Stomping out critical bugs.
CyberWire Daily
Active Exploitation in CentOS Web Panel
Dave reports on a critical Control Web Panel command-injection flaw, its scope, and CISA's mitigation advice.
Cisco patches critical vulnerabilities in its Unified Contact Center Express (UCCX) software. CISA lays off 54 employees despite a federal court order halting workforce reductions. Gootloader malware returns. A South Korean telecom is accused of concealing a major malware breach. Russia’s Sandworm launches multiple wiper attacks against Ukraine. China hands out death sentences to scam compound kingpins. My guest is Dr. Sasha O'Connell, Senior Director for Cybersecurity Programs at Aspen Digital. Meta’s moral compass points to profit.
Remember to leave us a 5-star rating and review in your favorite podcast app.
Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.
CyberWire Guest
Dr. Sasha O'Connell, Senior Director for Cybersecurity Programs at Aspen Digital, joins us to preview her Caveat podcast interview about "10 Years of Cybersecurity Progress & What Comes Next." Listen to Sasha and Dave’s full conversation on this week’s Caveat episode.
Selected Reading
Critical Cisco UCCX flaw lets attackers run commands as root (Bleeping Computer)
CISA plans to fire 54 employees despite court injunction (Metacurity)
CISA reports active exploitation of critical vulnerability in CentOS Web Panel (Beyond Machines)
Gootloader malware is back with new tricks after 7-month break (Bleeping Computer)
KT accused of concealing major malware infection, faces probe over customer data breach (The Korea Times)
Sandworm hackers use data wipers to disrupt Ukraine's grain sector (Bleeping Computer)
China sentences 5 Myanmar scam kingpins to death (The Record)
“Hackers” rig elections to IAN executive committee (Mumbai News)
Meta is earning a fortune on a deluge of fraudulent ads, documents show (Reuters)
Share your feedback.
What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show.
Want to hear your company in the show?
N2K CyberWire helps you reach the industry’s most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com.
The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc.
Learn more about your ad choices. Visit megaphone.fm/adchoices
The AI-powered Podcast Player
