Cyber Defense Advisors

Cyber News

Spanish Police Bust Region’s “Biggest Narco Bank”

Underground organization said to have laundered €300m annually

Cyber News, Cyber Threat Trends

Hackney Council Ransomware Attack Cost £12m+

Local government’s travails highlight devastating impact of breaches

Cyber News, Cyber Threat Trends
  • by
  • October 17, 2022

INTERPOL-led Operation Takes Down ‘Black Axe’ Cyber Crime Organization

The International Criminal Police Organization, also called the Interpol, has announced the arrests of 75 individuals as part of a coordinated global operation against an organized cybercrime syndicate called Black Axe. “‘Black Axe’ and other West African organized crime groups have developed transnational networks, defrauding victims of millions while channeling their profits into lavish

Cyber News, Cyber Threat Trends

What is Spyware?

No one likes the feeling that someone is looking over their shoulder when they work, shop or surf online. But this is just what crooks and scammers do without our knowledge using “spyware.” Spyware is a piece of software that can covertly gather information on you. It can track the websites you visit and even […]

Cyber News, Cyber Threat Trends
  • by
  • October 16, 2022

Create a Per-User Secret in Secrets Manager: Part 1

User-Specific Secrets on AWS: IAM Policies ACM.82 IAM Policies to allow users to describe their own secrets This is a continuation of my series of posts on Automating Cybersecurity Metrics. In the last post, we created an SSH key for a user programatically. I created a policy for our Developer Group Role using the ${aws:username} parameter which […]

Cyber News, Cyber Threat Trends

How Threat Actors Transmit Ransomware

Even as ransomware continues to be at the forefront of global news and company after company reports attacks, many still […]

Cyber News, Cyber Threat Trends
  • by
  • October 16, 2022

The policy failed legacy parsing

Another non-sensical Policy Document error message in CloudFormation I may have written about this before but this one of the worst error messages for Policy Documents in existence. How is an end user reading this error message supposed to know what to do with this? The policy failed legacy parsing (Service: AmazonIdentityManagement; Status Code: 400; Error […]

Cyber News, Cyber Threat Trends
  • by
  • October 15, 2022

Anti-Money Laundering Service AMLBot Cleans House

AMLBot, a service that helps businesses avoid transacting with cryptocurrency wallets that have been sanctioned for cybercrime activity, said an investigation published by KrebsOnSecurity last year helped it shut down three dark web services that secretly resold its technology to help cybercrooks avoid detection by anti-money laundering systems. Antinalysis, as it existed in 2021. In […]

Cyber News, Cyber Threat Trends
  • by
  • October 15, 2022

Creating and Storing an EC2 SSH Key in Secrets Manager

ACM.81 Altering code that uses SSM Parameter Store to use AWS Secrets Manager This is a continuation of my series of posts on Automating Cybersecurity Metrics. I’ve been writing about creation of an EC2 SSH Key for use with an EC2 instance. I explained that I want to create the key in a manner that provides […]

Cyber News, Cyber Threat Trends