In this episode we discuss the FBI’s remarkable takedown of the Qakbot botnet, a saga involving ransomware, cryptocurrency, and the FBI pushing an uninstaller to thousands of victim PCs. Next, we explore how a major U.S. energy organization fell victim to a QR code phishing attack, highlighting the ever-evolving tactics used by attackers. Finally, we discuss the alarming world of personal data exploitation through credit header information and a TransUnion subsidiary, where attackers can dox anyone in America for only $15.
** Links mentioned on the show *
NOTACON 8: Pen Testing – Moving from Art to Science (Matt Neely)
https://www.youtube.com/watch?v=n71RE6Pk9NI
Qakbot botnet dismantled after infecting over 700,000 computers
https://www.bleepingcomputer.com/news/security/qakbot-botnet-dismantled-after-infecting-over-700-000-computers/
Major U.S. energy org targeted in QR code phishing attack
https://www.bleepingcomputer.com/news/security/major-us-energy-org-targeted-in-qr-code-phishing-attack/
The Secret Weapon Hackers Can Use to Dox Nearly Anyone in America for $15
https://www.404media.co/the-secret-weapon-hackers-can-use-to-dox-nearly-anyone-in-america-for-15-tlo-usinfosearch-transunion/
** Watch this episode on YouTube **
https://youtu.be/BdtSnT1si3s
** Become a Shared Security Supporter **
For only $5 per month get exclusive access to ad-free episodes, listen to new episodes before they are released, get access to our private Discord server, receive a monthly shout-out on the show, and get a discount code for 15% off merch at the Shared Security store. Become a supporter today! https://patreon.com/SharedSecurity
** Thank you to our sponsors! **
SLNT
Visit slnt.com to check out SLNT’s amazing line of Faraday bags and other products built to protect your privacy. As a listener of this podcast you receive 10% off your order at checkout using discount code “sharedsecurity”.
Click Armor
To find out how “gamification” of security awareness training can reduce cyber risks related to phishing and social engineering, and to get a free trial of Click Armor’s gamified awareness training platform, visit: https://clickarmor.ca/sharedsecurity
** Subscribe and follow the podcast **
Join the Shared Security Community on Reddit: https://www.reddit.com/r/SharedSecurityShow/
Subscribe on YouTube: https://www.youtube.com/c/SharedSecurityPodcast
Watch and Subscribe on Odysee (YouTube alternative)
https://odysee.com/@SharedSecurity:c
Follow us on Mastodon: https://infosec.exchange/@sharedsecurity
Follow us on Twitter: https://twitter.com/sharedsec
Visit our website: https://sharedsecurity.net
Subscribe on your favorite podcast app: https://sharedsecurity.net/subscribe
Sign-up for our email newsletter to receive updates about the podcast, contest announcements, and special offers from our sponsors: https://shared-security.beehiiv.com/subscribe
Leave us a rating and review: https://ratethispodcast.com/sharedsecurity
Contact us: https://sharedsecurity.net/contact
The post The FBI’s Qakbot Takedown, QR Code Phishing Attacks, Dox Anyone in America for $15 appeared first on Shared Security Podcast.
Facebook and Apple Privacy Debate, Employee Phishing Test Gone Wrong
Encryption Backdoor Debate, Microsoft Exchange Attacks, Airline Supplier Data Breach
The Deepfake Dilemma, Microsoft Exchange Zero-Days, IT Security Investments
Card Skimmers Powered by Chip Cards, Silver Sparrow Mac Malware, Accellion Zero-Days
Clubhouse App and Your Privacy
Apple’s Safe Browsing Request Proxy, BEC Attacks, LastPass Updates
Florida Water Supply Hack, Android App Hijack, US Capitol Riot Phone Tracking
Dangerous Social Media Algorithms, A Moral Imperative for AI Powered Weapons?
Cybersecurity Researchers Targeted, Three iOS Zero-Days, Google FLoC
Tanya Janca CEO and Founder We Hack Purple
Parler, Pelosi’s Stolen Laptop, Vaccination Passport Apps
The Capital Riot: First Amendment and Deplatforming, Cybersecurity Lessons Learned
How to Break Into a Cybersecurity Career – Part 2 with Rafal Los
How to Break Into a Cybersecurity Career – Part 1
Top 3 Cybersecurity Tips
The Year in Review and 2021 Predictions
SolarWinds/SUNBURST Backdoor, Third-Party and Supply Chain Security
FireEye Hacked, Foxconn Ransomware Attack, Apple’s New Privacy Features
iPhone Zero-Click Exploit, BEC Email Auto-Forward Scams, COVID-19 Vaccine Cold Chain Attacks
Holiday Shopping Scams and Tips to Stay Safe
Create your
podcast in
minutes
It is Free
gm! crypto
The 404 Media Podcast
Big Technology Podcast
CyberWire Daily
Babbage from The Economist