The art of information gathering. [Research Saturday]
CyberWire Daily20 Huhti 2024

The art of information gathering. [Research Saturday]

Greg Lesnewich, senior threat researcher at Proofpoint, sits down to discuss "From Social Engineering to DMARC Abuse: TA427’s Art of Information Gathering." Since 2023, TA427 has directly solicited foreign policy experts for their opinions on nuclear disarmament, US-ROK policies, and sanction topics via benign conversation starting emails. The research states "While our researchers have consistently observed TA427 rely on social engineering tactics and regularly rotating its email infrastructure, in December 2023 the threat actor began to abuse lax Domain-based Message Authentication, Reporting and Conformance (DMARC) policies to spoof various personas and, in February 2024, began incorporating web beacons for target profiling." The research can be found here: From Social Engineering to DMARC Abuse: TA427’s Art of Information Gathering Learn more about your ad choices. Visit megaphone.fm/adchoices

Tämä jakso on lisätty Podme-palveluun avoimen RSS-syötteen kautta eikä se ole Podmen omaa tuotantoa. Siksi jakso saattaa sisältää mainontaa.

Jaksot(3686)

Azure you concerned?

Azure you concerned?

Accenture confirms a data breach. An Australian telecom investigates a nationwide outage. It’s shields up for the UK. CISA eyes September for its critical infrastructure reporting rule. NewsJunkie fak...

8 Heinä 26min

Welcome home, hacker.

Welcome home, hacker.

CERT/CC warns of an unpatched Tenda router backdoor. Adobe races to patch an actively exploited ColdFusion flaw. Canada pulls back the curtain on offensive cyber operations. Anthropic quietly removes ...

7 Heinä 27min

NetNut gets cracked.

NetNut gets cracked.

The FBI disrupts a major residential proxy service. Attackers exploit Fortinet firewalls to target UK officials. European lawmakers call for a spyware investigation. A new macOS infostealer masquerade...

6 Heinä 28min

Commercializing space. [T-Minus: Space-Cyber Briefing]

Commercializing space. [T-Minus: Space-Cyber Briefing]

Over the past two decades, the space industry has changed dramatically, evolving from a largely government led effort to one that is now rooted in private enterprises driving growth and innovation. I...

5 Heinä 24min

Is your enterprise AI strategy delivering ROI yet? [AI Security Brief]

Is your enterprise AI strategy delivering ROI yet? [AI Security Brief]

While we take a break this 4th of July weekend, please enjoy this encore of AI Security Brief. Your enterprise AI strategy isn’t as far along as you think. The reality for most organizations today i...

4 Heinä 24min

CyberWire Daily at 10: The vulnerabilities, zero‑days, and hardware flaws over the last decade. [Special Edition]

CyberWire Daily at 10: The vulnerabilities, zero‑days, and hardware flaws over the last decade. [Special Edition]

In this special edition of CyberWire Daily’s 10th anniversary series, N2K CyberWire's Maria Varmazis and Dave Bittner discuss 10 years of vulnerabilities, zero‑days, and hardware flaws. Together they ...

3 Heinä 35min

The people's AI?

The people's AI?

OpenAI considers an equity plan to share AI wealth with the public. Cisco confirms active exploitation of its unified CM platform. Researchers discover autonomous ransomware. The Vect ransomware opera...

2 Heinä 27min

The AI lock comes off.

The AI lock comes off.

The US restores exports of Anthropic’s most advanced AI models. Adobe and Citrix rush out critical patches. RustDuck emerges as a fast-evolving DDoS threat. The Gentlemen raise the stakes with a new E...

1 Heinä 30min

Suosittua kategoriassa Politiikka ja uutiset

uutiscast
aikalisa
ootsa-kuullut-tasta-2
rss-ootsa-kuullut-tasta
rss-podme-livebox
tervo-halme
otetaan-yhdet
aihe
politiikan-puskaradio
rss-vaalirankkurit-podcast
rss-girls-finish-f1rst
rss-seksicast
the-ulkopolitist
rss-mina-ukkola
rss-aijat-hopottaa-podcast
rss-mita-tapahtuu
rss-kaikki-uusiksi
rss-asiastudio
rss-ulkopoditiikkaa
rss-pinnalla