Security Squawk

Hospital Shutdown, Ransomware Surge, Fortinet Failures A hospital doesn't cancel chemotherapy appointments because of a “technical issue.” They cancel them because they've lost operational control. This week, the University of Mississippi Medical Center shut down its entire network after a ransomware attack disrupted systems — including Epic. Clinics closed. Elective procedures paused. Outpatient services halted. Emergency operations activated. Leadership described the shutdown as precautionary. But here's the real question executives should be asking: Why was a full network shutdown necessary? If segmentation is validated… If identity governance is enforced… If lateral movement detection is operationalized… Why does the only safe option become “turn it all off”? In this episode of Security Squawk, we break down what this incident signals about containment confidence, governance maturity, and operational resilience — not just in healthcare, but across every industry that depends on uptime. And we zoom out. Because UMMC isn't happening in isolation. According to TechRadar, ransomware groups have reached an all-time high in 2025. The victim growth rate has doubled. Qilin and other affiliate-driven operators are scaling aggressively. This isn't random chaos. It's industrialization. More fragmentation. More specialization. More execution discipline on the criminal side. Healthcare, public sector, and critical infrastructure are being economically targeted because downtime equals leverage. When systems go dark, negotiation pressure spikes. Then we connect it to something many leaders are still underestimating: Fortinet exploitation patterns. Edge vulnerabilities. VPN credential harvesting. Reinfection cycles months after patches were released. The vulnerability itself isn't the story. The response maturity is. Attackers are repeatedly probing whether organizations: – Patch fast enough – Rotate exposed credentials – Reset trust boundaries after compromise – Validate segmentation integrity – Rebuild identity confidence When those governance steps are skipped, attackers come back. That's not a tooling failure. That's a leadership failure. This episode translates three headlines into one hard truth: Ransomware is no longer just a malware problem. It's a containment confidence problem. For CEOs: If you cannot isolate an intrusion without shutting down revenue operations, your resilience model is fragile. For IT Directors: Active Directory recovery is not a restore-from-backup event. It's a trust re-establishment event. For MSPs: Client environments are operating in a denser criminal ecosystem. Tool stacking without maturity validation will not scale. For Risk Leaders: Financial exposure is no longer limited to ransom. Revenue interruption, regulatory scrutiny, and reputational damage compound quickly — especially in healthcare. We also discuss: • Why attacker communication often signals a second phase • Why affiliate ransomware models are accelerating • Why segmentation validation will become a board-level metric • Why detection speed does not equal governance strength Security Squawk exists to translate cybersecurity chaos into business reality — without vendor spin and without hype. If you value that kind of analysis and want to support independent, executive-focused cybersecurity conversations, you can back the show at: buymeacoffee.com/securitysquawk Your support helps us keep this live, timely, and unfiltered. Because criminals are already running maturity audits. And they invoice in operational shutdown. The question is simple: If it happened to you tomorrow, could you contain it — or would you turn the lights off?

Google has confirmed that state-backed threat actors are operationally using Gemini across the intrusion lifecycle — not experimentally, but strategically. In this episode of Security Squawk, we break down how AI is being integrated into reconnaissance, phishing refinement, vulnerability research, and even dynamic malware generation. According to Google's Threat Intelligence Group, multiple clusters — including DPRK-linked actors — are using Gemini to synthesize OSINT, map organizational structures, refine recruiter impersonation campaigns, and research exploit paths. In one case, malware known as HONESTCUE leveraged Gemini's API to dynamically generate C# code for stage-two payload behavior, compile it in memory using legitimate .NET tooling, and execute filelessly. This isn't a zero-day story. It's a friction story. At the same time, two individuals in Connecticut were charged for allegedly using thousands of stolen identities to exploit FanDuel's onboarding and promotional systems. No exotic exploit. No advanced intrusion chain. Just automated workflow abuse at scale. The pattern is clear: AI is compressing attacker timelines, and identity-driven fraud is industrializing predictable processes. We examine: How AI-enhanced phishing eliminates traditional grammar-based red flags Why trusted SaaS domains (Gemini share links, Discord CDNs, Cloudflare fronting, Supabase backends) are weakening reputation-based defenses What model distillation attempts (100,000+ structured prompts) signal about API abuse and intellectual property risk How fileless malware compiled with legitimate developer tooling challenges signature-based detection Why onboarding workflows and recruiting processes are now primary attack surfaces For CEOs, this is about erosion of trust anchors and shifting insurability expectations. For IT Directors and SOC leaders, this means reevaluating fileless execution visibility, API anomaly detection, and the reliability of reputation filtering models. For MSPs and risk managers, breaches will increasingly originate from workflow exploitation rather than perimeter misconfiguration. AI didn't invent new attack types. It removed friction from existing ones. And when friction disappears, scale compounds. If your recruiting, onboarding, verification, or AI product interfaces can be scripted — they can be weaponized. This episode is about operational clarity in a rapidly compressing threat landscape. Keywords: Google Gemini, HONESTCUE malware, AI phishing, state-backed threat actors, DPRK cyber operations, model distillation attacks, API abuse detection, fileless malware, .NET in-memory compilation, identity fraud, FanDuel fraud case, workflow exploitation, SaaS infrastructure abuse, Cloudflare phishing, Discord CDN payloads, Supabase backend abuse. Support the show https://buymeacoffee.com/securitysquawk

