August 29, 2023

Risky Business #719 -- FBI vapes 700,000 Qakbot infections

Listen Later

54 minutes

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news. They cover:

The FBI takes down Qakbot, steals operators’ bitcoins ha ha

Danish hosting provider completely destroyed in ransomware attack

Sophisticated Russian cyber attack on Polish trains. Well. Not really.

Microsoft revokes cert then revokes its revocation

Much, much more!

This week’s show is brought to you by Proofpoint. Ryan Kalember, Proofpoint’s EVP of cybersecurity strategy Ryan Kalember is this week’s sponsor guest.

Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that’s your thing.

Show notes

US says it and partners have taken down notorious 'Qakbot' hacking network | Reuters

Danish cloud host says customers ‘lost all data’ after ransomware attack | TechCrunch

VDP Platform 2022 Annual Report Showcases Platform’s Success | CISA

Proposed bill would require vulnerability disclosure policies for all federal contractors

The Cheap Radio Hack That Disrupted Poland's Railway System | WIRED

Two suspects arrested following Poland railway hack

‘Incredible concern and anger’ among Metropolitan Police after hackers breach data

New malware from North Korea’s Lazarus used against healthcare industry

North Korea’s Lazarus hackers behind recent crypto heists: FBI

US arrests Tornado Cash co-founder, sanctions another who remains at large

Kroll Employee SIM-Swapped for Crypto Investor Data – Krebs on Security

(2) Risky Biz News: WinRAR zero-day used to hack stock and crypto traders

Microsoft signing keys keep getting hijacked, to the delight of Chinese threat actors | Ars Technica

Renegade certificate removed from Windows. Then it returns. Microsoft stays silent. | Ars Technica

Barracuda ESG zero-day exploit still under way after patches fail | Cybersecurity Dive

Diving Deep into UNC4841 Operations Following Barracuda ESG Zero-Day Remediation (CVE-2023-2868) | Mandiant

Unpacking the MOVEit Breach: Statistics and Analysis

The DEA Accidentally Sent $50,000 Of Seized Cryptocurrency To A Scammer

Akira Ransomware Targeting VPNs without Multi-Factor Authentication - Cisco Blogs

Ransomware attack dwell times fall, pressuring companies to quickly respond | Cybersecurity Dive

British court convicts two teen Lapsus$ members of hacking tech firms

Tourists Give Themselves Away by Looking Up. So Do Most Network Intruders. – Krebs on Security

Apple security updates could be banned by British government

...more

View all episodes

View all episodes

Download on the App Store

Download on the App Store

Get it on Google Play

Risky Business

By Patrick Gray

4.6

364364 ratings

August 29, 2023

Risky Business #719 -- FBI vapes 700,000 Qakbot infections

Listen Later

54 minutes

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news. They cover:

The FBI takes down Qakbot, steals operators’ bitcoins ha ha

Danish hosting provider completely destroyed in ransomware attack

Sophisticated Russian cyber attack on Polish trains. Well. Not really.

Microsoft revokes cert then revokes its revocation

Much, much more!

This week’s show is brought to you by Proofpoint. Ryan Kalember, Proofpoint’s EVP of cybersecurity strategy Ryan Kalember is this week’s sponsor guest.

Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that’s your thing.

Show notes

US says it and partners have taken down notorious 'Qakbot' hacking network | Reuters

Danish cloud host says customers ‘lost all data’ after ransomware attack | TechCrunch

VDP Platform 2022 Annual Report Showcases Platform’s Success | CISA

Proposed bill would require vulnerability disclosure policies for all federal contractors

The Cheap Radio Hack That Disrupted Poland's Railway System | WIRED

Two suspects arrested following Poland railway hack

‘Incredible concern and anger’ among Metropolitan Police after hackers breach data

New malware from North Korea’s Lazarus used against healthcare industry

North Korea’s Lazarus hackers behind recent crypto heists: FBI

US arrests Tornado Cash co-founder, sanctions another who remains at large

Kroll Employee SIM-Swapped for Crypto Investor Data – Krebs on Security

(2) Risky Biz News: WinRAR zero-day used to hack stock and crypto traders

Microsoft signing keys keep getting hijacked, to the delight of Chinese threat actors | Ars Technica

Renegade certificate removed from Windows. Then it returns. Microsoft stays silent. | Ars Technica

Barracuda ESG zero-day exploit still under way after patches fail | Cybersecurity Dive

Diving Deep into UNC4841 Operations Following Barracuda ESG Zero-Day Remediation (CVE-2023-2868) | Mandiant

Unpacking the MOVEit Breach: Statistics and Analysis

The DEA Accidentally Sent $50,000 Of Seized Cryptocurrency To A Scammer

Akira Ransomware Targeting VPNs without Multi-Factor Authentication - Cisco Blogs

Ransomware attack dwell times fall, pressuring companies to quickly respond | Cybersecurity Dive

British court convicts two teen Lapsus$ members of hacking tech firms

Tourists Give Themselves Away by Looking Up. So Do Most Network Intruders. – Krebs on Security

Apple security updates could be banned by British government

...more

More shows like Risky Business

Hacked by Hacked

Hacked

189 Listeners

Security Now (Audio) by TWiT

Security Now (Audio)

2,000 Listeners

Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

374 Listeners

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

653 Listeners

CyberWire Daily by N2K Networks

CyberWire Daily

1,019 Listeners

Smashing Security by Graham Cluley

Smashing Security

319 Listeners

Click Here by Recorded Future News

Click Here

417 Listeners

Darknet Diaries by Jack Rhysider

Darknet Diaries

8,015 Listeners

Cybersecurity Today by Jim Love

Cybersecurity Today

177 Listeners

Hacking Humans by N2K Networks

Hacking Humans

315 Listeners

CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

CISO Series Podcast

189 Listeners

Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

Defense in Depth

74 Listeners

Cyber Security Headlines by CISO Series

Cyber Security Headlines

136 Listeners

Risky Bulletin by risky.biz

Risky Bulletin

46 Listeners

Hacker And The Fed by Chris Tarbell & Hector Monsegur

Hacker And The Fed

171 Listeners