Multiple new phishing techniques, ZIP file concatenation, and Docusign API abuse on the rise.Quick fire topics.

VEILDrive campaign uses a number of Microsoft services for stealthy compromise.Quick fire topics.

Arrested members of the REvil ransomware operation tried and charged in Russian court.Operation Magnus collaborative effort brings down Redline and Meta infostealer malware.

New Fortinet 0 day exploit highlights history of bad disclosure and transparency practices Quick fire topics.

Tool which disrupts EDR solutions from sending alerts to defenders used in attacks. Quick fire topics.

31 million records stolen from the Wayback Machine service.Ivanti hit by even more zero day exploitation in active attacks.Quick fire topics.

Evil Corp and LockBit members the target of global sanctions and arrests.Quick fire topics.

Telegram in the spotlight, founder arrested, banned in Ukraine, and will now share user data on legal request. Quick fire topics.

Explosions were a supply chain compromise, not a cyber attack.Another Ivanti critical flaw exploited in the wild with public exploit.

Security giant Fortinet suffers data breach as 440GB of files stolen.Quick fire lightning round.

Uncommon technique from 2017 resurrected to drop Cobalt StrikeVersa Director vulnerability leveraged by Volt TyphoonNew persistence technique allowed Linux malware to hide for years. 

SolarWinds flaw exploited in the wild & hardcoded credentials.Report indicates ransom payments will break last years record.Lazarus exploit driver present on every Windows system.

In this weeks episode: - Over 2 Billion Records of Personal Information Leaked. - Critical TCP/IP remote code execution vulnerability patched by Microsoft. - Ringleader of Ransom Cartel extradited t...

The legal challenges against CrowdStrike begin following update incident.CISA re-issues seven year old warning over exploited Cisco install flaw.Chinese group compromises ISP to push poisoned infostealer updates.

Microsoft vows less reliance on kernel drivers following CrowdStrike incident.Cloudflare trial product increasingly abused for criminal obfuscation.Black Basta sees success with in house tools following QBot takedown.

Repair documentation used to push malware after CrowdStrike incident.New Linux variant of the prolific Play ransomware discovered.New ICS malware FrostyGoop responsible for Ukraine attack.

Report highlights alarming speed PoC exploits are weaponized.Kaspersky offers 6 months free service as farewell to US market.Fin7 offers sophisticated evasion tool on underground markets.CrowdStrike botched update causes gl...

Eldorado ransomware claims 16 victims in short timeframe.Free decryptor released by Avast for DoNex ransomware strain.Blast Radius attacks leverage MD5 collisions to gain admin.

"regreSSHion" SSH flaw leads to root on Linux servers.GootLoader continues to deploy updated versions in new attacks.

Kaspersky software banned in US due to national security concerns.LockBit misleadingly claims to hit US federal reserve.TeamViewer compromised by Russian state sponsored APT group.

PoC exploit code available for heavily targeted Veeam backup solution.New loader dubbed PhantomLoader delivers MaaS payloads.Black Basta may have exploited flaw 3 months before fix issued, as 0 day.

Attackers target GitHub repos once again in Ransom-lite extortion.Windows will finally depreciate NTLM, providing transition advice.PoC chaining two flaws for Telerik report released.

In this week news: Check Point Zero-day vulnerability.Okta Credential Stuffing.Operation Endgame Targets Botnets.

In this weeks episode, LockBit Ransomware group have had nothing but setbacks since  “Operation Chronos”, GitHub alerts users to 2 high severity vulnerabilities and a significant uptick in Docusign phishing emails has been observed in May....

LockBit ransomware admin is named and sanctioned.North Korean actors exploiting weak DMARC policies for spearphishing.Ivanti flaws chained together to drop Mirai botnet.