Episode 42: Hey Ya Kaseya: MSPs as unwitting attackers

Kaseya, Kaseya, Kaseya… How could we release an episode this week WITHOUT talking about the calamity at Kaseya? If you hadn’t heard, the ransomware gang REvil has leveraged a vulnerability in Kaseya’s VSA software against multiple MSPs and their clients. Oh dear. So what is it? Bog standard ransomware? Supply chain compromise? Zero-day exploit? It’s…

Kaseya, Kaseya, Kaseya... How could we release an episode this week WITHOUT talking about the calamity at Kaseya?

If you hadn't heard, the ransomware gang REvil has leveraged a vulnerability in Kaseya's VSA software against multiple MSPs and their clients. Oh dear. So what is it? Bog standard ransomware? Supply chain compromise? Zero-day exploit? It's all a bit murky, so Kev gets his 'Cyberattacks for Dummies' hat on.

Also featured is the news that audio-editing software Audacity has been accused of being 'possible spyware'.

***


https://www.bbc.co.uk/news/technology-57721967

https://www.proofpoint.com/us/blog/threat-insight/bazaflix-bazaloader-fakes-movie-streaming-service

TOPICS
Podcast
PUBLISHED

13 July 2021

The podcast taking cybersecurity personally

There's a lot of cool techy stuff going down in cybersecurity, and we love it. But you can't deny that a lot the time we humans get forgotten. Our podcast takes a not-so-serious look at issues in security from a human point of view. Covering social engineering to hacker motivations and everything in between, we chat through security stories and themes and what they mean to us: the oft-neglected humans behind the screen. Apart from Kev, Kev is a cyborg.

These weekly podcasts come in two main flavors. We’re either ranting about themes close to the heart of us security types, or we’re discussing threats and vulnerabilities that have hit headlines – or slipped under the radar – in recent weeks.

Join Chris Pace (tech advocate and keeper of the coloring pencils), Kev Breen (pro blue teamer, also known as 'Mr Nothing to CVE here...'), Max Vetter (former dark web detective and pretty cool guy), and Paul Bentham (ex-gov. type and Immersive Labs product guru) as they wend their way through the murky world of Cyber Humanity.

Latest Blog posts

All Resources
Blog
Case Studies
eBooks
Factsheets
Life At Immersive Labs
Podcast
Press
Videos
Webinars

Patch Newsday: 14 September 2021 – Lousy Browsers and Arsey RCEs Edit

Patch Tuesday

15 September 2021

Analyzing the CVE-2021-40444 exploit

Free Labs
In the News

13 September 2021

Take the power back: Tool-up against a notorious global threat group with our new FIN7 series

Red Team
Threats

13 September 2021

Episode 44: Rotten Apple or Privacy Nuts?

2 September 2021

Patch Newsday 10 August: Ironic exploitation and the spectre of PrintNightmare

Patch Tuesday

10 August 2021

Kaseya supply chain attack: Prepare to respond with the Cyber Crisis Simulator

Cyber Crisis Sim

27 July 2021

View all posts

We help businesses to increase and evidence human capability in every part of cybersecurity.

Follow Us

Copyright 2021 Immersive Labs. All rights reserved.

Company

Product