Cybersecurity Headlines

Topics discussed include Microsoft 365 MFA outage, VMware vulnerability exploit, crypto developer pleading guilty to North Korean plot, cryptocurrency evasion, Finn Fisher malware, spearfishing campaign, combatting attacks, takedown of call centers, securing VPNs, and cybersecurity education for senior citizens.

Russia's intimidation tactics, data leaks of Clubhouse and Facebook user information, Trojan targeting gaming platforms, CloudFlare's email safety features, VMware's upcoming event promotion, TikTok's popularity and vulnerability to malware groups, and China's reminder of crypto trading illegality. Discussions on closure of overseas exchange loophole in Australia, accreditation of non-government operator of digital identity exchange, and patching of surveillance bugs in QNAP systems.

Researcher reveals iOS zero-day vulnerabilities, Microsoft releases fix for app freezing, hijacking of ransomware negotiations, FBI's secret involvement in ransomware attack, Google warns about undetectable malware, defense of Port of Houston from cyber attack, nation state cyber attack, Cisco and Zoho software vulnerabilities, preschooler toy mimicking work-from-home setup.

Brett Conlon, CISO of Edelman Financial Engines, joins the show to discuss topics like user awareness and reporting of phishing emails, the impact of data breaches and ransomware attacks, the limitations of cracking down on cybercriminals, incident reporting in cybersecurity, Apple's user data control, and the importance of security by design.

Ransomware attacks shut down farming cooperatives, VoIP provider battles DDoS attack. REvil double-crosses ransomware affiliates. Vulnerability exploited on iPhones and Macs, hotels targeted by hacking group. Famous Sparrow involved in espionage, unpatched Windows weakness discovered. Global study reveals cyberattacks on Indian organizations during pandemic.

Let's Encrypt's root certificate causing problems for older devices. PhaaS organization BulletproofLink discussed. Patching of 19 new VMware vulnerabilities. Apple secretly patching a zero-day vulnerability. Case-specific fix for Apple. Canoe Solutions offering security education sessions. Lithuania warning about Xiaomi phones. Epic Games vs. Apple legal battle. Legal ruling on Epic vs. Apple. LinkedIn data leak. iOS 15 privacy feature allowing app activity monitoring.

Topics discussed include Capoae malware brute-forcing WordPress sites, surge in malicious emails predicted for Q4, ransomware attack causing supply chain chaos for a farming group. Other topics include US Treasury imposing sanctions on cryptocurrency exchange, EOS.II data collection and defensive practices, and IKEA's collaboration with Republic of Gamers for gaming furniture range.

Google expands app permissions reset, Epik confirms it got hacked, Telegram suspends Russian election bots. Kanu Solutions offers educational sessions on security topics with a twenty dollar UberEats Gift Card for attendees. Cybersecurity topics include a wipeout feature app, rise in romance scams, WhatsApp's privacy policy change, and ROI of security risk mitigation.

Email scammers posed as DOT officials in phishing messages. A banking Trojan abuses YouTube for remote configuration. Admin of DDoS service faces serious prison time. Security advisory released by LaserFish. Cyber security incidents targeting aviation and cargo industries. Malware for Windows Subsystem for Linux. Ransomware attack on TTEC. CISO series video chat on hacking threat intelligence.

The podcast discusses the alarming increase of ransomware attacks, potential changes in insurer policies, and legislative actions in response to cyber threats. It also addresses the prevalence of fake Wi-Fi networks and cyber attacks on industrial control systems. The importance of addressing vulnerabilities in on premises databases and integrating security into systems with APIs is highlighted.