Weekly: TeamCity and Supply Chain Risk, BEC Detections, Midnight Blizzard
Mar 13, 2024•39 min
Listen to this episode in Metacast mobile app
Don't just listen to podcasts. Learn from them with transcripts, summaries, and chapters for every episode. Skim, search, and bookmark insights. Learn more
Episode description
In this episode of ShadowTalk, host Chris, along with Corey and Caroline, discuss the latest news in cyber security and threat research. Topics this week include:
- TeamCity Server critical vulnerability leaves potential for supply chain risk
- ReliaQuest research into advanced business email compromise (BEC) detections
- Microsoft compromised by Midnight Blizzard password spraying attack
Resources:
- https://www.rapid7.com/blog/post/2024/03/04/etr-cve-2024-27198-and-cve-2024-27199-jetbrains-teamcity-multiple-authentication-bypass-vulnerabilities-fixed/
- https://blog.jetbrains.com/teamcity/2024/03/our-approach-addressing-recently-discovered-vulnerabilities-in-teamcity-on-premises/
- https://blog.jetbrains.com/teamcity/2024/03/preventing-exploits-jetbrains-ethical-approach-to-vulnerability-disclosure/
- https://www.reliaquest.com/blog/business-email-compromise-detection/
For the best experience, listen in Metacast app for iOS or Android
Open in Metacast