In this episode of Security Squawk, Bryan Hornung, Reginald Ande, & Randy Bryan break down three stories that should change how executives think about cyber risk. This is not about tools, alerts, or vendor promises. It is about operational dependency, leadership accountability, and financial exposure when systems fail. Story one focuses on active exploitation of SolarWinds Web Help Desk vulnerabilities being used as an entry point for ransomware staging. Researchers are seeing attackers move fast after initial access, blending in by using legitimate remote management and incident response tools. That is the point. When attackers use normal looking admin utilities, many organizations do not detect the intrusion until the business impact is already locked in. If you run Web Help Desk or you have not verified your patch posture, this is a governance issue, not an IT debate. Patch timelines and exposure management are leadership decisions because they directly affect business interruption risk. Story two is a warning about the ransomware market adapting. As more organizations refuse to pay for data theft only extortion, threat actors are expected to pivot back toward encryption. Encryption creates urgency because it disrupts operations. The financial exposure shifts toward downtime, recovery labor, lost revenue, and customer churn. Executives should treat restore capability like a business continuity requirement. If your recovery plan has not been tested under pressure, it is not a plan. Story three covers the BridgePay ransomware incident and the downstream impact on merchants and local government services. Even when payment card data is not confirmed compromised, availability failures still create real harm. Customers do not care which vendor was hit. They only see that your business cannot process transactions. This is a clear reminder to revisit vendor criticality, SLAs, outage communications, and contingency processing options. Security Squawk is built for business owners, executives, board members, and IT leaders who want the real world impact without the fear marketing. Subscribe, share, and support the show at https://buymeacoffee.com/securitysquawk

Cyber risk is escalating fast, and most business leaders are still operating with outdated assumptions. This episode of Security Squawk confronts that reality head on. Ransomware is no longer limited to encrypted files and downtime calculations. Threat actors are escalating pressure tactics into the physical world, including intimidation and direct threats against employees and executives. That shift fundamentally changes the risk profile for organizations. Once physical safety enters the equation, cybersecurity stops being a technical issue and becomes a leadership, legal, and duty of care problem. Companies that are unprepared for this escalation expose themselves to serious liability, regulatory scrutiny, and reputational damage that insurance alone cannot fix. At the same time, businesses are quietly introducing new risks through personal AI agents and automation tools. These tools are often adopted without security review, legal oversight, or compliance consideration. Marketed as productivity enhancers, personal AI agents frequently operate with broad access to email, files, customer data, and internal systems. When these agents mishandle or leak data, responsibility does not fall on the software vendor or the employee experimenting with automation. It falls squarely on the business. Regulators, insurers, and courts do not accept ignorance or convenience as a defense. We also examine why extortion groups like ShinyHunters continue to succeed even as companies invest heavily in security controls. This is not about sophisticated hacking techniques. It is about business pressure. Attackers understand deadlines, brand risk, customer trust, and executive fear. They exploit supply chains, third party vendors, and disclosure obligations to force decisions under time constraints. Paying extortion may feel like resolution, but it often increases long term risk, invites repeat targeting, and complicates regulatory reporting. Throughout this episode, the focus is not on tools, vendors, or technical jargon. It is on decision making. Who owns cyber risk inside the organization? How prepared is leadership to respond when incidents move beyond IT into legal, HR, and physical security territory? And how does a board defend its actions when regulators or plaintiffs start asking questions after an incident? This conversation is designed for CEOs, business owners, board members, and senior leaders who understand that cybersecurity is inseparable from operational risk, financial exposure, and executive accountability. If your strategy relies on cyber insurance, compliance checklists, or the belief that serious incidents only happen to larger companies, this episode will challenge that thinking. Security Squawk cuts through vendor noise and fear driven messaging to focus on what actually matters to businesses making real decisions. Support the show at https://buymeacoffee.com/securitysquawk

