, ha nem vaksötétben botorkálunk. Kezdik nagyon komolyan venni a mesterséges intelligenciát a nyugati vezetők Tudás.hu     2023-11-01 07:36:16     Infotech Mesterséges intelligencia Titkosszolgálat A mesterséges intelligencia (artificial intelligence, AI) biztonságos alkalmazásáról és kockázatairól  kezdődik kétnapos magas szintű nemzetközi konferencia Angliában. A találkozót Bletchley Park kastélyában, a brit katonai hírszerzés kódfejtésre szakosodott egykori titkos központjában tartják. Itt működött a második világháború idején az a csoport Drónmegsemmisítő földi robotot mutatott be a Rheinmetall newtechnology.hu     2023-11-01 04:33:53     Cégvilág USA Drón Robot Az amerikai fegyvergyártó legújabb fejlesztése az ún. „okos közeli légvédelem” (Shorad) technológiáján nyugvó Skyranger 30 rendszer. A bűvös meghatározás mögött lényegében egy tankszerű, legénység nélküli föld-levegő fegyvert kell érteni. Az Amerikai Hadsereg Szövetség idei rendezvényén bemutatott jármű percenként 1250 darab 30 milliméteres lövedék Nagy változást hozhat az egészségügyben az MI HáziPatika     2023-11-01 07:33:00     Tudomány Mesterséges intelligencia Innováció A mesterséges intelligencia lehetőség, amely alapjaiban változtathatja meg az egészségügy működését, de addig még sok innovációs projektre és úttörő vállalati kezdeményezésre lesz szükség. 2023 legjobb találmányai: a 12 900 sörtés fogkefe, a Lego Braille kockák és a mesterséges intelligenciával működő járóbot hvg.hu     2023-11-01 10:03:00     Infotech USA Mesterséges intelligencia LEGO Az amerikai TIME magazin idén is összeállította az év 200 legjobb találmányának listáját. Az akadálymentesítés és a kisegítő lehetőségek terén bőven van miből válogatni. Nézzék az idei év legizgalmasabbjait azon eszközök közül, melyek megkönnyítik az idősebb vagy elesettebb emberek (és családtagjaik) életét.

This week, we discuss a data breach affecting Casio users in 149 countries, two zero-day vulnerabilities in Cisco's IOS XE web user interface, a slew of legal action against Progress Software following the MOVEit Transfer breach, and an update on last month's cyber attack on the International Criminal Court.

This week, we discuss another GDPR fine for TikTok relating to its processing of child users' personal information, more data breaches caused by MOVEit Transfer, including Sony Interactive Entertainment, and the exposure of a mammoth 3.8 billion data records.

Technology correspondent Mark Pesce joins Kathryn to talk about what appears to be the biggest hack of the year so far - the mass exploitation of MOVEit Transfer software which has affected at least 60m people - probably more. He'll look at the Clop ransomware and the gang behind it, the threats they've made and who's been affected so far. There's been a cyber attack that has taken massive telescopes offline in Hawaii and Chile. Thousands of 'white hat' hackers at DEFCON have tried to break the latest AI chatbots in an attempt to point out their vulnerabilities - we should all be a bit worried. And Zoom's CEO has been caught out in a moment of honesty.

Sophos analyzes malvertising through purchased Google Ads. The MOVEit vulnerability is remediated faster than most. The DeliveryCheck backdoor is used against Ukrainian targets. SORM is under stress. Ukrainian police roll up another bot farm working in support of Russian influence operations. AJ Nash from ZeroFox provides insights on the White House cybersecurity labeling program. David Moulton from Palo Alto Networks Unit 42 introduces his new segment "Threat Vector." And we bid farewell to Kevin Mitnick. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/137 Selected reading. Bad ad fad leads to IcedID, Gozi infections (Sophos News) New research reveals rapid remediation of MOVEit Transfer vulnerabilities (Bitsight)  GRIT Ransomware Report-2023-Q2 (Guidepoint Security)  Russia's Turla hackers target Ukraine's defense with spyware (Record)  Russian Hackers Probe Ukrainian Defense Sector With Backdoor (Bank Info Security)  Russia's vast telecom surveillance system crippled by withdrawal of Western tech, report says (Record)  Ukraine's cyber police dismantled a massive bot farm spreading propaganda (Security Affairs) Kevin David Mitnick, August 6, 1963 - July 16, 2023. (Dignity Memorial)

Clop's data theft and extortion campaign against MoveIt Transfer customers marks some of the most high-profile threat activity this year, but its success level remains unclear.

