BROADCASTS.com

b"The Flea APT sets its sights on diplomatic targets. An update on the Cl0p gang\\u2019s exploitation of a MOVEit vulnerability. Unpatched TP-Link Archer routers are meeting their match in the Condi botnet. The Muddled Libra threat group compromises companies in a variety of industries. A look into passwordless authentication. Derek Manky of Fortinet describes the Global Threat Landscape. Rick Howard speaks with Rod Wallace from AWS about data lakes. And Fancy Bear noses its way into Ukrainian servers.\\n\\nFor links to all of today's stories check out our CyberWire daily news briefing:\\nhttps://thecyberwire.com/newsletters/daily-briefing/12/118\\n\\nSelected reading.\\nGraphican: Flea Uses New Backdoor in Attacks Targeting Foreign Ministries (Symantec)\\nKe3chang (MITRE)\\nThird MOVEit vulnerability raises alarms as US Agriculture Department says it may be impacted (The Record)\\nPwC and EY impacted by MOVEit cyber attack (Cybersecurity Hub)\\nNorton Parent Says Employee Data Stolen in MOVEit Ransomware Attack (SecurityWeek)\\nMOVEit hack: Gang claims not to have BBC, BA and Boots data (BBC)\\nUS govt offers $10 million bounty for info on Clop ransomware (BleepingComputer)\\nCondi DDoS Botnet Spreads via TP-Link's CVE-2023-1389 (Fortinet)\\nCVE-2023-1389 Detail (NIST)\\nDownload for Archer AX21 V3 (TP-Link)\\nThreat Group Assessment: Muddled Libra (Unit 42)\\nAxiad and ESG Survey: 82% of Respondents Indicate Passwordless Authentication is a Top Five Priority (PR Newswire)\\nAPT28 group used three Roundcube exploits (CVE-2020-35730, CVE-2021-44026, CVE-2020-12641) during another espionage campaign (CERT-UA#6805) (CERT-UA)\\nBlueDelta Exploits Ukrainian Government Roundcube Mail Servers to Support Espionage Activities (The Record)\\nCVE-2020-35730 Detail (NIST)\\nCVE-2023-23397 Detail (NIST)"