Podcasts about REvil

Share on
Share on Facebook
Share on Twitter
Share on Reddit
Copy link to clipboard
  • 194PODCASTS
  • 420EPISODES
  • 46mAVG DURATION
  • 1DAILY NEW EPISODE
  • Oct 22, 2021LATEST
REvil

POPULARITY

20112012201320142015201620172018201920202021


Best podcasts about REvil

Latest podcast episodes about REvil

Paul's Security Weekly TV
What We've Learned From Interviewing Cybercriminals - Adam Janofsky - ESW #247

Paul's Security Weekly TV

Play Episode Listen Later Oct 22, 2021 40:27


Over the last year, The Record has published several interviews between security analysts and cybercriminals. This includes representatives from REvil, BlackMatter, and Marketo. The interviews have uncovered the gangs' motivations, targets, and tactics, and have been cited by officials including White House Deputy National Security Advisor Anne Neuberger.   This segment is sponsored by Devo. Visit https://securityweekly.com/devo to learn more about them!   Visit https://www.securityweekly.com/esw for all the latest episodes! Show Notes: https://securityweekly.com/esw247

The CyberWire
Counting coup against REvil (and other gangs are taking note). Export controls and dual use. A timing bug will surface this weekend.

The CyberWire

Play Episode Listen Later Oct 22, 2021 27:46


REvil's troubles appear to be the work of an international law enforcement operation. Other gangs have noticed, and they're looking a little spooked, even as they evolve their tactics in a maturing criminal-to-criminal market. Questions are raised about the efficacy of surveillance tool export controls. Caleb Barlow has cyber security considerations for CEOs and boards. Our guest is Mickey Boodeai of Transmit Security on the movement to do away with passwords. And if you liked Y2K, you're going to love ten-twenty-four.  For links to all of today's stories check out our CyberWire daily news briefing: https://www.thecyberwire.com/newsletters/daily-briefing/10/203

ShadowTalk by Digital Shadows
Weekly: REvil Rep Death, Ransomware Trends, and BlackMatter Advisory

ShadowTalk by Digital Shadows

Play Episode Listen Later Oct 22, 2021 25:12


Weekly: REvil Rep Death, Ransomware Trends, and BlackMatter Advisory ShadowTalk host Sean alongside Austin and Ivan bring you the latest in threat intelligence. This week they cover: * REvil rep death * Q3 Ransomware trends * BlackMatter CISA advisory ***Resources from this week's podcast*** REvil Domain Hacked https://www.digitalshadows.com/blog-and-research/revil-domains-hijacked/ 
 CISA Alerts https://us-cert.cisa.gov/ncas/alerts/aa21-291a Subscribe to our threat intelligence email: https://info.digitalshadows.com/SubscribetoEmail-Podcast_Reg.html  Also, don't forget to reach out to - shadowtalk@digitalshadows.com- if you have any questions, comments, or suggestions for the next episodes.

TWiT Bits (Video HD)
SN Clip: REvil Gone For Good?

TWiT Bits (Video HD)

Play Episode Listen Later Oct 20, 2021 6:41


On Security Now, Leo Laporte and Steve Gibson discuss REvil's brief reappearance and how its reign may have ended — perhaps this time forever. For this story and more, check out Security Now: https://twit.tv/sn/841 Hosts: Steve Gibson and Leo Laporte You can find more about TWiT and subscribe to our podcasts at https://podcasts.twit.tv/

TWiT Bits (MP3)
SN Clip: REvil Gone For Good?

TWiT Bits (MP3)

Play Episode Listen Later Oct 20, 2021 6:39


On Security Now, Leo Laporte and Steve Gibson discuss REvil's brief reappearance and how its reign may have ended — perhaps this time forever. For this story and more, check out Security Now: https://twit.tv/sn/841 Hosts: Steve Gibson and Leo Laporte You can find more about TWiT and subscribe to our podcasts at https://podcasts.twit.tv/

Security Now (MP3)
SN 841: Minh Duong's Epic Rickroll - REvil Gone for Good? Tianfu Cup 2021, Patch Tuesday Aftermath

Security Now (MP3)

Play Episode Listen Later Oct 20, 2021 126:21


Picture of the week. Windows 11 Watch - Don't update to Windows 11 unless you need to. Patch Tuesday - PrintNightmare fix to fix the previous print nightmare fix that broke other things. Point and Print feature is the problem, not a bug. On Windows 11, installing printers might also fail when using the Internet Printing Protocol (IPP) in organizations sharing an IPP printer using printer connections. "While Microsoft provided a fix in their September 2021 update, the patch resulted in a number of new management problems." "There were a total of 74 vulnerabilities of various severities fixed with one being a true 0-day." MysterySnail has the potential to collect and exfiltrate system information from compromised hosts. REvil may finally be gone for good. Over 30 Countries Pledge to Fight Ransomware Attacks. $52.1 Billion in ransomware transactions? really? Tianfu Cup 2021. Clipboard Hijacking for fun and profit. LinkedIn to dramatically pare down its offering in China. Closing the Loop. SpinRite. Minh Duong's Epic Rickroll. We invite you to read our show notes at https://www.grc.com/sn/SN-841-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: stripe.com CrowdStrike.com/twit privacy.com/securitynow

Security Now (Video HD)
SN 841: Minh Duong's Epic Rickroll - REvil Gone for Good? Tianfu Cup 2021, Patch Tuesday Aftermath

Security Now (Video HD)

Play Episode Listen Later Oct 20, 2021 126:21


Picture of the week. Windows 11 Watch - Don't update to Windows 11 unless you need to. Patch Tuesday - PrintNightmare fix to fix the previous print nightmare fix that broke other things. Point and Print feature is the problem, not a bug. On Windows 11, installing printers might also fail when using the Internet Printing Protocol (IPP) in organizations sharing an IPP printer using printer connections. "While Microsoft provided a fix in their September 2021 update, the patch resulted in a number of new management problems." "There were a total of 74 vulnerabilities of various severities fixed with one being a true 0-day." MysterySnail has the potential to collect and exfiltrate system information from compromised hosts. REvil may finally be gone for good. Over 30 Countries Pledge to Fight Ransomware Attacks. $52.1 Billion in ransomware transactions? really? Tianfu Cup 2021. Clipboard Hijacking for fun and profit. LinkedIn to dramatically pare down its offering in China. Closing the Loop. SpinRite. Minh Duong's Epic Rickroll. We invite you to read our show notes at https://www.grc.com/sn/SN-841-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: stripe.com CrowdStrike.com/twit privacy.com/securitynow

Security Now (Video HI)
SN 841: Minh Duong's Epic Rickroll - REvil Gone for Good? Tianfu Cup 2021, Patch Tuesday Aftermath

Security Now (Video HI)

Play Episode Listen Later Oct 20, 2021 126:21


Picture of the week. Windows 11 Watch - Don't update to Windows 11 unless you need to. Patch Tuesday - PrintNightmare fix to fix the previous print nightmare fix that broke other things. Point and Print feature is the problem, not a bug. On Windows 11, installing printers might also fail when using the Internet Printing Protocol (IPP) in organizations sharing an IPP printer using printer connections. "While Microsoft provided a fix in their September 2021 update, the patch resulted in a number of new management problems." "There were a total of 74 vulnerabilities of various severities fixed with one being a true 0-day." MysterySnail has the potential to collect and exfiltrate system information from compromised hosts. REvil may finally be gone for good. Over 30 Countries Pledge to Fight Ransomware Attacks. $52.1 Billion in ransomware transactions? really? Tianfu Cup 2021. Clipboard Hijacking for fun and profit. LinkedIn to dramatically pare down its offering in China. Closing the Loop. SpinRite. Minh Duong's Epic Rickroll. We invite you to read our show notes at https://www.grc.com/sn/SN-841-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: stripe.com CrowdStrike.com/twit privacy.com/securitynow

Security Now (Video LO)
SN 841: Minh Duong's Epic Rickroll - REvil Gone for Good? Tianfu Cup 2021, Patch Tuesday Aftermath

Security Now (Video LO)

Play Episode Listen Later Oct 20, 2021 126:21


Picture of the week. Windows 11 Watch - Don't update to Windows 11 unless you need to. Patch Tuesday - PrintNightmare fix to fix the previous print nightmare fix that broke other things. Point and Print feature is the problem, not a bug. On Windows 11, installing printers might also fail when using the Internet Printing Protocol (IPP) in organizations sharing an IPP printer using printer connections. "While Microsoft provided a fix in their September 2021 update, the patch resulted in a number of new management problems." "There were a total of 74 vulnerabilities of various severities fixed with one being a true 0-day." MysterySnail has the potential to collect and exfiltrate system information from compromised hosts. REvil may finally be gone for good. Over 30 Countries Pledge to Fight Ransomware Attacks. $52.1 Billion in ransomware transactions? really? Tianfu Cup 2021. Clipboard Hijacking for fun and profit. LinkedIn to dramatically pare down its offering in China. Closing the Loop. SpinRite. Minh Duong's Epic Rickroll. We invite you to read our show notes at https://www.grc.com/sn/SN-841-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: stripe.com CrowdStrike.com/twit privacy.com/securitynow

All TWiT.tv Shows (MP3)
Security Now 841: Minh Duong's Epic Rickroll

All TWiT.tv Shows (MP3)

