Podcasts about Turla

Three Buddy Problem - Episode 25: An update on Romania's cancelled election, the implications of TikTok on democratic processes, and the broader issues around surveillance capitalism and micro-targeting. Plus, news on Turla piggybacking on cybercriminal malware to hit Ukraine, the return of Careto and the absence of IOCs, Claroty report on an Iran-linked cyberweapon targeting critical infrastructure, ethical considerations in cyberwarfare, and the implications of quantum computing on security and cryptocurrencies. Cast: Juan Andres Guerrero-Saade (https://twitter.com/juanandres_gs), Costin Raiu (https://twitter.com/craiu) and Ryan Naraine (https://twitter.com/ryanaraine).

Three Buddy Problem - Episode 24: In this episode, we did into Lumen/Microsoft's revelations on Russia's Turla APT stealing from a Pakistani APT, and issues around fourth-party espionage and problems with threat actor attribution. We also discuss Citizen Lab's findings on Monokle-like spyware implanted by Russian authorities, the slow pace of Salt Typhoon disinfection, the Solana web3.js supply chain attack affecting crypto projects, and the Romanian election crisis over Russian interference via TikTok. Cast: Juan Andres Guerrero-Saade (https://twitter.com/juanandres_gs), Costin Raiu (https://twitter.com/craiu)and Ryan Naraine (https://twitter.com/ryanaraine).

Zur Zeit wird das neue Forschungsschiff METEOR IV gebaut, mit dem Wissenschaftlerinnen und Wissenschaftler schon 2026 auf allen Weltmeeren forschen sollen. Damit das gelingt, sind von Anfang an Expertinnen und Experten für Meerestechnik eingebunden. Torsten Turla, Geschäftsführer von MacArtney Germany aus Kiel, erzählt in dieser Podcast-Folge, welche Aufgabe ihm und seiner Firma beim Neubau der METEOR IV zukommt und welche Schiffe sie sonst mit Meerestechnik versorgen. www.macartney.dewww.maritime-technik.deDie HASYTEC Electronics AG ist ein Kieler Unternehmen, das eine umweltfreundliche Lösung gegen marinen Bewuchs und Fouling hat, also gegen den Biofilm aus organischen und anorganischen Ablagerungen, den es auf allen flüssigkeitsführenden Oberflächen gibt. HASYTEC expandiert und stellt zahlreiche neue Mitarbeiterinnen und Mitarbeiter ein. Weitere Infos unter www.hasytec.comwww.baerbel-fening.de

The new research vessel METEOR IV is currently under construction and will be used by scientists to conduct research on all the world's oceans by 2026. Experts in marine technology have been involved from the very beginning to ensure that this succeeds. In this podcast episode, Torsten Turla, Managing Director of MacArtney Germany from Kiel, talks about the role he and his company are playing in the construction of the METEOR IV and which other ships they are supplying with marine technology. www.macartney.dewww.maritime-technik.dewww.baerbel-fening.de

In questo episodio assieme a Gigi Turla diamo un primo sguardo a LA conferenza Bitcoin-Only italiana:Bitcare Forum. Link Utili Sito Bitcare -bitcareforum.com TaxCare -https://www.taxcare.it/ Contatti di Gigi https://twitter.com/gigiturla

In this week's episode, we will continue with part 2 on "Preparing for and responding to ransomeware attack"As I said last week, ransomware is a threat that will be around us for the foreseeable future.Do listen to part 1 before you listen to this episode.With that out of the way, lets have a look a top trending piece of update for you.There is large-scale brute-force activity targeting VPNs, SSH services with commonly used login credentialshttps://blog.talosintelligence.com: Large-scale brute-force activity targeting VPNs, SSH services with commonly used login credentials- https://attack.mitre.org: Turla- https://www.chainalysis.com: ransomware 2024- https://www.cohesity.com: Ransomware RecoveryBe sure to subscribe! If you like the content. Follow me @iayusuf or read my blog at https://yusufonsecurity.comYou will find a list of all previous episodes in there too.

Ransomware is a threat that will be around us for the foreseeable future. In this week's episode we will look at the history of ransomware, the common TTPs in use by threat actors such as Turla, how to align our incident response to that threat and others, and finally how to contain, eradicate, and recover from it.In addition we will answer the following pertinent question that are top of minds for the SOC team. Questions such as:- What are the best methods to inhibiter Threat actor's lateral movement?- What are the critical components that drive ransomware?etc...But before we dig into these gems, lets touch one important top trending piece of news. And that is:- CISA makes its malware analysis system publicly available- https://www.cisa.gov: CISA Announces Malware Next-Gen Analysis- https://attack.mitre.org: Turla- https://www.chainalysis.com: ransomware 2024- https://www.cohesity.com: Ransomware RecoveryBe sure to subscribe! If you like the content. Follow me @iayusuf or read my blog at https://yusufonsecurity.comYou will find a list of all previous episodes in there too.

Holger Unterbrink of Talos Outreach joins the show this week to discuss his recent Turla APT research. This Russian state-sponsored actor has been around for years but is regularly adding new tooling to its arsenal. Holger has new details about their latest tool, TinyTurlaNG, and insight into the types of organizations they're targeting.

Episode sponsors: Binarly, the supply chain security experts (https://binarly.io) FwHunt (https://fwhunt.run) Costin Raiu has spent a lifetime in anti-malware research, working on some of the biggest nation-state APT cases in history, including Stuxnet, Duqu, Equation Group, Red October, Turla and Lazarus. In this exit interview, Costin digs into why he left the GReAT team after 13 years at the helm, ethical questions on exposing certain APT operations, changes in the nation-state malware attribution game, technically impressive APT attacks, and the 'dark spots' where future-thinking APTs are living.

Nella puntata di Halloween del BIP SHOW festeggiamo il compleanno del white paper in modo unico: raccontandovi la sua ultima pagina. Quella che non legge mai nessuno ma che invece racconta le vere e proprie fondamenta di Bitcoin.Commentiamo poi la nuovissima nota dell'Agenzia delle Entrate avvalendoci della consulenza di Gigi Turla, vero esperto in materia: un argomento da brividi!

In today's podcast we cover four crucial cyber and technology topics, including: 1.        CISA unveils plan to reduce abuse of remote monitoring tools 2.        Proxy server applications delivered in masse 3.        Criminals ask 120 thousand UDS for access to high end auction site 4.        San Fransisco contests State decision to allow robotaxis in city  I'd love feedback, feel free to send your comments and feedback to  | cyberandtechwithmike@gmail.com

"Yol Əhvalatı"nda qonaq olan Vüsal Məhəmmədoğlu bələdçi ilə səyahətin üstünlüklərindən, Kappadokiyada daha sərfəli balon turlarından, İtalya turu macəralarından bəhs edib.

