Shuckworm targets Ukraine, Lazarus Dream Job campaign continues,

Shuckworm targets Ukraine, Lazarus Dream Job campaign continues, and two dark marketplaces get taken down

Listen now

Description

On this week’s Cyber Security Brief, Brigid O Gorman is joined by Symantec threat researchers John-Paul Power and Alan Neville. In this week’s podcast we discuss some recent research published by Symantec detailing new activity in the Dream Job campaign carried out by the North Korean Lazarus APT group, as well as continuing attacks aimed at Ukraine carried out by the Russia-linked APT group Shuckworm. Also, we talk about a critical vulnerability in the Windows Remote Procedure Call Runtime (RPC) protocol, the shut down of two well-known dark marketplaces, and the emergence of a new marketplace offering stolen data for sale.

More Episodes

See all »

Symantec Cyber Security Brief Podcast

Published 11/17/22

New Billbug campaign, Prestige ransomware, and multiple arrests of alleged cyber-crime gang members

On this week’s Cyber Security Brief, Brigid O Gorman and Dick O’Brien discuss the Symantec Threat Hunter Team’s latest blog detailing a recent campaign by the Billbug espionage group, in which it targeted a certificate authority and multiple government agencies in various countries in Asia. We...

Published 11/17/22

Exbyte exfiltration tool, Cranefly uses new tools and novel technique, and OpenSSL bug is downgraded

On this week’s Cyber Security Brief, Brigid O Gorman and Dick O’Brien discuss two recent Symantec blogs, including one detailing the new Exbyte data exfiltration tool, which is being used by at least one affiliate of the BlackByte ransomware gang. We also discuss our blog about a group called...

Published 11/03/22