CyberWire Daily

Oren Koren, Co-founder and CPO of Veriti, brings a wealth of knowledge on healthcare cybersecurity. He discusses the implications of President Biden's new executive order aimed at bolstering digital defenses. Oren highlights the significant challenges healthcare organizations face, from unpatched devices to ethical dilemmas surrounding data protection. The conversation also delves into the integration of AI and the importance of robust cloud security strategies in safeguarding sensitive information, all while navigating operational pressures within the industry.

Join Mike Hamilton, Chief Information Officer at Cloudflare, as he navigates the complexities of tech sprawl and its security ramifications. He compares tech sprawl to the classic snake game, emphasizing how unchecked growth can lead to vulnerabilities. The conversation touches on the FBI's recent removal of the PlugX malware and critical flaws in Windows 11 and Linux tools. Legal challenges regarding data privacy, especially involving Allstate, highlight the ongoing struggle for consumer protection in the digital age.

Chris Pierson, Founder and CEO of BlackCloak, dives into digital executive protection, emphasizing the urgent need for heightened security measures for executives in today's volatile landscape. He discusses the alarming rise of threats like ransomware and the importance of transitioning from traditional to comprehensive security approaches. The conversation also highlights the financial risks associated with security failures and how trusted relationships can bolster both corporate and personal safety in an increasingly digital world.

Philippe Humeau, CEO and founder of CrowdSec, dives into pressing cybersecurity concerns. He discusses the recent MFA outage affecting Microsoft 365 and the Biden administration's efforts to restrict AI chip exports. Humeau highlights the rise of AI-driven ransomware threats and the importance of community-focused, open-source security platforms. He shares insights on the necessity of collective defense against emerging cyber threats and the vulnerabilities exposed by significant data breaches, calling for an urgent response in our digital landscape.

Dive into a transformative journey from Army infantryman to cybersecurity expert. Hear about the challenges faced while transitioning careers and the importance of mentorship in navigating personal struggles. Discover insights on resilience gained from military experiences and explore innovative security solutions like Zero Trust architecture. This inspiring story highlights how one individual's path can reshape their future in the ever-evolving landscape of digital security.

Kyla Cardona and Aurora Johnson from SpyCloud delve into the murky world of China's cybercrime ecosystem, highlighting how citizen data is hoarded and sold on dark markets. They discuss the troubling rise of insider threats, with corrupted individuals cashing in on sensitive information. The researchers also shed light on the unique methods of data exfiltration employed by Chinese cybercriminals, contrasting them with Western practices. Their insights reveal the geopolitical implications of China's data strategy and the subtle intricacies of navigating its surveillance state.

Join Casey Marks, ISC2's Chief Qualifications Officer, as he dives into the fascinating world of cybersecurity certifications. He discusses the evolving landscape of security qualifications and the increasing demand for skilled professionals in the field. Marks also addresses the significant role of continual professional education and community engagement in enhancing cybersecurity measures. With rising threats from hackers and innovations in compliance, this conversation is essential for anyone wanting to stay ahead in the cybersecurity realm.

The Biden administration is pushing for stronger cybersecurity measures through a new executive order. Critical vulnerabilities have been exposed in various software, including a zero-day flaw in Ivanti and a breach involving over 360,000 records. A guest discusses the balance of AI and human oversight in security. Fake exploits targeting researchers spark concern, while a phony recruitment phishing campaign emerges. Fellow tech enthusiasts humorously critique the least desirable gadgets showcased at CES. It's a landscape ripe with threats and innovative solutions.

A new Mirai-based botnet has emerged, raising alarms in the cybersecurity world. Researchers reveal advanced voice phishing schemes exploiting major platforms. Japan attributes over 200 cyberattacks to a hacking group, while ongoing vulnerabilities in SonicWall software are concerning for users. A new government program aims to guide consumers in choosing secure devices. Plus, a discussion highlights the privacy risks of misconfigured license plate readers, showcasing the challenges in our surveillance-driven society.

Margaret Kelley is a cybersecurity expert specializing in cloud security breaches. In this insightful discussion, she delves into the implications of U.S. sanctions on China, particularly on major firms like Tencent. The rising tide of cyberattacks on educational institutions and health sectors is alarming. Kelley also highlights the evolution of cloud security, addressing vulnerabilities and the effects of automation. Additionally, the ongoing legal battle over a cryptocurrency scam against banks underscores critical compliance challenges.