Coffee Talk with SURGe: 2022-MAY-31 Follina MSDT zero day, ransomware roundup, supply chain risk
Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk broke down the Follina/MSDT zero day vulnerability (CVE-2022-30190), rounded up the latest ransomware activity, and discussed supply chain risk related to Python and PHP libraries.
Mick and Ryan competed in a 60 second charity challenge to explain LOLBins before taking a deep dive into the 2022 Verizon Data Breach Investigations Report.
Microsoft Blog on CVE-2022-30190:
https://msrc-blog.microsoft.com/2022/05/30/guidance-for-cve-2022-30190-microsoft-support-diagnostic-tool-vulnerability/
REvil prosecution reportedly stalls in Russia:
https://www.cyberscoop.com/revil-prosecutions-reach-a-dead-end-russian-media-reports/
Cl0p hits 21 victims in April:
https://www.bleepingcomputer.com/news/security/clop-ransomware-gang-is-back-hits-21-victims-in-a-single-month/
Costa Rica suffers another cybersecurity incident:
https://www.teletica.com/nacional/ccss-sufrio-hackeo-durante-la-madrugada-de-este-martes_312476
Hacker claims hijacking libraries, stealing AWS keys was ethical research:
https://www.bleepingcomputer.com/news/security/hacker-says-hijacking-libraries-stealing-aws-keys-was-ethical-research/