#52 - Intel Chat: Mallox, Decoy Dog, Casbaneiro, Nitrogen, search-ms exploit, & the BlackLotus
The Cybersecurity Defenders Podcast · Christopher
August 2, 202339m 52s
Audio is streamed directly from the publisher (podcast.wistia.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
In this episode of The Cybersecurity Defenders Podcast, we discuss some cutting-edge intel coming out of LimaCharlie's community Slack channel.
- Decoy Dog is a malware toolkit that cleverly uses DNS to perform command and control.
- Breaking down the infection chain for Casbaneiro, another banking trojan targeting Latin America.
- An initial-access malware campaign that leverages malicious advertising - or malvertising - to impersonate legitimate software and compromise business networks.
- The VirusTotal Malware Trends Report: Emerging Formats and Delivery Techniques.
- Trellix Advanced Research Center who have identified a novel method for exploiting the ‘search-ms” protocol handler.
- The source code of the BlackLotus Unified Extensible Firmware Interface - or UEFI - rootkit was leaked on GitHub.
The Cybersecurity Defenders Podcast: a show about cybersecurity and the people that defend the internet.