#216 - Intel Chat: Scattered Spider, TA406, Oriental Gudgeon & Apple patches
In this episode of The Cybersecurity Defenders Podcast, we discuss some intel being shared in the LimaCharlie community.
- A report from Google on how to defend against UNC3944, better known as Scattered Spider: https://cloud.google.com/blog/topics/threat-intelligence/unc3944-proactive-hardening-recommendations
- North Korea-backed threat actor TA406 has shifted its focus to targeting Ukrainian government agencies, according to new research from Proofpoint: https://www.darkreading.com/cyberattacks-data-breaches/north-koreas-ta406-targets-ukraine
- Since October 2024, urlscan.io has been tracking a phishing campaign known as Oriental Gudgeon, which is targeting over 40 Japanese commercial entities—mostly in the financial services sector: https://urlscan.io/blog/2025/05/06/oriental-gudgeon/
- Apple has released a substantial batch of security updates across its software ecosystem, including iOS 18.5, iPadOS, and the latest versions of macOS https://www.securityweek.com/apple-patches-major-security-flaws-in-ios-macos-platforms/
And the article Matt mentions about CISA shifting their alert distribution strategy: https://www.infosecurity-magazine.com/news/cisa-alert-strategy-email-social/