Cyber Security Headlines

Microsoft Recall updates, Russian orgs deal with networking software updates, SSL.com certificate issuance vulnerability

Apr 23, 2025

Microsoft is recalling the Copilot Plus feature due to major security flaws. Meanwhile, Russian organizations are facing targeted attacks through deceptive updates masquerading as security tools. SSL.com is racing to address a vulnerability in its certificate issuance process, highlighting ongoing threats in the digital landscape. The podcast also discusses a surge in ransomware attacks impacting over 100 victims and the need for stronger cybersecurity measures to combat increasingly sophisticated global cyber scams.

07:10

Creator website

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Microsoft's Copilot Plus feature faced significant backlash due to its recall function capturing sensitive user data without proper encryption.

Russian organizations are under increasing cyber threat from backdoor malware impersonating secure software updates, jeopardizing critical infrastructure.

Deep dives

Security Flaws in Microsoft's Copilot Plus

Microsoft's Copilot Plus feature faced serious security issues due to a recall function that unintentionally captured sensitive user data, including credit card information, without proper encryption. Initially announced in 2023, this feature was enabled by default, leading to significant backlash from users concerned about their privacy. An updated version has since been rolled out, incorporating essential improvements like enhanced encryption, an opt-in activation option, and filtering mechanisms for sensitive information. These changes aim to reassure users of their data security and address the critical flaws that had previously sparked controversy.

Intro

3min

Rising Cyber Threats and Security Incidents in Healthcare and Retail

3min

Ransomware Surge and Global Scam Operations: A Cybersecurity Wake-Up Call

2min

Microsoft Recall on Copilot+ PC: testing the security and privacy implications

Russian organizations targeted by backdoor masquerading as secure networking software updates

SSL.com Scrambles to Patch Certificate Issuance Vulnerability

Huge thanks to our sponsor, Dropzone AI

Is your security team spending too much time chasing alerts instead of stopping threats? Dropzone AI modernizes your security operations by handling the routine investigations that consume your team's day. Our AI SOC Analyst works with your existing security tools, learns your environment, and delivers clear, actionable reports within minutes. Your human analysts can finally focus on the most critical threats. Organizations using our AI SOC Analyst handle significantly more alerts without growing their team. See how at RSA at booth ESE-60.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Cyber Security Headlines

Microsoft Recall updates, Russian orgs deal with networking software updates, SSL.com certificate issuance vulnerability

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Security Flaws in Microsoft's Copilot Plus

Increasing Cyber Threats and Attacks

Remember Everything You Learn from Podcasts