Picture of the Week. Satellite Turla: APT Command and Control in the Sky. OS 17 to further crack down on device fingerprinting. Android to start warning of "unknown trackers". The 7th branch of the US military. Russia criminalizes open source project contribution. VirusTotal's 2023 report. Closing the Loop. TETRA:BURST. Show Notes - https://www.grc.com/sn/SN-933-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: podtail.com/podcast/building-cyber-resilience bitwarden.com/twit drata.com/twit

Picture of the Week. Satellite Turla: APT Command and Control in the Sky. OS 17 to further crack down on device fingerprinting. Android to start warning of "unknown trackers". The 7th branch of the US military. Russia criminalizes open source project contribution. VirusTotal's 2023 report. Closing the Loop. TETRA:BURST. Show Notes - https://www.grc.com/sn/SN-933-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: Building Cyber Resilience Podcast bitwarden.com/twit drata.com/twit

Picture of the Week. Satellite Turla: APT Command and Control in the Sky. OS 17 to further crack down on device fingerprinting. Android to start warning of "unknown trackers". The 7th branch of the US military. Russia criminalizes open source project contribution. VirusTotal's 2023 report. Closing the Loop. TETRA:BURST. Show Notes - https://www.grc.com/sn/SN-933-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: Building Cyber Resilience Podcast bitwarden.com/twit drata.com/twit

Picture of the Week. Satellite Turla: APT Command and Control in the Sky. OS 17 to further crack down on device fingerprinting. Android to start warning of "unknown trackers". The 7th branch of the US military. Russia criminalizes open source project contribution. VirusTotal's 2023 report. Closing the Loop. TETRA:BURST. Show Notes - https://www.grc.com/sn/SN-933-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: Building Cyber Resilience Podcast bitwarden.com/twit drata.com/twit

Sophos analyzes malvertising through purchased Google Ads. The MOVEit vulnerability is remediated faster than most. The DeliveryCheck backdoor is used against Ukrainian targets. SORM is under stress. Ukrainian police roll up another bot farm working in support of Russian influence operations. AJ Nash from ZeroFox provides insights on the White House cybersecurity labeling program. David Moulton from Palo Alto Networks Unit 42 introduces his new segment "Threat Vector." And we bid farewell to Kevin Mitnick. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/137 Selected reading. Bad ad fad leads to IcedID, Gozi infections (Sophos News) New research reveals rapid remediation of MOVEit Transfer vulnerabilities (Bitsight)  GRIT Ransomware Report-2023-Q2 (Guidepoint Security)  Russia's Turla hackers target Ukraine's defense with spyware (Record)  Russian Hackers Probe Ukrainian Defense Sector With Backdoor (Bank Info Security)  Russia's vast telecom surveillance system crippled by withdrawal of Western tech, report says (Record)  Ukraine's cyber police dismantled a massive bot farm spreading propaganda (Security Affairs) Kevin David Mitnick, August 6, 1963 - July 16, 2023. (Dignity Memorial)

Misirin mumyalarla dolu vahiməli muzeyi"Yol Əhvalatı"nda qonaq olan Məhbubə Məmmədli Misirə səyahətindən, Qahirənin çirkli şəhər olmasından, banan adalarından, Misirin vahiməli muzeyindən, təhlükəli balıqlardan, Misirin yeməklərindən danışdı.

I 20 år har rysk underrättelsetjänst fått ut hemlig information genom spionprogrammet Snake. Men FBI får programmet att radera sig självt. Det skadliga programmet Snake har infekterat datorer i över 50 länder, riktat in sig på statshemligheter och kallats för Rysslands främsta spionverktyg.– Snake är extremt intressant för det är ett av de mest sofistikerade malware som kan användas för att sprida programvara och utföra kommandon på datorer och telefoner, säger Patrik Fältström, IT-säkerhetsexpert på bolaget Netnod. Han och flera andra experter menar att det är sannolikt att Snake opererat även i Sverige. Men det vill varken Säkerhetspolisen, SÄPO, eller Försvarets radioanstalt, FRA, bekräfta.För att få stopp på det stora hotet mot cybersäkerheten inleder FBI operation Medusa. Deras mål är att slå ut spionprogrammet.FBI pekar ut ryska FSBI Snakes kod gömmer sig en bild, det är en orm som bildar en cirkel genom att äta sin svans, en Ourobouros. Men i koden finns också slarvfel, namn som borde ha raderats, och spåren leder till den ryska industristaden Rjazan. Där finns en grupp hackare som fått benämningen Turla.Turla visar sig vara en del av Center 16, en enhet inom den ryska federala underrättelsetjänsten FSB – med nära band till Rysslands president Vladimir Putin.FBI lyckas till slut knäcka Snakes kryptering, och kan då ge programmet kommandot att radera sig från de infekterade datorerna. Den 9 maj 2023 går FBI gå ut med meddelandet att de lyckats med nedtagningen och fått peer-to-peer-nätverket Snake att förinta sig självt.Medverkande:Carolina Angelis, expert underrättelseverksamhet, säkerhetsrådgivare TruesecCarolina Vendil Pallin, forskningsledare, Totalförsvarets forskningsinstitut, FOIPatrik Fältström, säkerhetsskyddschef på NetnodOla Billger, kommunikationschef, Försvarets radioanstalt, FRARoger Wilson, USA-korrespondentProgramledare: Bo Torbjörn Ek och Karin HållstenProducent: Pernilla KommesTekniker: Mats JonssonLjud från: Sveriges Radio, CyberNews, The CyberWire

On this week's show Patrick Gray and Adam Boileau discuss the week's security news. They cover: Germans charge FinFisher executives The got FBI busted misusing 702 data Special guest Chris Krebs talks China, new CISA mandates and more New research breaks Android fingerprint auth Much, much more This week's show is brought to you by Trail of Bits. Dan Guido is this week's sponsor guest and he joins us to talk about the work Trail of Bits is doing in securing AI systems, and making them safe. Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes Congress looks to expand CISA's role, adding responsibilities for satellites and open source software | CyberScoop Biden nominates Lt. Gen. Timothy Haugh for top position at NSA, Cyber Command Unsere Strafanzeige: Staatsanwaltschaft erhebt Anklage gegen FinFisher The Real Risks in Google's New .Zip and .Mov Domains | WIRED FBI misused controversial surveillance tool to investigate Jan. 6 protesters Suspicion stalks Genesis Market's competitors following FBI takedown Crimephones Are a Cop's Best Friend - by Tom Uren The Underground History of Turla, Russia's Most Ingenious Hacker Group | WIRED Some Of Russia's Most Dangerous Cybercriminals Just Had Their Malware Dealer Unmasked Shifting tactics fuel surge in Business Email Compromise Treasury Department sanctions entities tied to North Korean IT scams, hacking | CyberScoop Chinese Labs Are Selling Fentanyl Ingredients for Millions in Crypto | WIRED Leaked EU Document Shows Spain Wants to Ban End-to-End Encryption | WIRED Here's how long it takes new BrutePrint attack to unlock 10 different smartphones | Ars Technica It took 48 hours, but the mystery of the mass Asus router outage is solved | Ars Technica Popular Android TV boxes sold on Amazon are laced with malware | TechCrunch Teen hacker charged in scheme to siphon funds from sports betting accounts Researchers tie FIN7 cybercrime family to Clop ransomware German arms company Rheinmetall confirms Black Basta ransomware group behind cyberattack Dallas courts still closed 2 weeks post-ransomware attack | Cybersecurity Dive Health insurer says patients' information was stolen in ransomware attack Patients angered after Oklahoma allergy clinic blames cyberattack for shutdown UK steel industry supplier Vesuvius says ‘cyber incident' cost £3.5 million Researchers infiltrate Qilin ransomware group, finding lucrative affiliate payouts A different kind of ransomware demand: Donate to charity to get your data back | CyberScoop Joe Tidy on Twitter: "A bizarre one from Reading courts - an IT Security worker pleads guilty to piggy-backing off a cyber attack against his own firm. Liles switched the ransom payment details to his own Bitcoin wallet and changed the hacker's email to secretly apply pressured on bosses to pay up. https://t.co/Ze4yAJA6vM" / Twitter ChatGPT Scams Are Infiltrating Apple's App Store and Google Play | WIRED

