1,999 episodes

The daily cybersecurity news and analysis industry leaders depend on. Published each weekday, the program also includes interviews with a wide spectrum of experts from industry, academia, and research organizations all over the world.

CyberWire Daily CyberWire, Inc.

    • Technology
    • 4.7 • 49 Ratings

The daily cybersecurity news and analysis industry leaders depend on. Published each weekday, the program also includes interviews with a wide spectrum of experts from industry, academia, and research organizations all over the world.

    Cyberespionage, privateering, hacktivism and influence operations, in Ukraine, Russia, the Middle East, and elsewhere. Criminals need quality control, too. A new entry in CISA’s KEV Catalog.

    Cyberespionage, privateering, hacktivism and influence operations, in Ukraine, Russia, the Middle East, and elsewhere. Criminals need quality control, too. A new entry in CISA’s KEV Catalog.

    A Chinese cyberespionage campaign is believed to be active in the Middle East. Poor quality control turns ransomware into a wiper, and a typo crashes a cryptojacker. A large DDoS attack is reported to have hit a Russian state-owned bank. Privateers compromise Western infrastructure to stage cyberattacks. Cyber operations against national morale. A look at the Vice Society. Ben Yelin on the growing concerns over TicTok. Ann Johnson from Afternoon Cyber Tea speaks with Charles Blauner about the evolution of the CISO role. And CISA has added an entry to its Known Exploited Vulnerabilities Catalog.

    For links to all of today's stories check out our CyberWire daily news briefing:
    https://thecyberwire.com/newsletters/daily-briefing/11/232

    Selected reading.
    BackdoorDiplomacy Wields New Tools in Fresh Middle East Campaign (Bitdefender Labs) 
    The Story of a Ransomware Turning into an Accidental Wiper | FortiGuard Labs (Fortinet Blog) 
    Syntax errors are the doom of us all, including botnet authors (Ars Technica) 
    Russia's No. 2 bank VTB suffers largest DDoS in history (Computing) 
    Russia compromises major UK and US organisations to attack Ukraine (Lupovis) 
    Russia’s online attacks target Ukrainians’ feelings (POLITICO) 
    Vice Society: Profiling a Persistent Threat to the Education Sector (Unit 42)
    CISA Adds One Known Exploited Vulnerability to Catalog (CISA)

    • 33 min
    Swapping cyberattacks in a hybrid war. Privateers or just a side-hustle? US CSRB will investigate Lapsu$ Group. Notes on the cyber underworld.

    Swapping cyberattacks in a hybrid war. Privateers or just a side-hustle? US CSRB will investigate Lapsu$ Group. Notes on the cyber underworld.

    Wiper malware hits Russian targets. Microsoft sees an intensification of Russian cyber operations against Ukraine. State policy, privateering, or an APT side-hustle? The US Cyber Safety Review Board will investigate the Lapsu$ Group. Rackspace works to remediate a security incident. The Schoolyard Bully Trojan harvests credentials. Grayson Milbourne of OpenText Security Solutions on attacks on common open source dev libraries. Rick Howard looks at CISO career paths. And trends in ransomware: cybercrime succeeds when the gang runs like a business.

    For links to all of today's stories check out our CyberWire daily news briefing:
    https://thecyberwire.com/newsletters/daily-briefing/11/231

    Selected reading.
    CryWiper: fake ransomware (Kaspersky).
    CryWiper data wiper targets Russian courts and mayors' offices (Computing)
    Never-before-seen malware is nuking data in Russia’s courts and mayors’ offices (Ars Technica)
    Russian regions attacked by new wiper posing as ransomware (Cybernews)
    Preparing for a Russian cyber offensive against Ukraine this winter (Microsoft On the Issues)
    Russia coordinating Ukraine hacks with missiles, could increasingly target European allies, Microsoft warns (POLITICO)
    Russia Is Boosting Its Cyber Attacks on Ukraine, Allies, Microsoft Says (Bloomberg.com) 
    Hackers linked to Chinese government stole millions in Covid benefits (NBC News)
    Cyber Safety Review Board to Conduct Second Review on Lapsus$ (US Department of Homeland Security)
    Rackspace: Ongoing Exchange outage caused by security incident (BleepingComputer) 
    Schoolyard Bully Trojan Facebook Credential Stealer (Zimperium)
    The Professionalization of Ransomware: How Gangs Are Becoming Like Businesses (LookingGlass Cyber Solutions Inc.)

    • 29 min
    Rohit Dhamankar: Never close doors prematurely. [Vice President] [Career Notes]

    Rohit Dhamankar: Never close doors prematurely. [Vice President] [Career Notes]

    Rohit Dhamankar from Fortra’s Alert Logic sits down with Dave Bittner to share his experiences as he navigates the industry. Rohit has over 15 years of security industry experience across product strategy, threat research, product management and development, and customer solutions. Before Alert Logic he served in Product roles for Live Oak Venture Capital at Infocyte and Razberi Technologies. He has previously worked in senior roles in several start-up companies in security analytics, intrusion detection/prevention, end-point protection, and security risk and compliance, including VP, Click Labs Solutions at Click Security, acquired by AlertLogic, and he was a Co-Founder of Jumpshot, acquired by Avast. Rohit shares the advise of never closing a door too prematurely, because you never know what could be behind the door waiting for you. We thank Rohit for sharing his story.

