The Cybersecurity Defenders Podcast
A podcast about cybersecurity and the people that keep the internet safe.The podcast is built as a series of segments: we will be looking back at the last couple of weeks in cybersecurity news, talking to different people in the industry about their thoughts and experiences, we're going to break apart some of the TTPs being used by adversaries, and we will even cover a little bit of hacker history.
The Cybersecurity Defenders Podcast
#65 - Intel Chat: DB#JAMMER, Chae$ malware, W3LL, APT34 deploy Side Twist Trojan and government-backed actors in North Korea target security researchers.
•
LimaCharlie
In this episode of The Cybersecurity Defenders Podcast, we discuss some cutting-edge intel coming out of LimaCharlie's community Slack channel.
- Securonix Threat Labs are reporting that threat actors working as part of the DB#JAMMER attack campaigns are compromising exposed MSSQL databases using brute force attacks.
- Morphisec are reporting a previously unknown version of the Chae$ malware.
- AhnLab’s Security Emergency Response Center are reporting on threat actors using phishing emails to distribute some fileless malware.
- The researchers over at Group-IB have uncovered a covert business email compromise phishing campaign targeting Microsoft 365.
- NSFOCUS Security Labs captured a new APT34 phishing attack against enterprise targets that released a variant of the SideTwist Trojan to achieve long-term control of the victim host.
- Threat Analysis Group publicly disclosed a campaign from government-backed actors in North Korea who used 0-day exploits to target security researchers working on vulnerability research and development.
The Cybersecurity Defenders Podcast: a show about cybersecurity and the people that defend the internet.