Wiz

ํŒŸ์บ์ŠคํŠธ

#9 - The collapse of LAPSUS$ and the risks of AI data poisoning

Omer Mosheiov
Spotify๊ณ„์† ๋“ฃ๊ธฐSpotifyApple Podcasts๊ณ„์† ๋“ฃ๊ธฐApple Podcasts

๐Ÿ‘€ Here's a sneak peek at todayโ€™s episode:

๐Ÿ”’ Stay ahead of the game! LAPSUS$ Hackers may be making waves. Two members of this notorious group faced consequences in the UK, but shockingly, they continued their hacking activities even while under house arrest.

๐Ÿค– Data Poisoning in AI Training is a growing concern. Hackers can manipulate the data used to train AI models, introducing risks and vulnerabilities. Validating data integrity and randomizing data ingestion times are useful mitigations against this threat.

๐Ÿ’ป The WinRAR Vulnerability (CVE-2023-38831)! This flaw was exploited against crypto-traders to infect their devices with malware, but should be considered a low concern for cloud customers unless using virtual desktops.

๋ฆฌ์†Œ์Šค

https://gizmodo.com/hackers-lapsus-uber-nvidia-rockstar-games-microsoft-1850766324 https://www.bbc.com/news/technology-66549159 https://www.cisa.gov/resources-tools/resources/review-attacks-associated-lapsus-and-related-threat-groups-executive-summary https://www.cisa.gov/sites/default/files/2023-08/CSRBLapsus%24508c.pdf https://duo.com/decipher/lapsususd-analysis-finds-need-for-better-iam-mfa-deployments https://www.youtube.com/watch?v=h9jf1ikcGyk https://arxiv.org/pdf/2302.10149.pdf https://www.blackhat.com/us-23/briefings/schedule/#poisoning-web-scale-training-datasets-is-practical-32112 https://arstechnica.com/security/2023/08/winrar-0-day-that-uses-poisoned-jpg-and-txt-files-under-exploit-since-april/

๋” ๋งŽ์€ ์—ํ”ผ์†Œ๋“œ

#8 - GameOverlay โ€“ privilege escalation vulnerabilities in Ubuntu

๐Ÿฟ๐Ÿ”’ Ubuntu flaws, Redis attacks, Jumpcloud breach - all in this month's "Crying Out Cloud" episode! ๐Ÿ•ต๏ธโ€โ™‚๏ธ๐Ÿ“บ

Omer Mosheiov
์ง€๊ธˆ ๋“ฃ๊ธฐ

#7 - The Future Of The Cloud (Special Guest - Corey Quinn)

Corey Quinn joins "Crying Out Cloud" to discuss cloud evolution, Microsoft MSA, usage & misconfigurations

Omer Mosheiov
์ง€๊ธˆ ๋“ฃ๊ธฐ

#6 - Chinese Spies Acquire Keys To The Azure Kingdom

On this episode: Chinese hackers breach US emails. Silent Bob & Team TNT return. Russian hackers exploit Office Zero Day

Omer Mosheiov
์ง€๊ธˆ ๋“ฃ๊ธฐ
๋ชจ๋“  ์—ํ”ผ์†Œ๋“œ ๋ณด๊ธฐ

Crying Out Cloud๋Š” ๋‰ด์Šค๋ ˆํ„ฐ์ด๊ธฐ๋„ ํ•ฉ๋‹ˆ๋‹ค!

์•ˆ์ „ ๋ฐ ์ •๋ณด ์œ ์ง€: ์ตœ์‹  ํด๋ผ์šฐ๋“œ ๋ณด์•ˆ ๋‰ด์Šค, ์‹ค์ œ ๊ณต๊ฒฉ ์ธ์‚ฌ์ดํŠธ ๋ฐ ์ „๋ฌธ๊ฐ€ ์ง€์นจ์„ ๋ฐ›์•„ ํ™˜๊ฒฝ์„ ๋ณดํ˜ธํ•˜์‹ญ์‹œ์˜ค.

  • ๊ฒŒ์ž„์˜ ํŒ๋„๋ฅผ ๋ฐ”๊พธ๋Š” ๋‰ด์Šค

    ์—…๊ณ„๋ฅผ ๋’คํ”๋“ค๊ณ  ์žˆ๊ณ  ์—ฌ๋Ÿฌ๋ถ„์˜ ๊ด€์‹ฌ์ด ํ•„์š”ํ•œ ์ตœ์‹  ํด๋ผ์šฐ๋“œ ๋ณด์•ˆ ์ทจ์•ฝ์„ฑ๊ณผ ํ˜์‹ ์— ๋Œ€ํ•œ ์š”์•ฝ์ž…๋‹ˆ๋‹ค.

  • ๊ณ ์œ ํ•œ Wiz ์ธ์‚ฌ์ดํŠธ

    ์—ฐ๊ตฌ ๋ฐ์ดํ„ฐ ๋‚ด๋ถ€ ์‚ดํŽด๋ณด๊ธฐ - ์‹ค์ œ ํด๋ผ์šฐ๋“œ ํ™˜๊ฒฝ์—์„œ ํƒ์ง€ํ•œ ์‹ค์ œ ๊ณต๊ฒฉ ๊ฒฝ๋กœ์˜ ํ†ต๊ณ„๋ฅผ ๊ธฐ๋ฐ˜์œผ๋กœ ํ•ฉ๋‹ˆ๋‹ค.

  • ์‹ค์ „ ํ…Œ์ŠคํŠธ๋ฅผ ๊ฑฐ์นœ ์กฐ์–ธ

    ํšŒ์‚ฌ์—์„œ ๋ฐ์ดํ„ฐ ์นจํ•ด๋ฅผ ๋ฐฉ์ง€ํ•˜๋Š” ๋ฐฉ๋ฒ•๊ณผ ์ „๋ฐ˜์ ์ธ ํด๋ผ์šฐ๋“œ ๋ณด์•ˆ ์ „๋žต์„ ๊ฐœ์„ ํ•˜๋Š” ๋ฐฉ๋ฒ•์— ๋Œ€ํ•œ ์œ„ํ˜‘ ์—ฐ๊ตฌ ํŒ€์˜ ํŒ์ž…๋‹ˆ๋‹ค.

ํด๋ผ์šฐ๋“œ ๋ณด์•ˆ์˜ ์ตœ์‹  ์—…๋ฐ์ดํŠธ๋ฅผ ๋ฐ›์€ ํŽธ์ง€ํ•จ์œผ๋กœ ์ง์ ‘ ๋ฐ›์œผ๋ ค๋ฉด ๋“ฑ๋กํ•˜์‹ญ์‹œ์˜ค.

Wiz๊ฐ€ ๊ท€ํ•˜์˜ ๊ฐœ์ธ ๋ฐ์ดํ„ฐ๋ฅผ ์ฒ˜๋ฆฌํ•˜๋Š” ๋ฐฉ๋ฒ•์— ๋Œ€ํ•œ ์ž์„ธํ•œ ๋‚ด์šฉ์€ ๋‹ค์Œ์„ ์ฐธ์กฐํ•˜์‹ญ์‹œ์˜ค. ๊ฐœ์ธ์ •๋ณด์ฒ˜๋ฆฌ๋ฐฉ์นจ.