Intro | 3min snip from CyberWire Daily

Get the app

A “must patch” list in the making.

CyberWire Daily

chevron_right

notes

CHAPTER

Intro

This chapter highlights a critical Fortinet vulnerability now on CISA's must-patch list, emphasizing the urgent need for federal agencies to act. It also covers additional cybersecurity updates, including Splunk's fixes and a new Android banking trojan.

00:00

Transcript

chevron_right

Play full episode

chevron_right

Transcript

Episode notes

CISA adds a Fortinet flaw to its “must patch” list. Splunk releases fixes for 11 vulnerabilities in Splunk Enterprise. ErrorFather is a new malicious Android banking trojan. New evidence backs secure-by-design practices. CISA warns that threat actors are exploiting unencrypted persistent cookies. The FIDO Alliance standardizes passkey portability. Cybercriminals linger on Telegram. On our Industry Voices segment today, our guest is Matt Radolec, Vice President, Incident Response and Cloud Operations at Varonis, discussing how AI amplifies the need for data privacy regulation and opens doors for abuse. We mark the passing of the co creator of the BBS.

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

On our Industry Voices segment today, our guest is Matt Radolec, Vice President, Incident Response and Cloud Operations at Varonis, discussing how AI amplifies the need for data privacy regulation and opens doors for abuse.

Selected Reading

Tens of thousands of IPs vulnerable to Fortinet flaw dubbed 'must patch' by feds (CyberScoop)

Fortinet FortiGuard Labs Observes Darknet Activity Targeting the 2024 United States Presidential Election (Fortinet)

Splunk Enterprise Update Patches Remote Code Execution Vulnerabilities (SecurityWeek)

Cerberus Android Banking Trojan Deployed in New Multi-Stage Malicious Campaign (Infosecurity Magazine)

Organizations can substantially lower vulnerabilities with secure-by-design practices, report finds (CyberScoop)

Eight Million Users Download 200+ Malicious Apps from Google Play (Infosecurity Magazine)

TrickMo malware steals Android PINs using fake lock screen (Bleeping Computer)

CISA: Hackers abuse F5 BIG-IP cookies to map internal servers (Bleeping Computer)

FIDO Alliance is Standardizing Passkey Portability (Thurrott)

So far, cybercriminals appear to be just shopping around for a Telegram alternative (The Record)

Ward Christensen, BBS inventor and architect of our online age, dies at age 78 (Ars Technica)

Share your feedback.

We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.

Want to hear your company in the show?

You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at cyberwire@n2k.com to request more info.

Learn more about your ad choices. Visit megaphone.fm/adchoices

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Home Top podcasts Popular guests