Zero-day déjà vu.

Google issues an emergency patch for a Chrome zero-day. A new malware campaign uses fake DocuSign CAPTCHA pages to trick users into installing a RAT. A high-severity Splunk vulnerability allows non-admin users to access and modify critical directories. Experts warn congress that Chinese infiltrations are preparations for war. Senators look to strengthen cybersecurity collaboration in the U.S. energy sector. Crocodilus Android malware adds fake contacts to victims’ phones. SentinelOne publishes a detailed analysis of their recent outage. Cartier leaves some of its cyber sparkle exposed. Our guest is Jon Miller, CEO and Co-founder of Halcyon, discussing Bring Your Own Vulnerable Driver (BYOVD) attacks. Microsoft and CrowdStrike tackle hacker naming…or do they?

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

Today on our Industry Voices segment, we are joined by Jon Miller, CEO and Co-founder of Halcyon who is discussing Bring Your Own Vulnerable Driver (BYOVD) attacks. Listen to Jon’s conversation here.

Selected Reading

Google patches new Chrome zero-day bug exploited in attacks (Bleeping Computer)

Fake Docusign Pages Deliver Multi-Stage NetSupport RAT Malware  (Infosecurity Magazine)

Splunk Universal Forwarder on Windows Lets Non-Admin Users Access All Contents (Cyber Security News)

China hacks show they're 'preparing for war': McMaster (The Register)

FCC Proposes Rules to Ferret Out Control of Regulated Entities by Foreign Adversaries (Cooley)

US lawmakers propose legislation to expand cyber threat coordination across energy sector (Industrial Cyber)

Android malware Crocodilus adds fake contacts to spoof trusted callers (Bleeping Computer)

SentinelOne Global Service Outage Root Cause Revealed (Cyber Security News)

Romanian man pleads guilty to 'swatting' plot that targeted an ex-US president and lawmakers (AP News)

Cartier reports data breach exposing customer personal information (Beyond Machines)

Want to hear your company in the show?

You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at cyberwire@n2k.com to request more info.

The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc.

Learn more about your ad choices. Visit megaphone.fm/adchoices