This episode of Security Squawk breaks down a familiar and dangerous pattern in cybersecurity. Major brands are losing data. Attackers are moving fast. And companies are still relying on silence and delay as a response strategy. We cover hackers auctioning stolen source code from a major retailer, an unprotected database exposing millions of Gmail and Instagram records, ransomware claims involving Nike and Under Armour, and a gas station breach that exposed Social Security numbers. This is not about advanced hacking techniques or rare exploits. It is about basic security failures, weak response decisions, and the real business impact of hesitation after data exposure. If you are a business owner, executive, or IT leader, this episode explains why modern breaches cause damage long before confirmation and why waiting to respond often shifts risk onto customers and employees

Cybersecurity failures are no longer just IT problems. They are legal, financial, and leadership failures. In this episode of Security Squawk, we break down how a ransomware attack on Ireland's Office of the Ombudsman delayed justice for citizens and what that incident reveals about preparedness, accountability, and real-world consequences of cyber risk. We start with the Ireland cyberattack that forced a key public watchdog agency to halt case processing for months. This was not a minor disruption. Systems were taken offline, legal action was required to prevent potential data leaks, and people relying on the system became collateral damage. The story highlights a hard truth. When cybersecurity fails, mission failure follows. Government or private sector, the outcome is the same. From there, we zoom out to the private sector where the warning signs are flashing red. New survey data shows cybersecurity litigation risk is rising faster than any other legal exposure for U.S. businesses. Corporate legal teams expect cyber and data privacy disputes to intensify, yet fewer of them feel prepared compared to last year. That gap tells us everything we need to know. Companies understand the risk is growing, but they are not investing or aligning fast enough to reduce it. We also examine the dangerous confidence gap in middle market firms. Nearly one in five experienced a cyber incident, yet almost all executives still believe their security posture is strong. Confidence without controls is not resilience. It is exposure. This disconnect raises serious questions about leadership accountability and how security decisions are being made at the executive level. The episode also dives into research showing that many top U.S. companies still fail basic cybersecurity hygiene. Reused passwords, outdated software, poor configuration, and unpatched systems remain common in 2025. These are not advanced threats. These are fundamentals. When organizations cannot execute the basics, the issue is not technical skill. It is culture, discipline, and leadership priority. We discuss the ongoing wave of data breaches affecting insurance, healthcare, and business services organizations, exposing millions of records. These incidents are proof that many companies remain reactive instead of proactive. Third-party risk, weak internal controls, and poor governance continue to amplify the damage. Finally, we tackle a growing blind spot. AI security governance. As businesses rapidly adopt AI tools, many still lack formal rules, oversight, or risk frameworks. Without governance, innovation turns into liability. Attackers move faster than policy, and organizations are left exposed. This episode is a wake-up call for business leaders, MSPs, IT professionals, and security decision-makers. Cybersecurity is no longer about compliance checklists or technology spend. It is about reducing real risk, protecting trust, and leading responsibly. If you want to understand why cyberattacks now lead to lawsuits, why confidence is not the same as security, and why leadership decisions matter more than ever, this episode delivers the insight you need. Subscribe, follow, and share Security Squawk. And if you want to support the show, you can always buy me a coffee at buymeacoffee.com/securitysquawk.

Today on Security Squawk we are breaking down three different incidents that all point to the same underlying issue. Basic security failures with real consequences. An Oregon state agency exposes personal information tied to environmental complaints. Nissan suffers a ransomware incident that leaks nearly 900 gigabytes of internal data. And an Illinois government agency exposes sensitive information connected to more than 700,000 individuals. Randy Bryan, Reginald Andre, and Bryan Hornung walk through what actually happened, why these incidents keep repeating across industries, and what they mean for businesses that assume they are too small or too quiet to be targeted. If government agencies and global manufacturers are struggling with access control, monitoring, and accountability, the real question is what that means for your organization. Join us live to understand the risks and what to do next. Join Randy Bryan, Reginald Andre, and Bryan Hornung live and be part of the conversation.

University of Phoenix confirms a massive data breach affecting almost 3.5 million current and former students, staff, and partners after attackers exploited a zero-day in Oracle E-Business Suite. We break down the implications for identity theft risk and breach response. Next, Andre explains why most existing medical devices would fail the FDA's new cybersecurity standards and how healthcare organizations can manage legacy device risk in critical environments. Finally, Bryan breaks down a cloud breach spree that hit 50 global organizations because multi-factor authentication wasn't enforced. Learn why MFA is no longer optional and how basic security failures lead to major breaches. Tune in for expert insights, practical advice, and what every IT leader needs to know today.

