CyberWire Daily

A serious breach showdown.

Feb 5, 2024

Dr. Heather Monthie from N2K Networks discusses the White House's easing of education requirements for federal contract jobs. Anydesk confirms a serious breach. Clorox and Johnson Controls file cyber incidents. Apple Vision Pro kernel exploit potential. $25 million deepfake scam. Akamai research on FritzFrog botnet. US sanctions Iranians for water plant attacks. Commando Cat targets Docker API endpoints. Pennsylvania courts hit by DDoS. New leader for US Cyber Command and NSA. Tribute to David Kahn.

36:07

Creator website

Episode guests

Heather Monthie

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

AnyDesk experienced a significant security breach, resulting in exposure of source code and code signing certificates.

Clorox and Johnson Controls reported financial losses due to cyber incidents, with Clorox facing a major operational disruption and Johnson Controls experiencing a ransomware attack.

Deep dives

AnyDesk confirms security breach

AnyDesk, a remote software company, has confirmed a significant security breach in its systems. Unauthorized access was detected during a routine security audit, resulting in the exposure of source code and code signing certificates. The breach led to a four-day service interruption in January, but there is no evidence of end user devices being affected.

Introduction

4min

Ransomware attack, SEC rule, deep fake scam, Fritz Frog Botnet, US water systems targeted, Commando Cat malware, and cyber attack on Pennsylvania State Courts Agency

11min

Disruptions in online services and leadership transition in US Cyber Command and NSA

4min

Addressing the Workforce Gap in Cybersecurity

4min

The Shifting Perception of Education and Tribute to David Kahn

7min

Anydesk confirms a serious breach. Clorox and Johnson Controls file cyber incidents with the SEC. There’s already a potential Apple Vision Pro kernel exploit. A $25 million deepfake scam. Akamai research hops on the FritzFrog botnet. The US sanctions Iranians for attacks on American water plants. Commando Cat targets Docker API endpoints. Pennsylvania courts fall victim to a DDoS attack. A new leader takes the reins at US Cyber Command and the NSA. Our guest is Dr. Heather Monthie from N2K Networks, with insights on the White House's recent easing of education requirements for federal contract jobs. And remembering one of the great cryptology communicators.

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

Guest Heather Monthie from N2K Networks shares some insight into the White House's recent easing of education requirements for federal contract jobs. You can find the background to that in our Selected Reading section.

Selected Reading

AnyDesk, an enterprise remote software platform used by major firms including Raytheon and Samsung, suffered a security breach - here’s what you need to know (IT Pro)

Clorox and Johnson Controls Reveal $76m Cyber-Attack Bill (Infosecurity Magazine)

MIT student claims to hack Apple Vision Pro on launch day (Cybernews)

Finance worker pays out $25 million after video call with deepfake ‘chief financial officer’ (CNN)

FritzFrog botnet is exploiting Log4Shell bug now, experts say (The Record)

US sanctions Iranian officials over cyber-attacks on water plants (BBC)

The Nine Lives of Commando Cat: Analysing a Novel Malware Campaign Targeting Docker (Cado Security)

Pennsylvania court agency's website hit by disabling cyberattack, officials say (ABC News)

Cyber Command, NSA usher in Haugh as new chief (The Record)

White House moves to ease education requirements for federal cyber contracting jobs (CyberScoop)

White House moves to ease education requirements for federal cyber contracting jobs (GAO)

David Kahn, historian who cracked the code of cryptology, dies at 93 (Washington Post)

Share your feedback.

We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.

Want to hear your company in the show?

You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at cyberwire@n2k.com to request more info.

Learn more about your ad choices. Visit megaphone.fm/adchoices

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

CyberWire Daily

A serious breach showdown.

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

AnyDesk confirms security breach

Clorox and Johnson Controls report cyber incidents

Apple Vision Pro potential kernel exploit revealed

CyberWire Guest

Selected Reading

Share your feedback.

Want to hear your company in the show?

Remember Everything You Learn from Podcasts