Risky Bulletin: Over 4,000 backdoors can be hijacked via expired C&C domains
In other news: Ivanti patches a new zero-day; Ukrainian hackers wipe Russian ISP; US sanctions Chinese IT company linked to Flax Typhoon APT.
Risky Bulletin: Chinese hackers breach US Treasury, target OFAC bureau
In other news: US to update HIPAA with cybersecurity rules; ninth Salt Typhoon hacked telco found; US sanctions new Iranian and Russian disinfo orgs.
Risky Bulletin: Russia returns the favor one year later, hacks Ukraine's state registers
In other news: Netwalker affiliate sentenced to 20 years; ColdFusion gets pre-Xmas security update; UN passes controversial cybercrime treaty.
Risky Bulletin: The growing influencer problem to national security
In other news: Russia sanctions Recorded Future; US prepares to ban TP-Link; Raccoon Stealer dev sentenced to five years in prison.
Two Hats Are Better Than Two Heads
Your weekly dose of Seriously Risky Business news is written by Tom Uren and edited by Patrick Gray. It's supported by Lawfare with help from the William and Flora Hewlett Foundation. Note: this is the last edition of Seriously Risky Business for 2024 and we'll be
Risky Bulletin: CISA sent 2,100+ pre-ransomware alerts this year
In other news: BlackBerry sells Cylance for a huge loss; US investment firm acquires Israeli spyware maker; Clop takes credit for Cleo hacks.
Risky Bulletin: Secret ransomware campaign targeted DrayTek routers for a year
In other news: Yahoo lays off a quarter of its security team; US takes down Rydox cybercrime market; Amazon pauses Microsoft 365 rollout over security concerns.
Risky Bulletin: Germany's BSI sinkholes BADBOX malware traffic
In other news: Scam centers raided in Myanmar, Peru, and Russia; new Chinese state spyware uncovered; Trump administration wants to separate CyberCom and NSA leadership.
FCC to Demand Telcos Improve Security
Your weekly dose of Seriously Risky Business news is written by Tom Uren and edited by Patrick Gray. It's supported by Lawfare with help from the William and Flora Hewlett Foundation. This week's edition is sponsored by Proofpoint. You can hear a podcast discussion of this
Risky Biz News: Improperly patched Cleo bug exploited in the wild
In other news: US sanctions Chinese APT exploit supplier; Romania's largest electricity provider hit by ransomware; OpenWrt fixes firmware contamination attack.
Risky Biz News: Greece is close to burying its Predatorgate scandal
In other news: FCC proposes new telco cyber rules following Salt Typhoon hacks; major phishing gang detained in Belgium and the Netherlands; new DaMAgeCard attack exploits SD Express standard.
Risky Biz News: Declassified documents reveal Russia's election info-ops in Romania
In other news: Salt Typhoon telco hack count reaches eight; another Scattered Spider member detained; Turla hacks a Pakistani APT's servers.