Raiders of the Lost ARP

Amateur Security Archaeologists, trying not to break things.

Category: Threat Updates (Page 5 of 5)

Who am I to tell a bear that being called “Sandworm” is a little odd? C’mon, at least I didn’t call you your Microsoft APT name…

What’s causing Mike’s Indigestion now? Helpless Victims (10 Nov 2023)

November 9, 2023 /

Good morning folks! I have some updates on the threat side of things that I think are interesting and might help in conversations with your friends and colleagues.

Cisco Talos has updated their blog on the IOS-XE implant that caused a ruckus a couple of weeks ago. They now know it is still progressing, and the Lua-based implant is called BadCandy and already at version 3.0. Some of us would kill for that sort of release cycle! As before, fixed code is available for all impacted devices, but if you are struggling to make the upgrade happen, new curl commands are available to check for compromise.

Continue reading
An older adventurer is running from a massive fire, indicating that he was not ready for just how bad it would be.
Well this week went about as well as could be expected...

What is causing Mike’s Indigestion now? Ransomware is sooo last year (3 Nov 2023)

November 3, 2023 /

Good morning folks! I have some updates on the threat side of things that I think are interesting and might help in conversations with your friends and colleagues:

Ugh, Ransomware. Again.

Continue reading
Newer posts »

© 2024 Raiders of the Lost ARP

Theme by Anders NorenUp ↑

Verified by MonsterInsights