DSSuite Didier Toolbox Cokcer Image Update https://isc.sans.edu/diary/DSSuite%20%28Didier%27s%20Toolbox%29%20Docker%20Image%20Update/30008 More MoveIT Flaws and new Service Pack https://community.progress.com/s/article/MOVEit-Transfer-2020-1-Service-Pack-July-2023 Cisco Nexus 9000 Flaw https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aci-cloudsec-enc-Vs5Wn2sX

DSSuite Didier Toolbox Cokcer Image Update https://isc.sans.edu/diary/DSSuite%20%28Didier%27s%20Toolbox%29%20Docker%20Image%20Update/30008 More MoveIT Flaws and new Service Pack https://community.progress.com/s/article/MOVEit-Transfer-2020-1-Service-Pack-July-2023 Cisco Nexus 9000 Flaw https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aci-cloudsec-enc-Vs5Wn2sX

US and Canadian agencies warn of Truebot. A look at "Operation Brainleaches." Jumpcloud resets API keys. An update on the MOVEit vulnerability exploitation. Andrea Little Limbago from Interos shares insights on rising geopolitical instability. Our guest is Mike Hamilton from Critical Insight discussing what you need to know about NIST 2.0. OSCE trains Ukrainian students in cybersecurity. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/128 Selected reading. CISA and Partners Release Joint Cybersecurity Advisory on Newly Identified Truebot Malware Variants (Cybersecurity and Infrastructure Security Agency CISA) Increased Truebot Activity Infects U.S. and Canada Based Networks | CISA (Cybersecurity and Infrastructure Security Agency CISA)  Operation Brainleeches: Malicious npm packages fuel supply chain and phishing attacks (ReversingLabs) Mandatory JumpCloud API Key Rotation (JumpCloud) JumpCloud resets admin API keys amid ‘ongoing incident' (BleepingComputer) JumpCloud Says All API Keys Invalidated to Protect Customers (SecurityWeek) More organizations confirm MOVEit-related breaches as hackers claim to publish stolen data (TechCrunch) Important information about MOVEit Transfer cyber security incident | Shell Global (Shell Global) Shell Confirms MOVEit-Related Breach After Ransomware Group Leaks Data (SecurityWeek) OSCE helps future generation of Ukraine's law enforcers and emergency personnel build skills for safe work in cyberspace (OSCE)

Podcast: Control Loop: The OT Cybersecurity Podcast (LS 33 · TOP 5% what is this?)Episode: OT cybersecurity concerns in the federal space.Pub date: 2023-06-28The US Department of Energy was affected by Cl0p exploitation of MOVEit Transfer. Canada's oil-and-gas sector is a likely target for Russian cyberattacks. Nuclear weapons cybersecurity is lacking. Access to a US satellite is being hawked in a Russophone cybercrime forum. ICS patches.Today's guest is Christopher Ebley from Blackwood talking with us about OT cybersecurity concerns for Federal IT leaders.The Learning Lab has part one of a 3-part discussion between Dragos' Mark Urban and Vulnerability Analyst Logan Carpenter talking about vulnerabilities in the OT world.Control Loop News Brief.US Department of Energy affected by Cl0p exploitation of MOVEit Transfer.US government hit by Russia's Clop in MOVEit mass attack (The Register)Energy Department among ‘several' federal agencies hit by MOVEit breach (Federal News Network)Canada's oil-and-gas sector a likely target for Russian cyberattacks.The cyber threat to Canada's oil and gas sector (Canadian Centre for Cyber Security)Nuclear weapons cybersecurity is lacking.Nuclear Weapons Cybersecurity: Status of NNSA's Inventory and Risk Assessment Efforts for Certain Systems (GAO)Access to a US satellite is being hawked in a Russophone cybercrime forum.Military Satellite Access Sold on Russian Hacker Forum for $15,000 (HackRead)ICS patches.ICS Patch Tuesday: Siemens Addresses Over 180 Third-Party Component Vulnerabilities (SecurityWeek)CISA Releases Four Industrial Control Systems Advisories (CISA)Lessons learned from the electrical power sector.Electric Industry Cybersecurity: Lessons Learned from the Frontlines (Dragos)Control Loop Interview.The interview is with Christopher Ebley of Blackwood talking about OT cybersecurity concerns for Federal IT leaders.Control Loop Learning Lab.On the Learning Lab, Mark Urban is joined by Dragos Vulnerability Analyst Logan Carpenter in the first of three segments to discuss vulnerabilities in the OT world.Control Loop OT Cybersecurity Briefing.A companion monthly newsletter is available through free subscription and on the CyberWire's website.The podcast and artwork embedded on this page are from N2K Networks, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

The US Department of Energy was affected by Cl0p exploitation of MOVEit Transfer. Canada's oil-and-gas sector is a likely target for Russian cyberattacks. Nuclear weapons cybersecurity is lacking. Access to a US satellite is being hawked in a Russophone cybercrime forum. ICS patches. Today's guest is Christopher Ebley from Blackwood talking with us about OT cybersecurity concerns for Federal IT leaders. The Learning Lab has part one of a 3-part discussion between Dragos' Mark Urban and Vulnerability Analyst Logan Carpenter talking about vulnerabilities in the OT world. Control Loop News Brief. US Department of Energy affected by Cl0p exploitation of MOVEit Transfer. US government hit by Russia's Clop in MOVEit mass attack (The Register) Energy Department among ‘several' federal agencies hit by MOVEit breach (Federal News Network) Canada's oil-and-gas sector a likely target for Russian cyberattacks. The cyber threat to Canada's oil and gas sector (Canadian Centre for Cyber Security) Nuclear weapons cybersecurity is lacking. Nuclear Weapons Cybersecurity: Status of NNSA's Inventory and Risk Assessment Efforts for Certain Systems (GAO) Access to a US satellite is being hawked in a Russophone cybercrime forum. Military Satellite Access Sold on Russian Hacker Forum for $15,000 (HackRead) ICS patches. ICS Patch Tuesday: Siemens Addresses Over 180 Third-Party Component Vulnerabilities (SecurityWeek) CISA Releases Four Industrial Control Systems Advisories (CISA) Lessons learned from the electrical power sector. Electric Industry Cybersecurity: Lessons Learned from the Frontlines (Dragos) Control Loop Interview. The interview is with Christopher Ebley of Blackwood talking about OT cybersecurity concerns for Federal IT leaders. Control Loop Learning Lab. On the Learning Lab, Mark Urban is joined by Dragos Vulnerability Analyst Logan Carpenter in the first of three segments to discuss vulnerabilities in the OT world. Control Loop OT Cybersecurity Briefing. A companion monthly newsletter is available through free subscription and on the CyberWire's website.