    • 9 min
    Old malware returns in a new way. [Research Saturday]

    Old malware returns in a new way. [Research Saturday]

    Jeremy Kennelly and Sulian Lebegue from Mandiant sit down with Dave to discuss their research "From RM3 to LDR4: URSNIF Leaves Banking Fraud Behind? One of the oldest and most successful banking fraud malwares, URSNIF, which caused an estimated “tens of millions of dollars in losses”, has been discovered by researchers to have been re-tooled into a generic backdoor, dubbed “LDR4”.
    This new varient was first observed in June 2022. Mandiant researchers believe that the same threat actors who operated the RM3 variant of URSNIF are likely behind LDR4. They say "given the success and sophistication RM3 previously had, LDR4 could be a significantly dangerous variant—capable of distributing ransomware—that should be watched closely."
    The research can be found here:
    From RM3 to LDR4: URSNIF Leaves Banking Fraud Behind

    • 28 min
    Cuba ransomware pulls in $60 million. CISA releases three ICS advisories. Google announces new support for Ukraine. DDoSing the Vatican. Google supports Ukrainian startups in wartime.

    Cuba ransomware pulls in $60 million. CISA releases three ICS advisories. Google announces new support for Ukraine. DDoSing the Vatican. Google supports Ukrainian startups in wartime.

    Cuba ransomware pulls in $60 million. CISA releases three ICS advisories. DDoSing the Vatican. Andrea Little Limbago from Interos on the implications of Albania cutting off diplomatic ties with Iran. Our space correspondent Maria Varmazis speaks with Brandon Bailey about Space Attack Research and Tactic Analysis matrix. And how Google supports Ukrainian startups in wartime.

    For links to all of today's stories check out our CyberWire daily news briefing:
    https://thecyberwire.com/newsletters/daily-briefing/11/230

    Selected reading.
    Alert (AA22-335A) #StopRansomware: Cuba Ransomware (CISA)
    Novel News on Cuba Ransomware: Greetings From Tropical Scorpius (Palo Alto Networks Unit 42)
    New ways we're supporting Ukraine (Google)
    25 new startup recipients of the Ukraine Support Fund (Google)
    Vatican shuts down its website amid hacking attempts (Cybernews)

    • 30 min
    Cyberespionage, cybercrime, and patriotic hacktivism. The Heliconia framework described. Cyber risk for the telecom and healthcare sectors. Notes on the hybrid war. Predictions for 2023.

    Cyberespionage, cybercrime, and patriotic hacktivism. The Heliconia framework described. Cyber risk for the telecom and healthcare sectors. Notes on the hybrid war. Predictions for 2023.

    A new backdoor, courtesy of the DPRK. The Medibank breach is all over but the shouting (or, all over but the suing and the arresting). Risks and opportunities in telecom’s shift to cloud. Cyber risk in healthcare. An assessment of Russian cyber warfare. Robert M. Lee from Dragos assesses the growing value of the ICS security market. Our guest is Cecilia Seiden of TransUnion to discuss their 2022 Consumer Holiday Shopping Report. And it’s December, which means…predictions.

    For links to all of today's stories check out our CyberWire daily news briefing:
    https://thecyberwire.com/newsletters/daily-briefing/11/229

    Selected reading.
    Who’s swimming in South Korean waters? Meet ScarCruft’s Dolphin (ESET)
    Medibank hackers announce ‘case closed’ and dump huge data file on dark web (the Guardian) 
    New details on commercial spyware vendor Variston (Google)
    Risks and opportunities in telecom’s shift to cloud. (CyberWire)
    Moody’s discusses cyber risk in healthcare. (CyberWire)
    'Do something:' Ukraine works to heal soldiers' mental scars (AP NEWS)
    Reformed Russian Cybercriminal Warns That Hatred Spreads Hacktivism (Wall Street Journal)
    Cybersecurity predictions for 2023. (CyberWire)

    • 34 min

Customer Reviews

4.7 out of 5
49 Ratings

49 Ratings

@ndrea8585 ,

My favorite cyber security podcast

This show is a regular on my playlist: informative, witty and educational

phred559 ,

A keeper

I've been through a dozen or two info sec podcasts over the past couple of years and this is one of the few that I've kept on with. Detailed content without being too long delivered in a relaxed style laced with some very dry wit. Definitely recommended.

ReaderOfHouseBook ,

Best cyber security podcast

Great cyber security podcast

Top Podcasts In Technology

Lex Fridman
Jason Calacanis
The New York Times
Cal Newport
Jack Rhysider
Ben Gilbert and David Rosenthal

You Might Also Like

CyberWire Inc.
ITWC
CISO Series
Johannes B. Ullrich
Cybereason
Graham Cluley & Carole Theriault