BROADCASTS.com

An APT41 subgroup uses new techniques to bypass security products. Iranian cyberespionage group MuddyWater is using Managed Service Provider tools. Wipers reappear in Ukrainian networks. Meta observes and disrupts the new NodeStealer malware campaign. The City of Dallas is moderately affected by a ransomware attack. My conversation with Karin Voodla, part of the US State Department\u2019s Cyber fellowship program. Lesley Carhart from Dragos shares Real World Stories of Incident Response and Threat Intelligence. And there\u2019s been an indictment and a takedown in a major dark web carder case.\n\nFor links to all of today's stories check out our CyberWire daily news briefing:\nhttps://thecyberwire.com/newsletters/daily-briefing/12/86\n\nSelected reading.\nAttack on Security Titans: Earth Longzhi Returns With New Tricks (Trend Micro)\nAPT groups muddying the waters for MSPs (ESET)\nRussian hackers use WinRAR to wipe Ukraine state agency\u2019s data (BleepingComputer)\nWinRAR as a "cyberweapon". Destructive cyberattack UAC-0165 (probably Sandworm) on the public sector of Ukraine using RoarBat (CERT-UA#6550) (CERT-UA)\xa0\nThe malware threat landscape: NodeStealer, DuckTail, and more (Engineering at Meta)\xa0\nFacebook disrupts new NodeStealer information-stealing malware (BleepingComputer)\nNodeStealer Malware Targets Gmail, Outlook, Facebook Credentials (Decipher)\nCity of Dallas likely targeted in ransomware attack, city official says (Dallas News)\xa0\nCybercriminal Network Fueling the Global Stolen Credit Card Trade is Dismantled (US Department of Justice)\nSecret Service, State Department Offer Up To $10 Million Dollar Reward For Information On Wanted International Fugitive (US Secret Service)\nPolice dismantles Try2Check credit card verifier used by dark web markets (BleepingComputer)\nLearn more about your ad choices. Visit megaphone.fm/adchoices