Cyber Security Headlines

Researchers uncover that legacy Windows protocols, like LLMNR and NetBIOS, are vulnerable to credential theft. Fortra admits a flaw in GoAnywhere was actively exploited, raising concerns about leaked keys. Taiwan reports a significant rise in cyber-attacks from China, especially leading up to elections. Additionally, an Android exploit called Pixnapping steals screen data, even capturing 2FA codes. Major breaches like the Qantas data leak and CLOP's claim of stealing 1.3 terabytes from Harvard are also highlighted.

A massive Salesforce data leak exposes millions of records, igniting concerns over data privacy. The breach at SimonMed escalates dramatically, affecting over 1.2 million patients. Meanwhile, the Dutch government takes decisive action to freeze a Chinese-owned chipmaker amid security worries. Law enforcement faces challenges with cybercrime forums despite recent takedowns. Additionally, Oracle's E-Business Suite suffers a zero-day exploit impacting Harvard, and JPMorgan commits $10 billion to bolster U.S. national security.

Discover how attackers exploited an old Velociraptor tool for ransomware access and the dismantling of a cybercrime group in Spain. Learn about the widespread compromise risk affecting SonicWall SSL VPNs. Delve into the impact of a significant cyberattack on Sugar Land's municipal services. Plus, hear about payroll hijacking tactics targeting HR platforms and a smishing scam masquerading as New York tax communications. Stay informed and prepared with the latest in cybersecurity news!

Mike Lockhart, CISO at EagleView, shares his expertise on operational cybersecurity, while Dustin Sachs, Chief Technologist at Cyber Risk Collective, delves into threat behaviors. They discuss the rise of crowdsourced ransomware tactics and how these approaches challenge traditional defenses. Additionally, they address California's new privacy law and its implications, alongside the looming end-of-life deadline for Windows 10, urging proactive strategies for organizations to mitigate risks. Listen for insights on adapting to a rapidly evolving threat landscape!

A major outage disrupted access to Microsoft 365 services due to failures in Azure's infrastructure. Meanwhile, a prestigious U.S. law firm faced a serious email compromise linked to state-sponsored hacking. Pro-Russian hacktivists were caught off guard when they targeted a decoy water treatment facility. Additionally, unauthorized access to SonicWall cloud backups raised security concerns, and two teenagers were arrested in connection with a ransomware attack exposing sensitive data. AI-generated evidence made waves in an arson investigation.

Google DeepMind's AI agent, CodeMender, skillfully finds and fixes software vulnerabilities. Meanwhile, California has implemented a novel law that allows consumers to easily opt out of data sharing through their browsers. In darker news, China-linked actors have been exploiting the Nezha open-source tool for malware deployment. The episode also touches on increasing cyber threats, with Russian hackers leveraging AI for sophisticated attacks and a new phishing campaign targeting job seekers.

North Korean hackers have escalated their operations, reportedly stealing over $2 billion in cryptocurrency. A troubling investigation reveals a gang smuggling thousands of stolen UK phones to China. Avnet has confirmed a significant data breach, but claims the stolen information is mostly unreadable. Hospitals face risks too, with patient data exposed from a Florida medical facility. Meanwhile, a Redis vulnerability threatens around 60,000 servers, prompting urgent security patches.

A high-severity vulnerability in Unity is endangering popular games, prompting swift action from Microsoft and Steam. Meanwhile, a critical Oracle zero-day exploit has been patched after being targeted by cybercriminals. In another alarming incident, a third-party breach has exposed user data from Discord. The podcast also discusses a malicious WhatsApp campaign and a new scheme offering bounties for harassment aimed at executives. Additionally, a significant cloud bug bounty has been announced, offering $4.5 million for exploits.

A major settlement from the ParkMobile data breach offers affected users just $1 in-app credit. A UK study reveals that secondary schools are increasingly targeted by cyberattacks, outpacing businesses in vulnerability. Meanwhile, a cross-site scripting flaw in the Zimbra Collaboration Suite is exploited for malicious attacks through calendar invites. In other news, LinkedIn takes legal action against data scraping, and WhatsApp malware spreads in Brazil, posing risks to enterprises.

This week, Steve Zalewski, a cybersecurity expert and co-host of Defense in Depth, dives into pivotal topics shaping the digital landscape. He discusses the implications of CISA's furloughs on incident response and long-term staffing risks. The shift of the DOD to a Continuous Cyber Risk Management framework is explored, emphasizing resiliency and AI in defense. Additionally, they analyze the recent Oracle data extortion, highlighting vendor responsibility, and touch on the impact of ransomware on Asahi's operations, posing serious questions about supply chain vulnerabilities.