CISA warns active exploitation of flaws

Microsoft granted the FBI access to laptops encrypted with BitLocker. The EU opens an investigation into Grok’s creation of sexually explicit images. Glimmers of access pierce Iran’s internet blackout. Koi Security warns npm fixes fall short against PackageGate exploits. Some Windows 11 devices fail to boot after installing the January Patch Tuesday updates. CISA warns of active exploitation of  multiple vulnerabilities across widely used enterprise and developer software. ESET researchers have attributed the cyberattack on Poland’s energy sector to Russia’s Sandworm. This week's business breakdown. Brandon Karpf joins us to talk space and cyber. CISA sits out RSAC. 

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

Our guest today is cybersecurity executive and friend of the show Brandon Karpf with Dave Bittner and T-Minus Space Daily host Maria Varmazis, for our monthly space and cyber segment. Brandon, Maria and Dave discuss “No more free rides: it’s time to pay for space safety.”

Selected Reading

FBI Accessed Windows Laptops After Microsoft Shared BitLocker Recovery Keys (Hackread)

European Commission opens new investigation into X's Grok (The Register)

Amid Two-Week Internet Blackout, Some Iranians Are Getting Back Online (New York Times)

Hackers can bypass npm’s Shai-Hulud defenses via Git dependencies (Bleeping Computer)

Microsoft investigates Windows 11 boot failures after January updates (Bleeping Computer)

CISA says critical VMware RCE flaw now actively exploited (Bleeping Computer)

CISA confirms active exploitation of four enterprise software bugs (Bleeping Computer)

ESET Research: Sandworm behind cyberattack on Poland’s power grid in late 2025 (ESET) 

Aikido secures $60 million in Series B funding. (N2K Pro Business Briefing)

CISA won't attend infosec industry's biggest conference (The Register)

Share your feedback.

What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show.  

Want to hear your company in the show?

N2K CyberWire helps you reach the industry’s most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com.

The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc.

Learn more about your ad choices. Visit megaphone.fm/adchoices