Join your favorite hosts, @Eden and @Amitai, on the latest "Crying Out Cloud" rollercoaster

CISA last week said several federal agencies suffered data breaches resulting from a MoveIt Transfer zero-day vulnerability, though it's unclear what type of data was stolen.

[Referências do Episódio] - MOVEit Transfer and MOVEit Cloud Vulnerability - https://www.progress.com/security/moveit-transfer-and-moveit-cloud-vulnerability  - Hijacking S3 Buckets: New Attack Technique Exploited in the Wild by Supply Chain Attackers  - https://checkmarx.com/blog/hijacking-s3-buckets-new-attack-technique-exploited-in-the-wild-by-supply-chain-attackers/ - Understanding Malware-as-a-Service - https://securelist.com/malware-as-a-service-market/109980/  - Mystic Stealer: The New Kid on the Block - https://www.zscaler.com/blogs/security-research/mystic-stealer - Microsoft Response to Layer 7 Distributed Denial of Service (DDoS) Attacks - https://msrc.microsoft.com/blog/2023/06/microsoft-response-to-layer-7-distributed-denial-of-service-ddos-attacks/    [Ficha técnica] Apresentação: Carlos Cabral Roteiro: Carlos Cabral e Daniel Venzi Edição de áudio: Paulo Arruzzo Narração de encerramento: Bianca Garcia Projeto gráfico: Julian Prieto

Welcome to Cyber Briefing, the newsletter that informs you about the latest cybersecurity advisories, alerts, incidents and news every weekday.

There are shocking revelations about a US Government data suck-up, historic security breaches at Windsor Castle, and the MOVEit hack causes consternation.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault, joined this week by The Cyberwire's Dave Bittner.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:Declassified files reveal ‘large number' of security scares at Windsor Castle - Metro.Intruder at Windsor: Security 400 scared of unpleasant Andrew' to turn away fantasist - Express.The US Is Openly Stockpiling Dirt on All Its Citizens - Wired.I don't care about cookies browser plugin.MOVEit hack: Media watchdog Ofcom latest victim of mass hack - BBC News.BBC, BA and Boots issued with ultimatum by cyber gang Clop - BBC News.Ukrainian police arrest multiple Clop ransomware gang suspects - TechCrunch.BBC and British Airways affected by data breach at payroll company Zellis - The Record.BA, Boots and BBC staff details targeted in Russia-linked cyber-attack - The Guardian.Zero-Day Vulnerability in MOVEit Transfer Exploited for Data Theft - Mandiant.MOVEit Transfer and MOVEit Cloud Vulnerability - Progress.MOVEit announces second vulnerability; Minnesota schools agency breached with original bug - The Record.An Update on the Steps We are Taking to Protect MOVEit Customers - Ipswitch.Spider-Man: Across the Spider-Verse - IMDB.Spider-Man: Across the Spider-Verse trailer - YouTube.The Muppets Mayhem - Disney+.The Muppets Mayhem trailer - YouTube.

Clop, the ransomware gang responsible for exploiting a critical security vulnerability in a popular corporate file transfer tool, has begun listing victims of the mass-hacks, including a number of U.S. banks and universities. The Russia-linked ransomware gang has been exploiting the security flaw in MOVEit Transfer, a tool used by corporations and enterprises to share.

Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the livestream of this episode here. The team from Splunk will discuss the latest security news, including: - Fortinet fixes critical RCE flaw in Fortigate SSL-VPN devices, patch now - Barracuda Urges Replacing — Not Patching — Its Email Security Gateways - MOVEit Transfer Vulnerability Advisory from CISA - STRT Analytic Story for MOVEit Transfer vulnerability - Americans should prepare for cyber sabotage from Chinese hackers, US official warns - Binding Operational Directive 23-02 - How North Korea's Hacker Army Stole $3 Billion in Crypto, Funding Nuclear Program  

