Interview With a Russian Cybercriminal — Kelly Sheridan, Dark Reading, 2/2/2021
Interview with a LockBit ransomware operator (pdf)— Azim Khodjibaev,Dmytro Korzhevin and Kendall McKay, Talos Intelligence, 1/4/2021
A Closer Look at the DarkSide Ransomware Gang — Brian Krebs, Krebs On Security, 5/11/2021
The first article is a few months old, but I hadn’t read it yet, and it is still informative — especially in light of what is happening at one of the US’s biggest oil pipelines.
Although you can never really trust who you talk to on the internet, especially when it comes to malicious actors, Talos Intelligence claimed…
China-linked APT used Pulse Secure VPN zero-day to hack US defense contractors — Pierluigi Paganini, CyberDefenseMagazine, 4/21/2021
This article sums up recent reporting on attacks on US defense contractors and other organizations using the PulseSecure VPN. According to the article, cyber attack groups UNC 2630 (possibly linked to Chinese APT 5) and UNC 27117 exploited vulnerabilities in the software and were able to impact defense contractor networks. Once in the network, the hackers were able to do the following:
1. Trojanize shared objects with malicious code to log credentials and bypass authentication flows, including multifactor authentication requirements. …
Beyond MITRE ATT&CK: The Case for a New Cyber Kill Chain — Rik Turner, Dark Reading, 3/30/2021
In this article, Omdia principal analyst Rik Turner discusses ways to map and analyze cyber attacks. He starts with the Lockheed Martin Cyber Kill Chain, which was created in 2011. He then moves to the MITRE ATT&CK Matrix, which MITRE made public in 2015. After briefly mentioning both current matrices, Turner asks if there should be a new matrix that discusses more recent attack methods. …
British troops relax recruitment rules to attract cyber experts —
Antonio Collison, Financial Times, 4/1/2021
Interesting article on how the British military is attempting to bring in cyber security professionals for national defense issues. They are going to recruit from the civilian sector and allow professionals to enter military service with higher level ranks. Although I think it is a good idea from the sake of expertise, I have a lot of questions on how these people will comply with military protocols.
How much power will their rank hold in and out of their office? …
Revealed: the Facebook loophole that lets world leaders deceive and harass their citizens — Julia Carrie Wong, The Guardian, 4/12/2021
Incredible article on how Facebook handles profiles and pages designed to skew political discourse in various nations. According to the report, different nations are given different priorities by Facebook in regards to handling organized disinformation. In several cases, pages affiliated with national governments are creating dummy profiles to engage, vote up, like, or change the views on issues. Some of the lesser prioritized nations include Albania, Mexico, Argentina, Italy, the Philippines, Afghanistan, South Korea, Bolivia, Ecuador, Iraq, Tunisia, Turkey, Taiwan…
Writer. Analyst. Instructor. Sometimes serious. Sometimes creative. Just a simple man trying to make his way in the universe.