ShadowTalk hosts Stefano, Chris, and Kim, bring you the latest in threat intelligence. This week they cover: - Kim dives into Google’s new Supply Chain Attack framework - how will it operate? - Chris discusses South Korea's energy research institute networks being compromised by North Korean threat actors - how did they gain access? - The team talk new NATO agreements that put cybersecurity at the forefront Get this week’s intelligence summary at: https://resources.digitalshadows.com/digitalshadows/weekly-intelligence-summary-25-june ***Resources from this week’s podcast*** Google Supply Chain Attach Framework - https://security.googleblog.com/2021/06/introducing-slsa-end-to-end-framework.html Supply Chain Awareness: https://www.sonatype.com/hubfs/Corporate/Software%20Supply%20Chain/2020/SON_SSSC-Report-2020_final_aug11.pdf South Korea Energy Compromise: https://www.bleepingcomputer.com/news/security/south-koreas-nuclear-research-agency-hacked-using-vpn-flaw/ VPN Attack Study: https://www.helpnetsecurity.com/2021/06/15/vpn-attacks-up/ NATO Agreements: https://www.nytimes.com/2021/06/15/world/europe/biden-putin-cyberweapons.html Intel Requirements Blog: https://www.digitalshadows.com/blog-and-research/lets-talk-about-intel-requirements/ Threat Actors Blog: https://www.digitalshadows.com/blog-and-research/threat-actors-living-off-the-land/ Banned From Cybercriminal Forums Blog: https://www.digitalshadows.com/blog-and-research/why-do-users-get-banned-from-cybercriminal-forums/ Also, don’t forget to reach out to - shadowtalk@digitalshadows.com