It was a disastrous week for cryptocurrency in the United States, as the Securities Exchange Commission (SEC) filed suit against the two biggest exchanges, Binance and Coinbase, on a theory that makes it nearly impossible to run a cryptocurrency exchange that is competitive with overseas exchanges. Nick Weaver lays out the differences between “process crimes” and “crime crimes,” and how they help distinguish the two lawsuits. The SEC action marks the end of an uneasy truce, but not the end of the debate. Both exchanges have the funds for a hundred-million-dollar defense and lobbying campaign. So you can expect to hear more about this issue for years (and years) to come. I touch on two AI regulation stories. First, I found Mark Andreessen's post trying to head off AI regulation pretty persuasive until the end, where he said that the risk of bad people using AI for bad things can be addressed by using AI to stop them. Sorry, Mark, it doesn't work that way. We aren't stopping the crimes that modern encryption makes possible by throwing more crypto at the culprits.  My nominee for the AI Regulation Hall of Fame, though, goes to Japan, which has decided to address the phony issue of AI copyright infringement by declaring that it's a phony issue and there'll be no copyright liability for their AI industry when they train models on copyrighted content. This is the right answer, but it's also a brilliant way of borrowing and subverting the EU's GDPR model (“We regulate the world, and help EU industry too”). If Japan applies this policy to models built and trained in Japan, it will give Japanese AI companies at least an arguable immunity from copyright claims  around the world. Companies will flock to Japan to train their models and build their datasets in relative regulatory certainty. The rest of the world can follow suit or watch their industries set up shop in Japan. It helps, of course, that copyright claims against AI are mostly rent-seeking by Big Content, but this has to be the smartest piece of international AI regulation any jurisdiction has come up with so far. Kurt Sanger, just back from a NATO cyber conference in Estonia, explains why military cyber defenders are stressing their need for access to the private networks they'll be defending. Whether they'll get it, we agree, is another kettle of fish entirely. David Kris turns to public-private cooperation issues in another context. The Cyberspace Solarium Commission has another report out. It calls on the government to refresh and rethink the aging orders that regulate how the government deals with the private sector on cyber matters. Kurt and I consider whether Russia is committing war crimes by DDOSing emergency services in Ukraine at the same time as its bombing of Ukrainian cities. We agree that the evidence isn't there yet.  Nick and I dig into two recent exploits that stand out from the crowd. It turns out that Barracuda's security appliance has been so badly compromised that the only remedial measure involve a woodchipper. Nick is confident that the tradecraft here suggests a nation-state attacker. I wonder if it's also a way to move Barracuda's customers to the cloud.  The other compromise is an attack on MOVEit Transfer. The attack on the secure file transfer system has allowed ransomware gang Clop to download so much proprietary data that they have resorted to telling their victims to self-identify and pay the ransom rather than wait for Clop to figure out who they've pawned. Kurt, David, and I talk about the White House effort to sell section 702 of FISA for its cybersecurity value and my effort, with Michael Ellis, to sell 702 (packaged with intelligence reform) to a conservative caucus that is newly skeptical of the intelligence community. David finds himself uncomfortably close to endorsing our efforts. Finally, in quick updates: Nick talks about Tesla's Full Self Driving, and the accidents it has been involved in I warn listeners that Virginia has joined the ranks of states that require an ID proving age to access Pornhub. I predict that twenty states will adopt such a requirement in the next year Download 462nd Episode (mp3) You can subscribe to The Cyberlaw Podcast using iTunes, Google Play, Spotify, Pocket Casts, or our RSS feed. As always, The Cyberlaw Podcast is open to feedback. Be sure to engage with @stewartbaker on Twitter. Send your questions, comments, and suggestions for topics or interviewees to CyberlawPodcast@gmail.com. Remember: If your suggested guest appears on the show, we will send you a highly coveted Cyberlaw Podcast mug! The views expressed in this podcast are those of the speakers and do not reflect the opinions of their institutions, clients, friends, families, or pets.  