Play Episode Listen Later Oct 20, 2021 126:21


Picture of the week. Windows 11 Watch - Don't update to Windows 11 unless you need to. Patch Tuesday - PrintNightmare fix to fix the previous print nightmare fix that broke other things. Point and Print feature is the problem, not a bug. On Windows 11, installing printers might also fail when using the Internet Printing Protocol (IPP) in organizations sharing an IPP printer using printer connections. "While Microsoft provided a fix in their September 2021 update, the patch resulted in a number of new management problems." "There were a total of 74 vulnerabilities of various severities fixed with one being a true 0-day." MysterySnail has the potential to collect and exfiltrate system information from compromised hosts. REvil may finally be gone for good. Over 30 Countries Pledge to Fight Ransomware Attacks. $52.1 Billion in ransomware transactions? really? Tianfu Cup 2021. Clipboard Hijacking for fun and profit. LinkedIn to dramatically pare down its offering in China. Closing the Loop. SpinRite. Minh Duong's Epic Rickroll. We invite you to read our show notes at https://www.grc.com/sn/SN-841-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: stripe.com CrowdStrike.com/twit privacy.com/securitynow

All TWiT.tv Shows (Video LO)
Security Now 841: Minh Duong's Epic Rickroll

All TWiT.tv Shows (Video LO)

Play Episode Listen Later Oct 20, 2021 126:21


Picture of the week. Windows 11 Watch - Don't update to Windows 11 unless you need to. Patch Tuesday - PrintNightmare fix to fix the previous print nightmare fix that broke other things. Point and Print feature is the problem, not a bug. On Windows 11, installing printers might also fail when using the Internet Printing Protocol (IPP) in organizations sharing an IPP printer using printer connections. "While Microsoft provided a fix in their September 2021 update, the patch resulted in a number of new management problems." "There were a total of 74 vulnerabilities of various severities fixed with one being a true 0-day." MysterySnail has the potential to collect and exfiltrate system information from compromised hosts. REvil may finally be gone for good. Over 30 Countries Pledge to Fight Ransomware Attacks. $52.1 Billion in ransomware transactions? really? Tianfu Cup 2021. Clipboard Hijacking for fun and profit. LinkedIn to dramatically pare down its offering in China. Closing the Loop. SpinRite. Minh Duong's Epic Rickroll. We invite you to read our show notes at https://www.grc.com/sn/SN-841-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: stripe.com CrowdStrike.com/twit privacy.com/securitynow

Radio Leo (Audio)
Security Now 841: Minh Duong's Epic Rickroll

Radio Leo (Audio)

Play Episode Listen Later Oct 20, 2021 126:21


Picture of the week. Windows 11 Watch - Don't update to Windows 11 unless you need to. Patch Tuesday - PrintNightmare fix to fix the previous print nightmare fix that broke other things. Point and Print feature is the problem, not a bug. On Windows 11, installing printers might also fail when using the Internet Printing Protocol (IPP) in organizations sharing an IPP printer using printer connections. "While Microsoft provided a fix in their September 2021 update, the patch resulted in a number of new management problems." "There were a total of 74 vulnerabilities of various severities fixed with one being a true 0-day." MysterySnail has the potential to collect and exfiltrate system information from compromised hosts. REvil may finally be gone for good. Over 30 Countries Pledge to Fight Ransomware Attacks. $52.1 Billion in ransomware transactions? really? Tianfu Cup 2021. Clipboard Hijacking for fun and profit. LinkedIn to dramatically pare down its offering in China. Closing the Loop. SpinRite. Minh Duong's Epic Rickroll. We invite you to read our show notes at https://www.grc.com/sn/SN-841-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: stripe.com CrowdStrike.com/twit privacy.com/securitynow

The CyberWire
TA505's recent activity. Advice on defending organizations from BlackMatter. CISA RFI seeks EDR information. REvil's halting attempts to return. Sinclair's incident response.

The CyberWire

Play Episode Listen Later Oct 19, 2021 22:06


A look at TA505, familiar yet adaptable. A US joint cybersecurity advisory outlines the BlackMatter threat to critical infrastructure. CISA asks industry for technical information on endpoint detection and response capabilities. Is REvil trying to run on reputation? The Sinclair Broadcasting ransomware incident seems to provide a case study in rapid disclosure. Carole Theriault considers the fight for online anonymity. Joe Carrigan shares steps to protect the C-Suite. And there's a decryptor out for BlackByte. For links to all of today's stories check out our CyberWire daily news briefing: https://www.thecyberwire.com/newsletters/daily-briefing/10/201

Cyber Security Headlines
October 19, 2021

Cyber Security Headlines

Play Episode Listen Later Oct 19, 2021 6:37


Sinclair TV disrupted by ransomware Water system proves easy target for ransomware REvil shuts down… again Thanks to our episode sponsor, Tessian and the Human Layer Security Summit Want to know what we learned from analyzing 2 million malicious emails? At Tessian's Human Layer Summit you'll hear about new threat intelligence into the state of spear phishing. Guest speakers from TrustedSec and KnowBe4 will discuss what kind of attacks are getting through typical enterprise defences, what that means for user protection and what security leaders need to do about it. Join in on the conversation to learn about what we discovered by registering now at tessian.com/summit  

The CyberWire
A US broadcaster sustains a ransomware attack. North Korean catphis expelled from Twitter. REvil's Tor sites are hijacked. Hacking back. Prosecution and responsible disclosure?

The CyberWire

Play Episode Listen Later Oct 18, 2021 24:00


The Sinclair Broadcast Group discloses that it sustained a ransomware attack over the weekend. Twitter kicks out two North Korean catphish deployed in a cyberespionage campaign. REvil goes offline, again, perhaps this time for good. Hacking back, at least insofar as you let the hoods know you can see them. Rick Howard previews the newest season of CSO Perspectives. Johannes Ullrich from SANS on Expired Domain Dumpster Diving. And an update on the Missouri disclosure and proposed hacking prosecution. For links to all of today's stories check out our CyberWire daily news briefing: https://www.thecyberwire.com/newsletters/daily-briefing/10/200

The CyberWire
Fancy Bear's snuffling at Gmail credentials. FIN12's threat to healthcare, and BlackMatter's threat to agriculture. REvil tries to reestablish itself in the underworld. Twitch update. Sachkov is charged.

The CyberWire

Play Episode Listen Later Oct 8, 2021 25:03


Google warns fourteen-thousand Gmail users that Fancy Bear has probably been after their passwords. FIN12, a fast-running ransomware group, is after hospitals' and healthcare providers' money. BlackMatter remains active against the agriculture sector. REvil is back and talking on the RAMP forum, but so far it's getting a chilly reception. Twitch traces its vulnerability to a server misconfiguration. David Dufour from webroot wonders about cracking down on crypto. Our guest is Jeff Dileo of NCC on mastering container security. And Group-IB's CEO is charged with treason. For links to all of today's stories check out our CyberWire daily news briefing: https://www.thecyberwire.com/newsletters/daily-briefing/10/195

ShadowTalk by Digital Shadows
Weekly: Twitch Hack, Facebook blackout, and Pandora Papers

ShadowTalk by Digital Shadows

Play Episode Listen Later Oct 8, 2021 27:26


ShadowTalk host Sean alongside Rick, Ivan, and Austin bring you the latest in threat intelligence. This week they cover: Twitch hacked! Facebook takes a day off Ransomware roundup - revelations from REvil, LockBit, and Conti Pandora Papers released 
Check out our latest Weekly Intelligence Summary: https://resources.digitalshadows.com/weekly-intelligence-summary/weekly-intelligence-summary-8th-oct ***Resources from this week's podcast*** Kick off Cyber Security Awareness Month with our latest blog - Protecting Your Own Digital Shadow https://www.digitalshadows.com/blog-and-research/cybersecurity-awareness-month-week-1-managing-your-digital-shadow/ Subscribe to our threat intelligence email: https://info.digitalshadows.com/SubscribetoEmail-Podcast_Reg.html  Also, don't forget to reach out to - shadowtalk@digitalshadows.com- if you have any questions, comments, or suggestions for the next episodes.

Defense in Depth
The "Are We Secure?" Question

Defense in Depth

Play Episode Listen Later Oct 7, 2021 28:33


All links and images for this episode can be found on CISO Series When a senior person at your company asks you, "Are we secure?" how should you respond? Check out this post for the basis for our conversation on this week's episode which features me, David Spark (@dspark), producer of CISO Series, co-host Steve Zalewski, and our guest Paul Truitt, principal US cyber practice leader, Mazars. Thanks to our podcast sponsor, Varonis Still in the news is REvil's ransomware attack on Kaseya VSA servers. Varonis is here to help mitigate the blast radius of such attacks. Want a step-by-step guide on what you should be looking for? Learn more about how to prevent ransomware. In this episode: When a senior, non-technical person asks, "Are we secure?" how do you respond?" What does this question say about an executive's engagement level? Why are they asking this now? How relevant/accurate is this question anyway?  

