CyberWire Daily

Patch Tuesday reveals critical vulnerabilities, urging swift action from IT admins. An Iranian ransomware group targets U.S. and Israeli interests, while new spyware strains exploit Russian industries. Browser extensions are found to have infected millions, posing significant risks. Joe Carrigan sheds light on a savvy phishing scam aimed at CFOs, showcasing evolving tactics in cybercrime. Plus, the surprising question: can our feline friends outsmart algorithms? All this and more makes for a captivating discussion on today’s cybersecurity landscape.

Discover the latest in cybersecurity as researchers reveal proof-of-concept exploits for CitrixBleed2 and Grafana rolls out urgent patches for critical vulnerabilities. A hacker claims a breach at Spanish telecom giant Telefónica, while a new ransomware group called BERT is on the rise. In an eye-opening discussion, experts highlight security risks in low-code platforms and integrated development environments. Plus, a staggering data leak affects millions of job seekers, raising concerns about personal data security in the digital age.

Rob Allen, Chief Product Officer at ThreatLocker, discusses the pressing issue of security fatigue in cybersecurity. He argues that a 'Default Deny' strategy can mitigate this problem by enhancing security without overwhelming users. Recent high-profile cyber incidents, including a ransomware attack on Ingram Micro, highlight the evolving landscape of cybercrime and the need for smarter security measures. Allen also emphasizes the importance of user education in combating insider threats and improving compliance.

Swati Shekhar, Head of Engineering at Ground Labs, shares her inspiring journey into the engineering world, marked by challenges and growth. She reveals how her early days as one of the few women in a male-dominated college sparked her resilience and risk appetite. Swati emphasizes the importance of stepping out of comfort zones and finding authenticity in career choices. She reflects on her transition from individual contributor to empathetic leader, highlighting teamwork and the power of effective communication in shaping a positive work culture.

Silas Cutler, Principal Security Researcher at Censys, dives into the elusive Volt Typhoon threat group in this discussion. He reveals how recent FBI disruptions targeted the KV Botnet yet left its control infrastructure largely intact. The conversation uncovers the botnet's surprising resilience, with shifts in control servers hinting at adaptive strategies. Cutler emphasizes the challenges in attributing cyber threats and the importance of collaborative cybersecurity efforts to tackle nation-state actors and safeguard critical systems.

In this segment, Jackie Barbieri, Founder and CEO of Whitespace, empowers data analysts with tools for insightful decision-making. Dr. Steve Lewis, leader of The Aerospace Corporation’s SPEAR team, discusses unconventional uses of data in aerospace. They explore the evolution of data analysis in defense, the innovative application of AI in detecting illegal activities, and the importance of collaboration in the space community. Together, they highlight how AI enhances critical thinking, paving the way for more effective and creative problem-solving.

Lisa Plaggemier, Executive Director of the National Cybersecurity Alliance, joins David Moulton to debunk common cybersecurity myths. She discusses the human aspects of security, emphasizing that emotions and storytelling can drive better habits. Lisa reveals alarming truths about password reuse and the risks of untrained AI usage in workplaces. The conversation highlights the importance of diversification in security measures and how engaging narratives can reshape public perceptions, making cybersecurity relatable and effective.

In this discussion, Ben Yelin, a cyber law expert from the University of Maryland, dives into the latest cybersecurity threats and legal implications. He highlights a critical Cisco backdoor vulnerability and the shutdown of the Hunters International ransomware gang. Yelin also shares insights from the recent Supreme Court session, focusing on nationwide injunctions and First Amendment rights. Get ready for a compelling mix of cyber vulnerabilities, legal battles, and ethical concerns in the ransomware negotiation landscape!

Will Markow, CEO of FourOne Insights and N2K CyberWire Senior Workforce Analyst, shares his expertise on emerging trends in the technology workforce. He discusses the evolving challenges in cybersecurity employment, including demand fluctuations and the importance of skills training. Markow emphasizes the growing need for diversity and innovative educational approaches in the field. The conversation also highlights significant ransomware attacks and the urgent need for robust cybersecurity measures in the wake of recent breaches.

Tim Starks, Senior Reporter at CyberScoop, dives into the dismantling of a North Korean IT operation that funded nuclear programs through U.S. tech jobs. He discusses alarming cyberattacks, including breaches affecting the International Criminal Court and threats from Iranian hackers targeting sensitive data. Starks also highlights real-world consequences of cybercrime, linking a hacker's actions to violence against FBI officials. The conversation touches on the challenges of intelligence gathering in the age of AI and the evolving cyber threat landscape.