CyberWire Daily

Amnon Kushnir, Director of Incident Response at Sygnia and expert in threat analysis, dives into the chilling activities of the Velvet Ant threat group. He reveals how they exploited a zero-day vulnerability in Cisco Nexus switches to deploy stealthy malware known as VelvetShell. The discussion emphasizes the challenges of detecting such advanced threats in enterprise networks. Kushnir also shares insights on improving security measures and the importance of community collaboration in combating cyber threats.

Gary Barlet, Public Sector CTO at Illumio and election security expert, dives into critical topics in the realm of election integrity. He highlights the rising threat of disinformation with Russia's influence looming large. The discussion also includes vulnerabilities found in U.S. elections, especially with decentralized systems and electronic voting technology. Barlet emphasizes the need for collaboration among tech firms and government agencies to enhance cybersecurity measures and protect voter confidence ahead of the 2024 elections.

Frederico Hakamine, a Technology Evangelist at Axonius, dives into the intricate world of cybersecurity threats affecting both individuals and critical infrastructure. He discusses the newly established election operations war room by CISA aimed at safeguarding the upcoming U.S. presidential election. The conversation highlights vulnerabilities in IoT devices and the role of AI in discovering zero-day threats. Frederico also emphasizes the importance of tailored security strategies and the risks posed by 'spooky data,' urging a proactive approach to cybersecurity.

Celebrate Halloween with a playful dive into the world of malware! The hosts blend humor and rhythm to explore cyber threats, from botnets to ransomware. With references to infamous malware like Stuxnet, they keep it entertaining. They even bring in the Shadow Brokers and the infamous Turla Trojan, all while shaking a fist at cyber chaos. It's a mashup of music and cybersecurity education that keeps you on the edge of your seat!

Election security takes center stage as a password leak raises eyebrows among Colorado officials. Ransomware attacks on CyberPanel instances leave experts concerned. Cyber threats from Russia's intelligence services escalate, while LinkedIn faces lawsuits over privacy issues. The FBI charges a Russian national linked to malware creation, highlighting global cyber cooperation. On a lighter note, a former Disney employee's antics add a dash of corporate mischief. Lastly, insights into preparing for the Certified Associate in Project Management exam offer valuable tips for aspiring project managers.

In this conversation, Chris Porter, the Chief Information Security Officer at Fannie Mae, shares insights on cultivating a strong cybersecurity culture and talent pipeline. He discusses the evolving landscape of cyber threats, particularly the impact of foreign espionage on democratic processes. Chris also highlights the importance of education in cybersecurity, addressing the skills gap and the need for innovative training initiatives. With a personal twist, he recounts his unique journey from pre-med to cybersecurity, underlining the diverse career paths in the field.

In this engaging discussion, Chris Porter, Chief Information Security Officer at Fannie Mae, shares his wealth of experience in cybersecurity and risk management within the financial sector. He emphasizes the importance of cultivating a robust cybersecurity culture across organizations. Chris highlights the balance between innovation and security, as well as the necessity of collaboration and intelligence-sharing to address cyber threats effectively. His insights shed light on the evolving landscape of cybersecurity and the significance of diverse backgrounds in tackling these challenges.

Grant Geyer, Chief Strategy Officer at Claroty, shares his expertise on defending critical food infrastructure from increasing cyber threats. He discusses the alarming rise of ransomware and bioterrorism targeting the food supply chain. The urgency for stronger cybersecurity measures is emphasized, especially after an FBI symposium on agriculture threats. Geyer also highlights the importance of legislative efforts and collaboration across organizations to enhance overall resilience against these digital attacks.

Join Stephen Hamilton, Army Cyber Institute's Technical Director and Chief of Staff Colonel, on a fascinating journey from a second-grade computer enthusiast to a military cyber leader. He discusses his West Point experience, where he chose signals over computing due to his love for ham radio. Stephen shares insights on his transition from programming to teaching, emphasizing the importance of understanding coding nuances. He reflects on the challenges of military tech roles, burnout, and staying mission-focused.

Pete Newell, Founder and CEO of BMNT, dives into the challenges of tech adoption in the Department of Defense. He argues that innovation is more about addressing human factors than technology itself. Newell highlights the need for cultural shifts and better education to facilitate this change. The conversation also touches on the evolution of military education systems, contrasting U.S. and U.K. approaches. Additionally, he emphasizes maintaining a proactive attitude in technology adoption to avoid stagnation and enhance defense operations.