Cybersecurity Headlines

Week in Review: Spyware boosts zero-days, MFA bombing targets Apple, Facebook snooped Snapchat

Mar 29, 2024
Guest
Yaron Levi
Yaron Levi, CISO at Dolby, discusses the GoFetch vulnerability in Apple's Silicon M series chips, espionage tactics by APT 31 using family surveillance, evolution of military forces into cyberspace, rising vulnerabilities from bad input and zero-day exploits, consumer influence on online services, and empowering consumers for privacy advocacy.
Ask episode
AI Snips
Chapters
Transcript
Episode notes
INSIGHT

Hardware Vulnerabilities

  • Unpatchable hardware vulnerabilities, like GoFetch in Apple M-series chips, are serious.
  • These vulnerabilities are difficult to exploit, often requiring physical access, but highlight hardware security.
ADVICE

Family Targeting

  • Threat actors exploit family members to target high-ranking officials, as APT31 demonstrates.
  • Educate everyone, especially families of those in sensitive positions, about online vigilance.
ADVICE

MFA Bombing

  • MFA fatigue attacks target Apple users through push bombing and phishing calls.
  • Limit authentication attempts, block access after failed logins, and consider recovery keys.
Get the Snipd Podcast app to discover more snips from this episode
Get the app