Cyber Security Headlines cover image

Cyber Security Headlines

Latest episodes

undefined
7 snips
Apr 7, 2025 • 7min

NSA Haugh fired, New WinRAR flaw, ChatGPT fake passport

Big changes in cybersecurity leadership unfold with the firing of a top NSA official. A significant vulnerability in WinRAR raises eyebrows, bypassing essential Windows security alerts. A shocking demonstration of identity theft sees a researcher crafting a fake passport using ChatGPT. Elaborate new threats are revealed, including a deceitful cyberattack disguised as a job interview. Meanwhile, credential stuffing attacks on Australian pension funds prompt urgent discussions about security measures.
undefined
7 snips
Apr 4, 2025 • 31min

Week in Review: Microsoft’s account bypass, CrushFTP CVE clash, 23andMe warning

Howard Holton, COO and industry analyst at GigaOm, joins the discussion on pressing cybersecurity issues. He delves into Microsoft's controversial account bypass removal, raising questions about user freedom. The talk shifts to a critical vulnerability in Crush FTP and its implications on data privacy, especially for companies like 23andMe. They also touch on North Korean cyber operatives impersonating tech employees and the challenges of identity verification in remote work. Finally, the conversation highlights the evolving role of AI in cybersecurity and the importance of fostering a strong security culture.
undefined
Apr 4, 2025 • 9min

Google patches Quick Share, ChatGPT temporary outage, UK Mail breach

A recent vulnerability in Google's Quick Share was patched, addressing serious security concerns. In addition, the popular AI tool ChatGPT experienced a brief outage, sparking discussions about its reliability. Meanwhile, the UK's Royal Mail is investigating data leak claims, raising alarms about sensitive information security. Tune in for insights on the latest cybersecurity developments and how these incidents shape the digital landscape!
undefined
Apr 3, 2025 • 7min

North Korean IT workers move into Europe, Stripe API skimming unveils theft techniques, Verizon API flaw exposes call history

The podcast dives into the expanding presence of North Korean IT workers in Europe, highlighting significant cybersecurity threats. It also reveals new techniques in a Stripe API skimming campaign, showing how deceitful tech can evolve. Furthermore, a vulnerability in Verizon's API is discussed, exposing users' call history and raising privacy concerns. In addition, the conversation touches on Europol's takedown of a child exploitation network, outlining the fight against such criminal operations and the emerging risks posed by AI-based threats.
undefined
8 snips
Apr 2, 2025 • 7min

Mozilla Thunderbird takes on Gmail, surge in scans on PAN GlobalProtect VPNs, Microsoft uncovers bootloader vulnerabilities

Mozilla Thunderbird is stepping up its game with a new email service to rival Gmail, emphasizing user privacy. Meanwhile, reports show a surge in scans targeting PAN GlobalProtect VPNs, suggesting the potential for looming attacks. Microsoft is leveraging AI to uncover critical vulnerabilities in bootloaders, highlighting pressing security concerns. Staffing cuts at the FDA also raise alarms about medical device cybersecurity, illustrating that threats are evolving across various sectors.
undefined
8 snips
Apr 1, 2025 • 9min

FTC’s warning to 23andMe buyer, global phishing threats, Samsung breach

The FTC raises alarms about genetic data privacy related to a potential 23andMe buyer. A global phishing threat is affecting 88 countries, utilizing clever tactics to lure victims. Meanwhile, Samsung faces scrutiny for a breach connected to outdated stolen credentials. North Korean operatives are exploiting job applications for infiltration, posing significant risks. Lastly, the resurgence of the Quackbot Banking Trojan reveals new deceptive methods, while the EU invests heavily in cybersecurity to combat these evolving threats.
undefined
9 snips
Mar 31, 2025 • 8min

Document converter warning, Resurge exploits Ivanti, Blacklock hackers exposed

Watch out for scams as the FBI warns of a rise in free online document converter scams! New malware, Resurge, is capitalizing on exploits in Ivanti software. Meanwhile, the notorious Blacklock hackers have been exposed thanks to a leak site vulnerability. The cybersecurity landscape is buzzing with evolving threats, including a clever new phishing scheme called Morphing Meerkat that employs advanced email spoofing tactics. Stay informed about the latest cyber risks!
undefined
13 snips
Mar 28, 2025 • 24min

Week in Review: Microsoft Trust abuse, 23andMe bankruptcy risks, NIST’s growing backlog

Jonathan Waldrop, CISO at The Weather Company, dives into the alarming misuse of Microsoft’s Trust Signing Service for malware and the looming bankruptcy risks of 23andMe, raising concerns about the fate of personal DNA records. The conversation shifts to the vulnerabilities in renewable energy systems, emphasizing the ever-evolving nature of cybersecurity threats. Waldrop also highlights the urgent need for accountability and improved privacy protections as data breaches continue to escalate, underscoring the critical need for vigilance in an increasingly digital world.
undefined
14 snips
Mar 28, 2025 • 8min

JavaScript injection campaign, solar power vulnerabilities, SIM swap lawsuit

In a shocking turn of events, 150,000 websites have fallen victim to a JavaScript injection attack, leading to fraudulent gambling operations. Meanwhile, critical vulnerabilities have been uncovered in solar power systems, raising concerns about security in renewable energy. T-Mobile faces a hefty $33 million payout over a SIM swap lawsuit, highlighting the ongoing threats in digital identity theft. The discussion also covers alarming flaws in major software, including Microsoft Office and Firefox, urging immediate action from cybersecurity professionals.
undefined
8 snips
Mar 27, 2025 • 7min

Ransomware group claims attack on US telecom firm, New ReaderUpdate malware variants target macOS users, Oracle customers claim stolen data

A new ransomware group has targeted the US telecom firm WideOpenWest, sparking concerns about rising threats. Malware variants specifically designed for macOS users are causing major security worries. The NSA previously warned about vulnerabilities in the Signal app, highlighting the need for vigilance. Additionally, Oracle customers report issues with stolen data. The discussion also touches on the ongoing debate regarding entry-level positions in cybersecurity as phishing scams increase alongside major cyber breaches.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
App store bannerPlay store banner