On this week's show Patrick Gray and Adam Boileau discuss the week's security news. They cover: Germans charge FinFisher executives The got FBI busted misusing 702 data Special guest Chris Krebs talks China, new CISA mandates and more New research breaks Android fingerprint auth Much, much more This week's show is brought to you by Trail of Bits. Dan Guido is this week's sponsor guest and he joins us to talk about the work Trail of Bits is doing in securing AI systems, and making them safe. Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes Congress looks to expand CISA's role, adding responsibilities for satellites and open source software | CyberScoop Biden nominates Lt. Gen. Timothy Haugh for top position at NSA, Cyber Command Unsere Strafanzeige: Staatsanwaltschaft erhebt Anklage gegen FinFisher The Real Risks in Google's New .Zip and .Mov Domains | WIRED FBI misused controversial surveillance tool to investigate Jan. 6 protesters Suspicion stalks Genesis Market's competitors following FBI takedown Crimephones Are a Cop's Best Friend - by Tom Uren The Underground History of Turla, Russia's Most Ingenious Hacker Group | WIRED Some Of Russia's Most Dangerous Cybercriminals Just Had Their Malware Dealer Unmasked Shifting tactics fuel surge in Business Email Compromise Treasury Department sanctions entities tied to North Korean IT scams, hacking | CyberScoop Chinese Labs Are Selling Fentanyl Ingredients for Millions in Crypto | WIRED Leaked EU Document Shows Spain Wants to Ban End-to-End Encryption | WIRED Here's how long it takes new BrutePrint attack to unlock 10 different smartphones | Ars Technica It took 48 hours, but the mystery of the mass Asus router outage is solved | Ars Technica Popular Android TV boxes sold on Amazon are laced with malware | TechCrunch Teen hacker charged in scheme to siphon funds from sports betting accounts Researchers tie FIN7 cybercrime family to Clop ransomware German arms company Rheinmetall confirms Black Basta ransomware group behind cyberattack Dallas courts still closed 2 weeks post-ransomware attack | Cybersecurity Dive Health insurer says patients' information was stolen in ransomware attack Patients angered after Oklahoma allergy clinic blames cyberattack for shutdown UK steel industry supplier Vesuvius says ‘cyber incident' cost £3.5 million Researchers infiltrate Qilin ransomware group, finding lucrative affiliate payouts A different kind of ransomware demand: Donate to charity to get your data back | CyberScoop Joe Tidy on Twitter: "A bizarre one from Reading courts - an IT Security worker pleads guilty to piggy-backing off a cyber attack against his own firm. Liles switched the ransom payment details to his own Bitcoin wallet and changed the hacker's email to secretly apply pressured on bosses to pay up. https://t.co/Ze4yAJA6vM" / Twitter ChatGPT Scams Are Infiltrating Apple's App Store and Google Play | WIRED

The EU fines Meta for transatlantic data transfers. FIN7 returns, bearing Cl0p ransomware. Python Package Index temporarily suspends new registrations due to a spike in malicious activity. Typosquatting and TurkoRAT. UNC3944 uses SIM swapping to gain access to Azure admin accounts. A Turla retrospective. Rick Howard tackles workforce development. Our guest is Andrew Peterson of Fastly to discuss the intricate challenges of secure software development. And the FBI was found overstepping its surveillance authorities. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/98 Selected reading. Meta Fined $1.3 Billion Over Data Transfers to U.S. (Wall Street Journal) Meta fined record $1.3 billion and ordered to stop sending European user data to US (AP News) Notorious Cyber Gang FIN7 Returns With Cl0p Ransomware in New Wave of Attacks (The Hacker News) Researchers tie FIN7 cybercrime family to Clop ransomware (The Record) Cybercrime gang FIN7 returned and was spotted delivering Clop ransomware (Security Affairs) PyPI new user and new project registrations temporarily suspended. (Python) PyPI repository restored after temporarily suspending new activity (Computing) RATs found hiding in the NPM attic (ReversingLabs) Legitimate looking npm packages found hosting TurkoRat infostealer (CSO Online) SIM Swapping and Abuse of the Microsoft Azure Serial Console: Serial Is Part of a Well Balanced Attack (Mandiant) Mozilla Explains: SIM swapping (Mozilla) The Underground History of Russia's Most Ingenious Hacker Group (WIRED) Justice Department Announces Court-Authorized Disruption of Snake Malware Network Controlled by Russia's Federal Security Service (US Department of Justice) Hunting Russian Intelligence “Snake” Malware (CISA) FBI misused intelligence database in 278,000 searches, court says (Reuters) FBI misused controversial surveillance tool to investigate Jan. 6 protesters (The Record) FBI broke rules in scouring foreign intelligence on Jan. 6 riot, racial justice protests, court says (AP News)

Welcome to episode 293 (“AI's Ethical Implications”) of the EdTech Situation Room from May 10, 2023, where technology news meets educational analysis. This week Jason Neiffer (@techsavvyteach) and Wesley Fryer (@wfryer@mastodon.cloud) discuss the use of remote workers to improve generative AI tools such as ChatGPT. Although these tools require human intervention to provide feedback and improve error outputs, the use of often underpaid workers in developing countries raises ethical concerns. The hosts also explore potential AI tools for grading and providing specific feedback to students and the limitations of these tools. They also look at the implications of AI technology on children and the challenges it poses to teachers and parents. They discuss the integration of Chat GPT into Microsoft and Google Search, the limitations of human creativity, and the importance of precise and accurate directions to AI systems. In addition, Jason and Wes discuss the recent cyberattack by Kremlin-based hackers, Turla or Snake, on various countries' communications and critical infrastructure. This attack was successfully countered by US Security Forces using a solution comparable to Stuxnet. The importance of multi-factor authentication (MFA) in cybersecurity was emphasized, and other security measures like zero trust principles, identity governance, and secure MFA enrollment were recommended to decrease the risk of loss. The hosts also highlighted the use of Pass Key Only by tech companies like Google and Microsoft and recommended the use of physical keys to log in, especially for high-level targets, to avoid hacking. Useful resources for educators were also shared in the Geek of the Week segment. (AI Attribution: This podcast / video summary was initially generated with summarize.tech and slightly edited.) The show was live streamed and archived simultaneously on YouTube Live as well as our Facebook Live page via StreamYard.com, and compressed to a smaller video version (about 100MB) on AmazonS3 using Handbrake software. Please follow @edtechSR on Twitter and @edtechsr@mastodon.education on Mastodon for updates, and join us LIVE on Wednesday nights (normally) if you can at 9 pm Eastern / 8 pm Central / 7 pm Mountain / 7 pm Pacific or 3 am UTC. All shownotes are available on http://edtechSR.com/links. Stay savvy and safe!