TEConnect Podcast
TEC Bytes 3 - The Tech Bytes Back

TEConnect Podcast

Play Episode Listen Later Oct 7, 2021 56:59


While we work on some special episodes this week, here's another round-up of the latest in tech, science and pop culture news and stories. 1. The latest in robotics for distribution. 2. The Jeopardy! host saga. 3. Best US states to do business & the most/least stressed cities. 4. Emma, the robot masseuse. 5. Fake public comments on the net neutrality issue. 6. The theatre vs. streaming debate (ScarJo, Patty Jenkins). 7. REvil goes offline.   TEConnecting with us: Dean - Audi's transforming AV John - Retro Bowl   Talk to us! Twitter - @TEConnectPod Email - TEConnect@bluesarinc.com    Sponsored by: Elo Cannabis POS Epson T88VII Receipt Printer Zebra Service Contracts eBook

mixxio — podcast diario de tecnología

Linux para Apple Silicon ya casi / Files v2 / Windows 11 pausado en China / El Capitán Kirk en Blue Origin / HBO trae 4K y una cosa rara / Adiós IGTV Patrocinador: Allianz es el líder mundial en gestión activa https://www.allianz.es/allianz-inversion.html. Te ofrece fondos de inversión, sostenibles y tecnológicos, así como planes de jubilación adaptados a tu edad actual https://www.allianz.es/plan-de-pensiones.html. Además de un producto único con garantía alemana como es Allianz Perspektive https://www.allianz.es/seguro-de-ahorro.html. — Para más información, asesórate en Allianz.es https://www.allianz.es/ o en el 900 228 228 tel:+34900228228. Linux para Apple Silicon ya casi / Files v2 / Windows 11 pausado en China / El Capitán Kirk en Blue Origin / HBO trae 4K y una cosa rara / Adiós IGTV  La adaptación de Linux a los procesadores Apple Silicon ya va tomando forma. Asahi Linux, el proyecto de código libre liderado por el español Héctor Martín lleva unos meses imparable. En su último boletín https://asahilinux.org/2021/10/progress-report-september-2021/ cuentan que ya es "tan usable como un escritorio básico para Linux (sin la aceleración por hardware)", y que los Mac con M1 ya son los PC con ARM más rápidos con Linux.  Files v2 llega a Windows 10 y 11. La aplicación alternativa de navegador de archivos con algunas funciones interesantes como las pestañas, se actualiza https://microsofters.com/179881/files-v2-el-mejor-explorador-de-archivos-para-windows-10-y-windows-11/ con soporte para FTP, agrupar archivos, e incluso un modo de superposición compacta que te permite tener una ventana permanentemente visible por encima del resto de ventanas.  ¿Qué pasará con Windows 11 en China? China prohíbe desde hace 22 años la venta de chips de seguridad TPM, así que los fabricantes no pueden pre-instalar https://www.scmp.com/tech/big-tech/article/3151286/how-banned-encryption-chip-stopping-china-running-windows-11-now el sistema operativo en sus portátiles para ese mercado. Los usuarios que lo instalen por su cuenta, recordemos, pueden saltarse ese requisito. — Considerando que casi 1 de cada 3 PCs del mundo se vende allí... ¿qué decisión tomará Microsoft, creará una versión china de Windows 11?  Más consecuencias de la caída de Facebook. Facebook publicó un post-mortem del incidente https://engineering.fb.com/2021/10/05/networking-traffic/outage-details/ algo vago en detalles. Telegram anunció que recibió 70 millones de usuarios https://www.infobae.com/america/tecno/2021/10/05/telegram-registro-mas-de-70-millones-de-usuarios-nuevos-tras-la-caida-de-whatsapp/ nuevos, la mayoría huérfanos de WhatsApp. — Según Haystack aumentó la productividad mundial https://www.usehaystack.io/blog/facebook-outage-increased-developer-throughput-by-32 de los programadores, y también las llamadas de teléfono https://www.nobbot.com/personas/la-caida-de-facebook-nos-recuerda-que-la-voz-humana-es-algo-mas-que-un-cortometraje-de-almodovar/#.YVxgjGS6nk0.twitter e incluso hasta los SMS.  William Shatner capitaneará la segunda misión de Blue Origin. El Capitán Kirk de Star Trek por fin irá al espacio de verdad en vez de al de carton piedra, aunque siendo la cápsula de Blue Origin tampoco creo que haya mucha diferencia. Hará historia igualmente https://es.gizmodo.com/william-shatner-el-mitico-capitan-kirk-de-star-trek-v-1847798111 porque a sus 90 años romperá el récord de persona más mayor en el espacio.  Ojo que no solo no pagará el billete. Blue Origin le pagará a él por ir https://www.tmz.com/2021/09/24/william-shatner-going-space-jeff-bezos-blue-origin/. Marketing puro. Le acompañarán el fundador de Planet (una de mi startups favoritas), otro emprendedor millonario y una VP de la propia Blue Origin.  Mientras tanto en la EEI llegaron la actriz y el director ruso que van a rodar parte de una película https://www.microsiervos.com/archivo/espacio/actriz-director-estacion-espacial-internacional.html durante los próximos días.  La nueva app de HBO llega a España con 4K y una extraña petición para los clientes abonados actuales. Si quieren mantener sus listas de contenido (contenido en favoritos) deberán hacer un pantallazo en la vieja app https://www.genbeta.com/multimedia/tus-listas-hbo-espana-se-perderan-cuando-llegue-hbo-max-tienen-solucion-que-le-saques-captura-pantalla y compartirlo dentro de la nueva. — No me explico qué motivo técnico les ha hecho aceptarlo.  La buena noticia es que la nueva aplicación tendrá un soporte mucho más amplio, incluyendo PlayStation.  IGTV desaparece y se diluye en el resto de Instagram. La aplicación hermana de Instagram que permitía subir y consumir vídeos más largos, de hasta 60 minutos. Poco más de tres años después, sus creadores deciden renombrarla a "Instagram TV" y aunque seguirá como app separada, los vídeos estarán presentes en el feed de la nodriza https://eloutput.com/noticias/redes-sociales/igtv-cambio-nombre-instagram-tv/.  Es decir que en Instagram tendrás un feed con imágenes, galerías, y vídeos de entre 1 segundo y 60 minutos. Además de las historias que van por separado. — Lo que sigue sin hacer todavía Instagram: pagar a los creadores, como sí hace YouTube. Se han pasado de listos.  Google activará la verificación en dos pasos a 150 millones de usuarios automáticamente. No ha especificado los factores que decidirán qué tipo de usuarios, pero antes de acabar el año muchos más usuarios de Google necesitarán un salto adicional para acceder a sus cuentas https://www.europapress.es/portaltic/ciberseguridad/noticia-google-activara-auntenticacion-dos-factores-150-millones-usuarios-antes-acabe-ano-20211005165222.html. Parece que será obligatorio para todos aquellos con canal en YouTube, unos dos millones.  Detenida una pequeña banda de Ransomwareros en Ucrania. Una operación policial internacional se salda con el arresto de dos miembros https://www.theregister.com/2021/10/04/ukraine_arrests_two_ransomware_150m_allegations_revil/ de una banda mayor de criminales digitales. Han requisado un millón de euros en criptomoneda, dinero en metálico y les acusan de haber atacado a "más de 100" empresas. — Improbable, pero no imposible, que sean parte de REvil.  Citroën presenta una base para vehículos eléctricos con ruedas esféricas. El Citroën Skate es un protipo conceptual https://www.caranddriver.com/es/movilidad/a37862420/citroen-skate-concept/ que serviría de sistema locomotor para una serie de vehículos urbanos diferentes. Encima del mismo se podrán poner diferentes carrocerías con objetivos variados. — Interesante pero dependerá de su precio y facilidad de fabricación.

The Cipher Brief Open Source Report
The Cipher Brief Open Source Report for Tuesday, October 5, 2021

The Cipher Brief Open Source Report

Play Episode Listen Later Oct 5, 2021 11:30


Topping today's episode: Two suspected ransomware operators who authorities say were demanding ransoms of up to 70 million EUR, were arrested last week in Ukraine.  Officials say the two suspects have been making ransom demands that range between 5 and 70 million EUROS from industrial groups since April 2020. While Europol is withholding the name of the targeted group for what it calls an operational reason, outsiders suggest the operation targeted the group known as REvil. The arrests come as part of wider cooperation against cybercriminals based in Eastern Europe and Russia.

