‹ All episodes

The Cybersecurity Defenders Podcast

#65 - Intel Chat: DB#JAMMER, Chae$ malware, W3LL, APT34 deploy Side Twist Trojan and government-backed actors in North Korea target security researchers.

September 14, 2023 LimaCharlie
The Cybersecurity Defenders Podcast
#65 - Intel Chat: DB#JAMMER, Chae$ malware, W3LL, APT34 deploy Side Twist Trojan and government-backed actors in North Korea target security researchers.
Info
The Cybersecurity Defenders Podcast
#65 - Intel Chat: DB#JAMMER, Chae$ malware, W3LL, APT34 deploy Side Twist Trojan and government-backed actors in North Korea target security researchers.
Sep 14, 2023
LimaCharlie

In this episode of The Cybersecurity Defenders Podcast, we discuss some cutting-edge intel coming out of LimaCharlie's community Slack channel

  • Securonix Threat Labs are reporting that threat actors working as part of the DB#JAMMER attack campaigns are compromising exposed MSSQL databases using brute force attacks.
  •  Morphisec are reporting a previously unknown version of the Chae$ malware.
  •  AhnLab’s Security Emergency Response Center are reporting on threat actors using phishing emails to distribute some fileless malware.
  • The researchers over at Group-IB have uncovered a covert business email compromise phishing campaign targeting Microsoft 365.
  • NSFOCUS Security Labs captured a new APT34 phishing attack against enterprise targets that released a variant of the SideTwist Trojan to achieve long-term control of the victim host.
  • Threat Analysis Group publicly disclosed a campaign from government-backed actors in North Korea who used 0-day exploits to target security researchers working on vulnerability research and development. 


The Cybersecurity Defenders Podcast: a show about cybersecurity and the people that defend the internet.


Share
Apple Podcasts Spotify Amazon Music Podcast Index Overcast iHeartRadio +
Show Notes

In this episode of The Cybersecurity Defenders Podcast, we discuss some cutting-edge intel coming out of LimaCharlie's community Slack channel

  • Securonix Threat Labs are reporting that threat actors working as part of the DB#JAMMER attack campaigns are compromising exposed MSSQL databases using brute force attacks.
  •  Morphisec are reporting a previously unknown version of the Chae$ malware.
  •  AhnLab’s Security Emergency Response Center are reporting on threat actors using phishing emails to distribute some fileless malware.
  • The researchers over at Group-IB have uncovered a covert business email compromise phishing campaign targeting Microsoft 365.
  • NSFOCUS Security Labs captured a new APT34 phishing attack against enterprise targets that released a variant of the SideTwist Trojan to achieve long-term control of the victim host.
  • Threat Analysis Group publicly disclosed a campaign from government-backed actors in North Korea who used 0-day exploits to target security researchers working on vulnerability research and development. 


The Cybersecurity Defenders Podcast: a show about cybersecurity and the people that defend the internet.