CyberWire Daily

Join Matthew Cassidy, a risk advisory partner at Grant Thornton, Kayne McGladrey, a seasoned CISO from Hyperproof, and Alam Ali, SVP of Product Management at Hyperproof, as they explore AI's transformative role in governance, risk, and compliance. They discuss AI's effectiveness in monitoring, the importance of auditability, and the need for human oversight to mitigate risks. The trio also dives into the market's cautious adoption of AI, emphasizing realistic ROI expectations and the need for documented processes before automation. A practical and insightful conversation awaits!

Joining the discussion is Michael Gorelik, Chief Technology Officer at Morphisec and expert in cybersecurity. He sheds light on the Noodlophile stealer, a malware campaign manipulating fake AI video generation platforms. Users are lured into downloading malware disguised as legitimate software through deceptive Facebook groups. Gorelik explains the theft of sensitive data, including browser credentials and crypto wallets, and discusses the unique tactics used to hide malware. He emphasizes the importance of caution when interacting with AI tools and shares tips for detection and prevention.

Dive into the detective work of cyber threats! The hosts explore the importance of information sharing between public and private sectors, unveiling the origins of collaboration like the NCFTA. They discuss legal hurdles companies face when sharing data and highlight effective joint operations, like Operation Endgame. Learn about frameworks to make intelligence actionable and how industry insights guide law enforcement. With a desire for routine sharing practices, the conversation reveals how communication fosters trust and enriches collective security efforts.

Ben Haskamp, Global Content Leader at Palo Alto Networks and author of the Control-Alt Delusion series, delves into the world of hacker films with David Moulton. They explore classics like WarGames and The Net, examining how they reflect cultural fears and the evolution of cybersecurity. Haskamp highlights the accurate and outlandish portrayals of hacking, from social engineering to digital identity fears. They also discuss how these films have shaped public perception and influenced policy, with modern shows like Mr. Robot offering a more realistic take.

Join Eric Conway, Vice President of Technology at BigBear.ai, and Joe Davis, Cybersecurity Research Scientist, as they uncover the cutting-edge intersection of AI and cybersecurity in space. They explore the innovative SpaceCrest program that integrates digital twins for robust satellite modeling. Hear about the challenges of simulating cyber events at scale and how red-teaming tools are used to identify vulnerabilities. Their insights shed light on the future of national security and the resilience of space systems through advanced technology.

Cynthia Kaiser, Senior Vice President at the Ransomware Research Center at Halcyon, offers insights into Akira ransomware's tactics and impact. She details Akira's quick encryption methods and sophisticated techniques like DLL sideloading. The discussion highlights the group's targeting of various industries and the risks associated with the Ransomware-as-a-Service model. Kaiser emphasizes the importance of patching vulnerabilities and adopting multi-factor authentication to counter these cyber threats effectively.

In this engaging discussion, Tim Starks, a Senior reporter at CyberScoop specializing in national security and technology policy, dives into the upcoming U.S. cyber strategy under the Trump administration. He breaks down its focus on imposing costs on adversaries and enhancing public-private partnerships. Tim also tackles the challenges of recruiting cyber talent in a politically charged environment and reflects on the implications for federal cybersecurity efforts. Plus, the conversation highlights rising threats like spyware and ransomware during the holiday season.

Kim Jones, a seasoned cybersecurity leader and contributor, reflects on pivotal conversations in the season. He discusses the impact of AI agents on identity and the need for innovative approaches to reduce identity fraud. The pair dive into the realities of AI risks, shifting employee expectations, and the evolving nature of scams, including crypto and employment fraud. Kim emphasizes the importance of proactive privacy measures for small businesses and critiques incremental innovations in identity solutions.

Brandon Karpf, Leader for International Public-Private Partnerships at NTT and expert in maritime navigation security, dives into the critical issues of GPS jamming and spoofing. He explains how these threats can misdirect ships into dangerous waters. Karpf discusses the mechanics of these attacks, including jamming techniques, and highlights the need for robust mitigation strategies like signal authentication and resilient receivers. He also explores innovative PNT alternatives such as LEO PNT and quantum navigation for future maritime security.

Lieutenant General Daniel Karbler (Ret.) shares his 37-year journey in air and missile defense and insights as a technical advisor for A House of Dynamite. He reveals how a cold Zoom connection led to his role in the film. Karbler discusses the film's plausibility regarding missile launches and presidential decision-making under pressure. He emphasizes the importance of portraying servicemembers' humanity while expressing hopes for mobile interceptors in missile defense. His reflections bridge the gap between military strategy and cinematic storytelling.