mixxio — podcast diario de tecnología
Al final los robotaxis son reales

mixxio — podcast diario de tecnología

Play Episode Listen Later Oct 4, 2021 14:43


Por las noches en San Francisco / El primer riñón artificial en fase pre-clínica / Windows 3.1 con disquetera en iPhone / REvil empieza a asaltar a sus afiliados / Las cartas secretas de María Antonieta / BepiColombo pasa por Mercurio / Primer trimestre de Tasa Google en España Patrocinador: Allianz es el líder mundial en gestión activa https://www.allianz.es/allianz-inversion.html. Te ofrece fondos de inversión, sostenibles y tecnológicos, así como planes de jubilación adaptados a tu edad actual https://www.allianz.es/plan-de-pensiones.html. Además de un producto único con garantía alemana como es Allianz Perspektive https://www.allianz.es/seguro-de-ahorro.html. — Para más información, asesórate en Allianz.es https://www.allianz.es/ o en el 900 228 228 tel:+34900228228. Por las noches en San Francisco / El primer riñón artificial en fase pre-clínica / Windows 3.1 con disquetera en iPhone / REvil empieza a asaltar a sus afiliados / Las cartas secretas de María Antonieta / BepiColombo pasa por Mercurio / Primer trimestre de Tasa Google en España  Los taxis autónomos comerciales aprobados en San Francisco... con varios asteriscos. La agencia de tráfico de California ha dado el permiso para que coches de Waymo y Cruise operen de 10 de la noche a 6 la madrugada recogiendo viajeros en las calles de San Francisco https://arstechnica.com/cars/2021/10/california-dmv-gives-cruise-and-waymo-ok-to-charge-for-rides/. Solo podrán circular a una velocidad máxima de 50 km/h, incluso con niebla o lluvia ligera.  Waymo tiene un permiso algo más amplio https://www.dmv.ca.gov/portal/news-and-media/117199-2/: 100 km/h, y un área de calles y carreteras en San Francisco y San Mateo.  Falta una aprobación burocrática final, pero sería el primer sistema de robotaxis comercial real no limitado a un grupo de "beta testers" como los de Arizona, Shenzhen, Shanghai, Miami, Tel-Aviv, New York, Munich, etc.  Diseñan un prototipo de andador autónomo para personas de movilidad reducida. Ingenieros japoneses han ideado un andador que es capaz de llegar a los pacientes por sí mismo https://techxplore.com/news/2021-10-autonomous-forearm-supported-walker-patients-nursing.html, y luego usar sus sensores para asistirles y reducir la dificultad de cada paso, por ejemplo recolocando las ruedas en mejor posición.  Consigue instalar Windows 3.1 en un iPhone usando los disquetes originales. Con un poco de maña, este youtuber demuestra cómo cargar el sistema operativo https://youtu.be/4R3LA4awCCM?t=708 dentro de DOSbox, el versátil emulador de x86. Pero en vez de usar un fichero de imagen ya preparado, lo hace con una disquetera leyendo los seis discos magnéticos originales.  Mañana llega Windows 11, pero 2 millones de ordenadores ya lo tienen. Aunque algunos titulares hablen del "1,3% del total de ordenadores", es difícil estimar porque el análisis de telemetría https://microsofters.com/179819/un-13-de-los-equipos-ya-han-dado-el-salto-a-windows-11/ que define solo refleja ordenadores con Windows 10, así que quizá sea un 0,6-0,9% del total.  El Proyecto Riñón entra en la fase pre-clínica. Entre varios esfuerzos mundiales por desarrollar un riñón artificial, el The Kidney Project estadounidense ha dado un gigantesco salto adelante https://pharmacy.ucsf.edu/news/2021/09/kidney-project-successfully-tests-prototype-bioartificial-kidney. Su unidad es doble: hemofiltro para limpiar la sangre, y bioreactor para controlar los electrolitos. No causa respuesta inmunitaria y necesita baterías porque usa energía de la presión arterial.  Según sus creadores, aún faltan más pruebas pre-clínicas https://www.cancer.gov/espanol/publicaciones/diccionarios/diccionario-cancer/def/estudio-preclinico, y luego ya pruebas con humanos. Faltan años, pero parece que van por el buen camino.  Los hackers de REvil están robando a los hackers que subcontratan su plataforma de ransomware. Clientes criminales de REvil, el grupo ruso que recientemente ha vuelto a operar, han encontrado una puerta trasera https://www.zdnet.com/article/these-ransomware-crooks-are-complaining-they-are-getting-ripped-off-by-other-ransomware-crooks/ en el propio ransomware que puede ser usado por los propios creadores para negociar con los afectados cuando ven que alguien va a pagar.  Explicación: REvil crea ransomware que ofrece a hackers de todo el mundo, que a su vez lo usan como "afiliados" quedándose el 70% de lo extorsionado. Ahora REvil asalta las negociaciones https://www.linkedin.com/feed/update/urn:li:activity:6845837344713519104/ y se queda el 100%.  Criminales ponen URLs maliciosas en los AirTags para robar credenciales. Los usuarios pueden indicar un método de contacto para que les avise si alguien encuentra su AirTag perdido, pero puede ser un número, email... o una URL de phising https://unaaldia.hispasec.com/2021/10/fallo-de-seguridad-en-los-apple-airtag-que-permitiria-realizar-ataques-dirigidos-de-phishing.html donde el "buen samaritano" que lo encuentra quizá le dé por introducir sus credenciales de AppleID. — Apple dice que está solucionándolo.  Revelan el contenido de las cartas secretas de María Antonieta con rayos X. Los historiadores han dado por hecho la relación del conde sueco Hans Axel de Fersen con la reina francesa. Científicos han podido leer parte de la correspondencia hasta ahora censurada con tinta por encima, usando técnica que permite separar las capas, viendo el texto original por primera vez https://gizmodo.com/x-rays-reveal-censored-messages-between-marie-antoinett-1847781989 en 230 años.  El primer trimestre de la "tasa Google" se queda corto en España. El gobierno español ha anunciado que ha recaudado 92 millones de euros en el primer trimestre real el nuevo Impuesto sobre Determinados Servicios Digitales. Es un 9% de los 968 millones esperados https://www.rtve.es/noticias/20210930/tasas-google-tobin-primeros-impuestos/2177029.shtml para recaudar al año. Visto de otra forma: solo un 36% de su cuarta parte, 242 millones. — La ley llegó con problemas y entró en vigor meses más tarde https://www.lainformacion.com/economia-negocios-y-finanzas/gigantes-tecnologicos-presionan-montero-retrasar-pago-tasa-google/2823732/.  La sonda BepiColombo pasa a 198 kilómetros de Mercurio y envía las primeras imágenes. La sonda euro-nipona es la tercera en pasar por la órbita del planeta, y envía imágenes de su hemisferio norte https://www.lavanguardia.com/ciencia/20211002/7763534/bepicolombo-primeras-imagenes-mercurio.html. Se cruzará seis veces durante los próximos años https://www.esa.int/ESA_Multimedia/Images/2017/07/BepiColombo_timeline hasta quedarse orbitando definitivamente en 2025. — Las imágenes son de resolución 1024x1024 https://www.esa.int/ESA_Multimedia/Images/2021/10/Mercury_first_impressions.

Ping - A Firewalls.com Podcast
Trust No One: Exploring Zero-Trust Networks

Ping - A Firewalls.com Podcast

Play Episode Listen Later Sep 29, 2021 38:22


Zero-trust is the hot term in network security in 2021.  But one reason it's so highly sought out is that many don't know exactly what it means. We called on Fortinet Senior Director of Product Marketing Peter Newton to shed some light on the subject. Peter discusses what makes a zero-trust network philosophy, what steps a company should take to plan for the shift, and what tools can make it easier. Plus, we talk about how the right zero-trust setup makes remote work both easier and more secure simultaneously.Read Peter's blog article on the subject: https://www.fortinet.com/blog/industry-trends/how-to-implement-a-zero-trust-security-strategy In the news, we cover some REvil drama, a new finger pointing at Russia, and states' troubles filling cybersecurity jobs.See the headlines:REvil Affiliates Confirm : Leadership Were Cheating Dirtbagshttps://threatpost.com/revil-affiliates-leadership-cheated-ransom-payments/174972/ EU 'denounces' Russian malicious cyber activity aimed at member states https://thehill.com/policy/cybersecurity/573867-eu-denounces-russian-malicious-cyber-activity-aimed-at-member-states States at disadvantage in race to recruit cybersecurity proshttps://apnews.com/article/business-technology-internships-0d7fc0ee18295585292b2e13b62e88f3Get info on all things network security through our blog, https://firewalls.com/blog.And please do reach out, as we want to hear from you. Suggest an episode topic, ask a question, or just say hi in a review, or by emailing podcast@firewalls.com. New episodes are normally released every other Wednesday, so subscribe/follow to ensure you get the latest first - and again, please rate and review.Thanks for listening!

Notnerd Podcast: Tech Better
Episode 303: Hey, Soul Sensor

Notnerd Podcast: Tech Better

Play Episode Listen Later Sep 29, 2021 44:25


Now that Apple had their iPhone event, Microsoft, Facebook, and Amazon are jumping on the bandwagon this week. As always we've also got some great tips and picks to help you tech better. Followup:   LV Recycling (01:00) Apple adds dual eSIM support to iPhones 13 (03:45) Amazon closes 3,000 Chinese-brand stores in campaign against fake reviews (09:35) Locast shuts down for now amid legal battle (11:40) Dave's Pro Tip of the Week: Full webpage screenshot Safari (13:45) Takes:  Microsoft Surface Event (19:25) Facebook introduces new Portal devices (27:45) Apple adds support for storing Covid vaccination cards in iOS 15.1 (29:35) FBI had the REvil decryption key (30:25) Bonus Odd Take: https://www.playphrase.me/ (32:20) Picks of the Week:  Dave: Apple Watch Series ??? (36:00) Nate: Eye Buy Direct (40:10) Find us elsewhere: https://www.notnerd.com https://ratethispodcast.com/notnerd Tik Tok - https://www.tiktok.com/@notnerdpod Twitter - https://www.twitter.com/n0tnerd/ Instagram - https://www.instagram.com/n0tnerd Facebook - https://www.facebook.com/n0tnerd/ Email - info@Notnerd.com Call or text 608.618.NERD(6373) If you would like to help support Notnerd financially, mentally, or physically, please contact us via any of the methods above. Consider any product/app links to be affiliate links.

Cybercrime Magazine Podcast
Ransomware Minute. CISA Issues Conti Warning, REvil, Nationwide Farm Supplier. Scott Schober, WCYB Radio.

