CyberWire Daily

When retaliation turns digital.

Jan 10, 2025

Join Casey Marks, ISC2's Chief Qualifications Officer, as he dives into the fascinating world of cybersecurity certifications. He discusses the evolving landscape of security qualifications and the increasing demand for skilled professionals in the field. Marks also addresses the significant role of continual professional education and community engagement in enhancing cybersecurity measures. With rising threats from hackers and innovations in compliance, this conversation is essential for anyone wanting to stay ahead in the cybersecurity realm.

33:29

Creator website

Episode guests

Casey Marks

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The recent breach of the U.S. Treasury Department by Chinese hackers underscores the vulnerabilities in national cybersecurity and the potential for retaliatory attacks related to sanctions.

The surge in demand for cybersecurity qualifications reflects a global push towards professional certification, highlighting the industry's need for skilled practitioners to address escalating threats.

Deep dives

Chinese Cybersecurity Threats and Breaches

Recent breaches attributed to Chinese hackers have raised significant concerns regarding U.S. cybersecurity. Specifically, attacks on the U.S. Treasury Department have highlighted vulnerabilities, particularly affecting its sanctions office. This breach came shortly after the sanctions office penalized a Chinese company for cyberattack activities, leading to speculation about retaliation. Although classified data was not accessed, officials fear that the unclassified data stolen could still offer valuable intelligence to adversaries.

Intro

3min

Cyber Breach and Security Challenges

9min

Exploring Security Certifications and Innovative Compliance Solutions

4min

Certification Trends in Cybersecurity

6min

CPE, Community Engagement, and Tech Troubles

7min

New details emerge about Chinese hackers breaching the US Treasury Department. The Supreme Court considers the TikTok ban. Chinese hackers exploit a zero-day flaw in Ivanti Connect Secure VPN. A new credit card skimmer malware targets WordPress checkout pages. The Banshee macOS info-stealer has been updated. A California health services organization reports a data breach. A Florida firm pays a $337,750 HIPAA settlement following a 2018 breach. Samsung patches Android devices. A Proton Mail outage hits users worldwide. A popular e-card site recovers from malware. CertByte segment host Chris Hare interviews our guest Casey Marks, ISC2's Chief Qualifications Officer, about the future of certifications. That’s a feature, not a hack.

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

CertByte segment host Chris Hare interviews our guest Casey Marks, ISC2's Chief Qualifications Officer, about certifications and where they could be heading. You can check out their 2024 ISC2 Cybersecurity Workforce study here.

Selected Reading

Chinese hackers breached US government office that assesses foreign investments for national security risks (CNN)

Supreme Court considers whether to allow TikTok ban to take effect (NBC News)

Ivanti VPN zero-day exploited by Chinese hackers (SC Media)

New Skimmer Malware Hijacking WordPress Websites to Steal Credit Cards (Cyber Security News)

Banshee macOS Malware Expands Targeting (SecurityWeek)

BayMark Health Services Reports Data Breach, Exposing Patient Information (The Cyber Express)

Florida Firm Fined $337K by Feds for Data Deleted in Hack (BankInfo Security)

Samsung Patches Multiple Vulnerabilities That Let Attackers Execute Arbitrary Code (Cyber Security News)

Proton Mail still down as Proton recovers from worldwide outage (Bleeping Computer)

GroupGreeting e-card site attacked in “zqxq” campaign (Malwarebytes)

Microsoft DRM Hacking Raises Questions on Vulnerability Disclosures (SecurityWeek)

Facebook awards researcher $100,000 for finding bug that granted internal access (RocketNews)

Developers sent into security panic by 'useful feature' (The Register)

Share your feedback.

We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.

Want to hear your company in the show?

You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at cyberwire@n2k.com to request more info.

Learn more about your ad choices. Visit megaphone.fm/adchoices

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

CyberWire Daily

When retaliation turns digital.

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Chinese Cybersecurity Threats and Breaches

Emerging Malware Trends and Attack Methods

Certification Trends and the Future of Cybersecurity Workforce

CyberWire Guest

Selected Reading

Share your feedback.

Want to hear your company in the show?

Remember Everything You Learn from Podcasts