CyberWire Daily Grounded by ransomware.
12 snips
Sep 22, 2025 Milenko Starcik, a leading cybersecurity expert at VisionSpace Technologies, joins the conversation about pressing cyber threats. They discuss the alarming ransomware attack affecting European airports and the impending expiration of critical cyber legislation. Starcik also reveals findings from Black Hat, including vulnerabilities in mission control software that could compromise satellites. Additionally, the conversation touches on the dangers of social engineering showcased by a teen's scam that led to significant fraud, emphasizing the need for awareness in cybersecurity.
AI Snips
Chapters
Books
Transcript
Episode notes
Aviation Ransomware Disrupts Airports
- Ransomware against Collins Aerospace's Muse disrupted major European airports and forced manual workarounds.
- Aviation-targeted cyberattacks rose ~600% in a year, showing high impact and criminal profit motives.
Prioritize Legacy Auth Cleanup
- Inventory and remove deprecated auth paths and APIs immediately to reduce high-risk legacy exposure.
- Monitor and patch legacy systems quickly since old components can let attackers impersonate admins with little trace.
Undocumented Tokens Enable Tenant Takeover
- An undocumented actor token and deprecated Azure AD Graph API could let attackers impersonate global admins for 24 hours.
- Microsoft fixed it within nine days after notification, highlighting quick patch importance for legacy flaws.
