SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) ISC StormCast for Tuesday, December 17th, 2024
Dec 17, 2024
Discover the tactics of the MUT1244 attack group, known for distributing backdoored code aimed at security researchers. Unpack a critical vulnerability found in the Golang crypto library, raising concerns about cybersecurity. Additionally, learn about the Meeten malware, a cross-platform threat targeting crypto wallets on both macOS and Windows. This fascinating dive into current cyber threats reveals just how complex and evolving the landscape of digital security really is.
AI Snips
Chapters
Transcript
Episode notes
MUT1244 Attack Group Tactics
- MUT1244 targeted security researchers by sharing backdoored exploit code on GitHub.
- They also phished credentials with emails promising CPU microcode updates, pretending to target high-performance computing researchers.
Golang Crypto Vulnerability
- Update your Golang libraries if you use Golang for SSH authentication.
- A flaw in SSH key validation makes it unclear which key was used or if any key was used at all.
Meeten Malware: A Cross-Platform Threat
- Meeten malware tricks victims into downloading malicious software disguised as video conferencing systems.
- The attackers exploit AI tools to create plausible websites and frequently change company names.