Cybersecurity Vulnerabilities and Regulatory Actions

On this week’s show Patrick and Adam discuss the week’s security news, including:

• Microsoft reassures* us that they take security very seriously*
• Cisco ASA firewalls get sneakily backdoored, but no one’s quite sure how
• Change Healthcare was 1FA Citrix all along
• The FTC, FCC and other government sticks get waved at tech
• Lizard Squad Finn who hacked the Vastaamo therapy chain gets sentenced
• And much, much more.

This week’s sponsor is Zero Networks, who make a network micro-segmentation product that is actually usable. Zero Networks CEO Benny Lakunishok joins us to talk through why firewalling everything everywhere is finally workable.

* You’ll forgive us for being… a tad sceptical.

Show notes

• 'ArcaneDoor' Cyberspies Hacked Cisco Firewalls to Access Government Networks | WIRED
• Change Healthcare hackers broke in using stolen credentials — and no MFA, says UHG CEO | TechCrunch
• Microsoft CEO says security is its No. 1 priority | Cybersecurity Dive
• TrustedSec | Full Disclosure: A Look at a Recently Patched Microsoft…
• Vintage Microsoft flaw resurfaces, threat actors attack with golden GooseEgg | Cybersecurity Dive
• FTC commercial surveillance rules could arrive within months, sources say
• FCC takes $200 million bite out of wireless carriers for sharing location data | CyberScoop
• Know-your-customer executive order facing stiff opposition from cloud industry
• Tech companies must help the fight aganst extremists using encryption: ASIO boss
• Josh Taylor on X: "Yess, excellent question from @Paul_Karp on why AFP et al aren't using the powers they already have. They say one technical assistance or capability notice has recently been issued. https://t.co/pEXrvjK5Q4" / X
• (720) IN FULL: ASIO and AFP respond to X chairman Elon Musk, issues social media warnings | ABC News - YouTube
• China-linked PlugX malware infections found in more than 170 countries
• Belarus secret service website still down after hackers claim to breach it
• Man Who Mass-Extorted Psychotherapy Patients Gets Six Years – Krebs on Security
• Sweden's liquor shelves to run empty this week due to ransomware attack
• Congress picked a direct fight with ByteDance and TikTok. The privacy implications are less clear.
• Telegram blocks, then unblocks, chatbots used by Ukraine’s intelligence services
• Elon Musk’s X takeover crushed Twitter’s profit to just $4804 in Australia
• Australian court orders Elon Musk’s X to hide Sydney church stabbing posts from users globally | Australia news | The Guardian
• After the Christchurch attacks, Twitter made a deal with Jacinda Ardern over violent content. Elon Musk changed everything - ABC News
• World on the Brink: How America Can Beat China in the Race for the Twenty-First Century - Kindle edition by Alperovitch, Dmitri, Graff, Garrett M.. Politics & Social Sciences Kindle eBooks @ Amazon.com.