Cyber Security Headlines

Device code attacks, phone TOAD solution, more telecoms breached

Feb 17, 2025

Hackers are targeting users with device code phishing attacks, raising alarms about email theft. In response, an innovative Anti-TOAD feature is being developed to thwart in-call sideloading attempts. Meanwhile, Chinese hackers continue to breach U.S. telecoms using unpatched Cisco routers, exposing the need for enhanced security measures. The discussion also touches on the IRS's acquisition of an NVIDIA SuperPod AI supercomputer, aiming to bolster fraud detection and highlight the ongoing battles in the cybersecurity landscape.

07:57

Creator website

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Device code phishing attacks pose a significant threat to sensitive data, targeting organizations using vulnerable Internet of Things devices and exploiting social engineering tactics.

The introduction of the Anti-TOAD security feature aims to safeguard users from phone scams that manipulate device settings for malware installation.

Deep dives

Device Code Phishing Threats

Hackers are utilizing device code phishing to target various sectors, including government, NGOs, healthcare, and telecommunications across multiple regions. This technique exploits devices like smart TVs and Internet of Things (IoT) devices that require login codes but lack traditional input methods. By employing social engineering tactics, cybercriminals can gain unauthorized access to these codes, compromising sensitive organizational data. Microsoft is monitoring these threats and has labeled the group responsible as Storm237, indicating a growing concern over such sophisticated phishing methods.

Recent Cybersecurity Threats and Protective Measures

5min

Debating Cybersecurity Strategies Amidst Rising Threats

3min

Hackers steal emails in device code phishing attacks

Anti-TOAD feature seeks to prevent in-call sideloading attacks

Chinese hackers breach more U.S. telecoms via unpatched Cisco routers

Thanks to today's episode sponsor, Scrut Automation

Scrut Automation allows compliance and risk teams of any size to establish enterprise-grade security programs. Their best-in-class features like process automation, AI, and over 75 native integrations reverse compliance debt and help manage risk proactively as your business grows. Visit scrut.io to schedule a demo or learn more. That’s www.scrut.io.

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Cyber Security Headlines

Device code attacks, phone TOAD solution, more telecoms breached

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Device Code Phishing Threats

New Security Features and Breaches

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights