CyberWire Daily

18-year-old hacker sentenced to hospital detention after high-profile cyber attacks. Cybercrime activities include phishing campaigns, cyberespionage, and new malware variants. Accenture Federal Services launches a Cybersecurity Center of Excellence for the public sector. Guests discuss professional certifications, trust management platforms, and partnerships. Generative AI in cybersecurity mission and criminal marketplace connections. Trump-Biden Cash connection mentioned. Gratitude expressed towards podcast contributors.

German officials take down dark web market, Google patches zero-day, Terrapin attack on SSL, payment fraud discussed, Agent Tesla spreads through vulnerability, iPhone thief techniques revealed, Ukrainian reprisals for Kyivstar attack, Israeli officials warn of data wipers. Rick Howard speaks with Scott Roberts of Interpress about driving intelligence with MITRE ATT&CK and leveraging limited resources to build an evolving threat repository. Scam involving YouTube videos and fake payments discussed.

Interpol leads cybercrime takedowns, FBI's tug of Tor with ALPHV/Blackcat, new leader for Cyber Command and NSA, Rite Aid banned from facial recognition, CISA's new approach to information sharing, encryption of ransomware, exploit of CitrixBleed, update on Kyivstar cyberattack, Tallinn Mechanism supports Ukraine's cybersecurity, ISC2 Certified in Cybersecurity (CC) exam, GCHQ introduces code breaking to youngsters.

FBI takes down ransomware gang's dark web leak site. Comcast reveals breach of 36M Xfinity customers. Microsoft and Cyberspace Solarium Commission report on water sector security. Risks of AI. Evaluating and maturing your SOC. Iranian gas stations running on empty.

Tanya Janca, founder of WeHackPurple, joins Ann Johnson on Microsoft Security's Afternoon Cyber Tea podcast. They discuss the significance of application security, secure coding, and the role of software developers in security efforts. The podcast also covers updates on major data breaches, cybersecurity guidance, market competition, and ransomware attacks.

Oren Koren, Co-Founder and Chief Product Officer from Veriti, shares his journey from music to cybersecurity. He discusses the influence of music, his military and industry experiences, and the importance of trust, transparency, and giving your all in an organization.

Mike Sikorski from Palo Alto Networks Unit 42 discusses new threat intelligence on Fighting Ursa, a group associated with Russia's military intelligence, and how they exploit a Microsoft Outlook vulnerability to target strategic organizations. Importance of defensive depth, implications of cyber attacks, and the possibility of real-world damage from targeting industrial systems are also explored.

Blake Strom, a security engineer, discusses the 10-year anniversary of the MITRE ATT&CK Framework at the ATACCON 4.0 conference. Google's efforts to improve privacy and a major pig butchering scam are also highlighted. Additionally, the podcast reveals the identity of Reskator, a key player in the Target breach.

Guests David Mouton and Madeline Sedgwick discuss understanding threat actor intent and behaviors. Topics covered include takedown of cybercrime operation, new threat actor GambleForce, SVR exploits, malicious ads linked to Zoom, Keves star cyber attack, Apache security advisory, FCC data breach rules, and criticism against State Department's Global Engagement Center.

Tim Starks, cybersecurity reporter for the Washington Post, discusses the UK's vulnerability to a catastrophic ransomware attack. Other topics include China's involvement in election disinformation and cyber attacks, a recent ransomware attack on Insomniac Games, and the need to modernize web frameworks and standardize password policies for improved online security.