Cybercrime Magazine Podcast

Play Episode Listen Later Sep 28, 2021 2:03


The Ransomware Minute is a rundown of the latest ransomware attacks & news, brought to you by CyberArk. Listen to the podcast weekly and read it daily at https://ransomwareminute.com • CyberArk is the global leader in Identity Security. Centered on privileged access management, CyberArk provides the most comprehensive security offering for any identity – human or machine. To learn more about our sponsor CyberArk, visit https://cyberark.com

The 443 - Security Simplified
Kaseya’s Trusted Third Party

The 443 - Security Simplified

Play Episode Listen Later Sep 27, 2021


This week on the podcast we discuss the recently disclosed identify of the"Trusted Third Party" that Kaseya acquired the REvil ransomware master decryption key from, as well as the morals around a decision to hold on to the decryption key for multiple weeks before handing it off to Kaseya. We then cover a new APT discovered by researchers at ESET and the latest CISA alert on ransomware activity.

Cyber Security Headlines
September 24, 2021

Cyber Security Headlines

Play Episode Listen Later Sep 24, 2021 8:30


Second farming cooperative shut down by ransomware this week Canadian VoIP provider battles massive DDoS attack REvil double-crosses ransomware affiliates using sneaky backdoor tactics Thanks to our episode sponsor, Kanu Solutions Over the next few weeks Kanu Solutions is offering a series of educational sessions on a variety of topics in security, such as endpoints, networks, privileged access management, Internet of things, and governance, risk management and compliance, or GRC. Attend these sessions to get some savvy education from the security experts at Kanu Solutions. You could also get a twenty dollar UberEats Gift Card just for attending. You can participate in Kanu Solutions' Lunch-n-Learn by registering at kanusolutions.com/events. For the stories behind the headlines, head to CISOseries.com

The CyberWire
Ransomware hits another US farm co-op, as Russan gangs seem to continue attacks without interference from Moscow. A new APT is described. REvil was cheating? CISA warns about Conti.

The CyberWire

Play Episode Listen Later Sep 23, 2021 24:50


Ransomware hits a second US Midwestern farm co-op. The US House hears from the FBI that Russia seems not to have modified its toleration of privateering gangs (at least yet). A new APT, “FamousSparrow,” is described. REvil seems to have been--surprise!--cheating its criminal affiliates. Josh Ray from Accenture with an update on the Hades Threat Group. Our guest is Tim Eades of vArmour on the urgent need to update cyber strategies in healthcare. CISA issues a new warning, this one on the Conti ransomware operation.  For links to all of today's stories check out our CyberWire daily news briefing: https://www.thecyberwire.com/newsletters/daily-briefing/10/184

Technado from ITProTV (Audio)
Technado, Ep. 222: cloudtamer.io's Randy Shore

Technado from ITProTV (Audio)

Play Episode Listen Later Sep 23, 2021 48:33


Randy Shore of cloudtamer.io joined Technado this week. He and ITProTV's Chris Ward broke down the buzzword "governance," discussing who it's for and why it's important. Then, in the news, the guys covered Microsoft's next step towards a passwordless future, Toshiba's microwave-assisted 18TB hard drives, new malware using Windows Subsystem for Linux to gain access, and a very bad week for ExpressVPN. They ended with a rare ransomware trifecta, as South Africa's justice system was targeted, a free REvil decryption key was released for the Kaseya attack, and the US begins sanctioning cryptocurrency payment systems tied to ransomware.

Technado from ITProTV
Technado, Ep. 222: cloudtamer.io's Randy Shore

Technado from ITProTV

Play Episode Listen Later Sep 23, 2021 48:38


Randy Shore of cloudtamer.io joined Technado this week. He and ITProTV's Chris Ward broke down the buzzword "governance," discussing who it's for and why it's important. Then, in the news, the guys covered Microsoft's next step towards a passwordless future, Toshiba's microwave-assisted 18TB hard drives, new malware using Windows Subsystem for Linux to gain access, and a very bad week for ExpressVPN. They ended with a rare ransomware trifecta, as South Africa's justice system was targeted, a free REvil decryption key was released for the Kaseya attack, and the US begins sanctioning cryptocurrency payment systems tied to ransomware.

mixxio — podcast diario de tecnología
La decisión de SoFBIa

mixxio — podcast diario de tecnología

Play Episode Listen Later Sep 23, 2021 19:49


FBI hackeó a REvil y no lo dijo a nadie / Una consola llavero / Seguros para patinetes eléctricos / Nuevas Microsoft Surface / Gusano elastómero que se mueve solo / Lituania acusa a Xiaomi de censura / Firefox prueba con Bing Patrocinador: El nuevo modo "multimedia/gaming" de Panda Security te ofrece la máxima seguridad contra malware con cero interrupciones mientras juegas https://www.pandasecurity.com/security-promotion/?reg=ES&campaign=gamer2106, para que ni tú ni tu ordenador. Cero molestias, máxima seguridad. Consigue Panda Dome con un 50% de DTO desde su propia página web https://www.pandasecurity.com/security-promotion/?reg=ES&campaign=gamer2106. FBI hackeó a REvil y no lo dijo a nadie / Una consola llavero / Seguros para patinetes eléctricos / Nuevas Microsoft Surface / Gusano elastómero que se mueve solo / Lituania acusa a Xiaomi de censura / Firefox prueba con Bing  El FBI ocultó que tenía una clave "maestra" para descifrar ataques ransomware de REvil. El FBI hackeó los servidores de un grupo criminal de ransomware y obtuvo una clave maestra que permitía desbloquear los archivos en cualquier ordenador infectado. Pero durante tres semanas no se lo dijo a ninguno de los afectados para no "alertar" a los criminales. Un dilema ético, legal y político gigante https://archive.ph/dtTS9 mientras las víctimas perdían sus datos o pagaban millonarios rescates.  Thumby es una mini consola del tamaño de un llavero que puedes programar. Con menos de 3 cm de alto, aspecto de Game Boy y un precio de 19 dólares, Thumby es un interesante nuevo concepto https://thumby.us/pages/press de TinyCircuits que incluye cinco juegos para su pantalla monocromática de 72x40 píxeles.  ¿Seguro de circulación para patinetes eléctricos en España? Tras casi un millón de patinetes vendidos en los últimos años, desde el Ministerio de Transporte adelantan que habrá más campañas de comunicación sobre las normas de los patinetes, y que están a favor de un seguro obligatorio https://www.europapress.es/motor/sector-00644/noticia-pere-navarro-dgt-favor-seguro-obligatorio-patinetes-francia-ya-puesto-20210922134242.html, además de otras posibles normas municipales.  Microsoft renovó la gama Surface por completo con cuatro dispositivos. Acompañando a Windows 11, tenemos la nueva Surface Pro 8 https://es.gizmodo.com/microsoft-acaba-de-lanzar-las-mejores-surface-pro-en-an-1847726727 viene con dos puertos thunderbolt, es más potente y delgada. El Surface Pro X https://microsofters.com/179567/surface-pro-x-2021/ viene con un procesador Microsoft SQ3 (un Snapdragon 8280 ligeramente modificado). Surface Go 3 es algo más barata y potente https://www.xataka.com/tablets/microsoft-surface-go-3-caracteristicas-precio-ficha-tecnica, y el nuevo Surface Laptop Studio con una pantalla abatible https://www.muycomputer.com/2021/09/22/surface-laptop-studio/.  También renovaron el Surface Duo 2, el smartphone con doble pantalla y Android https://www.elespanol.com/elandroidelibre/moviles-android/20210922/nuevo-surface-duo-movil-plegable-microsoft-pantallas/613939821_0.html. Ahora tiene un Snapdragon 888 (así que 5G), refresco de 90 Hz en ambas pantallas, cámaras mejoradas y una bisagra que deja entrever la pantalla para leer notificaciones sin abrirla. — Desde 1.600 euros, pero no se venderá en España ni Latam.  Un gusano impreso en 3D que puede moverse por su cuenta. Dentro del concepto de la "impresión 4D" (materiales 3D que pueden moverse, de ahí la "cuarta dimensión"temporal), este pequeño robotito nace como una pequeña tira de elastómeros que se enrolla sobre sí misma https://www.newscientist.com/article/2291164-4d-printed-robot-self-assembles-into-a-tube-and-rolls-up-hills/ cuando alcanza altas temperaturas (160º C), y que girando es capaz de incluso subir por pequeñas pendientes (vídeo) https://www.youtube.com/watch?v=zQ_iEh7RfoA sin necesidad de motores ni electrónica.  Llegan las reseñas de los nuevos lanzamientos de Apple. Los nuevos iPhone creo que han dejado buenas impresiones https://clipset.com/apple-iphone-13-pro/, especialmente la nueva grabación de vídeo, pantalla y mejoras de batería. El nuevo iPad Mini me parece increíble a ese precio https://www.applesfera.com/ipad/ipad-mini-2021-analisis-review-caracteristicas-precio-especificaciones, lo contrario que un nuevo iPad (a secas) totalmente aburrido https://clipset.com/nuevo-apple-ipad-prueba-novedades/.  Nuestro análisis estará disponible hoy o mañana en Cupertino ../../../cupertino, nuestro podcast semanal sobre Apple.  El gobierno de Lituania acusa a Xiaomi de incorporar herramientas de censura en sus móviles. Un análisis de los procesos https://www.bbc.com/mundo/noticias-internacional-58657590 de un Xiaomi Mi 11 5G por parte lituana revela que el móvil recoge una lista de términos políticos y religiosos prohibidos. Xiaomi responde https://www.reuters.com/world/europe/xiaomi-says-its-devices-do-not-censor-users-following-lithuania-report-2021-09-22/?taid=614b924ba5c42200013c6f11 que no hay ningún tipo de bloqueo.  Podéis ver el PDF del análisis completo https://www.nksc.lt/doc/en/analysis/2021-08-23_5G-CN-analysis_env3.pdf. Mi entendimiento del código es que el listado de términos solo se utiliza fuera de la UE, y para bloquear publicidad en los servicios de Xiaomi. En ningún momento analiza o restringe la navegación web, mensajería, etc. Entiendo pues que no hay "censura" en este caso.  Xiaomi, al igual que otros proveedores digitales chinos, tienen métodos mucho más sólidos y estables de censurar las comunicaciones de sus usuarios en China, que este método de chichinabo. — Lituania y China llevan semanas de acusaciones políticas y diplomáticas https://www.dw.com/es/china-retira-embajador-en-lituania-tras-diferendo-por-taiw%C3%A1n/a-58822175, y este reporte (débil a nivel técnico) creo que simplemente se engloba ahí.  Apple no permitirá que Fortnite vuelva a la App Store. Si ningún tribunal les obliga en el futuro, Fortnite ni otras aplicaciones de Epic Games volverán a estar disponibles para iPad ni iPhone. Así se lo ha comunicado Apple https://www.applesfera.com/app-store-1/no-veremos-fortnite-app-store-que-se-terminen-todos-recursos-sentencia-judicial a la compañía, tras asumir que desde Epic rompieron su contrato unilateralmente.  Sony parchea la PlayStation 4 para solucionar el fallo CBOMB. Solucionan el fallo dual de hardware y software https://vandal.elespanol.com/noticia/1350747919/el-ultimo-firmware-de-ps4-soluciona-el-problema-cbomb-cuando-se-agota-la-pila-cmos/ podría convertir todas las unidades de la consola en ladrillos inservibles en el caso de que fallase la pila del CMOS y la consola no tuviera conexión a Internet, o Sony retirase los servidores de sincronización.  Firefox cambiará el buscador por defecto a Bing para el 1% de usuarios. Mozilla lo denomina un experimento para analizar los comportamientos de los usuarios del navegador al pasar de Google a Bing. Dependiendo de los resultados Mozilla podría cambiarlo de forma completa https://microsofters.com/179598/mozilla-probar-bing-en-lugar-de-google-firefox/ para nuevos usuarios en 2023.

