Ep10: Volt Typhoon zero-day, Russia's APT29 reusing spyware exploits, Pavel Durov's arrest

Three Buddy Problem - Episode 10: Top stories this week -- Volt Typhoon zero-day exploitation of Versa Director servers, Chinese APT building botnets with EOL routers, the gap in security solutions for network devices and appliances, Russia's APT29 (Midnight Blizzard) caught reusing exploits from NSO Group and Intellexa, Microsoft’s upcoming Windows endpoint security summit in response to the CrowdStrike incident, and the arrest of Telegram’s Pavel Durov in France. Plus, the NSA is launching a podcast. Hosts: Costin Raiu (Art of Noh), Juan Andres Guerrero-Saade (SentinelLabs), Ryan Naraine (SecurityWeek)Links:Transcript (unedited)China's Volt Typhoon Exploiting Zero-Day in Servers Used by ISPs, MSPsVersa Director Zero-Day Exploitation - Black Lotus LabsCVE-2024-39717 – Versa Director Dangerous File Type Upload VulnerabilityGoogle TAG: APT29 using same exploits as Intellexa, NSO GroupRussia's APT29 Reusing Exploits From Spyware MerchantsOfficial Pavel Durov charges (PDF)WSJ: Pavel Durov's iPhone was hacked by France, UAEMicrosoft Calls EDR SummitNSA to Launch ‘No Such Podcast’LABScon 2024 SpeakersAPT29 / Midnight Blizzard