Cybersecurity Headlines

Jason Shockey, CISO at Cenlar FSB, focuses on cybersecurity program maturity and AI governance. Krista Arndt, Associate CISO at St. Luke's, brings hands-on healthcare security and threat modeling experience. They discuss calendar and AI agent risks, LastPass phishing and MFA limits, SmarterMail exploit lessons, UK-China cyber dialogue, AI-generated malware, and selling AI guardrails to the business.

Outlook PST and Windows 11 boot issues after Microsoft's patches. A destructive Sandworm-linked attack hits Poland's power infrastructure. A Dresden museum's ticketing and phone systems go offline due to a network intrusion. New actively exploited vulnerabilities added to CISA's KEV list and fresh claims of voice-phishing breaches circulate.

A multi-stage phishing campaign exploiting SharePoint has emerged, prompting serious cybersecurity concerns. Attackers are leveraging a patched SmarterMail vulnerability for unauthorized access. Meanwhile, discussions at Davos highlight fears surrounding AI agents potentially becoming insider threats, stressing the need for monitoring strategies. The recent takedown of a mobile fake tower scam in Greece showcases ongoing fraud battles. Additionally, a new ransomware threat, Osiris, targets defenses through vulnerable drivers, further complicating the security landscape.

In a cybersecurity showdown at Pwn2Own, teams showcased 37 zero-day exploits targeting electric vehicle systems, with Synactive successfully hacking Tesla's infotainment. Allegations arise that Everest has stolen and leaked 72.7 million Under Armour accounts. Additionally, the North Korean group Purple Bravo is using fake job interviews to target specific IPs. Meanwhile, phishing threats proliferate ahead of the Milano Cortina Olympics, and a phishing scam linked to LastPass aims to capture master passwords.

Tensions between the UK and China are in focus as a cyber dialogue is established to address incidents. The Iranian state TV faced a bizarre hijacking during a blackout, urging protests. An intriguing report reveals that the VoidLink malware was largely created by AI, showcasing its evolving role in cyber threats. The podcast also highlights a new fraud reporting portal by the City of London Police, aiming to fight fraud with real-time analytics.

Dive into the latest cybersecurity news as a Gemini prompt injection flaw reveals sensitive calendar information. A hacker confesses to leaking confidential Supreme Court data, raising alarms. Researchers unveil the stealthy PDFSIDER malware, which employs DLL sideloading and DNS exfiltration techniques. Also, learn about CISA’s internal leadership disputes and significant breaches affecting thousands, including Ingram Micro. Discover how AI is expanding attack surfaces and the urgency of patching vulnerabilities in connected devices.

Dmitriy Sokolovskiy, a senior VP of information security at SEMrush, and Nick Espinosa, host of The Deep Dive Radio Show, dive deep into the evolving landscape of cybersecurity. They discuss the potential risks of AI hallucinations in risk reporting and explore how ransomware is now leveraging blockchain for command-and-control operations. The duo debates the implications of private firms engaging in offensive cyber operations and highlights alarming findings related to unauthorized third-party access to sensitive data.

A nominee is set to evaluate the complex dual-hat leadership at Cyber Command and NSA, potentially reshaping cybersecurity strategy. A staggering 64% of third-party apps mishandle sensitive data, raising alarm bells. GhostPoster browser extensions have hit 840,000 installs, with malicious activities lurking within. Meanwhile, law enforcement targets Black Basta operators, and a major phishing breach impacts 750,000 Canadian investors. Grubhub admits to a data theft and extortion incident, further highlighting rising cyber threats.

Jen Easterly is set to lead the RSA Conference, promising fresh insights. A recent Windows update caused major login issues for Azure Virtual Desktop users, creating headaches for IT teams. Meanwhile, the UK police mistakenly attributed an intelligence error to AI Copilot, sparking debates about AI's reliability. Guidance on securely connecting industrial control systems is highlighted by top agencies, and Kyo-won's ransomware incident has raised alarms over data exposure. Plus, a new technique reveals vulnerabilities in Copilot's session data.

The U.S. is exploring the possibility of allowing private companies to engage in offensive cyber operations, raising intriguing legal questions. Meanwhile, China has ordered its firms to stop using cybersecurity software from the U.S. and Israel. DeadLock is making waves by employing smart contracts to obscure its operations and threaten to sell stolen data. In other news, Microsoft has taken action against fraud stemming from the RedVDS platform, which has impacted real estate transactions severely. Finally, Poland successfully stopped a cyberattack aimed at its power grid, preventing a potential blackout.