Midnight Blizzard brings the storm.

Russian state hackers breach Microsoft. LockBit claims Subway restaurants hack. A Swedish datacenter is hit with ransomware. VMware patches a vulnerability targeted by Chinese espionage groups. Sentinel Labs warns of North Korean APTs focus on cybersecurity pros. FTC order another data broker to restrict location data. US Feds release security guidance for water and wastewater sectors. Senators question the DOJ on facial recognition technology. Ukraine’s Monobank gets DDoSed. N2K’s CSO Rick Howard joins us to share some insight into what he and the Hash Table are cooking up for the upcoming season of his CSO Perspectives podcast. The passing of a Time Lord. 

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

N2K’s CSO Rick Howard joins us to share some insight into what he and the Hash Table are cooking up for the upcoming season of his CSO Perspectives podcast launching next month.   

Selected Reading

Microsoft: Russian Hackers Had Access to Executives' Emails (GovInfo Security)

LockBit ransomware gang claims the attack on the sandwich chain Subway (Security Affairs)

Ransomware hits cloud service Tietoevry; numerous Swedish customers affected (The Record)

Chinese Espionage Group UNC3886 Found Exploiting CVE-2023-34048 Since Late 2021 (Mandiant)

North Korea’s ScarCruft APT group targets infosec pros (CSO Online)

FTC Order Will Ban InMarket from Selling Precise Consumer Location Data (Federal Trade Commission)

US Gov Publishes Cybersecurity Guidance for Water and Wastewater Utilities (SecurityWeek)

Ukraine’s Monobank hit with massive DDoS attack (Silicon Republic)

Senators ask DOJ to investigate whether facial recognition tech violates Civil Rights Act (The Record)

RIP, Internet’s Time Lord (On My Om)

Network Time Protocol (NTP) attack (noun) (Word Notes podcast)

Share your feedback.

We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show. 

Want to hear your company in the show?

You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at cyberwire@n2k.com to request more info.

The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © 2023 N2K Networks, Inc.

Learn more about your ad choices. Visit megaphone.fm/adchoices