Open Source Tool Defeats Ransomware, StackOverflow users push malicious Python packages, Are you in the 911 S5 botnet?
In today’s episode, we explore how cybercriminals exploited StackOverflow to promote the malicious Python package “pytoileur” aimed at cryptocurrency theft (https://thehackernews.com/2024/05/cybercriminals-abuse-stackoverflow-to.html). We...
Harry Coker Jr. Bolsters Security for Critical Infrastructures in Auburn Keynote
In today’s episode, we discuss the White House’s call for critical cybersecurity assistance for sectors like healthcare and water utilities (https://www.cybersecuritydive.com/news/white-house-seeks-critical-cyber-assistance-for-water-utilities-healthcare/716942/), analyze...
Windows Recall Feature Takes Secret Screenshots, Microsoft President to Testify Before Congress, Disconnect Public Facing ICS Devices
In today’s episode, we discuss Microsoft President Brad Smith’s upcoming testimony before Congress regarding security shortcomings (source: https://www.cybersecuritydive.com/news/microsoft-president-congressional-hearing/716847/), dive into the privacy...
70% of Water Utilities Vulnerable to Cyber Attack, GitHub Enterprise Server, Python, and Firefox Vulnerabilities
In today’s episode, we explore a critical GitHub Enterprise Server vulnerability (CVE-2024-4985) that allows authentication bypass and the necessary updates for protection...
Deceptive Deepfake Cyber Scheme: Arup’s Wake-Up Call Against North Korean IT Workers
In today’s episode, a UK engineering firm Arup was scammed of £20m through a deepfake incident where an employee fell victim to...
Invisible Threats: SSID Confusion, Kimsuky, Malware
In today’s episode, researchers unveiled a new security vulnerability dubbed SSID Confusion attack exploiting a flaw in the IEEE 802.11 Wi-Fi standard,...
iOS Bluetooth Tracker Alert, Return-to-Office Impact on Senior Talent, Chrome Zero-Day
In today’s episode, we discuss the exploitation of a new zero-day vulnerability (CVE-2024-4761) in Google Chrome, prompting emergency fixes from Google. Users...
2024 Browser Security Report, Black Basta IT Department, MITRE EMB3D
In today’s episode, MITRE debuted EMB3D, a threat model enhancing cybersecurity of embedded devices through collaboration with industry experts. The model aligns...
Secure Cyberspace: Liability Framework and Accountability
In today’s episode, the discussion revolves around the efficacy of password protection methods, contrasting software and hardware encryption for data security. While...
Russian AI Disinformation, Microsoft Email DDoS AT&T, IoT EU Device Regulations
In today’s episode, we delve into the findings of a recent investigation conducted by Insikt Group on an influence network known as...