Ukraine’s security chief and head prosecutor are out. Cyberattacks hit Albania. APTs prospect journalists. The GRU trolls researchers. CISA to open an attaché office in London.
07/18/22 • 24 min
1 Listener
Ukraine shakes up its security and prosecutorial services. Cyberattacks hit Albania. Advanced persistent threat actors prospect journalists. The GRU is said to be trolling researchers who look into Sandworm. Thomas Etheridge from CrowdStrike on identity management. Our guest is Robin Bell from Egress discussing their Human Activated Risk Report. And CISA opens a liaison office in London.
For links to all of today's stories check out our CyberWire daily news briefing:
https://thecyberwire.com/newsletters/daily-briefing/11/136
Selected reading.
Ukraine's Zelenskyy fires top security chief and prosecutor (AP NEWS)
Zelenskiy Ousts Ukraine’s Security Chief and Top Prosecutor (Bloomberg)
Volodymyr Zelensky sacks top aides over 'Russian collaboration' (The Telegraph)
A massive cyberattack hit Albania (Security Affairs)
Information Systems Are Intact, Says Albanian Government after Cyber Attack (Exit - Explaining Albania)
Albania closes down online gov't systems after cyber attack (ANI News).
Albania Shuts Down Digital Services and Government Websites after Cyber Attack (Exit - Explaining Albania)
Hackers pose as journalists to breach news media org’s networks (BleepingComputer)
Cybersecurity Firm: What US Journalists Need To Know About The Foreign Hackers Targeting Them Forbes)
Sandworm APT Trolls Researchers on Its Trail as It Targets Ukraine (Dark Reading)
Learn more about your ad choices. Visit megaphone.fm/adchoices
Ukraine shakes up its security and prosecutorial services. Cyberattacks hit Albania. Advanced persistent threat actors prospect journalists. The GRU is said to be trolling researchers who look into Sandworm. Thomas Etheridge from CrowdStrike on identity management. Our guest is Robin Bell from Egress discussing their Human Activated Risk Report. And CISA opens a liaison office in London.
For links to all of today's stories check out our CyberWire daily news briefing:
https://thecyberwire.com/newsletters/daily-briefing/11/136
Selected reading.
Ukraine's Zelenskyy fires top security chief and prosecutor (AP NEWS)
Zelenskiy Ousts Ukraine’s Security Chief and Top Prosecutor (Bloomberg)
Volodymyr Zelensky sacks top aides over 'Russian collaboration' (The Telegraph)
A massive cyberattack hit Albania (Security Affairs)
Information Systems Are Intact, Says Albanian Government after Cyber Attack (Exit - Explaining Albania)
Albania closes down online gov't systems after cyber attack (ANI News).
Albania Shuts Down Digital Services and Government Websites after Cyber Attack (Exit - Explaining Albania)
Hackers pose as journalists to breach news media org’s networks (BleepingComputer)
Cybersecurity Firm: What US Journalists Need To Know About The Foreign Hackers Targeting Them Forbes)
Sandworm APT Trolls Researchers on Its Trail as It Targets Ukraine (Dark Reading)
Learn more about your ad choices. Visit megaphone.fm/adchoices
Previous Episode
Cybercriminals shift tactics from disruption to data leaks. [CyberWire-X]
On this episode of CyberWire-X, we examine double extortion ransomware. The large-scale cyber events of yesterday – Stuxnet, the Ukraine Power Grid Attack – were primarily focused on disruption. Cybercriminals soon shifted to ransomware with disruption still the key focus – and then took things to the next level with Double Extortion Ransomware.
When ransomware first started to take off as the attack method of choice around 2015, the hacker playbook was focused on encrypting data, requesting payment and then handing over the encryption keys. Their methods escalated with Double Extortion, stealing data as well as encrypting it - and threatening to leak data if they don’t receive payment. We’ve seen with ransomware groups like Maze that they will follow through with publishing private information if not paid.
In the first part of the show, Rick Howard, the CyberWire’s CSO, Chief Analyst, and Senior Fellow, talks with Wayne Moore, Simply Business' CISO and CyberWire Hash Table member, and, in the second half of the show, the CyberWire's podcast host Dave Bittner talks with Nathan Hunstad, episode sponsor Code42’s Deputy CISO. They discuss how classic ransomware protection such as offsite backups are no longer enough. They explain that Double Extortion means that you need to understand what data has been stolen and weigh the cost of paying with the cost of your data going public.
Learn more about your ad choices. Visit megaphone.fm/adchoices
Next Episode
Espionage and cyberespionage. Albania's national IT networks work toward recovery. Malicious apps ejected from Google Play. White House summit addresses the cyber workforce. Notes on cybercrime.
A Cozy Bear sighting. Shaking up Ukraine's intelligence services. Albania's national IT networks continue to work toward recovery. US Justice Department seizes $500k from DPRK threat actors. The FBI warns of apps designed to defraud cryptocurrency speculators. A White House meeting today addresses the cyber workforce. Ben Yelin looks at our right to record police. Our guest is Tim Knudsen, Director of Product Management for Zero Trust at Google Cloud, speaking with Rick Howard. And another trend we’d like to be included out of.
For links to all of today's stories check out our CyberWire daily news briefing:
https://thecyberwire.com/newsletters/daily-briefing/11/137
Selected reading.
Russian APT29 Hackers Use Online Storage Services, DropBox and Google Drive (Unit 42)
Russian hacking unit Cozy Bear adds Google Drive to its arsenal, researchers say (CyberScoop)
Russian SVR hackers use Google Drive, Dropbox to evade detection (BleepingComputer)
Ukraine’s spy problem runs deeper than Volodymyr Zelensky’s childhood friend (The Telegraph)
Albanian government websites go dark after cyberattack (Register)
On Google Play, Joker, Facestealer, & Coper Banking Malware (Zscaler)
Justice Department seizes $500K from North Korean hackers who targeted US medical organizations (CNN)
Cyber Criminals Create Fraudulent Cryptocurrency Investment Applications to Defraud US Investors (US Federal Bureau of Investigation)
Announcement of White House National Cyber Workforce and Education Summit | The White House (The White House)
Not your average side hustle: the women making thousands from 'pay pigs' who enjoy being financially dominated (Business Insider)
Learn more about your ad choices. Visit megaphone.fm/adchoices
If you like this episode you’ll love
Episode Comments
Generate a badge
Get a badge for your website that links back to this episode
<a href="https://goodpods.com/podcasts/cyberwire-daily-39916/ukraines-security-chief-and-head-prosecutor-are-out-cyberattacks-hit-a-22126077"> <img src="https://storage.googleapis.com/goodpods-images-bucket/badges/generic-badge-1.svg" alt="listen to ukraine’s security chief and head prosecutor are out. cyberattacks hit albania. apts prospect journalists. the gru trolls researchers. cisa to open an attaché office in london. on goodpods" style="width: 225px" /> </a>
Copy