Updates on the hybrid war: hacktivism and hunting forward. Election security. Trends in phishing. The return of Emotet.
06/09/22 • 27 min
1 Listener
Another hacked broadcast in a hybrid war. Hunting forward as an exercise in threat intelligence collection and sharing. Cyber threats to the US midterm elections. Phishing for cryptocurrency. FakeCrack delivers a malicious payload to the unwary. Vacations are back. So is travel-themed phishbait. Ann Johnson from Microsoft shares insights on the trends she’s tracking here at RSA. Johannes Ullrich brings highlights from his RSA conference panel discussion. And Emotet returns, in the company of some old familiar criminal collaborators.
For links to all of today's stories check out our CyberWire daily news briefing:
https://thecyberwire.com/newsletters/daily-briefing/11/111
Selected reading.
Hacked Russian radio station broadcasts Ukrainian anthem (Washington Post)
Ukraine Successfully Defends Its Cyberspace While Russia Leans Heavily on Guns, Bombs (CNET)
Ukraine war: US cyber chief on Kyiv's advantage over Russia (Sky News)
NSA Director Confirms Cyber Command 'Hunt Forward' Approach Applies to Russia (ClearanceJobs)
Experts, NSA cyber director say ransomware could threaten campaigns in 2022 (CyberScoop)
Ransomware, botnets could plague 2022 midterms, NSA cyber director says (The Record by Recorded Future)
How Cyber Criminals Target Cryptocurrency (Proofpoint)
Crypto stealing campaign spread via fake cracked software (Avast)
Threat Actors Prepare Travel-Themed Phishing Lures for Summer Holidays (Hot for Security)
Emotet Malware Returns in 2022 (Deep Instinct)
Learn more about your ad choices. Visit megaphone.fm/adchoices
Another hacked broadcast in a hybrid war. Hunting forward as an exercise in threat intelligence collection and sharing. Cyber threats to the US midterm elections. Phishing for cryptocurrency. FakeCrack delivers a malicious payload to the unwary. Vacations are back. So is travel-themed phishbait. Ann Johnson from Microsoft shares insights on the trends she’s tracking here at RSA. Johannes Ullrich brings highlights from his RSA conference panel discussion. And Emotet returns, in the company of some old familiar criminal collaborators.
For links to all of today's stories check out our CyberWire daily news briefing:
https://thecyberwire.com/newsletters/daily-briefing/11/111
Selected reading.
Hacked Russian radio station broadcasts Ukrainian anthem (Washington Post)
Ukraine Successfully Defends Its Cyberspace While Russia Leans Heavily on Guns, Bombs (CNET)
Ukraine war: US cyber chief on Kyiv's advantage over Russia (Sky News)
NSA Director Confirms Cyber Command 'Hunt Forward' Approach Applies to Russia (ClearanceJobs)
Experts, NSA cyber director say ransomware could threaten campaigns in 2022 (CyberScoop)
Ransomware, botnets could plague 2022 midterms, NSA cyber director says (The Record by Recorded Future)
How Cyber Criminals Target Cryptocurrency (Proofpoint)
Crypto stealing campaign spread via fake cracked software (Avast)
Threat Actors Prepare Travel-Themed Phishing Lures for Summer Holidays (Hot for Security)
Emotet Malware Returns in 2022 (Deep Instinct)
Learn more about your ad choices. Visit megaphone.fm/adchoices
Previous Episode
Cyber war: a continuing threat, a blurry line between combatants and noncombatants. Chinese cyberespionage and its “plumbing.” CISA adds Known Exploited Vulnerabilities. News from Jersey.
US officials continue to rate the threat of Russian cyberattack as high. Civilians in cyber war. Broadcast interference and propaganda. A Joint CISA/FBI warning of Chinese cyberespionage. What gets a vulnerability into the Known Exploited Vulnerabilities Catalog? Andrea Little Limbago from Interos and Mike Sentonas from Crowdstrike join us with previews of their RSA conference presentations. And, finally, some Jersey-based cyber campaigns (that’s the Bailiwick, not the Garden State).
For links to all of today's stories check out our CyberWire daily news briefing:
https://thecyberwire.com/newsletters/daily-briefing/11/110
Selected reading.
Russian Cyber Threat Remains High, U.S. Officials Say (Wall Street Journal)
Shields Up: The New Normal (CyberScoop)
Russian Government, Cybercriminal Cooperation a 'Force Multiplier' (Decipher)
Opinion The U.S.-Russia conflict is heating up — in cyberspace (Washington Post)
Smartphones Blur the Line Between Civilian and Combatant (Wired)
Russian Cyberattack Hits Wales-Ukraine Football Broadcast (Gov Info Security)
People’s Republic of China State-Sponsored Cyber Actors Exploit Network Providers and Devices (CISA)
US agencies detail the digital ‘plumbing’ used by Chinese state-sponsored hackers (The Record by Recorded Future)
CISA Provides Criteria and Process for Updates to the KEV Catalog (CISA)
Reducing the Significant Risk of Known Exploited Vulnerabilities (CISA)
Jersey computers used in international cyber-attacks (Jersey Evening Post)
Learn more about your ad choices. Visit megaphone.fm/adchoices
Next Episode
The cautionary example of a hybrid war. SentinelOne finds a Chinese APT operating quietly since 2012. A hardware vulnerability in Apple M1 chips. And go, Tigers.
Looking at Russia's hybrid war as a cautionary example. Russia warns, again, that it will meet cyberattacks with appropriate retaliation. (China says "us too.") NSA and FBI warn of nation-state cyber threats. SentinelOne finds a Chinese APT that's been operating, quietly, for a decade. "Unpatchable" vulnerability in Apple chips reported. We’ve got more interviews from RSA Conference, including the FBI’s Cyber Section Chief David Ring, ExtraHop’s CEO, Patrick Dennis. And the overhead projector said, “Go Tigers.”
For links to all of today's stories check out our CyberWire daily news briefing:
https://thecyberwire.com/newsletters/daily-briefing/11/112
Selected reading.
Top Senate Democrats sound the alarm about Russian interference in the 2022 midterms (Business Insider)
Russia says West risks ‘direct military clash’ over cyberattacks (NBC News)
Russia, China, oppose US cyber support of Ukraine (Register)
#RSAC: NSA Outlines Threats from Russia, China and Ransomware (Infosecurity Magazine)
FBI official: Chinese hackers boost recon efforts (The Record by Recorded Future)
Aoqin Dragon | Newly-Discovered Chinese-linked APT Has Been Quietly Spying On Organizations For 10 Years (SentinelOne)
MIT researchers uncover ‘unpatchable’ flaw in Apple M1 chips (TechCrunch)
New Jersey school district forced to cancel final exams amid ransomware recovery effort (The Record by Recorded Future)
Learn more about your ad choices. Visit megaphone.fm/adchoices
If you like this episode you’ll love
Episode Comments
Generate a badge
Get a badge for your website that links back to this episode
<a href="https://goodpods.com/podcasts/cyberwire-daily-39916/updates-on-the-hybrid-war-hacktivism-and-hunting-forward-election-secu-21359385"> <img src="https://storage.googleapis.com/goodpods-images-bucket/badges/generic-badge-1.svg" alt="listen to updates on the hybrid war: hacktivism and hunting forward. election security. trends in phishing. the return of emotet. on goodpods" style="width: 225px" /> </a>
Copy