Podcast: Control Loop: The OT Cybersecurity Podcast (LS 33 · TOP 5% what is this?)Episode: Internal Network Security Monitoring (INSM) for the electrical sector.Pub date: 2023-05-17Ukraine argues that cyberattacks against civilian infrastructure should be classified as war crimes. The Five Eyes take down Turla and its Snake malware. An Iranian threat actor turns its attention to infrastructure. The Bitter APT may be targeting Asia-Pacific energy companies. A Colonial Pipeline retrospective. ETHOS: a new private-sector OT risk information-sharing platform. CISA requests comment on software self-attestation form. Guest is Patrick Miller, CEO of Ampere Industrial Security, discussing INSM (Internal Network Security Monitoring) as a concept for the electric sector. In the Learning Lab, Dragos' Mark Urban is joined by Dragos Principal Adversary Hunter Kyle O'Meara and Dragos Principal Intelligence Technical Account Manager Michael Gardner to discuss threat hunting. Control Loop News Brief.Ukraine argues that cyberattacks against civilian infrastructure should be classified as war crimes.Russia attacks civilian infrastructure in cyberspace just as it does on ground - watchdog (UKRINFORM)Russians launch mass cyber attack on online service for queueing to cross border by trucks (Ukrainska Pravda)Europe's Air-Traffic Agency Under Attack From Pro-Russian Hackers (Wall Street Journal)#RSAC: Cyber-Attacks on Civilian Infrastructure Should Be War Crimes, says Ukraine Official (Infosecurity Magazine)Five Eyes take down Turla and its Snake malware.Hunting Russian Intelligence “Snake” Malware (Joint Cybersecurity Advisory)Iranian threat actor exploits N-day vulnerabilities, turns its attention to infrastructure.Nation-state threat actor Mint Sandstorm refines tradecraft to attack high-value targets (Microsoft)Bitter APT may be targeting Asia-Pacific energy companies.Phishing Campaign Targets Chinese Nuclear Energy Industry (Intezer)The Colonial Pipeline ransomware attack, two years later.The Attack on Colonial Pipeline: What We've Learned & What We've Done Over the Past Two Years (CISA)ETHOS: a new private-sector OT risk information-sharing platform.OT Cybersecurity Leaders to Deliver First Open-Source Information Sharing for Collective Early Warning in Critical Infrastructure (Globe Newswire)CISA requests comment on software self-attestation form.Request for Comment on Secure Software Self-Attestation Common Form (CISA)OMB, CISA set to release common form for software self-attestation (Infosecurity Magazine)Control Loop Interview.The interview is with Patrick Miller, CEO of Ampere Industrial Security, discussing INSM (Internal Network Security Monitoring) as a concept for the electric sector.Control Loop Learning Lab.On the Learning Lab, Mark Urban is joined by Dragos Principal Adversary Hunter Kyle O'Meara and Dragos Principal Intelligence Technical Account Manager Michael Gardner to discuss threat hunting. Control Loop OT Cybersecurity Briefing.A companion monthly newsletter is available through free subscription and on the CyberWire's website.The podcast and artwork embedded on this page are from N2K Networks, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Ukraine argues that cyberattacks against civilian infrastructure should be classified as war crimes. The Five Eyes take down Turla and its Snake malware. An Iranian threat actor turns its attention to infrastructure. The Bitter APT may be targeting Asia-Pacific energy companies. A Colonial Pipeline retrospective. ETHOS: a new private-sector OT risk information-sharing platform. CISA requests comment on software self-attestation form. Guest is Patrick Miller, CEO of Ampere Industrial Security, discussing INSM (Internal Network Security Monitoring) as a concept for the electric sector. In the Learning Lab, Dragos' Mark Urban is joined by Dragos Principal Adversary Hunter Kyle O'Meara and Dragos Principal Intelligence Technical Account Manager Michael Gardner to discuss threat hunting.  Control Loop News Brief. Ukraine argues that cyberattacks against civilian infrastructure should be classified as war crimes. Russia attacks civilian infrastructure in cyberspace just as it does on ground - watchdog (UKRINFORM) Russians launch mass cyber attack on online service for queueing to cross border by trucks (Ukrainska Pravda) Europe's Air-Traffic Agency Under Attack From Pro-Russian Hackers (Wall Street Journal) #RSAC: Cyber-Attacks on Civilian Infrastructure Should Be War Crimes, says Ukraine Official (Infosecurity Magazine) Five Eyes take down Turla and its Snake malware. Hunting Russian Intelligence “Snake” Malware (Joint Cybersecurity Advisory) Iranian threat actor exploits N-day vulnerabilities, turns its attention to infrastructure. Nation-state threat actor Mint Sandstorm refines tradecraft to attack high-value targets (Microsoft) Bitter APT may be targeting Asia-Pacific energy companies. Phishing Campaign Targets Chinese Nuclear Energy Industry (Intezer) The Colonial Pipeline ransomware attack, two years later. The Attack on Colonial Pipeline: What We've Learned & What We've Done Over the Past Two Years (CISA) ETHOS: a new private-sector OT risk information-sharing platform. OT Cybersecurity Leaders to Deliver First Open-Source Information Sharing for Collective Early Warning in Critical Infrastructure (Globe Newswire) CISA requests comment on software self-attestation form. Request for Comment on Secure Software Self-Attestation Common Form (CISA) OMB, CISA set to release common form for software self-attestation (Infosecurity Magazine) Control Loop Interview. The interview is with Patrick Miller, CEO of Ampere Industrial Security, discussing INSM (Internal Network Security Monitoring) as a concept for the electric sector. Control Loop Learning Lab. On the Learning Lab, Mark Urban is joined by Dragos Principal Adversary Hunter Kyle O'Meara and Dragos Principal Intelligence Technical Account Manager Michael Gardner to discuss threat hunting.  Control Loop OT Cybersecurity Briefing. A companion monthly newsletter is available through free subscription and on the CyberWire's website.

In this week's Source Code podcast, we discuss the dismantling operation by the U.S. government of Turla's Snake malware,  a leak of MSI data that exposes firmware signing keys and Intel BootGuard keys for several manufacturers, and several takeaways from Proofpoint's new Voice of the CISO report.

On this week's show Patrick Gray and Adam Boileau discuss the week's security news. They cover: Joe Sullivan's sentencing MSI key material leak Merck to be paid in NotPetya claim The FBI takes down Turla's Snake malware operation Much, much more This week's show is brought to you by Gigamon. Chaim Mazal, Gigamon's CSO, is this week's sponsor guest. He's talking about how the company's gear is acting as a data source for network security products. Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes Former Uber CSO avoids prison time for ransomware coverup | Cybersecurity Dive Merck cyber coverage upheld in NotPetya decision, seen as victory for policyholders | Cybersecurity Dive Home / Twitter Hunting Russian Intelligence “Snake” Malware | CISA Justice Department Announces Court-Authorized Disruption of Snake Malware Network Controlled by Russia's Federal Security Service | OPA | Department of Justice Iranian state-sponsored hackers exploiting printer vulnerability Iran: Fake It Till You Make It - by Tom Uren Hacktivists Target Iran's Foreign Ministry, Leak Trove Of Data New Cactus ransomware encrypts itself to evade antivirus White House considers ban on ransom payments, with caveats | Cybersecurity Dive Hamas armed wing announces suspension of bitcoin fundraising | Reuters FBI, Ukraine seize cryptocurrency exchanges for abetting cybercriminals Dallas still recovering from ransomware on eve of municipal election | Cybersecurity Dive Dallas restores core emergency dispatch systems | Cybersecurity Dive Hackers hijacked a university's emergency system to threaten students and faculty Organizations slow to patch GoAnywhere MFT vulnerability even after Clop ransomware attacks $10M Is Yours If You Can Get This Guy to Leave Russia – Krebs on Security Coming to DEF CON 31: Hacking AI models | CyberScoop Google Is Rolling Out Passkeys, the Password-Killing Tech, to All Accounts | WIRED US Court Rules for Corellium in Apple Copyright Case SafeGraph Lands US Air Force Contract After Targeting Abortion Clinics | WIRED

On this week's show Patrick Gray and Adam Boileau discuss the week's security news. They cover: Joe Sullivan's sentencing MSI key material leak Merck to be paid in NotPetya claim The FBI takes down Turla's Snake malware operation Much, much more This week's show is brought to you by Gigamon. Chaim Mazal, Gigamon's CSO, is this week's sponsor guest. He's talking about how the company's gear is acting as a data source for network security products. Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes Former Uber CSO avoids prison time for ransomware coverup | Cybersecurity Dive Merck cyber coverage upheld in NotPetya decision, seen as victory for policyholders | Cybersecurity Dive Home / Twitter Hunting Russian Intelligence “Snake” Malware | CISA Justice Department Announces Court-Authorized Disruption of Snake Malware Network Controlled by Russia's Federal Security Service | OPA | Department of Justice Iranian state-sponsored hackers exploiting printer vulnerability Iran: Fake It Till You Make It - by Tom Uren Hacktivists Target Iran's Foreign Ministry, Leak Trove Of Data New Cactus ransomware encrypts itself to evade antivirus White House considers ban on ransom payments, with caveats | Cybersecurity Dive Hamas armed wing announces suspension of bitcoin fundraising | Reuters FBI, Ukraine seize cryptocurrency exchanges for abetting cybercriminals Dallas still recovering from ransomware on eve of municipal election | Cybersecurity Dive Dallas restores core emergency dispatch systems | Cybersecurity Dive Hackers hijacked a university's emergency system to threaten students and faculty Organizations slow to patch GoAnywhere MFT vulnerability even after Clop ransomware attacks $10M Is Yours If You Can Get This Guy to Leave Russia – Krebs on Security Coming to DEF CON 31: Hacking AI models | CyberScoop Google Is Rolling Out Passkeys, the Password-Killing Tech, to All Accounts | WIRED US Court Rules for Corellium in Apple Copyright Case SafeGraph Lands US Air Force Contract After Targeting Abortion Clinics | WIRED

