CyberWire Daily

Natali Tshuva, CEO and co-founder of Sternum, shares her fascinating journey from aspiring doctor to cybersecurity innovator. Beginning her career at just 14, she later served in Unit 8200 within the Israeli intelligence, where she realized the real-world impact of cybersecurity. She discusses the vital intersection of cybersecurity and medical technology, emphasizing the need for secure innovations in healthcare. Natali encourages new entrants to gain hands-on experience and leverage their unique strengths to make a difference in critical industries.

In this insightful discussion, Kevin Magee from Microsoft for Startups shares how the initiative empowers entrepreneurs. Matthew Chiodi of Cerby tackles the challenges of securing unmanaged applications. Travis Howerton from RegScale dives into continuous controls monitoring and compliance, emphasizing real-time solutions. Finally, Karl Mattson of Endor Labs explores securing the software supply chain and the transformative role of AI in vulnerability analysis. Each guest offers valuable insights for aspiring startups navigating the cyber landscape.

Crystal Morin, a Cybersecurity Strategist from Sysdig, dives into the complex world of UNC5174, a Chinese state-sponsored threat actor. She reveals their evolution from SNOWLIGHT to the sophisticated VShell RAT, showcasing a new array of cyber tools targeting Linux systems. Morin explains how their tactics blur attribution through domain squatting and fileless malware, posing serious risks to research institutions and critical infrastructure. This insightful discussion highlights the urgent need for robust cybersecurity measures amid escalating threats.

The Pentagon is speeding up its software approval process, sparking debates on risk management. A major employee monitoring tool has leaked millions of screenshots, raising privacy concerns. The U.S. is investigating TP-Link for antitrust violations, while significant health data breaches affect millions. A critical zero-day vulnerability threatens numerous SAP applications. Researchers warn about AI agents executing unauthorized tasks, and new insights reveal the high costs associated with data breaches. Experts preview the upcoming Innovation Sandbox contest, celebrating 20 years of cybersecurity innovation.

Cynthia Kaiser, Deputy Assistant Director with the FBI's Cyber Division, dives into the latest trends in cybersecurity. She discusses Salt Typhoon and its implications for global security. The conversation highlights the evolving ransomware landscape, where groups are testing new business models, and emphasizes the necessity for layered defenses against sophisticated cyber threats. Kaiser also sheds light on recent vulnerabilities in Linux systems that risk undetected rootkit attacks, showcasing the urgent need for heightened awareness in data protection.

In this discussion, Larry Whiteside Jr., Chief Advisory Officer for The CISO Society and a veteran cybersecurity leader, dives into the debate over whether cybersecurity is a trade or a profession. He explores the importance of professional standards and training to bridge current gaps in the field. The conversation touches on the evolving role of CISOs, the necessity of better hiring practices, and the critical skills needed for future cybersecurity leaders. Larry advocates for fostering a skilled pipeline to elevate the industry and its professionals.

Cynthia Kaiser, Deputy Assistant Director at the FBI Cyber Division, sheds light on the critical state of cybersecurity as duties shift from federal oversight to the states. She addresses the alarming ransomware attacks, including one on Baltimore schools, and Russian threats to Dutch infrastructure. Kaiser emphasizes the necessity for urgent improvements in state preparedness amid evolving malware challenges and rising threats. The discussion highlights the importance of the IC3 in tackling the surge in cybercrime and how essential public reporting is for combating these issues.

Bob Maley, CSO of Black Kite, shares his expertise on the escalating risks of third-party cyber incidents. The conversation dives into the nefarious activities of the Russian group Proton66 and emerging threats like a new Rust-based botnet targeting routers. Maley emphasizes the impact of CISA budget cuts and the rise of ransomware in healthcare. Additionally, the relaunch of the cybercrime marketplace Cracked raises alarms about compliance risks and the need for improved cybersecurity measures across industries.

Yoni Shohet, Co-founder and CEO of Valence Security, discusses critical cybersecurity threats posed by Chinese open source AI, particularly for financial institutions. He highlights the alarming use of ClickFix in state-sponsored cyber espionage, alongside Japan's urgent warnings about unauthorized trades. The conversation dives into the vulnerabilities of new Microsoft tools and the complexities of navigating AI risks in organizations. Shohet emphasizes the need for robust security measures as the landscape of cyber threats continues to evolve.

Rich Hale shares his unique journey from aspiring board game designer to Chief Technology Officer. He discusses his diverse experiences in the Royal Air Force and their surprising applicability to cybersecurity. The conversation emphasizes the critical issue of securing dark data and why organizations must prioritize it. Hale also offers insightful leadership advice, advocating for empowering teams and embracing career transitions, reminding listeners to weigh their choices wisely before making significant leaps.