Cybersecurity Headlines

Hackers bypass multi-factor authentication. Social media reacts to Capitol attack. Google fixes bug in COVID contact-tracing apps. Google acquires Fitbit, emphasizing privacy. Recovery process after Jersey City ransomware attack. Windows 10 vulnerability corrupts hard drive. Bug in Windows shortcut files causes errors. Security tips for Signal messaging app.

This week's podcast discusses the increasing sophistication of ransomware gangs and their tactics, the challenges of securing the Defense Department's networks, the expanding reach of GDPR and a ransomware attack on Jersey City, as well as Apple's security issue and an upcoming podcast on hacking high profile targets.

Summary: Dark web marketplace takedown confirmed by Europol. Google to block all political ads. DoD halts cybersecurity system deployment. Security vulnerabilities in WordPress plugin Orbit Fox. Details on hacking operation with zero-day vulnerabilities. Privacy complaints for Facebook, WhatsApp data sharing, Ledger cyberattack, and farewell to co-host.

Hackers leak stolen Pfizer COVID-19 vaccine data online. Social media's big terrible week. Parler archived due to 'mind-numbing' mistake. Lack of rate limiting on Parler. Sunspot malware found in SolarWinds Orion. Anne Newberger appointed to National Security Council. Stress and burnout among security workers. Microsoft's Patch Tuesday. IoT manufacturer breach. Media reporting on cyber news.

SolarWinds breach linked to Turla, UK ruling limits 'general warrants', UN data breach, Bitdefender ransomware decryptor, Security researcher archives Parler, AppleScript-based malware challenges, Microsoft's Surface Pro 7 Plus release

Topics discussed include the removal of Parler from major platforms, spike in usage of Clearview facial recognition app, Emotet topping malware charts, and the surge in Signal's messaging service users. Other topics covered are overwhelmed verification service, Elon Musk's endorsement of Signal, ransom payments, AR glasses by Lenovo, ransomware tactics, and Singapore's use of COVID-19 app data in criminal cases.

Topics discussed in the podcast include the ban of Donald Trump from social media platforms, the implications of the Capitol breach on information security, identifying compromised systems, USB attacks, a bug bounty program, and the Q-RAT Trojan campaign.

Discussions on cybersecurity threats posed by Capitol breach, compromised machines, social media giants' influence on politics, aftermath of SolarWinds hack, reflections on walking back actions against Chinese companies, secrets reporting, unionization efforts at Google and Alphabet, diversity and inclusion in tech.

Rioters storm US Capitol, SolarWinds attackers accessed DOJ's email server, WhatsApp shares user data with Facebook, updates on App Store Privacy Labels, delisting of Chinese companies, Intel's ReelSense ID facial authentication system, Nissan source code leak, Bobok ransomware

Alphabet employees unionize, NYSE won't delist Chinese firms, Amazon banned from using AWS trademark in China. Privacy labels, identity governance, AMEX data leak, Google's audio recapture, and electrorat malware discussed. Misidentified 5G chip diagram exposed, gender-based sound instructions, and CISO Series highlights.