Founder of the Silk Road illegal dark web marketplace given full pardon.Trump administration fires review board investigating Chinese APT group.

Multiple faulty Tenable updates over holiday period cause global Nessus agent failure.Telegram policy shift on law enforcement requests causes cybercrime exodus.

Chinese state actor breaches U.S department responsible for foreign sanctions following BeyondTrust compromise.Quick fire topics.

New wave of file transfer platform attacks perpetrated by Clop.Apache Struts exploited in the wild using publicly available PoC code.

Termite ransomware claims attack on Blue Yonder SaaS giant.Ivanti suffers sixth CSA security vulnerability in 4 months.

New phishing technique abuses office document recovery feature to evade detection.Quick fire topics.

First UEFI Bootkit targeting Linux discovered.Russian RomCom group utilises chain vulnerability in widespread attack.

Akira claims record breaking 30 victims in one day.Ransomware operation abandons file encryption for extortion tactics.Quick fire topics.

Multiple new phishing techniques, ZIP file concatenation, and Docusign API abuse on the rise.Quick fire topics.

VEILDrive campaign uses a number of Microsoft services for stealthy compromise.Quick fire topics.

Arrested members of the REvil ransomware operation tried and charged in Russian court.Operation Magnus collaborative effort brings down Redline and Meta infostealer malware.

New Fortinet 0 day exploit highlights history of bad disclosure and transparency practices Quick fire topics.

Tool which disrupts EDR solutions from sending alerts to defenders used in attacks. Quick fire topics.

31 million records stolen from the Wayback Machine service.Ivanti hit by even more zero day exploitation in active attacks.Quick fire topics.

Evil Corp and LockBit members the target of global sanctions and arrests.Quick fire topics.

Telegram in the spotlight, founder arrested, banned in Ukraine, and will now share user data on legal request. Quick fire topics.

Explosions were a supply chain compromise, not a cyber attack.Another Ivanti critical flaw exploited in the wild with public exploit.

Security giant Fortinet suffers data breach as 440GB of files stolen.Quick fire lightning round.

Uncommon technique from 2017 resurrected to drop Cobalt StrikeVersa Director vulnerability leveraged by Volt TyphoonNew persistence technique allowed Linux malware to hide for years. 

SolarWinds flaw exploited in the wild & hardcoded credentials.Report indicates ransom payments will break last years record.Lazarus exploit driver present on every Windows system.

In this weeks episode: - Over 2 Billion Records of Personal Information Leaked. - Critical TCP/IP remote code execution vulnerability patched by Microsoft. - Ringleader of Ransom Cartel extradited t...

The legal challenges against CrowdStrike begin following update incident.CISA re-issues seven year old warning over exploited Cisco install flaw.Chinese group compromises ISP to push poisoned infostealer updates.

Microsoft vows less reliance on kernel drivers following CrowdStrike incident.Cloudflare trial product increasingly abused for criminal obfuscation.Black Basta sees success with in house tools following QBot takedown.

Repair documentation used to push malware after CrowdStrike incident.New Linux variant of the prolific Play ransomware discovered.New ICS malware FrostyGoop responsible for Ukraine attack.

Report highlights alarming speed PoC exploits are weaponized.Kaspersky offers 6 months free service as farewell to US market.Fin7 offers sophisticated evasion tool on underground markets.CrowdStrike botched update causes gl...