Cyber Intelligence Briefing
CyberCure Ep 74

Cyber Intelligence Briefing

Play Episode Listen Later Sep 22, 2021 4:24


Welcome to the Nucleon Cyber Intelligence podcast. This podcast will give you a summary of the latest news related to cyber intelligence and proactive cyber security in only a few minutes. The podcast is aimed at professionals who are short on time, or for anyone who would like to know a bit more about what is REALLY happening out there in the cyber world. The focus of this podcast will be on the latest cyber events for non-technical people; anyone can listen and understand. https://news.nucleon.sh/2021/09/23/intelligence-briefing-74/ If you have been following the adventures of the hackers group called Revil cyber gang then they have fully returned and are once again attacking new victims and publishing stolen files on a data leak site. If you haven't heard about Revil gang, here is a short recap, Since 2019, the REvil ransomware operation, also known as Sodinokibi, has been conducting attacks on organizations worldwide where they demand million-dollar ransoms to receive a decryption key and prevent the leaking of stolen files. We covered some of their attacks right here on big cases such as JBS, Coop, Travelex and many others. REvil shut down their infrastructure and completely disappeared after their biggest hack yet. A massive attack on July 2nd that encrypted over 50 service providers and over 1,500 businesses using a zero-day vulnerability in the Kaseya VSA remote management platform which had no patch. This attack had such wide-ranging consequences worldwide that it brought the full attention of international law enforcement to bear on the group. Maybe because of the pressure, the REvil gang suddenly shut down all their servers and went offline, leaving many victims in a lurch with no way of decrypting their files. Few days later, Kaseya (the company that have been hacked) received a universal decryptor that victims could use to decrypt files for free. It is unclear how Kaseya received the decryptor but stated it came from a "trusted third party.".... ---- On a different subject, cybersecurity experts warned that cybercriminal forums had in recent months been selling access to login credentials for software that the United Nations uses to manage internal projects. The software could provide valuable access to intruders looking to extort the UN or steal data. The cyber security firm Resecurity contacted UN officials after noticing the login credentials for sale on the dark web. Another Security firm reported to observe one prominent cybercriminal gang claiming access to the UN software. This caused the UN to release an official statement saying: “Unidentified hackers breached computer systems at the United Nations in April and the multinational body has had to fend off related hacks in the months since.” There are different rumors and stories about this incident, so we just thought to briefly mention it here in case this case evolves and we will pay more attention to it in the future. ----- That's it for this podcast, stay safe and see you in the next podcast. Don't forget to visit www.nucleoncyber.com for the latest podcasts on cyber intelligence.

Risky Business
Risky Business #639 -- USA's ransomware non-policy fails to meet its unstated objective

Risky Business

Play Episode Listen Later Sep 22, 2021


On this week's show Patrick Gray and Adam Boileau discuss the week's security news, including: BlackMatter is back in the USA's critical supply chain The FBI and friends apparently got up in REvil's business The Azure OMI thing is totally the disaster we were expecting Much, much more Brett Winterford is this week's sponsor guest. These days Brett is a senior director of cybersecurity strategy at Okta, but the reason you might recognise his name is because he took a year off working for vendors to be our newsletter author – he was the founding editor of the Seriously Risky Business newsletter. He'll be along to talk about legacy auth and why vendors should have deprecation policies. Links to everything that we discussed are below and you can follow Patrick or Adam on Twitter if that's your thing. Show notes Ransomware gang strikes Iowa agriculture business New Cooperative, the latest hack on food supply chain After Biden Warning, Hackers Define ‘Critical' as They See Fit - Bloomberg Customer Care Giant TTEC Hit By Ransomware – Krebs on Security Opinion | America Is Being Held for Ransom. It Needs to Fight Back. - The New York Times (4) Patrick Gray on Twitter: "Achievement unlocked: The Risky Biz release the hounds doctrine has now been condemned by gg. https://t.co/6W9uHwHLyl" / Twitter FBI held back ransomware decryption key from businesses to run operation targeting hackers - The Washington Post Biden administration to target ransomware attacks by cracking down on crypto payments - The Washington Post The battle between the U.S. and ransomware hackers is escalating DDoS botnets, cryptominers target Azure systems after OMIGOD exploit goes public - The Record by Recorded Future Microsoft fixes OMIGOD bugs in secret Azure app - The Record by Recorded Future Why Government and Military Sites Are Hosting Porn and Viagra Ads Report: China-linked hackers take aim at Times of India and a biometric bonanza - The Record by Recorded Future (5) Andrew Roth on Twitter: "Apple and Google have deleted the @navalny app from their store as Duma elections begin, bowing to pressure from the government. Russians can't find the app in their store, it still works outside of country. https://t.co/CtTf0ZushW" / Twitter Exclusive: An American Company Fears Its Windows Hacks Helped India Spy On China And Pakistan Former NSA Hacker Describes Being Recruited for UAE Spy Program - by Kim Zetter - Zero Day Key security agencies split over whether to sanction a Huawei spinoff, Honor, by placing it on a Commerce blacklist - The Washington Post 106 Italian mafia members arrested for SIM swapping, BEC scams, phishing - The Record by Recorded Future Man who bribed AT&T employees to install malware on the company's network gets 12 years in prison - The Record by Recorded Future Supply chain attacks against the open source ecosystem soar by 650% – report | The Daily Swig Google announces partnership to review security of open source software projects | The Daily Swig Researcher discloses iPhone lock screen bypass on iOS 15 launch day - The Record by Recorded Future Google will extend Permission Auto-Reset feature to older Android versions - The Record by Recorded Future Malware samples found trying to hack Windows from its Linux subsystem - The Record by Recorded Future AMD CPU driver bug can break KASLR, expose passwords - The Record by Recorded Future Microsoft to let users completely remove account passwords and go passwordless - The Record by Recorded Future Auditing your Okta org for Legacy Authentication | Okta Security

The CyberWire
BlackMatter hits an Iowa agricultural cooperative. US Treasury Department moves against ransomware's support system. FBI gave Kaseya the REvil decryptor. Camorra cybercriminals arrested.