In today's podcast we cover four crucial cyber and technology topics, including: 1.        Github now scans for committed secrets prior to publishing 2.        New Andoryubot exploiting Wi-Fi management flaw 3.        Sysco breach impacts employees, customers, suppliers 4.        U.S. hacks back at Russian malware  I'd love feedback, feel free to send your comments and feedback to  | cyberandtechwithmike@gmail.com

[Referências do Episódio] - Tomiris called, they want their Turla malware back - https://securelist.com/tomiris-called-they-want-their-turla-malware-back/109552/ - Thread da Microsoft sobre falhas no sistema de busca do Microsoft 365 - https://twitter.com/MSFT365Status/status/1650458920786247681 - Attackers Abuse Kubernetes RBAC to Deploy Persistent Backdoor - https://www.securityweek.com/attackers-abuse-kubernetes-rbac-to-deploy-persistent-backdoor/ - Using RBAC Authorization - https://kubernetes.io/docs/reference/access-authn-authz/rbac/ [Ficha técnica] Apresentação: Carlos Cabral Roteiro: Carlos Cabral e Daniel Venzi Edição de áudio: Paulo Arruzzo Narração de encerramento: Bianca Garcia Projeto gráfico: Julian Prieto

Tom Brady posted a thirst trap?? We're once again back this week with some more technical difficulties.. Gannon is homeschooled, Chase simping for his Alexa, and much, much more! If you have some topics you would like to hear, send them our way to: soghpodcast@gmail.com or send them to our Instagram @somethingorignalpodcast! ________________________________ Something Original Youtube: https://www.youtube.com/channel/UCBQyqpWpks2llpQ0q2t7NEQ/videos Something Original Patreon: https://www.patreon.com/somethingoriginal?fan_landing=true Something Original Instagram: @somethingorignalpodcast Gannon's Instagram: @gannonfrantz Chase's Instagram: @chasedearing Adrian's Instagram: @a_z1047

ShadowTalk host Chris alongside Ivan give you the latest in threat intelligence. This week they cover: -Russian APT Turla -Chat GPT -Ransomware Group Lorenz TTP Changes Get this week's intelligence summary at: resources.digitalshadows.com/weekly-intelligence-summary/weekly-intelligence-summary-13-jan Subscribe to our threat intelligence email: info.digitalshadows.com/SubscribetoEm…cast_Reg.html Also, don't forget to reach out to - shadowtalk@digitalshadows.com - if you have any questions, comments, or suggestions for the next episodes.

The infamous, FSB-connected Turla group took over other hackers' servers, exploiting their USB drive malware for targeted espionage.

The infamous, FSB-connected Turla group took over other hackers' servers, exploiting their USB drive malware for targeted espionage.

On this week's show Patrick Gray and Adam Boileau discuss the news we missed while on break. Because it's the first show of the year, we split the discussion into themes: Attacks against critical online services like Okta, CircleCI, Slack and Lastpass will increase in volume All the latest global intrigue, from NSO being noped by the US Supreme Court to DDoS attacks in Serbia, Turla's latest campaign, supply chain attacks against Ukraine, why Russia has been more active than we realised and much more A ransomware wrap, a discussion about the rise of data extortion and why it's unlikely to remain a huge problem Why automotive security research will actually be interesting this year PLUS: A bunch of random news! This week's show is brought to you by Trail of Bits. Dan Guido is this week's sponsor guest and he joins us to talk about something they've developed – a zero knowledge proof of exploit technique. Very interesting stuff! Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes First LastPass, now Slack and CircleCI. The hacks go on (and will likely worsen) | Ars Technica Devs urged to rotate secrets after CircleCI suffers security breach | The Daily Swig LastPass: Hackers accessed and copied customers' password vaults - The Record from Recorded Future News GitHub incident allowed attacker to copy Okta's source code - The Record from Recorded Future News Supreme Court dismisses spyware company NSO Group's claim of immunity - The Record from Recorded Future News Serbian government reports ‘massive DDoS attack' amid heightened tensions in Balkans - The Record from Recorded Future News Iran's support of Russia draws attention of pro-Ukraine hackers - The Record from Recorded Future News Pro-Ukraine hackers leak Russian data in hopes someone will make sense of it - The Record from Recorded Future News CISA researchers: Russia's Fancy Bear infiltrated US satellite network Exclusive: Russian hackers targeted U.S. nuclear scientists | Reuters NSA cyber director warns of Russian digital assaults on global energy sector - CyberScoop Notorious Russian hacking group appears to resurface with fresh cyberattacks on Ukraine Military operations software in Ukraine was hit by Russian hackers - The Record from Recorded Future News New supply chain attack targeted Ukrainian government networks - The Record from Recorded Future News Moldovaʼs government hit by flood of phishing attacks - The Record from Recorded Future News Kremlin-backed hackers targeted a “large” petroleum refinery in a NATO nation | Ars Technica Cyber Command conducted offensive operations to protect midterm elections - The Record from Recorded Future News Guardian newspaper hit by suspected ransomware attack, staff told not to come to office - The Record from Recorded Future News British company that helps make semiconductors hit by cyber incident - The Record from Recorded Future News Port of Lisbon website still down as LockBit gang claims cyberattack - The Record from Recorded Future News SickKids: 80% of hospital priority systems back online after LockBit ransomware attack - The Record from Recorded Future News Canada's largest children's hospital struggles to recover from pre-Christmas ransomware attack - The Record from Recorded Future News Canadian copper mine suffers ransomware attack, shuts down mills - The Record from Recorded Future News Los Angeles housing authority says cyberattack disrupting systems - The Record from Recorded Future News The Guardian contacts data protection regulator after suspected ransomware incident - The Record from Recorded Future News Australian fire service operating 85 stations shuts down network after cyberattack - The Record from Recorded Future News San Francisco BART investigating ransomware attack - The Record from Recorded Future News Hackers leak sensitive files following attack on San Francisco transit police New U.S. cyber strategy will require critical infrastructure companies to protect against hacks - The Washington Post Car hackers discover vulnerabilities that could let them hijack millions of vehicles Compromised dispatch system helped move taxis to front of the line | Ars Technica Researcher Deepfakes His Voice, Uses AI to Demand Refund From Wells Fargo Armed With ChatGPT, Cybercriminals Build Malware And Plot Fake Girl Bots Cybercriminals' latest grift: powdered milk and sugar by the truckload - The Record from Recorded Future News This app will self-destruct: How Belarusian hackers created an alternative Telegram for activists - The Record from Recorded Future News Chinese researchers claim to have broken RSA with a quantum computer. Experts aren't so sure. - The Record from Recorded Future News Key bitcoin developer calls on FBI to recover $3.6M in digital coin | Ars Technica Chick-fil-A acknowledges customer account abuse but denies compromise of internal systems - The Record from Recorded Future News Microsoft ends Windows 7 security updates | TechCrunch

