CyberWire Daily

The scareware rabbit hole. [Research Saturday]

Listen Later

This week we are joined by Marcelle Lee, cybersecurity consultant and researcher, discussing "CTI tradecraft: Investigating a mobile scareware campaign." She details how a routine click on a Google News story led to a mobile scareware pop-up—and a deeper investigation into a broader campaign.

Using free tools like Censys, URLScan, VirusTotal, and CyberChef, she pivoted from two domains to uncover more than 100 related domains, shared infrastructure, and links to questionable antivirus apps in the Google Play Store. The findings are mapped to the MITRE ATT&CK framework, showing how freely available resources can power meaningful, actionable threat intelligence.

The research can be found here:

  • CTI tradecraft: Investigating a mobile scareware campaign

    Learn more about your ad choices. Visit megaphone.fm/adchoices

    ...more
    View all episodesView all episodes
    Download on the App Store
    CyberWire DailyBy N2K Networks
    • 4.8
    • 4.8
    • 4.8
    • 4.8
    • 4.8

    4.8

    1,006 ratings

    More shows like CyberWire Daily

    View all
    Hacked by Hacked

    Hacked

    186 Listeners

    Security Now (Audio) by TWiT

    Security Now (Audio)

    2,010 Listeners

    WSJ Tech News Briefing by The Wall Street Journal

    WSJ Tech News Briefing

    1,651 Listeners

    Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

    Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

    371 Listeners

    Risky Business by Risky Business Media

    Risky Business

    373 Listeners

    SpyCast by SpyCast

    SpyCast

    1,533 Listeners

    SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

    SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

    653 Listeners

    Smashing Security by Graham Cluley

    Smashing Security

    318 Listeners

    Click Here by Recorded Future News

    Click Here

    418 Listeners

    Darknet Diaries by Jack Rhysider

    Darknet Diaries

    8,079 Listeners

    Cybersecurity Today by Jim Love

    Cybersecurity Today

    177 Listeners

    Hacking Humans by N2K Networks

    Hacking Humans

    316 Listeners

    CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

    CISO Series Podcast

    194 Listeners

    Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

    Defense in Depth

    73 Listeners

    Cybersecurity Headlines by CISO Series

    Cybersecurity Headlines

    140 Listeners