CyberWire Daily

Ransomware in Colombia. An accidental data exposure. Cyberespionage hits unpatched systems. An attack on IT systems disrupts industrial production. Bots and bad actors.

Sep 19, 2023

Kristen Bell, cybersecurity expert from GuidePoint Security, discusses the cyberattacks in Colombia and accidental data exposure by Microsoft. The podcast covers the impact of cyberattacks on Clorox, state-sponsored attacks on critical infrastructure, and bot-fueled attacks. Additionally, it explores the difference between vulnerability and exploitability, the evolving nature of vulnerabilities, and the importance of vetting charities during hurricane season.

27:16

Creator website

Episode guests

Kristen Bell

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Robust cybersecurity measures are crucial to prevent ransomware attacks and protect government agencies and private companies from widespread impact.

Accidental exposure of private data by Microsoft's AI research team highlights the need for heightened security around training data and data storage.

Deep dives

Ransomware attack on Columbia's internet service provider

Columbia's President Gustavo Petro revealed that more than 50 government agencies and private companies were affected by a ransomware attack on a widely used internet service provider, IFX Networks. The president criticized the ISP for lacking adequate cybersecurity measures, potentially breaching contracts. Columbia is considering civil lawsuits and possible criminal prosecution against IFX Networks for security protocol failures. The attack highlights the importance of robust cybersecurity measures.

Introduction

4min

Data exposure at Microsoft, new Linux backdoor, impact of cyberattack on Clorox, and state-sponsored attacks on critical infrastructure

3min

Cyberattacks on Critical Infrastructure and Bot-Fueled Attacks: Insights and Potential Cooperation

4min

Understanding the Difference between Vulnerability and Exploitability

2min

Vulnerabilities and Exploitabilities

11min

Scammers during hurricane season and the importance of vetting charities

5min

Colombia continues its recovery from last week's cyberattacks. AI training data is accidentally published to GitHub. The cyberespionage techniques of Earth Lusca. Clorox blames product shortages on a cyber attack. Cybersecurity incidents in industrial environments. Where the wild bots are. Joe Carrigan looks at top level domain name exploitation. Our guest is Kristen Bell from GuidePoint Security with a look at vulnerability vs. exploitability. And there’s talk of potential Russia-DPRK cooperation in cyberspace.

For links to all of today's stories check out our CyberWire daily news briefing:

https://thecyberwire.com/newsletters/daily-briefing/12/179