It was a disastrous week for cryptocurrency in the United States, as the Securities Exchange Commission (SEC) filed suit against the two biggest exchanges, Binance and Coinbase, on a theory that makes it nearly impossible to run a cryptocurrency exchange that is competitive with overseas exchanges. Nick Weaver lays out the differences between “process crimes” and “crime crimes,” and how they help distinguish the two lawsuits. The SEC action marks the end of an uneasy truce, but not the end of the debate. Both exchanges have the funds for a hundred-million-dollar defense and lobbying campaign. So you can expect to hear more about this issue for years (and years) to come. I touch on two AI regulation stories. First, I found Mark Andreessen's post trying to head off AI regulation pretty persuasive until the end, where he said that the risk of bad people using AI for bad things can be addressed by using AI to stop them. Sorry, Mark, it doesn't work that way. We aren't stopping the crimes that modern encryption makes possible by throwing more crypto at the culprits.  My nominee for the AI Regulation Hall of Fame, though, goes to Japan, which has decided to address the phony issue of AI copyright infringement by declaring that it's a phony issue and there'll be no copyright liability for their AI industry when they train models on copyrighted content. This is the right answer, but it's also a brilliant way of borrowing and subverting the EU's GDPR model (“We regulate the world, and help EU industry too”). If Japan applies this policy to models built and trained in Japan, it will give Japanese AI companies at least an arguable immunity from copyright claims  around the world. Companies will flock to Japan to train their models and build their datasets in relative regulatory certainty. The rest of the world can follow suit or watch their industries set up shop in Japan. It helps, of course, that copyright claims against AI are mostly rent-seeking by Big Content, but this has to be the smartest piece of international AI regulation any jurisdiction has come up with so far. Kurt Sanger, just back from a NATO cyber conference in Estonia, explains why military cyber defenders are stressing their need for access to the private networks they'll be defending. Whether they'll get it, we agree, is another kettle of fish entirely. David Kris turns to public-private cooperation issues in another context. The Cyberspace Solarium Commission has another report out. It calls on the government to refresh and rethink the aging orders that regulate how the government deals with the private sector on cyber matters. Kurt and I consider whether Russia is committing war crimes by DDOSing emergency services in Ukraine at the same time as its bombing of Ukrainian cities. We agree that the evidence isn't there yet.  Nick and I dig into two recent exploits that stand out from the crowd. It turns out that Barracuda's security appliance has been so badly compromised that the only remedial measure involve a woodchipper. Nick is confident that the tradecraft here suggests a nation-state attacker. I wonder if it's also a way to move Barracuda's customers to the cloud.  The other compromise is an attack on MOVEit Transfer. The attack on the secure file transfer system has allowed ransomware gang Clop to download so much proprietary data that they have resorted to telling their victims to self-identify and pay the ransom rather than wait for Clop to figure out who they've pawned. Kurt, David, and I talk about the White House effort to sell section 702 of FISA for its cybersecurity value and my effort, with Michael Ellis, to sell 702 (packaged with intelligence reform) to a conservative caucus that is newly skeptical of the intelligence community. David finds himself uncomfortably close to endorsing our efforts. Finally, in quick updates: Nick talks about Tesla's Full Self Driving, and the accidents it has been involved in I warn listeners that Virginia has joined the ranks of states that require an ID proving age to access Pornhub. I predict that twenty states will adopt such a requirement in the next year Download 462nd Episode (mp3) You can subscribe to The Cyberlaw Podcast using iTunes, Google Play, Spotify, Pocket Casts, or our RSS feed. As always, The Cyberlaw Podcast is open to feedback. Be sure to engage with @stewartbaker on Twitter. Send your questions, comments, and suggestions for topics or interviewees to CyberlawPodcast@gmail.com. Remember: If your suggested guest appears on the show, we will send you a highly coveted Cyberlaw Podcast mug! The views expressed in this podcast are those of the speakers and do not reflect the opinions of their institutions, clients, friends, families, or pets.  

In the latest episode of the Weekly Security Sprint, Dave and Andy covered the following topics: Infrastructure Security. Idaho Power Plant. https://www.ktvb.com/article/news/crime/man-shooting-at-idaho-power-equipment-hells-canyon-brownlee/277-27bfdfd6-9718-4497-979d-7ac51ce2f7e1 I-95 Bridge Collapse. https://www.phila.gov/2023-06-11-updates-on-the-i-95-fire-and-partial-highway-collapse/  Trump Indictment Special Counsel Jack Smith Delivers Statement House Judiciary Committee: Testimony Reveals Senior FBI Official Expressed Concerns about Trump Raid Trump will face judge in historic court appearance over charges he mishandled secret documents. Miami officials stress 'law and order' in preparation for Trump's indictment hearing BBC LIVE - Miami ready for protests before Trump court appearance Journalists barred from using cameras, cellphones in courthouse during Trump arraignment  Fears that Republicans' rhetoric after Trump indictment could spark violence Trump's Miami court date brings fears of violence, rally plans ‘I Want Blood': Heavily-Armed Trump Supporters Say They'll Protest Trump's Indictment Trump Supporters' Violent Rhetoric in His Defense Disturbs Experts Trump Extremists Demand Civil War, Mass Murder After New Indictment Kari Lake Warns Biden, DOJ Will Have to Go Through ‘Card-Carrying Members of the NRA' to Get to Trump   Heat injuries links Heat Injuries for Organizers. https://www.multco.us/help-when-its-hot/tips-summer-event-organizers CDC. https://www.cdc.gov/niosh/topics/heatstress/heatrelillness.html   CSC 2.0. CSC 2.0 offers recommendations for enhancing private-public collaboration with an eye to the pending PPD-21 update. Overall, good recommendations, with some notable misses. CSC 2.0. Revising Public-Private Collaboration to Protect U.S. Critical Infrastructure   FB Security CNN. One of the most dangerous hours in America is now 11 o'clock on Sunday morning Secretary Mayorkas Brings Together Faith Leaders to Discuss Efforts to Enhance DHS's Work to Protect Houses of Worship. Planning and Armed Congregants Top Church Security Measures; Pastors' Views on Church Security: A Survey of American Protestant Pastors (PDF)   Quick Hits The Light: Inside the UK's conspiracy theory newspaper that shares violence and hate San Francisco 49ers to recruit IT staff and overhaul cybersecurity processes after data breach; Ransomware attack saw personal data of more than 20,000 people exposed to criminals. Gate 15's ~ Ransomware Resilience ~ Security Summer Sale! NWS: Poor Air Quality Persists. Read More FBI IC3 - Business Email Compromise: The $50 Billion Scam FBI IC3-Malicious Actors Manipulating Photos and Videos to Create Explicit Content and Sextortion Schemes. T Seven key insights from the 2023 Verizon Data Breach Investigations Report AI's Growth Threatens to Flood 2024 Campaigns With Fake Videos Blended Threats - Hacks Against Ukraine's Emergency Response Services Rise During Bombings Human Rights Campaign declares a national state of emergency for LGBTQ+ people Cuba to Host Secret Chinese Spy Base Focusing on U.S. The Bold Plan to Create Cyber 311 Hotline CIA And Mossad-Linked Surveillance System Quietly Being Installed Throughout The United States: Report CISA and Partners Release Joint Guide to Securing Remote Access Software SPLC: The Year in Hate & Extremism 2022 CISA and FBI Release #StopRansomware: CL0P Ransomware Gang Exploits MOVEit Vulnerability. Ransomware group Clop issues extortion notice to ‘hundreds' of victims MOVEit Transfer and MOVEit Cloud Vulnerability New MOVEit Transfer critical flaws found after security audit, patch now Canadian Centre for Cyber Security - MOVEit Transfer security advisory (AV23-322) MOVEit: BBC and British Airways affected by data breach at payroll company Zellis Microsoft says Clop ransomware gang is behind MOVEit mass-hacks, as first victims come forward CrowdStrike: Movin' Out: Identifying Data Exfiltration in MOVEit Transfer Investigations

