Inside job interrupted.
CyberWire Daily
WSUS RCE exploited to deploy ShadowPad
Maria summarizes exploitation of CVE-2025-59287 and attacker techniques used to deliver the ShadowPad backdoor.
CrowdStrike fires an insider who allegedly shared screenshots with hackers. Google agrees, it wasn’t Salesforce. Cox Enterprises confirms Oracle EBS breach. Alleged Transport for London hackers plead not guilty. Hackers exploit new WSUS bug to deploy ShadowPad backdoor. Iberia discloses breach of customer data. Harvard discloses voice-phishing breach exposing alumni and donor data. We have our Monday Business Briefing. Our guest today is Brandon Karpf, friend of the show discussing maritime GPS jamming and spoofing. And the launderers who wanted a bank for Christmas.
Remember to leave us a 5-star rating and review in your favorite podcast app.
Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.
CyberWire Guest
Today we are joined by Brandon Karpf, friend of the show discussing maritime GPS jamming and spoofing.
Selected Reading
CrowdStrike fires 'suspicious insider' who passed information to hackers (TechCrunch)
Google says hackers stole data from 200 companies following Gainsight breach (TechCrunch)
Cox Confirms Oracle EBS Hack as Cybercriminals Name 100 Alleged Victims (SecurityWeek)
Teens plead not guilty over TfL cyber-attack (BBC)
Attackers deliver ShadowPad via newly patched WSUS RCE bug (Security Affairs)
Iberia discloses customer data leak after vendor security breach (Bleeping Computer)
Harvard University discloses data breach affecting alumni, donors (Bleeping Computer)
Doppel secures $70 million in a Series C round. (N2K Pro Business Briefing)
Russia-linked crooks bought a bank for Christmas to launder cyber loot (The Register)
Share your feedback.
What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show.
Want to hear your company in the show?
N2K CyberWire helps you reach the industry’s most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com.
The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc.
Learn more about your ad choices. Visit megaphone.fm/adchoices
The AI-powered Podcast Player
