No quick fix for a ClickFix attack.

A major student engagement platform falls victim to the ClickFix social engineering attack. Google settles privacy allegations with Texas for over one point three billion dollars. Stores across the UK face empty shelves due to an ongoing cyberattack. Ascension Health reports that over 437,000 patients were affected by a third-party data breach. A critical zero-day vulnerability in SAP NetWeaver is being actively exploited. Researchers uncover two major cybersecurity threats targeting IT admins and cloud systems. U.S. prosecutors charge three Russians and one Kazakhstani in connection with the takedown of two major botnets. A new tool disables Microsoft Defender by tricking Windows into thinking a legitimate antivirus is installed. Tim Starks, Senior Reporter from CyberScoop, discusses congressional reactions to White House budget cut proposals for CISA. Fair use faces limits in generative AI.

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

We welcome back Tim Starks, Senior Reporter from CyberScoop, discussing congressional reactions to White House budget cut proposals for CISA. You can find background information in these articles: 

• House appropriators have reservations — or worse — about proposed CISA cuts⁠

• ⁠Sen. Murphy: Trump administration has ‘illegally gutted funding for cybersecurity⁠’

Selected Reading

iClicker website compromised with fake ClickFix CAPTCHA installing malware (BeyondMachines.net)

Google Agrees to $1.3 Billion Settlement in Texas Privacy Lawsuits (SecurityWeek)

Fears 'hackers still in the system' leave Co-op shelves running empty across UK (The Record)

437,000 Impacted by Ascension Health Data Breach (SecurityWeek)

SAP NetWeaver Vulnerability Exploited in Wild by Chinese Hackers (Cyber Security News)

New SEO Poisoning Campaign Targeting IT Admins With Malware (Hackread)

Three Russians, one Kazakhstani charged in takedown of Anyproxy and 5socks botnets (The Record)

Defendnot — A New Tool That Disables Windows Defender by Posing as an Antivirus Solution (Cyber Security News)

Five Takeaways from the Copyright Office’s Controversial New AI Report (Copyright Lately) 

Share your feedback.

We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show. 

Want to hear your company in the show?

You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at cyberwire@n2k.com to request more info.

The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc.

Learn more about your ad choices. Visit megaphone.fm/adchoices