Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

In this segment of The Cybersecurity Defenders Podcast, we sit down with Matt Bromiley to talk about some of the latest intel coming out of the LimaCharlie community Slack channel.

The team at LimaCharlie is excited to be introducing a new and powerful capability: LimaCharlie Query Language (LCQL). LCQL allows you to query through your data in the LimaCharlie retention more easily and flexibly. It also enables several new useful features.

GoDaddy, the website builder and hosting provider, disclosed on February 16th, in a 10-K U.S Securities and Exchange Commission (SEC) filing that three separate security events, suspected to be orchestrated by the same threat actor, had occurred. Twitter has recently announced that it will be limiting the use of SMS-based two-factor authentication (2FA) to its Blue subscribers.

This week on the Simply Cyber Report.

In this episode of the Cybersecurity Defenders podcast, we recount some hacker history and tell the story of Shawn Carpenter; a rogue cybersecurity defender who singlehandedly identified a Chinese APT. It is a phenomenal story that exemplifies the grit and moral fortitude that the best defenders among us have.

This is an early introduction to the LimaCharlie Query Language (LCQL): a SQL-like language designed to allow users to quick and easily leverage historical telemetry and search across their entire fleet. It is an exciting new capability that enables a whole new class of use cases.

Microsoft has started blocking the execution of XLL add-ins downloaded from the Internet. The hacking group DragonSpark is leveraging Golang source code interpretation to evade detection. Threat actors are turning to Sliver to replace more popular frameworks Cobalt Strike and Metasploit. Over 4,500 WordPress sites have been hacked and Emote malware makes a comeback.

Join the team at LimaCharlie for an interactive open forum about much of what has happened in 2022. Dive into and learn about key feature releases and hear a little about what's to come for the future. 2022 was a major growth year for LimaCharlie and we'll discuss the wide range of capabilities we have added that enable our users to assemble a security stack unique to their organizations.

Unknown threat actors observed hiding malware execution behind a legitimate Windows support binary. S3 buckets now encrypted by default. Powerful Android malware targeting banking applications. End of life for WIndows Server 2008.

New vulnerability found in WooCommerece Gift Cards Premium Wordpress plugin with CVSS score of 9.8. Fin7 has developed an AI-powered automated attacking tool called Checkmarks. Checkmarks is designed to auto-attack ms exchange systems, perform post exploitation actions, and grab enough data to allow FIN7 to understand their victim.