Cybersecurity Headlines

China denies US accusations of Exchange hack, Unpatched iPhone bug allows remote takeover, 16-year-old bug gives hackers admin rights, Exploiting device vulnerabilities, Child Tax Credit scams, Windows and Linux bugs, Linux vulnerability, cloud provider ransomware attack, gamer sharing classified documents

Podcast discusses widespread Pegasus spyware infections, Microsoft Exchange Server hack attributed to China, and Saudi Aramco data breach. Also covers vulnerabilities in Schneider Electric's charging stations, ransomware attacks, LinkedIn scraping incident, and fire at Ocado warehouse caused by robot collision.

Israeli firm deploys spyware using Windows zero-days, cyberattacks increase in Q1, unpatched bug in Windows print spooler, REvil's ransomware attack on Kaseya VSA servers, ATT&CK traffic on IoT devices, cutting off cyber criminals from cryptocurrency, tricking Windows Hello, cyber attack on Moldova's Court of Accounts, hacked website, AI voice debate, safe coding practices, and CISO Series announcement.

Facebook disrupts Iranian hacking campaign, US offers $10 million reward for state-sponsored cyberattacks. Top threats to Tokyo Olympics identified. Discussion on cyber threats to Olympics, banking Trojan arrests, Chinese cyberspies targeting Southeast Asian governments. Singapore invests $50 million in AI Cybersecurity Research Program.

Guest Norman Hunt, deputy CISO at GEICO, discusses the $10 million bounty on state-sponsored hackers, the Twitter hack anniversary, and the differences between supply chain and ransomware attacks. They also explore cybersecurity business models and privacy regulator fines.

China issues new zero-day rules, Google discloses four zero-days tied to Russian APT, Microsoft announces Windows 365 at Inspire 2021.

Mysterious shutdown of REvil websites, BIOPASS malware livestreams victim's screen, New CISA director confirmed, White House gains cyber-director, concerns over cloud computing providers, Microsoft's July patch Tuesday, European privacy regulators cracking down on cybersecurity lapses, Iranian hackers targeting scholars.

Topics covered in this podcast include ransomware tracking, Microsoft's acquisition of RiskIQ, China's internet censorship, data security concerns, malware compromises, bug bounties, and email account recovery. The chapter also mentions the rollout of a patch for compromised monitoring software and an upcoming episode on etiquette during a data breach.

Cyber-attack on Iran's transport ministry, new technique to disable macro security warnings, Mac OS targeted in malware campaign, REvil's ransomware attack on Kaseya VSA servers, obfuscation techniques in Mage cart group, increase in chain gang ATM attacks, upcoming CISO series video chat about purple teaming and chance to win a CISO series jacket.

Phishing campaign targets Kaseya customers, Google sued by states over Play Store fees, and Morgan Stanley suffers third-party data breach.