CyberWire Daily

Multi-factor frustration.

Jan 13, 2025

Philippe Humeau, CEO and founder of CrowdSec, dives into pressing cybersecurity concerns. He discusses the recent MFA outage affecting Microsoft 365 and the Biden administration's efforts to restrict AI chip exports. Humeau highlights the rise of AI-driven ransomware threats and the importance of community-focused, open-source security platforms. He shares insights on the necessity of collective defense against emerging cyber threats and the vulnerabilities exposed by significant data breaches, calling for an urgent response in our digital landscape.

34:59

Creator website

Episode guests

Philippe Humeau

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The increasing prevalence of AI-assisted ransomware groups like FunkSec highlights the urgent need for advanced security measures and a Zero Trust model.

Philippe Humot discusses the effectiveness of community-driven cybersecurity solutions, comparing them to Waze for real-time sharing of attack pattern data.

Deep dives

Rising Cyber Threats and Ransomware Tactics

Ransomware attacks have surged by 18% year-over-year, with organizations witnessing record payouts reaching $75 million in 2024. A new group called FunkSec has emerged, leveraging AI-assisted tools to enhance its capabilities, allowing low-skilled actors to launch sophisticated malware attacks. This group employs double-extortion tactics, where they both encrypt data and threaten its public release, significantly increasing their leverage over victims. These trends highlight the urgent need for organizations to adopt advanced security measures to protect themselves from evolving cyber threats.

Intro

6min

Recent Cybersecurity Threats and Incidents

6min

Data Breach and Cybersecurity Insights

4min

The Rise of Offensive AI and Cybersecurity Strategies

8min

Collective Defense in Cybersecurity and the Role of AI Errors

6min

An MFA outage affects Microsoft 365 Office apps. The Biden administration introduces new export controls to block adversaries from accessing advanced AI chips. A Dutch university cancels lectures after a cyberattack. Three Russian nationals have been indicted for operating cryptocurrency mixers. Juniper Networks releases security updates for Junos OS. Spain’s largest telecommunications company confirms a data breach. The “Banshee” infostealer leverages a stolen Apple encryption algorithm. Researchers uncover a novel ransomware campaign targeting Amazon S3 buckets. A major data broker suffers a major data breach. Our guest Philippe Humeau, CEO and Founder of CrowdSec, shares the biggest issues currently facing cybersecurity and how open-source cybersecurity platforms combat them. The weirdness of AI.

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

Our guest Philippe Humeau, CEO and Founder of CrowdSec, shares the biggest issues currently facing cybersecurity and how open-source cybersecurity platforms combat them.

Selected Reading

Microsoft MFA outage blocking access to Microsoft 365 apps (Bleeping Computer)

White House Moves to Restrict AI Chip Exports (GovInfo Security)

New Ransomware Group Uses AI to Develop Nefarious Tools (Infosecurity Magazine)

Cyberattack forces Dutch university to cancel lectures (The Record)

3 Russians Indicted for Operating Blender.io and Sinbad.io Crypto Mixers (Hackread)

Juniper Networks Fixes High-Severity Vulnerabilities in Junos OS (SecurityWeek)

Aviatrix Controller RCE Vulnerability Exploited In The Wild (Cyber Security News)

Hackers Exploiting YouTube to Spread Malware That Steals Browser Data (GB Hackers)

Banshee 2.0 Malware Steals Apple's Encryption to Hide on Macs (Dark Reading)

A breach of a data broker's trove of location data threatens the privacy of millions (TechCrunch)

Abusing AWS Native Services: Ransomware Encrypting S3 Buckets with SSE-C (Halcyon)

AI Mistakes Are Very Different Than Human Mistakes (IEEE Spectrum)

Share your feedback.

We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.

Want to hear your company in the show?

You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at cyberwire@n2k.com to request more info.

Learn more about your ad choices. Visit megaphone.fm/adchoices

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

CyberWire Daily

Multi-factor frustration.

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Rising Cyber Threats and Ransomware Tactics

Zero Trust Security and AI Integration

The Need for Collaborative Cyber Defense

CyberWire Guest

Selected Reading

Share your feedback.

Want to hear your company in the show?

Remember Everything You Learn from Podcasts