In this annual Security Squawk tradition, we do two things most people avoid: accountability and predictions. First, we break down the top cyber-attacks of 2025 and translate them into what actually matters for business owners, IT pros, and MSPs. Then we grade our predictions from last year using real outcomes. No excuses. No hand waving. No “well technically.” Why does this episode matter? Because 2025 made one thing painfully clear. Most cyber damage does not come from genius hackers. It comes from predictable failures. Unpatched systems. Over-trusted third parties. Tokens and sessions that live too long. Help desks that can be socially engineered. And organizations that still treat cybersecurity like an IT issue instead of a business survival issue. We start with the Top 10 Cyber-Attacks of 2025 and pull out the patterns hiding behind the headlines. This year's list includes ransomware and extortion campaigns, software supply chain failures, identity and OAuth token abuse, and attacks that caused real operational disruption, not just data exposure. These stories show how attackers scale impact by targeting widely deployed platforms and trusted business tools, then turning that access into downtime, data theft, and brand damage. One of the biggest lessons of 2025 is simple: identity is the new perimeter. Many of the most important incidents were not break-in stories. They were log-in stories. Stolen sessions and OAuth tokens keep working because they let attackers bypass MFA, move quickly, and blend in as legitimate users. If your security strategy is focused only on blocking failed logins, you are watching the wrong signal. 2025 also reinforced how fragile third-party trust has become. Integrations are everywhere. They make businesses faster and more efficient, but they also expand the blast radius. When a third-party tool or service account is compromised, it can become a shortcut into systems that were never directly attacked. In this episode, we talk about practical steps like minimizing access scopes, eliminating unnecessary integrations, shortening token lifetimes, and having a real plan to revoke access when something looks off. We also dig into why on-prem enterprise tools continue to get hammered. Many organizations still run internet-facing platforms that are patched slowly and monitored poorly. Attackers love that combination. In 2025, we saw repeated exploitation of high-value enterprise software where a single weakness led to widespread compromise across industries. If your patching strategy is “we will get to it,” attackers already have. Another major theme this year was operational disruption. Some of the costliest incidents were not just about stolen data. They shut down production, halted sales, broke customer service systems, and created ripple effects across supply chains. That is where executives feel cyber risk the hardest. Data loss hurts. Downtime is a business emergency. Then we grade last year's predictions. Did AI take our jobs? Not even close. What it did do was raise the baseline for both attackers and defenders. AI improved phishing quality, accelerated scams, and forced organizations to confront the risks of adopting new tools without clear controls. We also review our call on token and session-based attacks. That prediction aged well. Identity-layer abuse dominated 2025. The issue was not a lack of MFA. The issue was that attackers did not need to defeat MFA if they could steal what comes after it. We also revisit regulation. It did not arrive all at once. It crept forward. Agencies and lawmakers continued tightening expectations, especially in sectors that keep getting hit. Businesses that wait for mandates before improving controls will pay more later, either through recovery costs, insurance pressure, or lost trust. Finally, we look ahead to 2026 with new predictions that are probable, not obvious. We discuss what is likely to change around identity, help desk security, SaaS governance, and how leaders measure cyber readiness. The short version is this: 2026 will reward companies that treat access as a living system and punish those that treat it like a one-time setup. If you like the show, help us grow it. Subscribe, leave a review, and share this episode with someone who still thinks cybersecurity is just antivirus and a firewall. And if you want to support the podcast directly, buy me a coffee at buymeacoffee.com/securitysquawk.

