Derek Krein
- 55 Posts
Cyber Threat Weekly – #52
The week of November 11th through November 17th, 332 cyber news articles were reviewed. Quite a bit of cyber threat trend and adversarial behavior news to share. Let’s start with increasing use of SVG attachments in email phishing. An undocumented Fortinet FortiClient bug used to steal VPN credentials. Palo
Cyber Threat Weekly – #51
The week of November 4th through November 10th, 330 cyber news articles were reviewed. The feed list has been adjusted, so the number of articles should be mostly lower. Let’s start with threat actors using Zip file concatenation technique. Cybercriminals abuse emergency data requests (EDRs) with compromised credentials. AWS
Cyber Threat Weekly – #50
The week of October 28th through November 3rd, another light week with 346 cyber news articles reviewed. Still a decent amount of cyber threat trend and adversarial behavior news. Let’s start with a newer ransomware group targeting FreeBSD servers. Publicly disclosed exploit code used to exploit Microsoft SharePoint flaw.
Cyber Threat Weekly – #49
The week of October 21st through October 27th around 361 cyber news articles were reviewed. Just a light amount of cyber threat trend and adversarial behavior news to share. Let’s start with ransomware affiliates abusing Sonic Wall VPNs. An update on the Windows downgrade attack. Threat actors targeting exposed
Cyber Threat Weekly – #48
The week of October 14th through October 20th was a bit light with 357 cyber news articles reviewed. Only a light amount of cyber threat trend and adversarial behavior news to share. Let’s start with the Internet Archive was breached again. North Korean IT workers resort to extortion. Deception
Technically Validating your Security Program
Sharing The Smart IT Podcast. William Reed and I had a great discussion around the attackers view of your environments, technical assessments of your security program, attacker behavior, and more. The Smart IT Podcast covers a wide range of topics with various guests. I hope you enjoy the content.
Cyber Threat Weekly – #47
The week of October 7th through October 13th was a bit light with 361 cyber news articles reviewed. A decent amount of cyber threat trends and adversarial behavior news to share. Let’s start with Iranian APT threat actors changing behavior. Open AI releases an update to their threat report.
Cyber Threat Weekly – #46
The week of September 30th through October 6th was light with 369 cyber news articles reviewed. A moderate amount of cyber threat trend and adversarial behavior news to share. Let’s start with US broadband providers breached. The art and science of DNS tunneling detection. Adobe Commerce and Magneto online
Cyber Threat Weekly – #45
The week of September 23rd through September 29th was a bit light with 427 cyber news articles reviewed. Not much cyber threat trend and adversarial behavior news to share. Let’s start with more ransomware affiliates target hybrid cloud environments. WhatsUp Gold high and critical vulnerabilities. New SnipBot malware analyzed.
Cyber Threat Weekly – #44
The week of September 16th through September 22nd was near average with 457 cyber news articles reviewed. With a moderate amount of cyber threat trend and adversarial behavior news to share. Let’s start with a suspected Chinese APT abusing multi-stage attack chain. Researchers share BlackBasta tools, behavior, and analysis.
