AI Supply Chain Attacks and Iranian Exploits in Cybersecurity
Dragon News Bytes Podcast 🚀
This week on Dragon News Bytes, Eli Woodward and Will Baxter break down an intensely fast-paced week in cybersecurity. From the rapid operationalization of AI in supply chain attacks to massive operational security failures by nation-state actors.
Key Takeaways:
The AI Supply Chain Accelerant: Supply chain attacks used to require deep, manual effort. Now, attackers are using LLMs to exploit granular codebases at scale, fueling the ongoing NPM poisoning epidemic (including the Axios backdoor).
49,000 Exposed PLCs: Following the joint FBI, CISA, and NSA advisory on Iranian actors targeting critical infrastructure, we checked the Team Cymru platform and found a staggering 49,000 exposed devices on targeted ports.
Unmasking the DPRK IT Worker Ecosystem: North Korean IT workers are pulling in $1 million a month inside western startups—but their infrastructure was brought to light by bad OPSEC (using the password “123456”).
Zero-Days & Botnet Takedowns: Critical updates on CISA’s latest FortiClient EMS zero-day guidance and the massive takedown of an 18,000-strong APT 28 router botnet.
To watch the episode, see:
For more information, visit Team Cymru.