CyberWire Daily

Pattie Dillon shares her journey into anti-fraud solutions, emphasizing the use of underground data to prevent online fraud. From identity verification to fighting money laundering, she advocates for sharing tactics in united defense against cybercrimes.

Exploring the disappearance and return of the Bumblebee malware, its role as a downloader for cybercriminals, unique malware campaigns utilizing fake voicemail links, evolving tactics of cybercriminals, and the importance of user education in reducing cyber threats.

Court orders NSO Group to hand over source code, Five Eyes warn about Ivanti products, AI worm poses data theft risks, cybersecurity incidents include ransom demands surge and Golden Corral data breach, Senator criticizes automakers' data privacy, OpenTitan project advances silicon security standards, Dominic Rizzo discusses open-source silicon project.

Iran-linked cyber-espionage targets Middle East aerospace, SpaceX accused of limiting satellite internet for US troops, investment scams flood the net, GUloader malware exploits crafty graphic attacks, Russia targets Ukraine infrastructure, Cisco patches high-severity flaws, US puts Canadian cyber firm on Entity List, Unit 42 discusses 2024 Incident Response Report on Threat Vector segment

President Biden's executive order restricts data sharing with overseas brokers. Exploited Ubiquiti EdgeRouters by Russian actors. Ransomware hits Epic Games. Wordpress sites vulnerable to XSS. Rhysida demands ransom from a Chicago hospital. Chinese threat actors target Ivanti VPNs. Former DHS head on cyber insurance. Celebrities on Cameo misused. Magpie Graham reviews Dragos' Cybersecurity Year in Review report. Exciting insights and security tips shared throughout the podcast.

Podcast discusses upgrades to NIST's Cybersecurity Framework, US becoming top target for cyber breaches, and solutions for generative AI copyright issues. Also covers recent cyberattacks on Canada's RCMP, UK email mistakes, and state-sponsored hacker activities.

The podcast discusses the resurgence of LockBit ransomware, China's cybersecurity developments, UK's biometric scanning rebuke, SVR adapting to the cloud, DOE's cybersecurity guidelines for electric sector, financial industry breaches, cybersecurity startup ecosystem, UK's Cyber Governance Training Pack, and a facial recognition battle at University of Waterloo.

Chris Cochran discusses his career journey in cybersecurity, highlighting transitions from intelligence roles to threat intelligence at Netflix. Emphasizes the importance of relying on strengths when navigating different responsibilities. Explores strategies for personal growth, resilience, and advocating for diversity in the field.

Researchers from Palo Alto Networks discuss the Manic Menagerie campaign targeting web hosting providers, highlighting web shell deployment for sustained access. They explore threat actor tactics, infiltration techniques, adaptiveness, and emphasize the importance of IT hygiene and multi-layered security.

FTC fines Avast for privacy violations, ScreenConnect exploit, AT&T restores services, Australian telecom breach, EU cybersecurity report, Microsoft's PyRIT, oil and gas infostealer, US healthcare cyberattack. Kevin Magee discusses cybersecurity startups in Ireland's success. Malware-infected USB device.