Cybersecurity Headlines
CISO Series
Daily stories from the world of information security. To delve into any daily story, head to CISOseries.com.
Episodes
Mentioned books
Oct 13, 2023 • 7min
Microsoft thwarts Akira, Sullivan appeals conviction, ToddyCat targets telcos
Microsoft successfully thwarts a large-scale ransomware attack while former Uber CISO files an appeal. The ToddyCat group targets telcos in a new campaign. Cybersecurity news includes the EU investigation into misinformation, Apple fixing iOS vulnerabilities, and bribery allegations against Alameda Research.
Oct 12, 2023 • 7min
Hijacked 404 pages, Chinese attackers target Confluence, Adobe's "icon of transparency"
State-backed actors targeting Atlassian Confluence, Adobe's new symbol for AI-generated content, introduction of California's Delete Act, SEC investigates Twitter security breach, issue with Exchange Online, Microsoft anti-spam issue and SEC investigation
Oct 11, 2023 • 9min
Zero-day fuels largest-ever DDoS attack, 23andMe resets user passwords after data leak, Exchange gets 'better' patch for critical bug
Record-breaking DDoS attack fueled by zero-day bug. Genetic testing company resets user passwords after data leak. Microsoft releases better patch for critical bug in Exchange. Sponsor ad from Hyperproof. Linux vulnerability warning. DDoS malware targets routers. Script modification and latest security fixes. Recent infrastructure damage and upcoming events on AI hacking.
Oct 10, 2023 • 8min
Middle East hacktivists, Curl security flaw, HelloKitty improves ransomware
Middle East hacktivist attacks, Curl security flaw, leakage of HelloKitty ransomware source code, and Citrix Netscaler Gateway exploitation
Oct 9, 2023 • 8min
MGM ransomware costs, Blackbaud breach settlement, 23andMe breach claims
MGM Resorts reports ransomware costs at $110 million, Blackbaud settles for $49.5 million due to a ransomware attack, 23andMe investigates breach claims. Discussion of recent government cyber attacks, Clorox cyber attack costs, and AI.
Oct 6, 2023 • 26min
Week in Review: Progress FTPbug, CloudFlare DDoS mistake, Lazarus Meta recruiters
Guest Bob Schuetter, CISO at Ashland, discusses critical FTP bug exploitation, Cloudflare DDoS protection bypass, responsible notification and disclosure, malware UX and speed of development, cyber legislation for critical infrastructure, and Bunnyloader's impact on cybercrime operations.
Oct 6, 2023 • 8min
Apple zero-day patch, Cisco 911 patch, ICS exposure warning
Apple releases patch for active iOS zero-day, Cisco issues urgent patch for emergency responder software flaw, researchers warn of 100,000 exposed ICS systems
Oct 5, 2023 • 6min
Red Cross hacktivist rules, Looney Tunables hit Linux, CISA violates First Amendment
Discussion on the Red Cross hacktivist rules during armed conflict and a vulnerability in the GNUC libraries LD.SO dynamic loader.
Oct 4, 2023 • 7min
GPU driver exploits, EU strengthens spyware protections, NSA's AI Security Center
Exploited GPU drivers, strengthened spyware protections, AI Security Center, Torch serve vulnerabilities, concerns about employer monitoring, upcoming event on container security
Oct 3, 2023 • 7min
Progress FTP bug under active exploit, Norway urges Europe-wide Meta data collection ban, KillNet claims attack against Royal Family website
FTP bug actively exploited, Norway calls for ban on Meta data collection, Royal Family website targeted in DDoS attack