The CyberWire

Play Episode Listen Later Sep 21, 2021 26:28


Ransomware hits an Iowa agricultural cooperative, which doesn't meet, the criminals say, the standard for “critical infrastructure.” US Treasury Department announces steps against ransomware's economic support system. Did Kaseya get its REvil decryptor from the FBI? Ben Yelin describes a major federal court victory for security researchers. Our guest is Dave Stapleton from CyberGRX on the rise of extortionware. And Europol, along with Spanish and Italian police, take down a Camorra cybercrime ring. For links to all of today's stories check out our CyberWire daily news briefing: https://www.thecyberwire.com/newsletters/daily-briefing/10/182

Firewalls Don't Stop Dragons Podcast

It's really easy to complain about the sadly insecure state of many of our products and services, but the fact is that doing security right is hard - even when you're trying to get it right. Part of the problem is that there are just so many things to secure, even on a single product or service. Today we're going to discuss several recent security issues with popular products, and why getting it right can be such a daunting task. In today's show: a universal decryption key for all REvil ransomware victims prior to July 13th is now available; Microsoft patched a nasty security bug in all of its Windows OS versions, but it's still being actively exploited (hint: patch now!); it was recently argued that WhatsApp's end-to-end encryption has a "backdoor", but I'll explain why that's not true; a home security system maker refuses to patch a bug that would allow an attacker to disable your system just by knowing (or guessing) your email address; ProtonMail is forced to alter its "no IP logging" marketing in the face of a recent incident involving a French activist's account; new Mac malware has emerged that uses poisoned search results to trick its victims; and for my tip of the week, I'll tell you about a new fourth credit bureau where you should freeze your credit report. Article Links Free REvil ransomware master decrypter released for past victims https://www.bleepingcomputer.com/news/security/free-revil-ransomware-master-decrypter-released-for-past-victims/ Recently reported Microsoft zero-day gaining popularity with attackers, Kaspersky says https://www.msn.com/en-us/news/technology/recently-reported-microsoft-zero-day-gaining-popularity-with-attackers-kaspersky-says/ar-AAOyUvR WhatsApp Fixes Its Biggest Encryption Loophole https://www.wired.com/story/whatsapp-end-to-end-encrypted-backups/ No, Facebook Isn't Reading Your Private WhatsApp Messages. The Problem Is Much Worse https://www.inc.com/jason-aten/no-facebook-isnt-reading-your-private-whatsapp-messages-problem-is-much-worse.html Pwned! The home security system that can be hacked with your email address https://nakedsecurity.sophos.com/2021/09/02/pwned-the-home-security-system-that-can-be-hacked-with-your-email-address/  ProtonMail Amends Its Policy After Giving Up an Activist's Data https://www.wired.com/story/protonmail-amends-policy-after-giving-up-activists-data/ New Mac malware spreads via search results https://www.tomsguide.com/news/mac-malware-fake-iterm2Tip of the week: https://firewallsdontstopdragons.com/freeze-you-credit-at-innovis-too/  Further Info Become a Patron! https://www.patreon.com/FirewallsDontStopDragons Would you like me to speak to your group about security and/privacy? http://bit.ly/Firewalls-SpeakerStay tuned for a new challenge coin promotion! https://firewallsdontstopdragons.com/get-your-official-challenge-coin/ Generate secure passphrases! https://d20key.com/#/ 

Paul's Security Weekly TV
Dubious Drones, NSO Group, Apple's Bug Bounties, Ghostscript 0-Day, & IBM Server Bugs - PSW #710

Paul's Security Weekly TV

Play Episode Listen Later Sep 19, 2021 98:11


This week in the Security News: Anonymous hacks Epik (with a K), Fuzzing Close-Source Javascript Engines, ForcedEntry, 8 Websites that can replace computer software, REvil decryptor key released, Microsoft fixes Critical vulnerability in Linux App, Drone accidentally delivers drug paraphernalia to high schoolers, & more!   Show Notes: https://securityweekly.com/psw710 Visit https://www.securityweekly.com/psw for all the latest episodes!

Off the Record
REvil's ransomware victims get a decryptor

Off the Record

Play Episode Listen Later Sep 18, 2021 26:17


A cybersecurity firm published a universal decryption tool to help victims of the REvil ransomware gang recover encrypted files. Anonymous breached a web hosting provider and domain registrar that gave shelter to right-wing websites. And the Department of Justice fined three former NSA employees who worked as hackers-for-hire for a United Arab Emirates firm. Plus, Verizon's Alex Pinto joins to talk about the cybersecurity industry's wittiest report.

Paul's Security Weekly
Playing Hanky Panky - PSW #710

Paul's Security Weekly

Play Episode Listen Later Sep 17, 2021 198:14


This week, we kick off the show with an interview featuring Sinan Eren, VP of Zero Trust Access at Barracuda Networks, to discuss The State of Network Security in 2021! Then, we welcome Justin Collins from the People Empowerer for Product Security Team at Gusto, for a segment focusing on Brakeman! In the Security News: Anonymous hacks Epik (with a K), Fuzzing Close-Source Javascript Engines,ForcedEntry, 8 Websites that can replace computer software,REvil decryptor key released, Microsoft fixes Critical vulnerability in Linux App, Drone accidentally delivers drug paraphernalia to high schoolers, & more!   Show Notes: https://securityweekly.com/psw710 https://github.com/presidentbeef/brakeman Visit https://securityweekly.com/barracuda to learn more about them!   Visit https://www.securityweekly.com/psw for all the latest episodes! Visit https://securityweekly.com/acm to sign up for a demo or buy our AI Hunter! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly

ShadowTalk by Digital Shadows
Weekly: Apple Zero-day Vulnerability, Revil, and Yandex DDoS

ShadowTalk by Digital Shadows

Play Episode Listen Later Sep 17, 2021 42:41


ShadowTalk hosts Stefano, Rory, Dylan, and Adam bring you the latest in threat intelligence. This week they cover: * Revil is back: Picking up where we left off * Record-setting DDoS attack targets Yandex * Apple fixes two high-severity zero-day vulnerabilities * BONUS: Fake News and Crypto
 Get this week's Intelligence Summary: https://resources.digitalshadows.com/weekly-intelligence-summary/weekly-intelligence-summary-17th-sept ***Resources from this week's podcast*** [Digital Shadows Blog] Building Successful Teams On The Cybercriminal Underground [Digital Shadows Blog] Enhance Executive Protection With SocialMonitor [Digital Shadows Blog] Revil Ransomware: What's Next 
[Article] Yandex Pummeled by Potent Meris DDoS Botnet [Article] Apple patches an NSO zero-day flaw affecting all devices Subscribe to our threat intelligence email: https://info.digitalshadows.com/SubscribetoEmail-Podcast_Reg.html  Also, don't forget to reach out to - shadowtalk@digitalshadows.com- if you have any questions, comments, or suggestions for the next episodes.

Security Now (Video LO)
SN 836: The Mēris Botnet - 0-Day Attack on Office Docs, WFH and Security, Return of REvil

Security Now (Video LO)

Play Episode Listen Later Sep 15, 2021 134:55


Picture of the Week. A new worrisome 0-day attack against Office documents. Work From Home (WFH) — No problem? "Attacks only ever get better" The return of REvil — Apparently, vacation's over. Closing the Loop. I have this next piece under "Science Fiction" — but is it fiction??? The Mēris Botnet. We invite you to read our show notes at https://www.grc.com/sn/SN-836-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: barracuda.com/securitynow canary.tools/twit - use code: TWIT expressvpn.com/securitynow

Security Now (Video HI)
SN 836: The Mēris Botnet - 0-Day Attack on Office Docs, WFH and Security, Return of REvil

Security Now (Video HI)

Play Episode Listen Later Sep 15, 2021 134:55


Picture of the Week. A new worrisome 0-day attack against Office documents. Work From Home (WFH) — No problem? "Attacks only ever get better" The return of REvil — Apparently, vacation's over. Closing the Loop. I have this next piece under "Science Fiction" — but is it fiction??? The Mēris Botnet. We invite you to read our show notes at https://www.grc.com/sn/SN-836-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: barracuda.com/securitynow canary.tools/twit - use code: TWIT expressvpn.com/securitynow

Security Now (Video HD)
SN 836: The Mēris Botnet - 0-Day Attack on Office Docs, WFH and Security, Return of REvil

Security Now (Video HD)

Play Episode Listen Later Sep 15, 2021 134:55


Picture of the Week. A new worrisome 0-day attack against Office documents. Work From Home (WFH) — No problem? "Attacks only ever get better" The return of REvil — Apparently, vacation's over. Closing the Loop. I have this next piece under "Science Fiction" — but is it fiction??? The Mēris Botnet. We invite you to read our show notes at https://www.grc.com/sn/SN-836-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: barracuda.com/securitynow canary.tools/twit - use code: TWIT expressvpn.com/securitynow

Security Now (MP3)
SN 836: The Mēris Botnet - 0-Day Attack on Office Docs, WFH and Security, Return of REvil

Security Now (MP3)

Play Episode Listen Later Sep 15, 2021 134:55


Picture of the Week. A new worrisome 0-day attack against Office documents. Work From Home (WFH) — No problem? "Attacks only ever get better" The return of REvil — Apparently, vacation's over. Closing the Loop. I have this next piece under "Science Fiction" — but is it fiction??? The Mēris Botnet. We invite you to read our show notes at https://www.grc.com/sn/SN-836-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: barracuda.com/securitynow canary.tools/twit - use code: TWIT expressvpn.com/securitynow

The CyberWire
NSO Group's Pegasus was installed in a zero-click exploit: iOS users should patch. Vermillion Strike hits Linux systems. Enforcing the law against cybercrime.