Cyber attacks are no longer a future problem or a Silicon Valley issue. They are happening right now across the United States, quietly and relentlessly, targeting local governments, public agencies, schools, police departments, fire services, and critical infrastructure that most people rely on every day. In this episode of the Security Squawk Podcast, we break down the uncomfortable truth about the current cyber threat landscape and why much of it is flying under the radar. We start with a major data breach involving 700Credit, a financial services company widely used by car dealerships across the country. The breach impacted an estimated 5.8 million consumers, exposing sensitive personal information including names, addresses, birth dates, and Social Security numbers. What makes this incident especially troubling is that it originated through a third-party integration and went undetected until it was too late. This is a textbook example of how supply chain risk, weak API oversight, and poor third-party visibility continue to plague organizations of all sizes. For business owners, IT leaders, and managed service providers, this breach highlights a critical lesson. Security controls inside your own environment are meaningless if your partners, vendors, or integrations are not held to the same standard. Attackers know this, and they are exploiting it aggressively. Next, we shift to a growing and deeply concerning trend involving nation-state threat actors, particularly Russian-backed groups targeting network edge devices. Firewalls, VPN appliances, routers, and other edge infrastructure are now prime targets because they offer direct access to internal networks and often remain poorly monitored or improperly configured. These attacks are not always sophisticated zero-day exploits. In many cases, they succeed because of exposed management interfaces, outdated firmware, or weak credentials. This matters because edge devices sit at the front door of nearly every organization. Once compromised, they allow attackers to persist quietly, move laterally, and stage future attacks without triggering traditional endpoint defenses. The takeaway is clear. If you are not actively inventorying, patching, and monitoring your edge infrastructure, you are already behind. Then we pull the lens back even further and focus on what may be the most underreported cyber crisis happening today. Public sector organizations across the United States are under sustained cyber attack. Cities, towns, school districts, emergency services, and municipal agencies are being hit week after week. These incidents rarely make national headlines. Instead, they show up in small local news outlets, if they are reported at all. We discuss a real-world incident in Attleboro, Massachusetts, where a cybersecurity event disrupted online municipal services and briefly appeared on local television. Stories like this are happening everywhere. From ransomware attacks that shut down city services to breaches that expose resident data, public organizations are being targeted because attackers know they are often underfunded, understaffed, and slow to recover. Using data from ransomware.live and other tracking resources, we highlight how widespread these attacks really are. Thousands of U.S.-based victims are logged publicly, many of them tied to government or quasi-government entities. This is not random. It is a calculated strategy by cybercriminals who understand the pressure public agencies face to restore services quickly, often making them more likely to pay ransoms or quietly rebuild without public disclosure. Throughout the episode, we connect these stories to practical lessons for businesses, MSPs, and IT professionals. Cybersecurity is no longer about preventing every breach. It is about resilience, visibility, and response. It is about understanding where your real risk lies and taking proactive steps before an incident forces your hand. If you work in IT, run an MSP, manage infrastructure, or support public organizations, this episode delivers insight you can use immediately. We cut through the noise, skip the fear marketing, and focus on what actually matters in today's threat environment. Security Squawk exists to make cybersecurity real, relevant, and actionable. If this episode brings value to you, please subscribe, leave a review, and share it with someone who needs to hear it. And if you want to support the show directly, the easiest way is to buy us a coffee at https://buymeacoffee.com/securitysquawk Your support helps us keep producing honest conversations about the threats most people never see until it's too late.

This episode breaks down the true scale of the cybercrime economy. Randy covers the Marquis vendor breach that exposed data across more than 74 banks and credit unions and highlights the ongoing weakness in third-party risk. Andre examines the FinCEN report showing over 2 billion in ransomware payments last year and reveals how organized these criminal groups have become. Bryan closes with a deep dive into the US Treasury's decade long analysis of 4.5 billion in ransom payments, showing how ransomware has grown into an economy that rivals legitimate global businesses. This is essential insight for business leaders, MSPs, and IT professionals who want to understand what is really driving the surge in cybercrime.

This episode breaks down three major cybersecurity stories that reveal exactly where businesses are exposed and how fast the threat landscape is shifting. We analyze how a ransomware group hijacked an emergency alert system to trigger fake national warnings, why more than half of retailers are still paying ransoms despite stronger defenses, and what security leaders should expect heading into 2026. You will learn the real weaknesses behind these incidents, why attackers continue to outpace outdated systems, and how companies can strengthen their defenses now. This episode delivers practical insights, real world examples, and expert commentary that help MSPs, IT teams, and business leaders stay ahead of the next wave of cyber threats.

In this Security Squawk episode, Brian Horning from Xact IT is joined by guests to unpack three real ransomware incidents, the rapid rise of “The Gentlemen” gang, and how attackers bypass basic security by turning off tools like Windows Defender. You'll learn why relying only on built-in protections creates dangerous blind spots, what layered security with EDR, SOC monitoring, and log retention looks like, and the practical steps business leaders can take now to harden their defenses and reduce ransomware risk.

In this episode of Security Squawk, we dig into three major cyber incidents — the DoorDash data breach exposing users' contact info, the Logitech zero-day and data-theft campaign tied to Clop, and the ransomware attack on the Pennsylvania AG office. We break down how each attack played out, what it means for MSPs and business owners, and how you can protect your organisation when the threat spectrum keeps shifting.

In this episode of the Security Squawk Podcast, Bryan Hornung, Randy Bryan, and Reginald Andre break down three major cybersecurity failures hitting government, media, and healthcare. We expose how a single employee action triggered a Nevada ransomware attack, why stolen Slack credentials led to a major Nikkei data leak, and how new NHS and Doctor Alliance breaches highlight the growing crisis in healthcare security. This episode is packed with insights for business leaders, MSPs, and IT pros who want to stay ahead of todays cyber threats. Listen to expert analysis, real world breakdowns, and practical steps to protect your organization from ransomware, credential theft, and supply chain attacks. ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

In this week's episode of the Security Squawk Podcast, Bryan Hornung, Randy Bryan, and Reginald Andre break down three major cybersecurity incidents that show how no industry is immune — from universities and government contractors to the British Library itself. We dig into a 1.2 million-record donor data breach, a ransomware-driven shutdown, and the growing supply-chain risk for MSPs and IT providers. Tune in for sharp analysis, real-world lessons, and actionable advice to protect your business from being the next victim. Cybersecurity podcast, data breach, ransomware, MSP, vendor risk, university breach, British Library, Conduent, IT security trends ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

In this week's Security Squawk Podcast, Bryan Hornung, Randy Bryan, and Reginald Andre break down three massive cybersecurity stories shaping 2025. Bryan kicks off with Qilin — the ransomware gang behind over 700 global attacks this year. Andre covers a New York city that paid a $150,000 ransom to restore operations after a crippling hit. And Randy unpacks a major ISP email breach in Australia that led to SIM-swaps and stolen data. Packed with sharp insights, humor, and practical advice, this episode is a must-listen for MSPs, IT pros, and business owners looking to stay ahead of 2025's top threats.In this week's Security Squawk Podcast, Bryan Hornung, Randy Bryan, and Reginald Andre break down three massive cybersecurity stories shaping 2025. Bryan kicks off with Qilin — the ransomware gang behind over 700 global attacks this year. Andre covers a New York city that paid a $150,000 ransom to restore operations after a crippling hit. And Randy unpacks a major ISP email breach in Australia that led to SIM-swaps and stolen data. Packed with sharp insights, humor, and practical advice, this episode is a must-listen for MSPs, IT pros, and business owners looking to stay ahead of 2025's top threats. ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

In this week's episode of the Security Squawk Podcast, Bryan Hornung, Randy Bryan, and Reginald Andre tackle three major cybersecurity stories that show how the digital landscape is shifting fast, and why business owners, IT pros, and MSPs can't afford to get complacent. Andre kicks things off with the end of an era: Microsoft has officially ended support for Windows 10, even though nearly 41% of Windows users are still running it. He breaks down what that means for everyday users, how the new Extended Security Updates (ESU) program works, and why delaying an upgrade could leave your business wide open to attacks. Next, Randy dives into a ransomware attack that hit a key platform in the $4.3 trillion municipal bond market, disrupting critical financial infrastructure and proving that ransomware isn't just targeting small towns and hospitals anymore. It's going after the systems that keep entire economies running. He explains what went wrong, how it connects to larger threat trends, and what public-sector organizations can learn from it. Then Bryan closes out the show by unpacking Microsoft's 2025 Digital Defense Report, which offers a massive view into the global threat landscape. Microsoft processes over 100 trillion security signals every day, and the report highlights what's working, what's failing, and where the next wave of cyber threats is coming from. Bryan shares key stats, actionable takeaways, and the five core principles Microsoft says every business should follow to defend against ransomware and identity-based attacks. Together, the team connects the dots between these stories, showing how legacy systems, financial vulnerabilities, and evolving threat tactics are all part of the same bigger picture. Expect smart insight, real-world examples, and a few sarcastic jabs along the way as they break down what these headlines mean for your business and your bottom line. Listen to learn: What Microsoft's end of Windows 10 support really means for security Why ransomware is now a systemic financial risk The most important lessons from Microsoft's new Digital Defense Report How to protect your business with resilience, not just reaction If you enjoy the show, hit subscribe, leave a review, and share it with your network. You can also support the podcast directly at buymeacoffee.com/securitysquawk, where every coffee helps us keep squawkin' about cybersecurity that actually matters. ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

In this episode of the Security Squawk Podcast, Bryan Hornung, Randy Bryan, and Reginald Andre break down three major cybersecurity stories that show just how messy 2025 has become for data protection. Randy covers the WestJet breach that exposed more than 1.2 million customers, proving even major airlines can't keep turbulence out of their networks. Andre unpacks how the NSW government accidentally uploaded flood victims' personal data to ChatGPT, turning an AI experiment into a privacy nightmare. Bryan closes with new research showing ransomware attacks are climbing again just as fewer companies renew their cyber insurance — the perfect setup for costly business shutdowns. The team shares insights, lessons, and a few laughs as they explain what these stories mean for business owners, IT pros, and MSPs trying to stay ahead of the next big hit. ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

In this episode of the Security Squawk Podcast, Bryan Hornung, Randy Bryan, and Reginald Andre dissect three headline-making cybersecurity incidents that highlight how threats keep evolving—just in different directions. Randy kicks things off with WestJet's massive data breach, where over 1.2 million customers had their information exposed, showing how even major airlines struggle with protecting sensitive data in 2025. Andre dives into a shocking story out of Australia—the NSW government accidentally uploading flood victims' personal data to ChatGPT, revealing how AI misuse and data mishandling can turn into a privacy nightmare overnight. Bryan closes with the latest findings showing ransomware attacks are rising again—just as fewer companies renew their cyber insurance policies, setting up the perfect storm for costly business disruptions. The team breaks down what these stories mean for business owners, from growing AI data risks to the real cost of skipping cybersecurity insurance. Expect practical takeaways, sharp insights, and a few laughs along the way as the guys decode what's really happening behind the headlines. ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

In this episode of the Security Squawk Podcast, Bryan Hornung and Randy Bryan break down how ransomware keeps evolving and why businesses can't afford to let their guard down. Bryan covers three major stories: a ransomware attack on Volvo's supplier that exposed sensitive employee data, new research showing that 80% of ransomware victims get hit again, and how the Akira ransomware gang is flipping remote management tools against their victims. Randy dives into cyberattacks on global manufacturing, including production halts at Asahi and fallout from the Jaguar Land Rover ransomware incident. We'll unpack what these attacks mean for supply chains, IT teams, and everyday businesses—and why persistence is the new weapon of choice for cybercriminals. Tune in for sharp insights, real-world advice, and a little bit of sarcasm to keep it interesting. ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

In this episode of Security Squawk, Bryan and Randy break down two major cyber stories with real-world lessons for IT leaders and MSPs. First, a FinWise Bank insider breach tied to American First Finance exposed data on nearly 689,000 customers—highlighting offboarding failures and insider risk. Then, a ransomware attack on U.S.-based Collins Aerospace disrupted airport check-in systems across Europe, forcing manual backups and long delays. We unpack what happened, why it matters, and the practical steps businesses can take to reduce insider and third-party risk. ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

In this week's Security Squawk Podcast, Bryan Hornung and Randy Bryan break down two major cybersecurity threats making headlines. First, Bryan covers how artificial intelligence is already supercharging ransomware, making attacks faster, cheaper, and harder to stop. Then Randy dives into the massive ShinyHunters breach that leaked sensitive data from Vietnam's national credit bureau, putting millions at risk worldwide. Tune in for sharp insights, practical advice, and a dose of wit as we connect the dots for business owners, IT professionals, and MSPs. ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

This week on Security Squawk, Bryan Hornung and Randy Bryan break down two hard-hitting cybersecurity stories. Jaguar Land Rover's production lines grind to a halt after a massive cyberattack, showing how ransomware directly disrupts global manufacturing. Meanwhile, CISOs face mounting pressure to stay silent about breaches, raising serious questions about transparency, accountability, and corporate risk. Tune in for sharp insights, real-world lessons, and a dose of wit as we unpack what these stories mean for businesses, IT pros, and MSPs. ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

This week on Security Squawk, Randy and Bryan tackle two major cyber stories shaping 2025. First, Anthropic admits hackers are weaponizing its AI tools, giving cybercriminals a terrifying new advantage in building attacks faster than ever. Then, Bryan breaks down how Amazon disrupted a sophisticated campaign by Russia's APT29 (Cozy Bear), which abused Microsoft 365 device code authentication and cloud infrastructure to hijack accounts at scale. We explain how hackers are using AI to supercharge cybercrime, why APT29's tactics mark a dangerous evolution from past campaigns like SolarWinds and NotPetya, and what this means for businesses, IT professionals, and MSPs. Tune in for sharp insights, real-world examples, and practical takeaways to keep your defenses strong. ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

