CyberWire Daily

Cybersecurity and disinformation researcher Bilyana Lilly shares her career path and her desire to bring a greater understanding of Russia's strategic thinking. Early experiences in Bulgaria and studying international humanitarian law in Kosovo shaped her perspective. Pursuing disarmament and understanding Russia's strategic thinking, she highlights the challenges faced as a foreigner in the field.

Johannes Ullrich, a security analyst from SANS, talks about the Internet Storm Center and their research. They discuss the history of SANS, the evolution of cybersecurity analysis, and the early days of the internet. They also explore the transformation of the cybersecurity industry and the importance of curiosity and experimentation in research.

Former CIA leaker sentenced to 40 years. Interpol arrests cybercriminals and takes down servers. Cloudflare discloses data breach. FBI removes malware from routers. President Biden plans to veto cyber disclosure bill. Attackers target poorly managed Linux systems. Infected USB devices distribute malware through popular websites. Blackbaud faces data deletion mandate. Guest Adam Marré discusses 2024 election security. Cybersecurity incident in Georgia leads to murder suspect on the run.

FBI directors warn of Chinese hacking threats. Myanmar extradites pig butchering suspects. Automation challenges persist. Pegasus spyware targets human rights groups. Ukrainian military targets scratched by subtle-paws. Ransomware countermeasure White Phoenix discussed. AI's impact on security operations explored. Tool for file recovery mentioned. AI and ML potential in threat hunting emphasized. Importance of small findings in threat hunting highlighted.

Global Affairs Canada investigates a major data breach. New York sues Citibank over inadequate online security. Alpha ransomware launches a dedicated leak site on the dark web. A leaked database with 50 million records may or may not be real. CISA and the FBI provide guidance for SOHO routers. Krustyloader exploits Ivanti weaknesses. Unit 42 tracks a large-scale scareware campaign. Alex Stamos criticizes Microsoft's security strategies. Gianna Whitver and Maria Velasquez discuss their new cybersecurity marketing podcast.

US counters Chinese hacking campaign. Juniper issues patches. Schneider Electric ransomware attack. Insurance consulting firm breach affects millions. DarkGate malware leverages Microsoft Teams. White House requires AI devs to share safety test results. High-level credentials posted online. Zloader malware makes a comeback. Cyberattack on Georgia county. Podcast features cybersecurity at 35,000 feet with United Airlines CISO. Airborne joker escapes consequences.

Solarwinds seeks dismissal of SEC allegations. Urgent calls to implement fixes for Jenkins open-source software automation tools. A New Jersey township closes schools and offices after a cyberattack. The Centre for Cybersecurity Belgium warns of a critical vulnerability in GitLab. The FBI arrests a notorious swatter. HHS releases cybersecurity performance goals. Mercedes-Benz exposes data after an authentication token was left unsecured. A dark web drug dealer pleads guilty. Our guest discusses hacker celebrities and why our own host did not make the list. Threats of airport terrorism on public WiFi is no joking matter.

Rashmi Bharathan, an IT Internal Auditor with 10 years of experience, shares her career journey and passion for helping others. She emphasizes the importance of networking and volunteering in career growth and highlights the significance of connections in the industry.

Tim Miller, Technical Marketing Engineer for Panoptica, and Kevin Ford, Esri’s CISO, join Rick Howard to discuss Cloud-Native Application Protection Platforms (CNAPPs). They explore how CNAPPs reduce complexity in multi-cloud environments, prioritize and mitigate risks, and manage system complexity. The conversation highlights the consolidation in the CNAPP space and provides tool recommendations for AI in software development and security evaluations.

Jamf Threat Labs shares their work on new malware embedded in pirated macOS applications. The research discusses the types of applications targeted by pirates, the activities performed by compromised applications, and the capabilities of the backdoor called Keppri. The risks and indicators of downloading pirated applications are highlighted, as well as the truth about Mac OS security and the impact of market share. The podcast also covers the discovery of new malware in pirated applications and prevention/remediation methods.