The CyberWire

Play Episode Listen Later Sep 14, 2021 22:32


Citizen Lab finds, and Apple patches, a zero-day used for zero-click installation of Pegasus spyware. A Cobalt Strike beacon has been turned to cyberespionage use against Linux targets. The Russian government could, it seems, take action against cybercrime, but its will-to-enforcement seems to be inconsistent. Ben Yelin from UMD CHHS with more on Apple's CSAM controversy, our guest is Mel Shakir from Dreamit Ventures on selling to CISOs, and their customer sprints. REvil makes nice with grumpy affiliates. And criminals' commitment to the common good seems weak. That's not a surprise, is it? For links to all of today's stories check out our CyberWire daily news briefing: https://www.thecyberwire.com/newsletters/daily-briefing/10/177

Paul's Security Weekly
REvil Redux, Pegasus Patch, Meris Botnet, Litecoin's Fraudulent Gains, & Sinan Eren - SWN #149

Paul's Security Weekly

Play Episode Listen Later Sep 14, 2021 27:46


This week in the Security News: Pegasus, Revil Redux, WooCommerce, Kaspersky reports, Meris, workers going around security, & litecoin. All this and Sinan Eren from Barracuda Networks joins to discuss the HP Wolf Security Rebellions & Rejections report, a study highlighting the tension between IT teams and employees working from home (WFH) that security leaders must resolve to secure the future of work!   Show Notes: https://securityweekly.com/swn149 Segment Resources: https://www.zdnet.com/article/it-leaders-facing-backlash-from-remote-workers-over-cybersecurity-measures-hp-study/ https://www.securitymagazine.com/articles/96074-91-of-it-teams-feel-pressure-to-compromise-security   Visit https://securityweekly.com/barracuda to learn more about them! Visit https://www.securityweekly.com/swn for all the latest episodes! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly

Cybercrime Magazine Podcast
Ransomware Minute. REvil, Washington D.C. University, California Bank. Scott Schober, WCYB Radio

Cybercrime Magazine Podcast

Play Episode Listen Later Sep 14, 2021 1:46


The Ransomware Minute is a rundown of the latest ransomware attacks & news, brought to you by CyberArk. Listen to the podcast weekly and read it daily at https://ransomwareminute.com • CyberArk is the global leader in Identity Security. Centered on privileged access management, CyberArk provides the most comprehensive security offering for any identity – human or machine. To learn more about our sponsor CyberArk, visit https://cyberark.com

The Cyberlaw Podcast
What's the Opposite of Facial Recognition? Ask Your “Smart Toilet.”

The Cyberlaw Podcast

Play Episode Listen Later Sep 14, 2021 47:35


The district court has ruled in the lawsuit between Epic and Apple over access to the Apple app store. Apple is claiming victory and Epic is appealing. But Apple's victory is not complete, and may have a worm at its core. Jamil Jaffer explains.Surprised that ransomware gangs REvil and Groove are back—and thumbing their noses at President Biden? Dmitri Alperovitch isn't. He explains why U.S. ransomware policy has failed so far. WhatsApp has finally figured out how to let users encrypt their chat backups in the cloud, to the surprise of many users who didn't realize their backups weren't encrypted. Speaking of the encryption debate, Dmitri notes that Proton Mail joined the scrum this week, in a way it no doubt regrets. After all its bragging that mail users' privacy is “protected by Swiss law,” Proton Mail disclosed that Swiss law can be surprisingly law enforcement friendly. Responding to a French request through Europol, Swiss authorities ordered the service to collect metadata on a particular account and overrode what had been seen as a Swiss legal requirement that users be notified promptly of such actions.  Is China suffering from Russia's Main Intelligence Directorate (GRU) envy? I ask and David Kris answers: It sure looks that way, as China has begun trying to rally Chinese in America to support Chinese government positions on things like the origin of COVID. So far, China's record of success is as dismal as the GRU's but I argue that it poses a bigger problem for the body politic and Chinese American interest groups. Who'd have guessed? Turns out that the EU's always-flakey General Data Protection Regulation (GDPR) provision against allowing automated decision making that affects people isn't just a charming nostalgia act; it's yet another reason for Europe to be left behind in the technology race. Jamil reports on a high-powered UK task force recommendation that the Brits dump the provision in order to allow for the growth of an AI industry. David and I debate the meaning of Brazilian President Jair Bolsonaro banning social networks from removing political posts. And in a few quick hits: I praise the Biden administration (faintly) for finally kicking off serious negotiations with the EU about transatlantic data transfer. Dmitri dissects the undiplomatic speech of China's ambassador to the U.S. David downloads the inside poop on smart toilets. Among other things, they'll be identifying us with, uh, let's just call it the opposite of facial recognition.  And Dmitri offers a solution for the dual European Community encryption story. And more! Download the 374th Episode (mp3)  You can subscribe to The Cyberlaw Podcast using iTunes, Google Play, Spotify, Pocket Casts, or our RSS feed. As always, The Cyberlaw Podcast is open to feedback. Be sure to engage with @stewartbaker on Twitter. Send your questions, comments, and suggestions for topics or interviewees to CyberlawPodcast@steptoe.com. Remember: If your suggested guest appears on the show, we will send you a highly coveted Cyberlaw Podcast mug! The views expressed in this podcast are those of the speakers and do not reflect the opinions of their institutions, clients, friends, families, or pets.  

The CyberWire
The continuing problem of Meris and its bot-driven DDoS. Mustang Panda visits Indonesia. DPRK's social media battlespace prep. Al Qaeda marks 9/11's anniversary. And REvil seems to be back.

The CyberWire

Play Episode Listen Later Sep 13, 2021 22:34


The Meris botnet continues to disrupt New Zealand banks, and has turned up elsewhere, too. Mustang Panda compromised Indonesian government networks. North Korean operators are using social media to soften up their prospective targets. Al Qaeda sympathizers marked the twentieth anniversary of 9/11 by calling for--what else?--more 9/11s. Malek Ben Salem from Accenture on deep unlearning, our own Rick Howard is in, talking about the latest episode of CSO Perspectives on adversary playbooks, and REvil seems to be back in business after taking what some of its hoods call “a break.” For links to all of today's stories check out our CyberWire daily news briefing: https://www.thecyberwire.com/newsletters/daily-briefing/10/176

The CyberWire
BladeHawk Android cyberespionage campaign in progress. Labor Day was quiet, but the gangs are now back at it. REvil's remnant stirs. Bulletproof hosting. Phishing keywords.

The CyberWire

Play Episode Listen Later Sep 8, 2021 24:22


BladeHawk cyberespionage campaign in progress. Microsoft warns of targeted attacks in progress. Hey--the hoods took a breather over Labor Day, but the straw hats are off now, and they're back at work. Someone is rummaging in REvil's unquiet grave. Bulletproof hosting services and the criminal marketplace. Mike Benjamin from Black Lotus Labs on ReverseRAT 2.0. Rick Howard checks in with Philip Reiner from the Ransomware Taskforce. And does a New Urgent Message Require Action? Maybe not. For links to all of today's stories check out our CyberWire daily news briefing: https://www.thecyberwire.com/newsletters/daily-briefing/10/173

Risky Business
Risky Business #637 -- Infosec's bigfoot

Risky Business

Play Episode Listen Later Sep 8, 2021


On this week's show Patrick Gray and Adam Boileau discuss recent security news, including: Apple backs down on CSAM measures FTC shuts down spouseware company REvil is back! Confluence boxes are getting owned a lot Trickbot crew member arrested in South Korea The Juniper/NSA backdoor story just keeps on truckin' This week's show is brought to you by Thinkst Canary. Thinkst's Jacob Torrey is this week's sponsor guest. He pops by to tell us about the relaunch of Thinkstscapes, a fantastic quarterly publication that analyses security research. (Editor's note: Dmitri Alperovitch is a guest in this podcast and wishes to express his gratitude to Matthew Green of Johns Hopkins University for helping guide him on the Juniper story.) Links to everything that we discussed are below and you can follow Patrick or Adam on Twitter if that's your thing. Show notes Apple Backs Down on Its Controversial Photo-Scanning Plans | WIRED ProtonMail forced to collect an activist's IP address in police investigation - The Record by Recorded Future FTC Bans SpyFone and CEO from Surveillance Business and Orders Company to Delete All Secretly Stolen Data | Federal Trade Commission REvil ransomware group returns following Kaseya attack - The Record by Recorded Future White House double downs on warning about cyberattacks over the holidays - The Record by Recorded Future Cyber Command alerts US firms of 'ongoing' hacks targeting Atlassian enterprise software Confluence enterprise servers targeted with recent vulnerability - The Record by Recorded Future Jenkins project discloses security breach following Confluence server hack - The Record by Recorded Future US farm loses $9 million in the aftermath of a ransomware attack - The Record by Recorded Future Howard University cancels classes after ransomware attack TrickBot gang member arrested after getting stuck in South Korea due to COVID-19 pandemic - The Record by Recorded Future Juniper Breach Mystery Starts to Clear With New Details on Hackers and U.S. Role SolarWinds hackers targeted Autodesk in latest confirmed fallout from cyber-espionage campaign Malware found preinstalled in classic push-button phones sold in Russia - The Record by Recorded Future (1) C:WindowsSystem32last.exe on Twitter: "Hey, wanna see a magic trick? That's how you bypass UAC on a machine to which you have GUI access! 1/n" / Twitter Microsoft warns of new IE zero-day exploited in targeted Office attacks - The Record by Recorded Future Ghostscript zero-day allows full server compromises - The Record by Recorded Future Cisco urges users to patch critical vulnerability in virtualized network devices after PoC is made public | The Daily Swig Billions of devices impacted by new BrakTooth Bluetooth vulnerabilities - The Record by Recorded Future Node.js archives serious tar handling vulnerabilities with software update | The Daily Swig Microsoft will split Defender pricing plans to lower the entry bar for SMBs - The Record by Recorded Future Mozi botnet authors arrested in China - The Record by Recorded Future Google pauses quantum security feature in Chrome because of buggy middleware - The Record by Recorded Future Breach notification window, accountability are focus of coming fight on cyber legislation in Congress The IRS Goes Undercover As A Bitcoin Trader In $180,000 Sting CREST: NCC Group ‘vicariously responsible' for those involved in exam controversy | The Daily Swig Raider: A tool to test authentication in web applications | The Daily Swig ThinkstScapes thinkst Thoughts...