Cybersecurity Headlines

Former Uber CISO advocates for CISO protections and discusses a cyberattack on a Ukrainian telco. Other topics include legal battles, TikTok ban, AI chips, crypto theft predictions and FBI guidance on SEC disclosures.

US government's efforts to avoid internet fragmentation, EU reaches agreement on AI Act, North Korea's hacking operations with Log4Shell, Lazarus group's malware operations, Apple's battle against Beeper, shutdown of a leak site, arrest of a hacking group leader, criminal use of Bluetooth trackers, and concerns about AI security.

5G network vulnerability impacting chipset vendors and smartphones, SLAM vulnerability affecting CPUs, CISA warning about Qlik bugs, cybersecurity incidents, hotel scam, healthcare ransomware attack, SaaS security importance

Guest Andy Ellis, operating partner YL Ventures, discusses topics such as push notification spying, traffic analysis, phone hacking tools, privacy concerns in Canada, cybersecurity breaches at a nuclear site and a federal agency, outdated technology in government organizations, and failure to meet event logging tier three requirement.

Insurance firm sees cyberattacks as more likely than fire or theft, North Korean hackers steal anti-aircraft system data, vulnerability discovered in fleet management software, discussion on password manager vulnerability, ransomware recovery sponsor, Bluetooth vulnerability, Qualcomm flaws, LockBit attack clarification, cyber attack on Aldo Group, Disney Plus phishing scheme, upcoming episodes on cybersecurity resilience and top cybersecurity stories.

Krebs discusses ICANN Lookups, Wyden warns of spying push notifications, and Google unveils Gemini. Also covers GDPR restrictions, push notification spying, Microsoft's new CSO, Nissan cyber attack investigation, NVIDIA's chip collaboration, and weak encryption detection tools.

Mexican spyware scandal trial begins, Federal agency breached via ColdFusion vuln, Malicious loan app download spike from Google Play

State-linked attackers target UK nuclear site, Iranian actors breach US water infrastructure, data extraction from ChatGPT reveals personal information, vulnerability in image parsing libraries, fake security advisory, and upcoming live podcast recording.

Credit unions face outages due to ransomware attack on Roblox cloud provider. Twitch allegedly targeted by ransomware cartel. Apple fixes two new iOS zero-days. Guilty plea for TrickBot malware creator. Threat actor Kim Suki identified. Recent ransomware attacks discussed.

Christina Shannon, CIO of KIK Consumer Products, discusses the Okta breach, the challenges in protecting personal data, and the story of former Uber CISO Joseph Sullivan. The podcast also explores the consequences of developers building GPTs without understanding the risks and the importance of security by design for AI. The hosts touch on topics like expediting passports, the busy schedule of CISOs, Uber's controversial bug bounty payment, and giving 'Have I Been Pwned' reports as gifts.