Risky Business #796 -- With special guest co-host Chris Krebs

On this week’s show Patrick Gray and Adam Boileau are joined by special guest Chris Krebs to discuss the week’s cybersecurity news. They talk through:

• Israeli “hacktivists” take out an Iranian state-owned bank
• Scattered-spider and friends pivot into attacking insurers
• Securing identities in a cloud-first world keeps us awake at night
• Microsoft takes the “aas” out of SaaS for Europe, leaving us with just software!
• An AI prompt injection into M365 exfils corporate data

This week’s episode is sponsored by Kroll’s Cyber practice. Kroll Cyber Associate Managing Director George Glass is based in London and talks through his experiences helping organisations in the UK deal with the Scattered Spider attacks.

This episode is also available on Youtube.

Show notes

• Iran’s Bank Sepah disrupted by cyberattack claimed by pro-Israel hacktivist group | CyberScoop
• Iran orders officials to ditch connected devices
• Heightened Cyberthreat Amidst Israel-Iran Conflict
• Threat group linked to UK, US retail attacks now targeting insurance industry | Cybersecurity Dive
• Coming to Apple OSes: A seamless, secure way to import and export passkeys - Ars Technica
• Cyberattack on Washington Post Compromises Email Accounts of Journalists
• Hackers impersonating US government compromise email account of prominent Russia researcher | The Record from Recorded Future News
• A good one to talk to Chris about:
• Breaking down ‘EchoLeak’, the First Zero-Click AI Vulnerability Enabling Data Exfiltration from Microsoft 365 Copilot
• CISA warns of supply chain risks as ransomware attacks exploit SimpleHelp flaws | Cybersecurity Dive
• Whole Foods supplier making progress on restoration after cyberattack left shelves empty | The Record from Recorded Future News
• Ransomware attack on ticketing platform upends South Korean entertainment industry | The Record from Recorded Future News
• Advisory: Cybersecurity incident