Cyber Security Headlines

OpenSSH flaws enable new attacks, Microsoft prepares for deprecation, Zwipe files for bankruptcy

Feb 19, 2025

Recent vulnerabilities in OpenSSH are raising alarms due to potential man-in-the-middle and DoS attacks, urging urgent patching. Microsoft is reminding admins to brace for changes as WSUS driver sync faces deprecation. In a twist of fortunes, Zwipe has filed for bankruptcy, struggling to maintain biometric card revenues. The podcast also shines a light on the growing threat of phishing campaigns targeting mobile platforms, revealing the ongoing challenges facing major organizations in today's cyber landscape.

06:39

Creator website

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Recent OpenSSH vulnerabilities significantly increase the risk of man-in-the-middle and DoS attacks, necessitating immediate system updates for protection.

The recent cyberattacks on Ecuador's National Assembly highlight the growing cybersecurity threats in the region, emphasizing the need for enhanced defenses.

Deep dives

Critical Vulnerabilities in OpenSSH

Two significant security vulnerabilities have been found in OpenSSH, affecting versions 6.8p1 to 9.9. One enables man-in-the-middle attacks by allowing attackers to impersonate legitimate servers when the verify host key DNS option is enabled, while the other leads to denial of service due to resource exhaustion in versions 9.5p1 to 9.9p1. Both vulnerabilities have been addressed in the newly released OpenSSH 9.9p2. Ensuring systems are updated to this version is crucial in safeguarding against potential exploits.

Cybersecurity Vulnerabilities, Microsoft Updates, and Corporate Bankruptcy

3min

Increased Cyber Threats and Vulnerabilities Highlighted

4min

New OpenSSH Flaws Enable Man-in-the-Middle and DoS Attacks — Patch Now

Microsoft reminds admins to prepare for WSUS driver sync deprecation

Zwipe runs out of time for biometric card revenues, files for bankruptcy

Thanks to today's episode sponsor, Scrut Automation

Scrut Automation allows compliance and risk teams of any size to establish enterprise-grade security programs. Their best-in-class features like process automation, AI, and over 75 native integrations reverse compliance debt and help manage risk proactively as your business grows. Visit scrut.io to schedule a demo or learn more. That’s www.scrut.io.

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Cyber Security Headlines

OpenSSH flaws enable new attacks, Microsoft prepares for deprecation, Zwipe files for bankruptcy

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Critical Vulnerabilities in OpenSSH

Cyberattacks on Ecuador's National Assembly

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights