CyberWire Daily

Guest Carole Theriault, a communications consultant and podcaster with a technical background, shares her journey from radio aspirations to tech opportunities. She discusses her transition to entrepreneurship in podcasting and cybersecurity, highlighting burnout, the cybersecurity industry, and the freedom of running her own company.

Ismael Valenzuela, VP Threat Research & Intelligence at BlackBerry, discusses APT36's cyber attacks on India's government, defense, and aerospace sectors using evolving toolkits and exploiting web services like Telegram and Google Drive. Evidence suggests alignment with Pakistan's interests. The discussion covers Transparent Tribe's tactics, targeting strategies, diverse tools, and the geopolitical impact on cybersecurity defense.

Caitlyn Shim, Director of AWS Cloud Governance, and Rick Howard discuss cloud governance, diversity, and growth at AWS re:Inforce event. TeamViewer vs. APT29, Microsoft's email breach alerts, malware epidemic, Google's distrust on Entrust, safeguarding critical systems, FTC vs. MGM, Polyfill's accidental exposé, and telecom titan's troubles

Seeyew Mo, Assistant National Cyber Director, and Simone Petrella, President of N2K, discuss the progress and challenges of the National Cyber Workforce and Education Strategy. They highlight the importance of skill-based hiring, developing entry-level employees for future technical roles, and aligning talent needs with business objectives. The conversation covers initiatives like registered apprenticeships, cyber clinics, and the significance of cybersecurity skills in all job roles for resilience and security.

Jim Foote, CEO of First Ascent Biomedical, discusses transitioning from CISO to leading a biotech company using AI for personalized cancer treatments. Topics include cybersecurity principles in healthcare, technology integration in cancer treatment, and the importance of assembling the right team in the medical field.

A panel of N2K experts, including WiCyS Executive Director Lynn Dohm, discusses the 2024 Cyber Talent Study, highlighting women's exceptional performance in cybersecurity. Insights reveal areas for development, guiding tailored training programs and career advancement strategies. The collaboration between WiCyS and N2K aims to support women in cybersecurity and address talent shortages, emphasizing the importance of diversity and organizational change.

LockBit causing havoc with files from the Federal Reserve. Progress Software patching flaws in MOVEit. Popular open source library compromised. DHS staffing up its AI Corps. New e-skimmer targets CMS platforms. Neiman Marcus breach affects thousands. South African health services hit by ransomware during monkeypox outbreak. CISSP CAT format discussed in detail. VA clearing backlog from ransomware attack. Medusa malware resurfaces with new features.

Guest Seeyew Mo from the White House discusses cybersecurity strategies and workforce initiatives. Topics include US-China telecom scrutiny, ransomware in Indonesia, RedJulliett cyber threats in Taiwan, and a new alliance against memory-based cyberattacks. Assange's plea deal is also mentioned.

LockBit claims hitting the Federal Reserve, CDK Global negotiates with BlackSuit, LA school district confirms Snowflake data breach, Rafel RAT targets outdated Android devices, UK's largest plutonium stockpiler pleads guilty to inadequate cybersecurity, Clearview AI settles privacy violations, North Korean hackers target aerospace firms, Christie Terrill discusses leveraging offensive security tactics, Rick Howard previews CSOP Live event

Sal Aurigemma, Associate Professor of Computer Information Systems at the University of Tulsa, shares his career journey from nuclear engineering to IT, emphasizing the importance of understanding systems. He discusses network troubleshooting, cybersecurity, and behavioral cybersecurity. Sal highlights the need for open-mindedness in the field and suggests practical solutions to boost security without impeding productivity.