https://youtu.be/KOBaZcDg0tY This week on the podcast we cover a supply chain attack of sorts against Minecraft gamers. After that, we cover a vulnerability in MOVEit Transfer that threat actors are exploiting in the wild to steal data and deploy ransomware. Finally, we wne with our review of the latest Verizon Data Breach Investigations Report (DBIR).

Thanks for tuning in to YusufOnSecurity, the cyber-security podcast for everyday defender from analyst to the C-Suites, in plain english.This is episode 2 of on how how exactly  cybercriminals join forces for profit. Make sure you caught up with episode 1 first before you listen to this episode.Lets continue demystifying their collaborative nature.But before that, we will recap other  trending  security news  including:Zero-day Vulnerability in MOVEit Transfer is Being Actively ExploitedCisco Releases Updates to Fix AnyConnect Privilege Elevation Vulnerability- https://community.progress.com: MOVEit Transfer Critical Vulnerability- https://abcnews.go.com:  BBC, British airways big victims MoveIt software hack- https://www.e ropol.europa.eu: Joint Cybercrime action Task force-https://www.darkreading.com: PostalFurious sms attacks target UAE Citizens data theft-https://blogs.windows.com: Announcing Windows 11 insider preview build-25381/-https://techcommunity.microsoft.com/How to defend users from interception attacks via SMB client- https://blog.talosintelligence.com:Talos year in review 2022Be sure to subscribe! If you like the content. Follow me @iayusuf or read my blog at https://yusufonsecurity.comYou will find a list of all previous episodes in there too.

In this week's Source Code podcast, we hear from John Hammond with Huntress on the widely exploited MOVEit Transfer bug, and from Aleksandar Milenkoski with SentinelOne about recent social engineering tactics used by the Kimsuky APT group.

In this episode of The Cybersecurity Defenders Podcast, we discuss some cutting-edge intel coming out of LimaCharlie's community Slack channel.BlackCat makes some changes geared towards improving its tradecraft and increasing the likelihood of data theft and encryption. A new hacking forum called Exposed has publicly leaked a substantial database from the infamous RaidForums.A critical vulnerability in the MOVEit Transfer software.Camaro Dragon targets European foreign affairs entities linked to Southeast and East Asia.Kaspersky is reporting on some unknown malware targeting iOS devices.The Hacker News is reporting a surge in TrueBot activity that was observed starting in May 2023.Uptycs is reporting on the threat group behind the Cyclops ransomware and stealer combo. The Cybersecurity Defenders Podcast: a show about cybersecurity and the people that defend the internet.

Several organizations, predominantly in the U.K., have confirmed data breaches that stemmed from exploitation of the critical Moveit Transfer zero-day vulnerability.

On this week's show Patrick Gray and Adam Boileau discuss the week's security news. They cover: Russia's FSB uncovers “NSA malware” on iPhones Cl0p mass harvests data from MOVEit file transfer servers ASD discloses a bunch of operations against ISIS, criminals Why China's prepositioning is probably… prepositioning Much, much more This week's show is brought to you by Thinkst Canary. Marco Slaviero is this week's sponsor guest and he joins us to talk about indirect LLM prompt injection and the latest Canary release. Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes Russia says US hacked thousands of Apple phones in spy plot | Reuters Risky Biz News: Russia's FSB says NSA hacked iPhones in cyber-espionage campaign Russia wants 2 million phones with home-grown Aurora OS for use by officials Доверенная мобильная среда. Мобильная операционная система «Аврора» — Ростелеком Why China's Latest APT Campaign is Legitimately Worrying War crimes committed through cyberspace must not escape international justice, says Estonian president Hacks Against Ukraine's Emergency Response Services Rise During Bombings | WIRED How Australian cyber spies used 'Rickrolling' to disrupt Islamic State militants in Iraq - ABC News Australian intelligence's secret hand in bringing down the Bali bombers - ABC News Microsoft Threat Intelligence on Twitter: "Microsoft is attributing attacks exploiting the CVE-2023-34362 MOVEit Transfer 0-day vulnerability to Lace Tempest, known for ransomware operations & running the Clop extortion site. The threat actor has used similar vulnerabilities in the past to steal data & extort victims. https://t.co/q73WtGru7j" / Twitter What we know about the MOVEit vulnerability and compromises | Cybersecurity Dive metlstorm: "Great, so now I have to roll i…" - Infosec Exchange Dave Aitel: "@riskybusiness @chort honestly…" - Infosec Exchange Critical Barracuda 0-day was used to backdoor networks for 8 months | Ars Technica Millions of Gigabyte Motherboards Were Sold With a Firmware Backdoor | WIRED Ask Fitis, the Bear: Real Crooks Sign Their Malware – Krebs on Security Wayback Machine Discord Admins Hacked by Malicious Bookmarks – Krebs on Security Google's Android and Chrome extensions are a very sad place. Here's why | Ars Technica How university cybersecurity clinics can help cities fight ransomware | CyberScoop Atomic - Crypto Wallet on Twitter: "We have received reports of wallets being compromised. We are doing all we can to investigate and analyse the situation. As we have more information, we will share it accordingly. For any questions and concerns, contact support@atomicwallet.io" / Twitter BrianKrebs: "Russian news outlet Kommersant…" - Infosec Exchange Thinkst

