State DMV Data Stolen via MOVEit Vulnerabilities & Reddit’s API Change Triggers Hackers - ThreatWire (AUDIO ONLY) (Patreon)

ThreatWire Totem Board - Limited Edition! - https://snubsie.com/threatwire-products/tw-totem 

Shop ThreatWire Merch on Teespring! - https://morsecode.creator-spring.com/ 

Support ThreatWire! https://www.patreon.com/shannonmorse 

Follow Shannon on Social Media: https://snubsie.com/links 

Hackers are hitting back at Reddit for their API changes, USB malware hits Ukraine, and state DMV data was stolen via the MOVEit Vulnerabilities! All that coming up now on ThreatWire.

 #threatwire #hak5

ThreatWire by Shannon Morse is a weekly news journalism show covering cybersecurity topics for network admins, information security professionals, and consumers.

Watch this on youtube: https://youtu.be/Q1FCJY-4TqY 

Chapters:

00:00 Reddit’s API Change vs Hackers

02:55 USB Malware Hits Ukraine

06:08 DMV Data Stolen Via MOVEit

Links:

https://techcrunch.com/2023/06/19/hackers-threaten-to-leak-80gb-of-confidential-data-stolen-from-reddit/

https://www.bleepingcomputer.com/news/security/hackers-breach-reddit-to-steal-source-code-and-internal-data/

https://techcrunch.com/2023/02/10/reddit-says-hackers-accessed-internal-data-following-employee-phishing-attack/

https://www.bleepingcomputer.com/news/security/reddit-hackers-threaten-to-leak-data-stolen-in-february-breach/

https://techcrunch.com/2023/04/18/reddit-will-begin-charging-for-access-to-its-api/

https://techcrunch.com/2023/06/08/popular-third-party-reddit-app-apollo-is-shutting-down-as-a-result-of-reddits-new-api-pricing/

https://techcrunch.com/2023/04/13/hackers-claim-vast-access-to-western-digital-systems/

https://www.bleepingcomputer.com/news/security/russian-hackers-use-powershell-usb-malware-to-drop-backdoors/

https://www.sentinelone.com/blog/who-are-the-gamaredon-group-and-what-do-they-want/

https://arstechnica.com/information-technology/2023/06/russia-backed-hackers-unleash-new-usb-based-malware-on-ukraines-military/

https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/shuckworm-russia-ukraine-military

https://www.bleepingcomputer.com/news/security/clop-ransomware-gang-starts-extorting-moveit-data-theft-victims/

https://edition.cnn.com/2023/06/15/politics/us-government-hit-cybeattack/index.html

https://arstechnica.com/information-technology/2023/06/millions-of-americans-personal-dmv-data-exposed-in-massive-moveit-hack/

https://www.bleepingcomputer.com/news/security/millions-of-oregon-louisiana-state-ids-stolen-in-moveit-breach/

https://www.expresslane.org/alerts/

https://www.oregon.gov/odot/DMV/Pages/Data_Breach.aspx

https://content.govdelivery.com/accounts/ORDOT/bulletins/36045f9

https://www.bleepingcomputer.com/news/security/moveit-transfer-customers-warned-of-new-flaw-as-poc-info-surfaces/

https://thehackernews.com/2023/06/third-flaw-uncovered-in-moveit-transfer.html

https://nvd.nist.gov/vuln/detail/CVE-2023-35708

https://community.progress.com/s/article/MOVEit-Transfer-Critical-Vulnerability-15June2023

https://www.progress.com/security/moveit-transfer-and-moveit-cloud-vulnerability