A storm brews behind the firewall.

China-Linked hackers target Cisco firewalls. MIT Sloan withdraws controversial “AI-Driven Ransomware” paper. A new study questions the value of cybersecurity training. Hackers exploit OpenAI’s API as a malware command channel. Apple patches over 100 Security flaws across devices. A Florida-based operator of mental health and addiction treatment centers exposes sensitive patient information. OPM plans a “mass deferment” for Cybercorps scholars affected by the government shutdown. Lawmakers urge the FTC to investigate Flock Safety’s cybersecurity gaps. Cybercriminals team with organized crime for high-tech cargo thefts. Ben Yelin from University of Maryland Center for Cyber Health and Hazard Strategies discussing ICE’s controversial facial scanning initiative. A priceless theft meets a worthless password. 

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

We are joined by Ben Yelin from University of Maryland Center for Cyber Health and Hazard Strategies discussing ICE’s controversial facial scanning initiative. You can read more about Ben’s topic from 404 Media: You Can't Refuse To Be Scanned by ICE's Facial Recognition App, DHS Document Says.

Selected Reading

China-Linked Hackers Target Cisco Firewalls in Global Campaign (Hackread)

MIT Sloan shelves paper about AI-driven ransomware (The Register)

CyberSlop — meet the new threat actor, MIT and Safe Security (DoublePulsar)

Study concludes cybersecurity training doesn’t work (KPBS Public Media)

Microsoft: OpenAI API moonlights as malware HQ (The Register)

Apple Patches 19 WebKit Vulnerabilities (SecurityWeek)

Data Theft Hits Behavioral Health Network in 3 States (Bank Infosecurity)

OPM plans to give CyberCorps members more time to find jobs after shutdown ends (CyberScoop)

Lawmakers ask FTC to probe Flock Safety’s cybersecurity practices (The Record)

Cybercriminals, OCGs team up on lucrative cargo thefts (The Register)

Louvre Robbery: Security Flaws: The (Obviously) Password Was "Louvre" (L’Unione Sarda)

Share your feedback.

What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show.

Want to hear your company in the show?

N2K CyberWire helps you reach the industry’s most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com.

The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc.

Learn more about your ad choices. Visit megaphone.fm/adchoices