Cyber Security Headlines Department of Know: Cybercriminals join forces, SleepyDuck" exploits Ethereum, passwords still awful
9 snips
Nov 10, 2025 Ross Young, a pragmatic cybersecurity practitioner and co-host of CISO Tradecraft, teams up with Jacob Coombs, CISO at Tandem Diabetes Care, to delve into pressing security concerns. They explore the alarming trend of cybercriminals hijacking cargo shipments and the implications of collaborative ransomware groups. The duo also analyzes the troubling password practices still prevalent today. Plus, they examine how Sleepy Duck cleverly exploits Ethereum for malicious activities. Their insights highlight the critical balance of security in a rapidly evolving tech landscape.
AI Snips
Chapters
Books
Transcript
Episode notes
IAM As A Holistic Priority
- Identity and access management is the week's top priority across people, process, and technology.
- Jacob Coombs emphasizes discipline and process alongside IAM tooling.
Cargo Theft Is A Cyber‑Physical Threat
- Cybercriminals are teaming with organized crime to hijack cargo via logistics systems.
- Jacob Coombs highlights this as a cyber-physical escalation and a multi-step, sophisticated attack.
Patch And Monitor EMF/GDI Risks
- Scan and prioritize patches for GDI/EMF vulnerabilities on Windows endpoints.
- Jacob Coombs recommends ensuring EDRs can detect malicious use of EMF files.
