JasperLoader, APT28 URL shortening, and RDP vulnerability discussion

Digital Shadows

Alex Guirakhoo and newcomer to the pod Travis Randall (@puppyozone) join HVR this week to discuss updates to the JasperLoader malware loader, APT28’s newly observed link shortening technique, Gnosticplayers allegedly stole information from an Australian graphics design companies, and APT10 malware loaders. After that, Richard Gold (@drshellface) and Simon Hall (@5ecur1tySi) discuss the Remote Desktop Protocol vulnerability that everyone has been hyped up about in the last couple of weeks. Be sure to download the full intelligence summary at resources.digitalshadows.com. In more news, Photon Research Team has published a new report! The overall main finding of the paper is that Photon found there were 2.3 billion files currently being exposed online via file shares like SMB or Amazon S3 buckets. We are going to do a deep dive episode about that for next week’s episode. 

(Report) Too Much Information: The Sequel: 

Too Much Information: The Sequel

(Blog) 2.3 billion files exposed across online file storage technologies: https://www.digitalshadows.com/blog-and-research/2-billion-files-exposed-across-online-file-storage-technologies/

Be sure to download the full intelligence summary at https://resources.digitalshadows.com/weekly-intelligence-summary/weekly-intelligence-summary-23-may-30-may-2019

Listen on itunes: https://dts.podtrac.com/redirect.mp3/podcasts.apple.com/us/podcast/jasperloader-apt28-url-shortening-rdp-vulnerability/id1326304686?i=1000440242361

Listen on SoundCloud: https://soundcloud.com/digitalshadows/jasperloader-apt28-url-shortening-and-rdp-vulnerability-discussion

Previous Post
“HiddenWasp” and “BlackSquid” malware, TA505 and Turla actvity, and Too Much Information: The Sequel
“HiddenWasp” and “BlackSquid” malware, TA505 and Turla actvity, and Too Much Information: The Sequel

Alex and Christian join HVR this week to discuss the Linux malware “HiddenWasp” (along with HVR’s hatred of...

Next Post
CVE-2019-0708 RDP vulnerability and GDPR’s anniversary
CVE-2019-0708 RDP vulnerability and GDPR’s anniversary

Jamie Collier and Phil Doherty join HVR on this week’s ShadowTalk, discussing the RDP vulnerability that ha...

Like what you hear?
Rate us on iTunes!

Rate Here