Talkin’ About Infosec News – 9/23/2021
Summary
This episode of Black Hills Information Security's "Talkin' About Infosec News" podcast discusses several security-related articles from early September 2021. Topics covered include Apple's zero-day vulnerability exploited by NSO Pegasus, malware targeting Windows Subsystem for Linux, and the US plan to use sanctions against cryptocurrency ransomware payments.
IFF Assessment
The article discusses multiple security threats and vulnerabilities, including a zero-day exploit, new malware, and government actions against ransomware, which are negative developments for defenders.
Defender Context
This news recap highlights significant security issues from early September 2021, including sophisticated nation-state spyware, emerging malware vectors on common platforms like WSL, and government efforts to disrupt ransomware financial flows. Defenders should remain aware of ongoing exploitation of zero-days, the evolving threat landscape for Windows environments, and the impact of regulatory actions on threat actor operations.