Cybersecurity Headlines

US declares emergency over fuel pipeline cyber attack, Yamabiko targeted by Babuk ransomware, Microsoft Patch Tuesday fixes 55 flaws, Altitude Networks sponsors and addresses cloud data security gap, UK's COVID vaccine app, GitHub leaks 100,000 repositories

This podcast covers topics such as the Darkside's involvement in the Colonial Pipeline attack, the end of ransomware reimbursement by an insurance provider, malware issues on Tor exit nodes, Apple AirTags hacking, Amazon's fight against counterfeit goods, Trend Micro's new security tool, Microsoft's email blocking problem, and the increase of scam websites in the UK.

Topics covered in this podcast include the Colonial cyberattack, Microsoft fixing a faulty Windows 10 driver, a critical vulnerability called Tsunami, Chinese Smart TVs collecting data, preventing former employees' access to sensitive documents, fake comments against net neutrality, concerns about software supply chain exploitation, IRS crackdown on cryptocurrency trading, and a CISO series video chat on hacking process and improving information delivery.

Topics include expansion of bug bounty program, Amazon product review scam, historic hiring initiative by DHS, Qualcomm chip flaw, 2SV enrollment by Google, and securing cloud permissions.

Guest Mitch Parker, CISO at Indiana University Health, discusses major vulnerability stories in global email systems and Dell computers. The chapter also explores API security in healthcare, the controversial actions of Basecamp, ongoing cyber attacks, app leaks of Amazon Web Services keys, security vulnerabilities, and phishing campaigns.

Facebook's Oversight Board upholds Trump suspension. Phishing for workplace credentials. Report on third-party SDKs in school apps. Signal ads booted from Facebook. Peloton API bug. Microsoft's CounterFit. CISA's efforts. Third-party data breaches. Sponsor shoutout for BoxCryptor.

Vulnerabilities in public email servers, potential attacks on Dell computers, and zero-day exploits in Apple products. Discussion on obfuscated malware, large DDoS attack, and new malware using ICMP tunneling. Importance of monitoring ICMP, ransomware attack on healthcare provider, and SpaceX's launch of Starlink satellites.

Topics discussed in the podcast include the Project Signal ransomware campaign, Moscow facial recognition system, Facebook Oversight Board's decision on Trump, Tesla hacked via drone, and a password analysis of leaked Star Wars passwords.

New Spectre exploits affect AMD and Intel processors. Microsoft discovers critical code execution bugs in IoT and OT devices. Ransomware group exploits SonicWall zero-day bug. CISA provides guidance on defending against software supply chain attacks. Understanding risks in software infrastructure. Sponsor ad for BoxCryptor's end-to-end encryption for sensitive business data.

Ransomware group shutdown, concerns over deepfake satellite images, QNAP devices attacked by ransomware, call for better response to ransomware attacks, accidental hashtag block by Facebook, EU law on terrorist content removal, court ruling on 3D printed guns, Wyoming's accidental data exposure on GitHub.