On this week's show Patrick Gray and Adam Boileau discuss the news we missed while on break. Because it's the first show of the year, we split the discussion into themes: Attacks against critical online services like Okta, CircleCI, Slack and Lastpass will increase in volume All the latest global intrigue, from NSO being noped by the US Supreme Court to DDoS attacks in Serbia, Turla's latest campaign, supply chain attacks against Ukraine, why Russia has been more active than we realised and much more A ransomware wrap, a discussion about the rise of data extortion and why it's unlikely to remain a huge problem Why automotive security research will actually be interesting this year PLUS: A bunch of random news! This week's show is brought to you by Trail of Bits. Dan Guido is this week's sponsor guest and he joins us to talk about something they've developed – a zero knowledge proof of exploit technique. Very interesting stuff! Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes First LastPass, now Slack and CircleCI. The hacks go on (and will likely worsen) | Ars Technica Devs urged to rotate secrets after CircleCI suffers security breach | The Daily Swig LastPass: Hackers accessed and copied customers' password vaults - The Record from Recorded Future News GitHub incident allowed attacker to copy Okta's source code - The Record from Recorded Future News Supreme Court dismisses spyware company NSO Group's claim of immunity - The Record from Recorded Future News Serbian government reports ‘massive DDoS attack' amid heightened tensions in Balkans - The Record from Recorded Future News Iran's support of Russia draws attention of pro-Ukraine hackers - The Record from Recorded Future News Pro-Ukraine hackers leak Russian data in hopes someone will make sense of it - The Record from Recorded Future News CISA researchers: Russia's Fancy Bear infiltrated US satellite network Exclusive: Russian hackers targeted U.S. nuclear scientists | Reuters NSA cyber director warns of Russian digital assaults on global energy sector - CyberScoop Notorious Russian hacking group appears to resurface with fresh cyberattacks on Ukraine Military operations software in Ukraine was hit by Russian hackers - The Record from Recorded Future News New supply chain attack targeted Ukrainian government networks - The Record from Recorded Future News Moldovaʼs government hit by flood of phishing attacks - The Record from Recorded Future News Kremlin-backed hackers targeted a “large” petroleum refinery in a NATO nation | Ars Technica Cyber Command conducted offensive operations to protect midterm elections - The Record from Recorded Future News Guardian newspaper hit by suspected ransomware attack, staff told not to come to office - The Record from Recorded Future News British company that helps make semiconductors hit by cyber incident - The Record from Recorded Future News Port of Lisbon website still down as LockBit gang claims cyberattack - The Record from Recorded Future News SickKids: 80% of hospital priority systems back online after LockBit ransomware attack - The Record from Recorded Future News Canada's largest children's hospital struggles to recover from pre-Christmas ransomware attack - The Record from Recorded Future News Canadian copper mine suffers ransomware attack, shuts down mills - The Record from Recorded Future News Los Angeles housing authority says cyberattack disrupting systems - The Record from Recorded Future News The Guardian contacts data protection regulator after suspected ransomware incident - The Record from Recorded Future News Australian fire service operating 85 stations shuts down network after cyberattack - The Record from Recorded Future News San Francisco BART investigating ransomware attack - The Record from Recorded Future News Hackers leak sensitive files following attack on San Francisco transit police New U.S. cyber strategy will require critical infrastructure companies to protect against hacks - The Washington Post Car hackers discover vulnerabilities that could let them hijack millions of vehicles Compromised dispatch system helped move taxis to front of the line | Ars Technica Researcher Deepfakes His Voice, Uses AI to Demand Refund From Wells Fargo Armed With ChatGPT, Cybercriminals Build Malware And Plot Fake Girl Bots Cybercriminals' latest grift: powdered milk and sugar by the truckload - The Record from Recorded Future News This app will self-destruct: How Belarusian hackers created an alternative Telegram for activists - The Record from Recorded Future News Chinese researchers claim to have broken RSA with a quantum computer. Experts aren't so sure. - The Record from Recorded Future News Key bitcoin developer calls on FBI to recover $3.6M in digital coin | Ars Technica Chick-fil-A acknowledges customer account abuse but denies compromise of internal systems - The Record from Recorded Future News Microsoft ends Windows 7 security updates | TechCrunch

Russian Turla hackers hijack decade-old malware infrastructure to deploy new backdoors LastPass hit with lawsuit over August breach Hackers abuse Windows error reporting tool to deploy malware Thanks to today's episode sponsor, AppOmni Can you name all the third party apps connected to your major SaaS platforms like Salseforce and Microsoft? What about the data these apps can access? After all, one compromised 3rd party app could put your entire SaaS ecosystem at risk.  With AppOmni, you get visibility to all third party apps and SaaS-to-SaaS connections — including which end users have enabled them, and the level of data access they've been granted. Visit AppOmni.com to request a free risk assessment. For the stories behind the headlines, head to CISOseries.com.

Security vulnerabilities in automobiles. CircleCI customers should "rotate their secrets." CISA Director Easterly notes Russian failures, but warns that shields should stay up. Attempted cyberespionage against US National Laboratories. Turla effectively recycles some commodity malware infrastructure. Robert M. Lee from Dragos shares his outlook on ICS for the new year. Our CyberWire Space correspondent Maria Varmazis interviews Diane Janosek from NSA about her research on space-cyber. And the Guardian continues to recover from last month's ransomware attack. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/4 Selected reading. Hitachi Energy UNEM (CISA) Hitachi Energy FOXMAN-UN (CISA) Hitachi Energy Lumada Asset Performance Management (CISA)  Web Hackers vs. The Auto Industry: Critical Vulnerabilities in Ferrari, BMW, Rolls Royce, Porsche, and More (Sam Curry) Toyota, Mercedes, BMW API flaws exposed owners' personal info (BleepingComputer) 16 Car Makers and Their Vehicles Hacked via Telematics, APIs, Infrastructure (SecurityWeek) Ferrari, BMW, Rolls Royce, Porsche and more fix vulnerabilities giving car takeover capabilities (The Record by Recorded Future) CircleCI security alert: Rotate any secrets stored in CircleCI (CircleCI). CircleCI warns of security breach — rotate your secrets! (BleepingComputer) CircleCI Urges Customers to Rotate Secrets Following Security Incident (The Hacker News) CISA director: US needs to be vigilant, ‘keep our shields up' against Russia (The Hill) Exclusive-Russian Hackers Targeted U.S. Nuclear Scientists (Reuters via US News)  Notorious Russian Spies Piggybacked on Other Hackers' USB Infections (WIRED)  Turla: A Galaxy of Opportunity | Mandiant (Mandiant)  Fallout from Guardian cyber attack to last at least a month (ComputerWeekly) State of Ransomware Preparedness (Axio)

Hey guys! Welcome back to another episode of black fluidity the podcast! On this episode we talk weekly check in, bops of the week, Blonde vs Channel Orange and more!Like, comment, subscribe!PLAYLISTS BELOWhttps://open.spotify.com/user/84k7v5dgsdkcfjda8gbj0wqie?si=377f1fc2d983455dconnect with jojoIG/Twitter: @grandmasterjo_Tiktok: @jojorice6connect with ebonyIG: @ebonykelley_Tiktok: @ebonykelley__connect with usIG/Tiktok: @blackfluiditythepodTwitter: @blackfluidity

The Bridge is coming to you live from The Beer Hall at Boulevard Brewing Company for this Eight One Sixty episode! We welcome special guest Trevor Turla – plus, it's Pledge Week, and Plaza Art Fair Week.Trevor Turla is an amazing trombonist here in KC and for a long time has played with many great bands and musicians, and recently he released his debut solo album, "And We Continue."He's got a busy weekend ahead, playing in several sets at the 91st annual Plaza Art Fair – Splatt w/ Kadesh Flow, Trevor Turla, Grand Marquis, and sitting in with The Phantastics.In addition to playing music from his recent release, we'll also play brand new music from other acts playing at Art Fair including Run With It, OLIVIA FOX and Caley Rose. And in case you missed it, Kristen May is making music again! She's a long-time KC musician and former front person for Vedera, and she is also part of this weekend's Art Fair. We'll hear one from her catalog.If you love The Bridge, now's a good time to throw a few bucks into the proverbial digital hat and help keep things running smoothly at the station.  

