Cybersecurity Headlines

Topics covered include a modified version of Messenger app infiltrated by Triada Trojan, a new iOS zero-click exploit, and the appointment of Jen Easterly as the new CISA director. The emergence of ransomware groups and their threat to critical infrastructure is also discussed, along with the tactics of the PISA Ransomware Operation PYSA. Furthermore, the podcast mentions the valuable keywords ransomware gangs search for and the potential harm of leaked keywords.

Controversy over Apple's CSAM scanning, data leaks in Power Apps, and Razer mice vulnerability. China's use of WeChat, Firefox's download blocking, and 3D printers exposed online.

Microsoft Exchange targeted by ProxyShell flaws, Australians affected by 'Flubot' malware via text message, cyberattack hits State Department

Guest Will Gregorian from Rhino joins the hosts to discuss third-party vendor risks and ransom DDoS attacks. They also touch on financial aspects in organizations, cybersecurity incidents involving the Federal government and T-Mobile, the adoption of multi-factor authentication, and the impact of remote work on companies.

Liquid cryptocurrency exchange loses $94 million following hack. New unofficial Windows patch fixes more PetitPotam attack vectors. New York man sentenced to prison for stealing students' nude photos after hacking their accounts. Increase in ransomware attacks and security risks for schools.

Topics discussed in this podcast include a massive data breach at T-Mobile affecting 48.6 million individuals, a Bitcoin mixer operator pleading guilty to money laundering, and the cyber attack on Memorial Health System. It also covers Apple's appeal against Corellium in a lawsuit, Fortinet's delayed patching of a zero-day vulnerability, and GitHub urging the use of two-factor authentication. A new Windows 10 build with enhanced security features is also mentioned.

Chase bank leaked customer info, Kalay cloud platform vulnerability, data sovereignty challenges for CISOs, incident response strategies, Valve's Steam bug, Colonial Pipeline breach, Mastercard phasing out magnetic strips, CAPTCHA malware, Zoom's GDPR violation, podcast anniversary.

Topics discussed include a terrorist watchlist exposed online, using private companies to scan social media, leaked T-Mobile data for sale, hospital ransomware attacks, Microsoft's blockchain to combat piracy, and the lack of moderation on the right-wing social network Gator.

Bug on Ford's website exposed sensitive data, Huawei accused of installing data backdoor, RDDoS attacks as new ransom vector, cybersecurity challenges, U.K. security chiefs' guidance on WhatsApp usage, job opportunities in military unit, Google's pay calculator for remote employees, security vulnerabilities in Wodify, and CISO series video chat on anomalous behavior.

Topics discussed in this podcast include an authentication bypass vulnerability in home routers with ARKADIN firmware, balancing convenience and security in password management, threat models and mundane security concerns, potential regulation of cryptocurrency and its impact on miners, the print nightmare vulnerability and crypto theft.