CyberWire Daily

Cybersecurity expert Kerri Shafer-Page from Arctic Wolf discusses their research on Fog ransomware attacks targeting US education and recreation sectors. Despite uniform ransom notes, the responsible groups remain unknown. The discussion highlights the need for robust controls, incident response plans, AI protection, and the impact of funding challenges on ransomware situations in the education sector.

Biden bans Kaspersky over security concerns. Accenture disputes breach reports. Firmware flaw affects Intel CPUs. Car dealerships face CDK Global issues. CISA alerts 100k individuals of data breach. SquidLoader targets Chinese orgs. New maritime cybersecurity standards. Only Malware in the Building podcast preview. Using courts for customer support. Meta users seek legal remedies.

Car dealerships impacted by cyber incident, EU's Chat Control paused, Accenture employee data leaked, forklift manufacturer ransomware attack, IntelBroker claims Apple source code leak, ethical concerns about AI firm, radiology practice data breach, federal contractors fined for cyber security lapses, Kansas City Police files stolen. Also, discussion on CISSP certification journey, MIT's Arvind remembered, and test preparation strategies shared.

Explore the moon's impact on Earth's history, evolution, and potential as a data storage location. Learn about successful soft landing missions and upcoming lunar data center tests. Join the conversation with science writer Rebecca Boyle and Chris Stott from Lonestar Space Holdings. Stay informed on the latest space industry developments and cybersecurity conferences.

Europol shuts down 13 terrorist websites, LA County Department of Public Health data breach. Take It Down act targets deepfake porn. VMware discloses critical vCenter Server vulnerabilities. Empire Market dark web heads charged. New malware campaign tricks users with malicious PowerShell. Memory Tagging Extensions in Arm chips thwarted. E-learning platform discloses a breach. CEO discusses app and identity security for SaaS. Clearview AI offers plaintiffs settlements. Balancing security and user productivity in cybersecurity.

Guest Patrick Joyce, a cybersecurity expert, discusses the arrest of a Scattered Spider hacker in Spain. Other topics include PHP vulnerability alerts, breaches affecting Snowflake customers, and new Linux malware. Insights from CSOs on challenges, priorities, and optimism in cybersecurity, including discussions on XDR technology and cybersecurity incidents.

Rick Doten, Centene's VP of Security, and Milad Aslaner, Sentinel One’s XDR Product Manager, discuss the capabilities of XDR compared to SIEM tools, the evolution of logging systems like syslog, and the development of antivirus software leading to XDR tools for enhanced security.

Rosa Smothers, Senior VP of Cyber Operations at KnowBe4, shares her journey from early cybersecurity to government intelligence work. She discusses her passion for computers, influences from Star Trek, and her experience working in cyber threat analysis for extremist groups. Rosa emphasizes the importance of talking with people to find your passion in cybersecurity.

Security Researcher James from SpyCloud Labs discusses infostealer malware, focusing on LummaC2 and Atomic macOS Stealer. They cover data extraction, threat actors like SpaxMedia, and ways to defend against these malware. Topics include customization options, protecting against info-stealers, and in-depth research on how these malicious software operate.

Former director of the NSA Paul Nakasone and Arynn Crow from AWS discuss cybersecurity topics. They cover Microsoft's security failures, AI tabletop exercises, Cleveland cyber attack, Truist bank data breach, and Rockwell Automation vulnerabilities. Arynn Crow talks about security through MFA and FIDO Alliance passkeys, and her work on the Digital Identity Advancement Foundation. They also discuss AI running for mayor and the 2024 N2K CyberWire Audience Survey.