Podcast: Control Loop: The OT Cybersecurity PodcastEpisode: Welcome to Control Loop: Giving back to the OT community.Pub date: 2022-06-01Every two weeks, get the latest in OT news in Control Loop News Brief, an interview featuring a thought leader in the OT space sharing current industry trends, and the Control Loop Learning Lab's educational segment. A companion monthly newsletter is available through free subscription and on the CyberWire's website.Headlines include: Russia's hybrid war against Ukraine. Russian threat actors against industrial control systems. Exploits for Bluetooth Low Energy. Hacktivists claim attacks against Russian ground surveillance robots. New wiper loader. Turla threat actor reconnaissance in Estonian and Austrian networks. Robert M. Lee, CEO of Dragos, talks giving back to the OT community and shares insights on Pipedream malware. Learning Lab has Dragos' Mark Urban and Jackson Evans-Davies talking about the fundamentals of OT cybersecurity.Control Loop News Brief.Continuing expectations of escalation in cyberspace.Microsoft President: Cyber Space Has Become the New Domain of Warfare - Infosecurity MagazineCyber Attacks on Ukraine: Not What You Think | PCMag Warning: threat actor targets industrial systems.US warns energy firms of a rapidly advancing hacking threat - E&E NewsPIPEDREAM: CHERNOVITE's Emerging Malware Targeting Industrial Environments | DragosPipedream Malware: Feds Uncover 'Swiss Army Knife' for Industrial System Hacking | WIREDIndestroyer2 and Ukraine's power grid. Twitter: @ESETresearchIndustroyer2: Industroyer reloaded | WeLiveSecurityRussian hackers tried to bring down Ukraine's power grid to help the invasion | MIT Technology ReviewBluetooth vulnerabilities demonstrated in proof-of-concept.NCC Group uncovers Bluetooth Low Energy (BLE) vulnerability that puts millions of cars, mobile devices and locking systems at riskTesla Hacker Proves a Way of Unlocking Doors, Starting Engine - BloombergCISA and its international partners urge following best practices to prevent threat actors from gaining initial access.Weak Security Controls and Practices Routinely Exploited for Initial Access | CISAHacktivists claim to have compromised Russian-manufactured ground surveillance robots.Did hackers commandeer surveillance robots at a Russian airport?Twitter: @caucasnetPolitically motivated DDoS attack on Port of London Authority website.Twitter: @LondonPortAuthPro-Iran Group ALtahrea Hits Port of London Website by DDoS Attack New loader identified in wiper campaigns.Sandworm uses a new version of ArguePatch to attack targets in Ukraine | WeLiveSecurity Turla reconnaissance detected in Austrian and Estonian networks.Russian hackers perform reconnaissance against Austria, Estonia TURLA's new phishing-based reconnaissance campaign in Eastern Europe SANS ICS Summit is coming to Florida, June 1-9.ICS Security Summit & Training 2022Colonial Pipeline's ransomware attack, one year later.How the Colonial Pipeline attack instilled urgency in cybersecurityOT vulnerabilities as credit risk.Operational Technology Cyberattacks Are a Credit Risk for UtilitiesA Cyber Resilience Pledge. Global CEOs Commit to Collective Action on Cyber Resilience Recent threat intelligence findings from Dragos.Dragos ICS/OT Ransomware Analysis: Q1 2022Control Loop Interview.Robert M. Lee, CEO of Dragos, on giving back to the OT cybersecurity community, the idea behind the Control Loop podcast and newsletter, and his candid thoughts on the Pipedream malware and its creators.Follow Rob on LinkedIn and Twitter.Control Loop Learning Lab.Dragos' Mark Urban and Jackson Evans-Davies on the fundamentals of OT cybersecurity and network architecture.Dragos 2021 ICS Cybersecurity Year in ReviewHow to Build a Roadmap for ICS/OT Cybersecurity: 3 Steps to a Sustainable ProgramManaging External Connections to Your Operational Technology EnvironmentImproving ICS/OT Security Perimeters with Network SegmentationThe podcast and artwork embedded on this page are from CyberWire Inc., which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Every two weeks, get the latest in OT news in Control Loop News Brief, an interview featuring a thought leader in the OT space sharing current industry trends, and the Control Loop Learning Lab's educational segment. A companion monthly newsletter is available through free subscription and on the CyberWire's website. Headlines include: Russia's hybrid war against Ukraine. Russian threat actors against industrial control systems. Exploits for Bluetooth Low Energy. Hacktivists claim attacks against Russian ground surveillance robots. New wiper loader. Turla threat actor reconnaissance in Estonian and Austrian networks. Robert M. Lee, CEO of Dragos, talks giving back to the OT community and shares insights on Pipedream malware. Learning Lab has Dragos' Mark Urban and Jackson Evans-Davies talking about the fundamentals of OT cybersecurity. Control Loop News Brief. Continuing expectations of escalation in cyberspace. Microsoft President: Cyber Space Has Become the New Domain of Warfare - Infosecurity Magazine Cyber Attacks on Ukraine: Not What You Think | PCMag  Warning: threat actor targets industrial systems. US warns energy firms of a rapidly advancing hacking threat - E&E News PIPEDREAM: CHERNOVITE's Emerging Malware Targeting Industrial Environments | Dragos Pipedream Malware: Feds Uncover 'Swiss Army Knife' for Industrial System Hacking | WIRED Indestroyer2 and Ukraine's power grid.  Twitter: @ESETresearch Industroyer2: Industroyer reloaded | WeLiveSecurity Russian hackers tried to bring down Ukraine's power grid to help the invasion | MIT Technology Review Bluetooth vulnerabilities demonstrated in proof-of-concept. NCC Group uncovers Bluetooth Low Energy (BLE) vulnerability that puts millions of cars, mobile devices and locking systems at risk Tesla Hacker Proves a Way of Unlocking Doors, Starting Engine - Bloomberg CISA and its international partners urge following best practices to prevent threat actors from gaining initial access. Weak Security Controls and Practices Routinely Exploited for Initial Access | CISA Hacktivists claim to have compromised Russian-manufactured ground surveillance robots. Did hackers commandeer surveillance robots at a Russian airport? Twitter: @caucasnet Politically motivated DDoS attack on Port of London Authority website. Twitter: @LondonPortAuth Pro-Iran Group ALtahrea Hits Port of London Website by DDoS Attack  New loader identified in wiper campaigns. Sandworm uses a new version of ArguePatch to attack targets in Ukraine | WeLiveSecurity  Turla reconnaissance detected in Austrian and Estonian networks. Russian hackers perform reconnaissance against Austria, Estonia  TURLA's new phishing-based reconnaissance campaign in Eastern Europe  SANS ICS Summit is coming to Florida, June 1-9. ICS Security Summit & Training 2022 Colonial Pipeline's ransomware attack, one year later. How the Colonial Pipeline attack instilled urgency in cybersecurity OT vulnerabilities as credit risk. Operational Technology Cyberattacks Are a Credit Risk for Utilities A Cyber Resilience Pledge.  Global CEOs Commit to Collective Action on Cyber Resilience  Recent threat intelligence findings from Dragos. Dragos ICS/OT Ransomware Analysis: Q1 2022 Control Loop Interview. Robert M. Lee, CEO of Dragos, on giving back to the OT cybersecurity community, the idea behind the Control Loop podcast and newsletter, and his candid thoughts on the Pipedream malware and its creators. Follow Rob on LinkedIn and Twitter. Control Loop Learning Lab. Dragos' Mark Urban and Jackson Evans-Davies on the fundamentals of OT cybersecurity and network architecture. Dragos 2021 ICS Cybersecurity Year in Review How to Build a Roadmap for ICS/OT Cybersecurity: 3 Steps to a Sustainable Program Managing External Connections to Your Operational Technology Environment Improving ICS/OT Security Perimeters with Network Segmentation