On this week's show Patrick Gray and Adam Boileau discuss the week's security news. They cover: Russia's FSB uncovers “NSA malware” on iPhones Cl0p mass harvests data from MOVEit file transfer servers ASD discloses a bunch of operations against ISIS, criminals Why China's prepositioning is probably… prepositioning Much, much more This week's show is brought to you by Thinkst Canary. Marco Slaviero is this week's sponsor guest and he joins us to talk about indirect LLM prompt injection and the latest Canary release. Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes Russia says US hacked thousands of Apple phones in spy plot | Reuters Risky Biz News: Russia's FSB says NSA hacked iPhones in cyber-espionage campaign Russia wants 2 million phones with home-grown Aurora OS for use by officials Доверенная мобильная среда. Мобильная операционная система «Аврора» — Ростелеком Why China's Latest APT Campaign is Legitimately Worrying War crimes committed through cyberspace must not escape international justice, says Estonian president Hacks Against Ukraine's Emergency Response Services Rise During Bombings | WIRED How Australian cyber spies used 'Rickrolling' to disrupt Islamic State militants in Iraq - ABC News Australian intelligence's secret hand in bringing down the Bali bombers - ABC News Microsoft Threat Intelligence on Twitter: "Microsoft is attributing attacks exploiting the CVE-2023-34362 MOVEit Transfer 0-day vulnerability to Lace Tempest, known for ransomware operations & running the Clop extortion site. The threat actor has used similar vulnerabilities in the past to steal data & extort victims. https://t.co/q73WtGru7j" / Twitter What we know about the MOVEit vulnerability and compromises | Cybersecurity Dive metlstorm: "Great, so now I have to roll i…" - Infosec Exchange Dave Aitel: "@riskybusiness @chort honestly…" - Infosec Exchange Critical Barracuda 0-day was used to backdoor networks for 8 months | Ars Technica Millions of Gigabyte Motherboards Were Sold With a Firmware Backdoor | WIRED Ask Fitis, the Bear: Real Crooks Sign Their Malware – Krebs on Security Wayback Machine Discord Admins Hacked by Malicious Bookmarks – Krebs on Security Google's Android and Chrome extensions are a very sad place. Here's why | Ars Technica How university cybersecurity clinics can help cities fight ransomware | CyberScoop Atomic - Crypto Wallet on Twitter: "We have received reports of wallets being compromised. We are doing all we can to investigate and analyse the situation. As we have more information, we will share it accordingly. For any questions and concerns, contact support@atomicwallet.io" / Twitter BrianKrebs: "Russian news outlet Kommersant…" - Infosec Exchange Thinkst

