Cybersecurity Headlines

Topics discussed include network printing issues caused by Windows security updates, Bitdefender's release of a decryption tool for REvil ransomware, and Biden's joint deal with the UK and Australia to counter China. Other topics include a zero-day exploit, cloud breaches, the OAS framework for risk assessment, and a High Court judgment against cyber criminals.

Travis CI vulnerability, ransomware insurance claims, Microsoft's passwordless login, Anonymous data theft claim, Facebook algorithm change, and a ransomware attack on South Africa's Department of Justice are discussed in this episode. Furthermore, the tactics of the Grief ransomware gang and privacy concerns around Amazon's palm scanning technology are explored.

Topics covered in this podcast include Apple's urgent software updates to fix a zero-day exploit linked to Pegasus spyware, Google Chrome's patching of new zero-day flaws, Zloader attacks that disable Windows Defender, regulatory actions against Alipay, rising fraud cases in the UK, and the impact of a fake press release on Litecoin's value.

This podcast covers topics such as SSID stripping vulnerability, industrial control system attacks, the Olympus ransomware attack, China's advice to tech companies, updates on Firefox and Facebook, Facebook's acknowledgement of program issues, Apple's legal victory against Epic with a minor breach, and SISA's appointment of Kirsten Tott as their new chief of staff.

Incidents discussed include Windows MSHTML zero-day exploits, REvil ransomware targeting new victims, Yandex attacked by Meris DDoS botnet. Other topics cover cloud security, social media surveillance, compromised IT security during the pandemic, remote work challenges, and decreased innovation.

Matt Crouse, CISO at Taco Bell, joins the host to discuss topics such as supply chain attacks, digital driving licenses, ransomware targeting criteria, UL certification for IoT devices, and the psychological impact of stress and burnout in cybersecurity.

Topics include limiting CISA director's term, 'Azurescape' Kubernetes attack, leaked VPN passwords, cybercrime schemes sentencing, impact of stress on cybersecurity professionals, improvements in cybersecurity, zero-day flaw exploitation, botnet record, and Proton Mail controversy.

Brad Smith relives early days of the SolarWinds attack. Internet Explorer zero-days are still a concern. German police purchased NSO Pegasus spyware. Ransomware groups exploit critical Windows Print Spooler flaw. Brad Smith shares details of Microsoft's investigation of the SolarWinds attack. Delay in appointing leaders causing gridlock and controversial decisions. Open SSL 3.0 released. Twitter tests soft block feature. Howard University targeted by ransomware. Resumption of classes after network attack. University's efforts to establish alternative Wi-Fi service.

Ransomware gang threatens data leak, personal details exposed by cyber attack, Brazil restricts social media powers, cybersecurity incidents and vulnerabilities discussed, Azure SQL database incident and Trickbot gang member arrest.

Topics include ProtonMail sharing user IP address, doubling of IoT attacks, ransomware targeting study, Netgear vulnerabilities, Germany's security update requirement for smartphones, and El Salvador adopting Bitcoin as legal tender. Also discussed is the issue of automated resume scanning software rejecting qualified candidates.