episode-header-image

Jun 2023

31m 25s

The Cl0p gang moves its way into US gove...

About this episode

The US Government discloses exploitations of MOVEit vulnerabilities, and the Department of Energy is targeted by the Cl0p gang. CISA releases an updated advisory for Telerik vulnerabilities affecting Government servers. Shampoo malware emerges with multiple persistence mechanisms. How the IT Army of Ukraine can exemplify a cyber auxiliary. Russophone gamers are being targeted with ransomware. An alleged LockBit operator has been arrested. The FBI’s Deputy Assistant Director for cyber Cynthia Kaiser joins us with cybercriminal trends and recent successes. Our guest is Will Markow from Lightcast, speaking with Simone Petrella about data-driven strategic workforce decisions. And a federal grand jury indicts the alleged Discord Papers leaker.

For links to all of today's stories check out our CyberWire daily news briefing:

https://thecyberwire.com/newsletters/daily-briefing/12/116

Selected reading.

US government hit by Russia's Clop in MOVEit mass attack (The Register)

Energy Department among ‘several’ federal agencies hit by MOVEit breach (Federal News Network)

Threat Actors Exploit Progress Telerik Vulnerabilities in Multiple U.S. Government IIS Servers (CISA)

CVE-2019-18935 Detail (NIST)

CVE-2017-9248 Detail (NIST)

Cryptographic Weakness (Telerik)

Shampoo: A New ChromeLoader Campaign (HP)

Cyber attacks on Rotterdam and Groningen websites (World Cargo News)

The Dynamics of the Ukrainian IT Army’s Campaign in Russia (Lawfare)

Watch: Why early failures in Ukraine's counter-offensive aren't Russian victories (The Telegraph)

Russian War Report: Anti-Ukrainian counteroffensive narratives fail to go viral (Atlantic Council)

Threat Actor Targets Russian Gaming Community With WannaCry-Imitator (Cyble)

Hackers infect Russian-speaking gamers with fake WannaCry ransomware (The Record)

Russian national arrested in Arizona, charged for alleged role in LockBit ransomware attacks (CyberScoop)

Suspected LockBit ransomware affiliate arrested, charged in US (BleepingComputer)

Russian national arrested in US for deploying LockBit ransomware (The Record)

Guardsman indicted on charges of disclosing classified national defense information (AP News)

Charges Against Alleged Pentagon Leaker Jack Teixeira Explained (Newsweek)

Jack Teixeira, Pentagon leaks suspect, indicted by federal grand jury (The Guardian)

Learn more about your ad choices. Visit megaphone.fm/adchoices

Up next

Julian Waits: Find a way to help society. [Serial Entrepreneur] [Career Notes]

Please enjoy this encore of Career Notes. Senior Vice President and Executive in Residence with Rapid7 and Chairman for Cyversity, Julian Waits, grew up in the era of the Justice League and Superman and it shaped his career. Julian always wanted to do something where he could fin ... Show More

Beyond the smoke screen. [Research Saturday]

This week, we are joined by Dr. Renée Burton, VP of Infoblox Threat Intel, who is discussing their work on VexTrio, a notorious traffic distribution system (TDS) involved in digital fraud. The VexTrio investigation uncovers a massive global ad fraud and scam operation powered by ... Show More

A free speech showdown.

The FTC warns one country’s “online safety” may be another’s “censorship.” A new bipartisan bill aims to reduce barriers to federal cyber jobs. MURKY PANDA targets government, technology, academia, legal, and professional services in North America. MITRE updates their hardware we ... Show More

Recommended Episodes

Russie : un malware inédit contre l’Ukraine ?

Si le conflit entre l’Ukraine et la Russie est un drame absolu pour les citoyens, force est de constater que le monde de la tech y joue un rôle de premier plan. Ces derniers jours, nous vous avons présenté différentes actions mises en place par les occidentaux pour tenter d’affai ... Show More

How Are US Chips Ending Up In Russian Weapons?

US sanctions against Russia are supposed to cut off Moscow’s access to all kinds of goods, including semiconductors, which are used in missiles and drones. But US officials allege a secret supply chain has illegally funneled these chips, some of them American-made, to Russia, whe ... Show More

CISA Goes Rogue: How Cybersecurity Became Censorship | 2.25.24

The Cybersecurity and Infrastructure Security Agency faces claims it censors the American public and interferes in elections. After the debunked Russian collusion narrative and the Twitter files, some lawmakers now want to see the agency completely dismantled. Get the facts first ... Show More

Nicole Perlroth, "This Is How They Tell Me the World Ends: The Cyberweapons Arms Race" (Bloomsbury, 2021)

For years, cybersecurity experts have debated whether cyber-weapons represent a destabilizing new military technology or merely the newest tool in the spies’ arsenal. In This Is How They Tell Me the World Ends (Bloomsbury, 2021), Nicole Perlroth makes a compelling case that cyber ... Show More

Listen to millions of songs and podcasts on Anghami