Daily Cyber Threat Brief đ´ Dec 8âs Top Cyber News NOW! - Ep 1021
Dec 8, 2025
Cybersecurity insights are front and center as rising threats from brute-force login attempts on GlobalProtect and state-linked React Server exploitation are discussed. NATO's extensive cyber defense exercise highlights the need for effective tabletop practices. Meanwhile, the vulnerabilities of third-party risks, such as the Oracle EBS breach, shake the healthcare sector. On a lighter note, the dangers of virtual kidnapping scams enabled by AI are shared, along with practical advice for CISO candidates navigating the complexities of the role.
AI Snips
Chapters
Transcript
Episode notes
Fog In Atlanta Made A Messy Morning
- Dr. Gerald Ogier described a rough travel day through Atlanta where fog disrupted his trip and left him tired.
- He used the experience to explain why the show was a bit chaotic that morning.
Harden VPNs Against Brute-Force Attacks
- Enable multi-factor authentication and use enterprise device certificates for VPNs to reduce brute-force risk.
- Use passphrases and password vaults and check VPN logs for abnormal logins regularly.
Remote Tabletop Exercises Scale Effectively
- Large tabletop cyber exercises can scale by logging participants in from their desks and injecting realistic surprises.
- Injects force teams to exercise decision making beyond technical fixes, including communication and leadership responses.