In the latest episode the Risk Roundtable, Andy and Dave welcome in Angie Gad to run through the hits. The topics discussed include: Drones Russia's Drone Barrage Ineffective Due to 'Poor Targeting Processes'—U.K. Inside Ukraine's secretive drone program Russia says shoots down Ukraine-launched drones over Crimea, Kursk Gate 15 Resource Links: Drones AI Oh ****, maybe we did start building SkyNet… AI Threat Placed on Par With Pandemics, Nuclear War More than 350 people signed a statement released by the Center for AI Safety, an organization that said it works to reduce AI risks. AI-Controlled Drone Goes Rogue, 'Kills' Human Operator in USAF Simulated Test They Plugged GPT-4 Into Minecraft—and Unearthed New Potential for AI Cyber News Microsoft is attributing the these attacks to Cl0p ransomware. CISA Adds One Known Exploited Vulnerability to Catalog. CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-34362 Progress MOVEit Transfer SQL Injection Vulnerability New York State Department of Financial Services MOVEit Transfer Vulnerability MOVEit: The Week in Ransomware - June 2nd 2023 - Whodunit? HuntressLabs, Mandiant, Rapid7, TrustedSec, and Trustwave have published more details on the attacks targeting MOVEit file-transfer appliances. Article: CISA orders govt agencies to patch MOVEit bug used for data theft Deployed publicly accessible MOVEit Transfer? Oh no. Mass exploitation underway New MOVEit Transfer zero-day mass-exploited in data theft attacks Joint Cybersecurity Advisory: ⁠U.S., ROK Agencies Alert: DPRK Cyber Actors Impersonating Targets to Collect Intelligence⁠, ⁠PDF⁠ ⁠'The Comm': The Group Linked to a Nationwide Swatting Rampage⁠ ⁠The 2024 race promises to be ‘very, very active' in terms of foreign and domestic meddling, says former CISA chief⁠ Blended Threats - ⁠Study: Severe Weather–Related Power Outages Pose Increasing Threat to Patients Who Rely on Electronic Medical Equipment⁠ ⁠What the debt ceiling deal means for U.S. cyber agency⁠ Hurricanes. CSU released its second forecast for the 2023 Atlantic hurricane season on Thursday, 1 June The 2023 Atlantic Hurricane Season Is Here – Here Are The Key Things You Should Know 2023 Atlantic Hurricane Season Has Officially Begun – Here's What Is Typical In June And July Here's How To Get Ready For Hurricane Season Pride Month Concerns. Tree of Life synagogue: Gunman driven by 'malice and hate'⁠⁠MSU reports gunman watched campus tours, searched school shootings prior to mass shooting⁠ Layton Target evacuated after bomb threats reported at multiple Utah stores. Spotlight: Culture War Rhetoric Escalate to Physical Threats. ⁠At Least 9 Target Stores Received Fake Bomb Threats Over Pride Merchandise⁠ ⁠FBI investigating threats of violence to Omaha religious centers⁠. “According to authorities, the author of the note claims to represent Jane's Revenge — an abortion rights extremist group that Homeland Security has linked to arson attacks against buildings of ideological opponents.” ⁠Recent attacks put staffers on edge as authorities look for answers; Threats cut across party lines⁠ ⁠Experts warn against canceling Pride campaigns after extremists threaten Target⁠ ⁠Target Pride backlash exposes 'rainbow capitalism' problem, designer says⁠ ⁠Pride Month is a war. Brands are the battlefield.⁠ Motorists Face Hate Messages After White Supremacists Hack Interstate Road Sign FB-ISAO Threat Level Update, June 2023. Based on this review, we have determined to maintain all threat levels at GUARDED, meaning that FB-ISAO is aware that a general risk of incidents exists, but there are no target or time specific threats requiring an escalation in our overall preparedness at this time.  

[Referências do Episódio] - Thread da Microsoft sobre ataques explorando a CVE-2023-34362 no MOVEit Transfer - https://twitter.com/MsftSecIntel/status/1665537730946670595 - MOVEit Transfer Critical Vulnerability (May 2023) - https://community.progress.com/s/article/MOVEit-Transfer-Critical-Vulnerability-31May2023 - Announcing Windows 11 Insider Preview Build 25381 - https://blogs.windows.com/windows-insider/2023/06/02/announcing-windows-11-insider-preview-build-25381/ - KeePass 2.54 released - https://keepass.info/news/n230603_2.54.html [Ficha técnica] Apresentação: Carlos Cabral Roteiro: Carlos Cabral e Daniel Venzi Edição de áudio: Paulo Arruzzo Narração de encerramento: Bianca Garcia Projeto gráfico: Julian Prieto

MOVEit Transfer software sees exploitation. A website skimmer has been employed against targets in the Americas and Europe. A look into XeGroup's recent criminal activity. Apple denies the FSB's allegations of collusion with NSA. Kaspersky investigates compromised devices. Johannes Ullrich from SANS describes phony YouTube "live streams". Our guest is Sherry Huang from William and Flora Hewlett Foundation to discuss their grants funding cyber policy studies. And the US Department of Defense provides Starlink services to Ukraine. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/106 Selected reading. MOVEit Transfer Critical Vulnerability (May 2023) (Progress Software) Rapid7 Observed Exploitation of Critical MOVEit Transfer Vulnerability (Rapid7) New MOVEit Transfer zero-day mass-exploited in data theft attacks (BleepingComputer) Hackers use flaw in popular file transfer tool to steal data, researchers say (Reuters) New Magecart-Style Campaign Abusing Legitimate Websites to Attack Others (Akamai) Not your average Joe: An analysis of the XeGroup's attack techniques (Menlo Security) Unmasking XE Group: Experts Reveal Identity of Suspected Cybercrime Kingpin (The Hacker News) Apple denies surveillance claims made by Russia's FSB (Reuters) FSB uncovers US intelligence operation via malware on Apple mobile phones (TASS) Kaspersky Says New Zero-Day Malware Hit iPhones—Including Its Own (WIRED) Operation Triangulation: iOS devices targeted with previously unknown malware (Kaspersky) Lithuania becomes first to designate Russia as terrorist state (CSCE) Pentagon confirms SpaceX deal for Ukraine Starlink services (C4ISRNET)

Hey. It's 5:05 on Friday, June 2nd, 2023. From the Sourced Podcast Network in New York City, this is your host, Pokie Huang. Stories in today's episode come from Edwin Kwon in Sydney, Australia, Mark Miller in Ann Arbor, Michigan, Katy Craig in San Diego, California, Marcel Brown in St. Louis, Missouri. Let's get to it.Active Exploitation of MOVEit Transfer Zero Day

In this week's Source Code podcast, Decipher editor Lindsey O'Donnell-Welch discusses several actively-exploited vulnerabilities - including ones impacting Zyxel and MOVEit Transfer - and new tactics used by the BlackCat ransomware group.