Linux Vulnerability Exploits, Ticketmaster Breach, Snowflake Compromise
In today’s episode, we cover the critical Linux vulnerability CVE-2024-1086 being actively exploited and urge users to patch immediately (https://arstechnica.com/security/2024/05/federal-agency-warns-critical-linux-vulnerability-being-actively-exploited/). We also...
Open Source Tool Defeats Ransomware, StackOverflow users push malicious Python packages, Are you in the 911 S5 botnet?
In today’s episode, we explore how cybercriminals exploited StackOverflow to promote the malicious Python package “pytoileur” aimed at cryptocurrency theft (https://thehackernews.com/2024/05/cybercriminals-abuse-stackoverflow-to.html). We...
Harry Coker Jr. Bolsters Security for Critical Infrastructures in Auburn Keynote
In today’s episode, we discuss the White House’s call for critical cybersecurity assistance for sectors like healthcare and water utilities (https://www.cybersecuritydive.com/news/white-house-seeks-critical-cyber-assistance-for-water-utilities-healthcare/716942/), analyze...
Windows Recall Feature Takes Secret Screenshots, Microsoft President to Testify Before Congress, Disconnect Public Facing ICS Devices
In today’s episode, we discuss Microsoft President Brad Smith’s upcoming testimony before Congress regarding security shortcomings (source: https://www.cybersecuritydive.com/news/microsoft-president-congressional-hearing/716847/), dive into the privacy...
70% of Water Utilities Vulnerable to Cyber Attack, GitHub Enterprise Server, Python, and Firefox Vulnerabilities
In today’s episode, we explore a critical GitHub Enterprise Server vulnerability (CVE-2024-4985) that allows authentication bypass and the necessary updates for protection...
Essential Personal Security Tips: A Practical Guide
Essential Personal Security Tips: A Practical Guide In today’s digital age, personal security is more important than ever. Here are the essential...
iOS Bluetooth Tracker Alert, Return-to-Office Impact on Senior Talent, Chrome Zero-Day
In today’s episode, we discuss the exploitation of a new zero-day vulnerability (CVE-2024-4761) in Google Chrome, prompting emergency fixes from Google. Users...
Cuttlefish Catches Cloud Credendtials, Call Center Crackdown, Dirty Stream Android Malware
In today’s episode, Microsoft reveals the “Dirty Stream” attack impacting Android apps, recognizing vulnerabilities in apps with over four billion installations like...
CyberSecurity News: Expensive AWS S3 Bucket, No MFA for Change Healthcare, Wpeeper Android Malware uses WordPress
In today’s episode, we discuss how a developer nearly faced a $1,300 bill due to a poorly named AWS S3 storage bucket,...
Keyboard App Vulnerabilities, Ring Privacy Settlement, Cyber Attacker Dwell Time Reduction
Explore cybersecurity threats and solutions with experts analyzing critical vulnerabilities in keyboard apps, a $5.6 million privacy breach settlement for Ring users,...