CyberWire Daily

Mike Silverman, Chief Strategy and Innovation Officer at FS-ISAC, shares his expertise on cryptographic agility and its importance in finance. He discusses vulnerabilities from quantum computing and offers strategies for financial institutions to safeguard sensitive data. The conversation covers the pressing need to evolve cryptographic standards and actively manage cryptographic keys. Silverman underscores the urgency for organizations to prepare for a post-quantum environment, ensuring trust and security in a rapidly changing landscape.

Yonatan Zunger, CVP of AI Safety & Security at Microsoft, shares his journey from theoretical physics to AI leadership. He distinguishes between generative and predictive AI, emphasizing their unique strengths and ethical implications. Zunger highlights the need for proactive safety measures and diverse perspectives in AI development. With real-world examples, he illustrates both the benefits and risks of AI applications. The discussion encourages critical thinking about AI's evolving role in society and the importance of designing for safety.

Justin Fanelli, the Acting CTO of the US Navy, shares insights on revolutionizing the Navy's innovation process. He discusses the critical need for effective public-private partnerships to enhance national security. The conversation dives into innovative portfolio management strategies that improve operational performance. Fanelli emphasizes the importance of clear communication in innovation adoption and outlines essential steps for engaging with federal systems. This dialogue showcases a transformative approach to integrate technology into military operations.

Tia Hopkins, VP of Global Solutions Architecture at eSentire, shares her inspiring journey from engineering to a leadership role in cybersecurity. She recounts her childhood curiosity that drove her to take apart computers, and how grit led her to success without formal education. Tia emphasizes the importance of validation, having earned multiple degrees later in her career. A passionate advocate for diversity, she discusses her new organization aimed at empowering women of color in cybersecurity, fostering confidence and leadership in the industry.

Asheer Malhotra and Vitor Ventura from Cisco Talos dive into the intriguing world of mobile malware, focusing on the espionage campaign known as Operation Celestial Force. They reveal how a Pakistani group has been exploiting vulnerabilities in Indian defense and tech sectors for years. The discussion uncovers the evolution of mobile malware tactics, the role of social media in attacks, and the significance of understanding threat actor attribution. Listeners will gain insights into the urgent need for enhanced cybersecurity awareness to combat these sophisticated threats.

Selena Larson, a Proofpoint intelligence analyst and host of DISCARDED, joins Dave Bittner and Rick Howard to explore the intersection of cybersecurity and holiday cheer. They share chilling yet entertaining tales of malware and social engineering amidst festive anecdotes. The trio discusses the evolution of security measures like two-factor authentication and the rise of consumer-targeted scams. They wrap up with quirky reflections on classic holiday stories, urging listeners to stay vigilant and protect their digital lives this season.

Claire Rosso, CEO of ISC2, is a key advocate for workforce development in cybersecurity, emphasizing the need for diversity and inclusion in the field. She discusses the critical shortage of cybersecurity professionals and highlights initiatives designed to attract new talent, including an entry-level certification. The conversation also covers the importance of bridging gaps between accounting and cybersecurity and the role of collaboration between nonprofits and employers to enhance DEI initiatives. Rosso sheds light on fostering an inclusive environment to retain diverse talent.

Dive into a festive twist on cybersecurity with a humorous rendition of malware mischief. From keyloggers to zero days, the catchy parody highlights the lurking threats in a merry format. Special guests join the fun, blending holiday cheer with crucial warnings about cybercrime. Enjoy a light-hearted yet informative exploration that underscores the importance of staying vigilant during the holiday season!

This festive tale offers a modern twist on a classic Christmas story. Follow a contemporary Scrooge as they're visited by spirits enlightening them about the perils of phishing, vishing, and smishing. It's a humorous yet cautionary journey that highlights the importance of staying vigilant in our digital lives. Packed with holiday cheer, this narrative not only entertains but also imparts crucial cybersecurity lessons to keep you safe this season.

Clémence Poirier, a Senior cyber defense researcher at ETH Zurich with a focus on space cybersecurity, discusses the Viasat cyberattack that impacted Ukraine’s military communications just before the Russian invasion. She reveals the vulnerabilities highlighted by this attack and how it has reshaped perspectives on satellite security. Poirier also addresses the rise of hacktivist groups targeting space operations and emphasizes the urgent need for enhanced defenses in the evolving landscape of cyber threats, especially in the context of ongoing conflicts.