Risky Business Risky Business #775 -- Cl0p is back, SEC hack disclosures disappoint
43 snips
Dec 18, 2024 Robby Winchester from SpecterOps, a leading cybersecurity firm renowned for its penetration testing expertise, joins the discussion. He shares insights on the evolution of penetration testing, highlighting the growing importance of identity-centric approaches. The conversation also dives into the recent resurgence of the Cl0p ransomware crew and their alarming hacks. The hosts critique the SEC's uninspiring cyber incident reporting rule and examine the implications of vulnerabilities within Java enterprise software, emphasizing the pressing challenges in today's cybersecurity landscape.
AI Snips
Chapters
Transcript
Episode notes
SEC Reporting Rule Impact
- The SEC's cybersecurity incident reporting rule has yielded fewer filings than anticipated.
- Most reports offer generic language, raising questions about their utility for investors.
ExxonMobil Hacking Allegations
- US senators are investigating ExxonMobil's alleged hacking of environmental protesters.
- ExxonMobil reportedly hired a private investigator who then employed hackers.
China Telecom Ban
- The Biden administration is banning China Telecom's US operations, unrelated to Salt Typhoon.
- This move has been sought by US SIGINT for years due to China Telecom's alleged malicious activities.