Welcome to a new edition of the Neon Jazz interview series with Kansas City-based Trombonist, Singer, Songwriter, Bandleader & Composer Trevor Turla .. I caught him live in late January 2022 at the RecordBar as a part of The Grand Marquis opening for Freedom Affair and he has a high energy approach to his music .. Over 2022, he's been releasing singles as a part of a new EP that is streaming everywhere .. His first musical instrument was the bagpipes and progressed from there .. Originally from Wichita, KS, he loves KC and talks about his life in music, the city and so much more ..Dig his story .. Click to listen.Thanks for listening and tuning into yet another Neon Jazz interview .. where we give you a bit of insight into the finest players and minds around the world giving fans all that jazz ..  If you want to hear more interviews, go to Famous Interviews with Joe Dimino on the iTunes store, visit the YouTube Neon Jazz  Channel at https://www.youtube.com/c/neonjazzkc, go The Home of Neon Jazz at  http://theneonjazz.blogspot.com/ and for everything Joe Dimino related go to www.joedimino.com When you are there, you can donate to the Neon Jazz cause via PayPal https://www.paypal.com/donate?hosted_button_id=ERA4C4TTVKLR4 or through Patreon at https://www.patreon.com/neonjazzkc - Until next time .. enjoy the music my friends ..

Verizon's 2022 Data Breach Investigation Report shows a sharp rise in ransomware. Origins of the Chaos ransomware operation. The GuLoader campaign uses bogus purchase orders. Security researchers are targeted in a malware campaign. Hyperlocal disinformation. Turla reconnaissance has been detected in Austrian and Estonian networks. Ben Yelin describes a content moderation fight that may be headed to the supreme court. Our guest is Richard Melick from Zimperium to discuss threats to mobile security. Robin Hood (or not). For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/11/99 Selected reading. 2022 Data Breach Investigations Report (Verizon Business)  Yashma Ransomware, Tracing the Chaos Family Tree (BlackBerry) Spoofed Saudi Purchase Order Drops GuLoader: Part 1 (Fortinet Blog)  Malware Campaign Targets InfoSec Community: Threat Actor Uses Fake Proof of Concept to Deliver Cobalt-Strike Beacon (Cyble) Network of hyperlocal Russian Telegram channels spew disinformation in occupied Ukraine (CyberScoop)  Russian hackers perform reconnaissance against Austria, Estonia (BleepingComputer) New ransomware forces victims to donate to poor (The Independent)

In today's podcast we cover four crucial cyber and technology topics, including: 1.Researcher finds flaw in PayPal site allowing theft 2.Tinder and Grinder used in identity verification schemes 3.GM says credential stuffing allowed access to customer accounts 4.Researchers find new Russian campaign targeting NATO, Baltics I'd love feedback, feel free to send your comments and feedback to  | cyberandtechwithmike@gmail.com

Herbert Bactong is the CEO and Co-Founder at Burket. Roy Julian is the COO and Co-Founder at Burket. Jeff Turla is the CTO and Co-Founder at Burket.Burket is a Philippine-based AI-powered B2B marketplace that intelligently, efficiently, and conveniently connects businesses to suppliers and buyers, enhancing discoverability, savings, and sales.Burket is a DOST PCIEERD 2021 Startup Fund Program grantee and part of QBO's Top 100. Know more about what a B2B Marketplace exactly is, how AI is powering Burket's intelligent matching, how Burket is empowering local MSME's, and some encouraging words as the three co-founders share their motivations and visions.In this episode:00:58 Ano ang Burket?02:44 What exactly does a B2B Marketplace do?08:29 Let's go into the numbers: How many businesses and product/service listings are in Burket?09:18 Just to paint a picture: What are some of the businesses being connected at Burket?12:44 What exactly is the value for a business to join as a supplier or buyer?20:22 Burket has AI-powered intelligent matching. How does this work?23:14 How did Burket start? Can you share some stories of its inception and creation?28:03 What keeps you motivated to build Burket?33:54 If listeners want to know more about Burket or sign up as a partner, how can they get more information?BURKETWebsite: www.burket.phFacebook: www.facebook.com/burketphCHECK OUT THESE STARTUPS & MSME'S (PATRONS):NutriCoach: www.nutricoach.comBenjoys Food Products: benjoysfoodproducts.comSTART UP PODCASTYouTube: www.youtube.com/c/StartUpPodcastPHSpotify: open.spotify.com/show/6BObuPvMfoZzdlJeb1XXVaApple Podcasts: podcasts.apple.com/us/podcast/start-up-podcast/id1576462394Facebook: www.facebook.com/startuppodcastphPatreon: www.patreon.com/StartUpPodcastPHBuy Me a Coffee: www.buymeacoffee.com/startuppodcastCREDITSIntro and outro thanks to Terence Boydon: wyrmpres.wordpress.comThis episode is edited by the team at: tasharivera.com

Trevor Turla is a brass musician, vocalist, composer, and teacher. He believes that creativity is a source of change. Through art, music, literature, and action we can transmute the world we've been handed into the one we hope for.The authenticity of self, authenticity with people, and authenticity in love are just a few of the concepts we dive into in this episode. Trevor also shares his story of starting in music at 8 years old learning the bag pipes and how that propelled him on a journey to becoming a professional musician looking to impact the world. Check out all that Trevor is up to here:http://trevorturla.com/____To contact Miguel Antonio for feedback or inquiries about the show - emailbooking@JustTheMiguel.comCheck out Miguel's band Run With ItRunwithitband.netTo check out the Run With It Daily podcast go to Runwithitband.net#liveandcreate podcast is where the host Miguel Antonio (Singer Song-Writer and Entrepreneur) talks to artists and entrepreneurs about what it means to live a great life and create great things. Live and Create Conversations dive into guests' personal stories and inspiration. They often touch on the practicalities of either business or creation and then build into a philosophical discussion about life and creating art, music, and a better world. Miguel Antonio is the frontman for the band Run With It, and the host of #liveandcreate, #runwithitdaily podcast

Trevor Turla is a brass musician, vocalist, composer, and teacher. He believes that creativity is a source of change. Through art, music, literature, and action we can transmute the world we've been handed into the one we hope for.The authenticity of self, authenticity with people, and authenticity in love are just a few of the concepts we dive into in this episode. Trevor also shares his story of starting in music at 8 years old learning the bag pipes and how that propelled him on a journey to becoming a professional musician looking to impact the world. Check out all that Trevor is up to here:http://trevorturla.com/____To contact Miguel Antonio for feedback or inquiries about the show - emailbooking@JustTheMiguel.comCheck out Miguel's band Run With ItRunwithitband.netTo check out the Run With It Daily podcast go to Runwithitband.net#liveandcreate podcast is where the host Miguel Antonio (Singer Song-Writer and Entrepreneur) talks to artists and entrepreneurs about what it means to live a great life and create great things. Live and Create Conversations dive into guests' personal stories and inspiration. They often touch on the practicalities of either business or creation and then build into a philosophical discussion about life and creating art, music, and a better world. Miguel Antonio is the frontman for the band Run With It, and the host of #liveandcreate, #runwithitdaily podcast

Security researchers have found links between the attackers and Turla, a sophisticated team suspected of operating out of Moscow's FSB intelligence agency.

EMail Roulette May 2019 https://isc.sans.edu/forums/diary/Email+roulette+May+2019/24918/ Turla Lightneuron https://www.welivesecurity.com/wp-content/uploads/2019/05/ESET-LightNeuron.pdf Alpine Linux Docker Image root User Hard Coded Credentials https://talosintelligence.com/vulnerability_reports/TALOS-2019-0782 Worpress 5.2 Adds Digitially Signed Updates https://wordpress.org/support/wordpress-version/version-5-2/