Cybersecurity Headlines

US Cyber Command urges patching of Confluence bug; New Zealand experiences DDoS attack; Salesforce email service used for phishing campaign; Zero-day attack on SolarWinds by threat group DEV-0322; WhatsApp fined; Recruitment of English speakers for scams; Concerns with Taliban exploiting biometric and payroll databases; Google's actions in Afghanistan; Introduction of digital driving licenses on iPhones with enhanced security features.

Discussion on recent cybersecurity headlines, including a White House cyber attack warning, Microsoft Azure vulnerability, and impacts of intermittent encryption on ransomware. Ransomware attacks on education systems and the importance of supporting schools' security programs. SEC crackdown on brokerage firms' cybersecurity negligence. Insight on cybersecurity, school ransomware, and community support.

WhatsApp faces a GDPR fine, UK VoIP operators targeted by cyberattacks, and the White House warns of holiday cyber attacks. Proactive mitigation steps for cyber attacks, the Autodesk breach due to SolarWinds, and the FTC banning surveillance app maker Spiphone from the business. A hidden hack allowing stalkers to track people's activities and the FTC ordering the company to erase illegally harvested information.

BrakTooth vulnerabilities impact major SOC vendors, ransomware cost to schools, January 6th posts disappear from Facebook, autoblocking on Twitter, intentional internet outages, digital driver's licenses, TSA accepting digital licenses, leaked gun owner map investigation, employee data deletion.

Discussion on recent cyber security news including OpenSSL bugs fallout, the sale of victim's internet bandwidth by cyber attackers, and the accidental exposure of over 1 million people through the Indonesian government's Covid-19 app. Emergence of GPU-based malware execution and the importance of security assessments are also discussed. Top security weaknesses, career-ending mistakes, and hacking user adoption are explored as well.

Windows 11 manual installs won't receive updates. Lockfile ransomware publishing Bangkok Air customer data. Intermittent encryption could worsen ransomware attacks. Topics also include Baseloader malware and AI-generated video characters.

"Worst cloud vulnerability you can imagine" in Microsoft Azure, increase in phishing attacks due to remote work, T-Mobile hacker brute-forcing network, Microsoft's stricter system requirements for Windows 11, tactics of Hive Ransomware Group, emerging threat of data poisoning, Bitcoin theft lawsuit.

Edward Contreras, CISO, Frost Bank, discusses the impact of cyber insurance on ransomware and the importance of diverse expertise in orchestrating large-scale attacks. They also explore the financial losses individuals face due to cybercrime and the future challenges posed by quantum computing.

A 21-year-old claims responsibility for the T-Mobile hack; Microsoft and Google are investing billions in US cybersecurity; Ragnarok ransomware releases a master decryptor; Discussion on the sudden shutdown of the Ragnarok ransomware gang and unauthorized FBI access to private data; Critical vulnerability in Atlassian Confluence Server and data exposure incident involving Chinese game developer Eskefun.

Topics covered in this podcast include government use of facial recognition technology, IoT chipset vulnerabilities, impact of cyberinsurance payouts to ransomware victims, internet censorship in Cuba, email scams, Apple's new security measure, Sarabas Systems' neural network technology, and Olympic malware.