CyberWire Daily

Can’t escape RCE flaws.

Mar 20, 2025

David Wiseman, Vice President of Secure Communications at BlackBerry, shares his expertise in cybersecurity. He discusses the urgency of addressing remote code execution vulnerabilities as a major cybersecurity threat. Wiseman elaborates on CISA’s guidelines for encrypted communications and the importance of secure messaging apps. Additionally, he highlights the challenges posed by spyware and the need for digital sovereignty in the face of growing risks. The conversation touches on the evolving landscape of AI and misinformation, emphasizing the need for heightened digital privacy.

30:12

Creator website

Episode guests

David Wiseman

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Veeam's critical vulnerability patch highlights the constant evolving threats in cybersecurity, emphasizing the need for proactive security measures from all users.

David Wiseman underscores the importance of encrypted communications to counteract modern threats like identity spoofing and deep fakes, urging adoption of end-to-end encryption methods.

Deep dives

The Shift Towards Passwordless Security

The evolution of cybersecurity emphasizes the inadequacy of traditional passwords, which can be cracked within minutes. Cyber criminals are now employing advanced techniques, such as intercepting SMS codes and bypassing authentication apps, to compromise accounts. Yubico promotes passwordless security through its YubiKeys, designed to provide robust protection while enhancing user experience. This shift highlights the necessity for businesses and individuals to reconsider their login security methods to better defend against modern cyber threats.

Intro

3min

Cybersecurity Challenges and Spyware Insights

6min

Arcane Malware and Encrypted Communications

5min

Navigating Privacy in Messaging Apps

2min

Navigating Digital Interconnectivity and AI Risks

9min

Veeam patches a critical vulnerability in its Backup & Replication software. A spyware data breach highlights ongoing risks. Clearview AI attempted to purchase sensitive data such as Social Security numbers and mug shots. The Netherlands’ parliament looks to reduce reliance on U.S. software firms. A Pennsylvania union notifies over 517,000 individuals of a data breach. Researchers discover a RansomHub affiliate deploying a new custom backdoor called Betruger. A new info-stealer spreads through game cheats and cracks. David Wiseman, Vice President of Secure Communications at BlackBerry, joins us to explore how organizations can effectively implement CISA’s encrypted communications guidelines. What to do when AI casually accuses you of murder?

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

David Wiseman, Vice President of Secure Communications at BlackBerry, joins us to explore how organizations can effectively implement CISA’s encrypted communications guidelines. Don’t miss the full conversation—listen now on the Caveat podcast!

Selected Reading

Veeam Patches Critical Vulnerability in Backup & Replication (SecurityWeek)

The Citizen Lab’s director dissects spyware and the ‘proliferating’ market for it (The Record)

Data breach at stalkerware SpyX affects close to 2 million, including thousands of Apple users (TechCrunch)

Facial Recognition Company Clearview Attempted to Buy Social Security Numbers and Mugshots for its Database (404 Media)

Dutch parliament calls for end to dependence on US software companies (Yahoo)

Pennsylvania education union data breach hit 500,000 people (Bleeping Computer)

RansomHub Affiliate Deploying New Custom Backdoor Dubbed ‘Betruger’ For Persistence (Cyber Security News)

New Arcane infostealer infects YouTube, Discord users via game cheats (Bleeping Computer)

Dad demands OpenAI delete ChatGPT’s false claim that he murdered his kids (Ars Technica)

Share your feedback.

We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.

Want to hear your company in the show?

You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at cyberwire@n2k.com to request more info.

Learn more about your ad choices. Visit megaphone.fm/adchoices

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

CyberWire Daily

Can’t escape RCE flaws.

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

The Shift Towards Passwordless Security

Critical Vulnerabilities and Emerging Threats

The Importance of Encrypted Communications

CyberWire Guest

Selected Reading

Share your feedback.

Want to hear your company in the show?

Remember Everything You Learn from Podcasts