CyberWire Daily

Brute force and broken trust.

Mar 21, 2025

Brandon Karpf, a cybersecurity expert and friend of N2K CyberWire, shares his insights on the growing threats in cyberspace, particularly in the realm of space technology. The discussion uncovers alarming vulnerabilities with over 150 U.S. government database servers exposed online. Karpf delves into the rise of various ransomware attacks, including the cross-platform Albabat strain. The conversation also addresses the impact of new cyber policies and the urgent need for better oversight and defense in our increasingly digital world.

31:23

Creator website

Episode guests

Brandon Karpf

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Over 150 U.S. government database servers face serious security risks due to unauthorized exposure and flawed security protocols, requiring immediate action.

The recent shift in U.S. cybersecurity policy decentralizes responsibilities to states, raising concerns about their ability to manage escalating cyber threats effectively.

Deep dives

Exposed Government Data Servers

Over 150 U.S. government database servers are at risk due to unsafe exposure on the Internet, mainly affecting agencies like the Departments of Agriculture, Education, and Energy. These vulnerabilities, caused by a push for federal data centralization, reveal serious flaws in authentication and data protection protocols. Security analysts report numerous unauthorized access attempts, underscoring the urgency for intervention, including congressional hearings and audits to prevent potential catastrophic breaches. Experts stress the need for swift action to secure these databases, which have been compromised by basic security protocol violations.

Intro

3min

Urgent Cybersecurity Concerns and Evolving Threat Landscapes

3min

Cyber Threats and Recruitment Solutions

6min

Agile Evolution in Defense Software Acquisition

9min

Innovative Communications and Corporate Deception

5min

Over 150 government database servers are dangerously exposed to the internet. Threat actors are exploiting a vulnerability in CheckPoint’s ZoneAlarm antivirus software. Albabat ransomware goes cross-platform. ESET reports on the Chinese Operation FishMedley campaign. VanHelsing ransomware targets Windows systems in the U.S. and France. CISA issues five ICS advisories warning of high-severity vulnerabilities across critical infrastructure systems. A former NFL coach is indicted for allegedly hacking into the accounts of thousands of college athletes. Brandon Karpf joins us with a look at cyberspace in space. A fraud detection firm gets shut down for fraud.

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

Brandon Karpf, friend of N2K CyberWire, joins T-Minus Space Daily host Maria Varmazis for the Space and Cyber March segment.

Selected Reading

Over 150 US Government Database Servers Vulnerable to Internet Exposure (GB Hackers)

White House Shifting Cyber Risk to State and Local Agencies (Data Breach Today)

Cybercriminals Exploit CheckPoint Driver Flaws in Malicious Campaign (Infosecurity Magazine)

Albabat Ransomware Attacking Windows, Linux & macOS by Leveraging GitHub (Cyber Security News)

Chinese I-Soon Hackers Hit 7 Organizations in Operation FishMedley (SecurityWeek)

VanHelsing Ransomware Attacking Windows Systems With New Evasion Technique & File Extension (Cyber Security News)

CISA Releases Five Industrial Control Systems Advisories Covering Vulnerabilities & Exploits (Cyber Security News)

Former NFL, Michigan Assistant Coach Matt Weiss Charged With Hacking for Athletes' Intimate Photos (SecurityWeek)

AdTech CEO whose products detected ad fraud jailed for fraud (The Register)

Share your feedback.

We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.

Want to hear your company in the show?

You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at cyberwire@n2k.com to request more info.

Learn more about your ad choices. Visit megaphone.fm/adchoices

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

CyberWire Daily

Brute force and broken trust.

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Exposed Government Data Servers

Decentralization of Cybersecurity Responsibilities

Emerging Threats in Ransomware and Cyber Espionage

CyberWire Guest

Selected Reading

Share your feedback.

Want to hear your company in the show?

Remember Everything You Learn from Podcasts