CyberWire Daily

PAN-ic mode: The race to secure PAN-OS.

Feb 18, 2025

Tim Starks, a senior cybersecurity reporter at CyberScoop, discusses urgent cybersecurity threats, including a critical vulnerability in Palo Alto Networks' firewall that’s actively exploited. He highlights emerging phishing tactics, particularly the new deceptive timesheet emails targeting sensitive data. The conversation reflects on struggles in cybersecurity governance, especially regarding inexperienced appointments in key roles. Tim also explores the need for digital estate planning, emphasizing strategies for securing online assets.

35:23

Creator website

Episode guests

Tim Starks

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The exploitation of recently patched vulnerabilities in firewall systems and iOS underscores the urgent need for timely security updates and proactive measures.

Harry Coker's insights reveal the critical gaps in cybersecurity governance and funding that hinder effective protection for state and local governments.

Deep dives

Emerging Malware Threats

The Eager B malware framework is currently targeting government agencies and ISPs in the Middle East, showcasing advanced techniques such as DLL hijacking and process hollowing. Security agencies like the UAE Cybersecurity Council have urged organizations to patch vulnerabilities in their exchange servers and monitor for modified DLLs to mitigate risks. Furthermore, a new macOS info stealer called Frigid Steeler has been tied to a group known for its deceptive strategies, including fake update pages that trick users into downloading malware. These developments highlight the ongoing and evolving threats posed by cybercriminals, necessitating proactive defenses from organizations.

Intro

4min

Emerging Cybersecurity Threats and Vulnerabilities

7min

Evolving Phishing Threats and Financial Scams

5min

Reflections on Cybersecurity Governance

8min

Cyber Official Appointment and Digital Legacy

6min

Palo Alto Networks confirms a recently patched firewall vulnerability is being actively exploited. CISA warns of an actively exploited iOS vulnerability. Juniper Networks has issued a critical security advisory for an API authentication bypass vulnerability. The acting commissioner of the Social Security Administration (SSA) resigns after Elon Musk’s team sought access to sensitive personal data of millions of Americans. The EagerBee malware framework is actively targeting government agencies and ISPs across the Middle East. Proofpoint researchers document a new macOS infostealer. A new phishing kit uses timesheet notification emails to steal credentials and two-factor authentication codes. JPMorgan Chase will begin blocking Zelle payments to social media contacts to combat online scams. Our guest is Tim Starks from CyberScoop discussing his interview with former National Cyber Director Harry Coker. Transferring your digital legacy.

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

Our guest is Tim Starks from CyberScoop discussing his interview with former National Cyber Director Harry Coker. You can read more about Tim’s interview “National Cyber Director Harry Coker looks back (and ahead) on the Cyber Director office” and companion piece “Trump picks Sean Cairncross for national cyber director” on CyberScoop.

Selected Reading

Palo Alto Networks Confirms Exploitation of Firewall Vulnerability (SecurityWeek)

CISA Warns of Apple iOS Vulnerability Exploited in Wild (Cyber Security News)

Juniper Warns of Critical Authentication Bypass Vulnerability Affecting Multiple Products (Cyber Security News)

Top Social Security Official Leaves After Musk Team Seeks Data Access (New York Times)

EagerBee Malware Attacking Government Entities & ISPs To Deploy Backdoor (Cyber Security News)

Proofpoint Uncovers FrigidStealer, A New MacOS Infostealer (Infosecurity Magazine)

Microsoft Warns of Improved XCSSET macOS Malware (SecurityWeek)

Fake Timesheet Report Emails Linked to Tycoon 2FA Phishing Kit (GB Hackers)

Chase will soon block Zelle payments to sellers on social media (Bleeping Computer)

Digital Estate Planning: How to Prepare Your Social Media Accounts (New York Times)

Share your feedback.

We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.

Want to hear your company in the show?

You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at cyberwire@n2k.com to request more info.

Learn more about your ad choices. Visit megaphone.fm/adchoices

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

CyberWire Daily

PAN-ic mode: The race to secure PAN-OS.

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Emerging Malware Threats

Exploitable Vulnerabilities and Response

Regulatory Challenges and Cybersecurity Governance

CyberWire Guest

Selected Reading

Share your feedback.

Want to hear your company in the show?

Remember Everything You Learn from Podcasts