Title 1: Russian infosec boss gets nine years for $100M insider-trading caper using stolen data
Summary: Vladislav Klyushin, owner of Russian firm M-13, was sentenced to nine years in the US for stealing corporate financial data and making $93 million through insider trading. He was only arrested because he flew to Switzerland for a Family Holiday. His four co-conspirators are still out there, probably still hacking.
Supporting Articles:
Title 2: FBI, CISA Issue Joint Warning on 'Snatch' Ransomware-as-a-Service
Summary: The FBI and CISA issue an advisory on the Snatch ransomware-as-a-service operation, highlighting its targeting of critical infrastructures and unique ability to force Windows systems to reboot in Safe Mode, evading antivirus detection.
Supporting Articles:
Title 3: Retool blames breach on Google Authenticator MFA cloud sync feature
Summary: Retool suffered a security breach after attackers compromised 27 cloud accounts through social engineering, exploiting a new Google Authenticator feature. This breach may be linked to the theft of $15 million from Fortress Trust.
Supporting Articles:
Title 4: Centaurs and Cyborgs on the Jagged Frontier
Summary: Wharton School of Business partnered with BCG to conduct an experiment on the efficiency of consultants using ChatGPT 4. AI-assisted tasks were completed faster and rated higher. The impact varied based on skill level, and the article discusses the implications of AI in the workforce.
If you found this interesting or useful, please follow us on Twitter @serengetisec and subscribe and review on your favorite podcast app!
This week we discuss the Mt. Gox hack, 9 years on, due to the recent charging, we discuss how sextortion is changing with the...
In this episode, we review Lloyd's recent announcement on not covering state sponsored attacks, an article from Anton Chuvakin on SOC technology fails, and...
In this episode, we do a quick review of what ATT&CK is, some ways that you can use it, and a summary of changes...