While everyone obsesses over AI security, the old-school cyber threats are piling up. In this episode of the Security Squawk Podcast, hosts Bryan Hornung and Randy Bryan break down four major incidents that prove ransomware, breaches, and network shutdowns aren't going anywhere. We cover: Nevada state offices crippled by a major security incident Farmers Insurance data breach affecting over 1 million people Data I/O ransomware attack shutting down systems Nissan's design studio breach claimed by the Qilin ransomware gang Plus, we connect the dots to show why ransomware attacks have surged nearly threefold in 2024 — and what businesses need to do to avoid being the next headline. Stay sharp, stay informed, and don't let the AI hype distract you from the real threats hitting businesses every day. ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

In this week's Security Squawk Podcast, hosts Bryan Hornung and Randy Bryan deliver an unfiltered breakdown of the week's most pressing cybersecurity headlines. We're talking about the Workday breach that exposed Salesforce customer data without a single file encrypted—just stolen credentials and surgical precision. Next up, we expose how Akira ransomware is turning cybercrime into marketing warfare, publicly naming and shaming victims in a bold bid to force ransom payouts. Finally, we tackle a brutal stat making waves across the industry: 25% of CISOs are replaced following a ransomware attack. If you're in cybersecurity leadership—or aiming to stay out of the headlines—this episode is your playbook for resilience. Packed with blunt analysis, leadership lessons, and real-world implications, this is one you'll want to share with your entire exec team. ☕ Like what you hear? Support the podcast: buymeacoffee.com/securitysquawk Workday breach, Salesforce breach, ransomware leak sites, Akira ransomware tactics, cybersecurity leadership, CISO turnover, cloud data security, Security Squawk Podcast ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

In this episode of Security Squawk Podcast, hosts Bryan Hornung, Randy Bryan, and Reginald Andre tackle major cybersecurity events impacting high-profile targets. First, luxury fashion giant Chanel falls victim to a devastating cyberattack, compromising customer data. Next, the city of St. Paul grapples with widespread tech disruptions linked to a cybersecurity incident, revealing municipal vulnerabilities. Finally, an urgent investigation into an SSL vulnerability by cybersecurity hardware provider SonicWall leaves businesses scrambling for protection. Learn critical security insights, risk management tips, and proactive steps to safeguard your business against evolving threats. Cybersecurity, Chanel cyberattack, St. Paul tech disruptions, SonicWall vulnerability, SSL security, data breach, municipal cybersecurity, Security Squawk Podcast. ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

This week on the Security Squawk Podcast, we're diving into three major cybersecurity incidents that highlight just how vulnerable even the most well-known organizations still are in 2025. First up, we cover the massive data breach at Co-op, where all 6.5 million members had their personal information stolen. That's right—every single member. We unpack what went wrong, how the breach was discovered, and the long-term fallout for one of the UK's largest retail cooperatives. Then, we turn our attention to the notorious Scattered Spider cybercrime group, which is back in the headlines after breaching major corporations like Clorox and Cognizant. And how did they get in? Not with some zero-day exploit or advanced malware—just simple, convincing phone calls. It's a wake-up call for any business that thinks cybersecurity is all about firewalls and antivirus. Finally, we bring it closer to home with a cyberattack that shut down systems in the Fort Smith Public School District in Arkansas. It's the latest in a growing trend of ransomware targeting schools and disrupting education. We explore what districts can do to prepare and why K–12 institutions remain such easy, high-impact targets for cybercriminals. If you're a business owner, IT professional, school administrator, or just someone who cares about protecting data, this is one episode you don't want to miss. ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

Another week, another round of cyber fails making headlines. In this episode of Security Squawk, we break down how some of the biggest names in tech and business are still getting owned by basic mistakes. This week: Dell's breach exposes critical platforms to extortion groups ️ A 158-year-old company destroyed by one weak password Ransomware still targeting hospitals while reports claim it is in decline If you think big brands have it figured out, think again. Stay informed and stay protected. Watch or listen now for insights you will not hear anywhere else. ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

Ransomware attacks are exploding in 2025, and cybercriminals are getting bolder — and richer. In this episode of Security Squawk, we break down the latest schemes, lawsuits, and trends you need to know: Interlock ransomware's new ‘FileFix' malware trick Krispy Kreme sued for exposing employee data Ransomware attacks nearly double in 2025 Hackers getting 80% payouts to keep the attacks rolling If you own a business, manage IT, or care about protecting your data, you can't afford to miss this one. Watch or listen now and stay one step ahead. ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

A massive ransomware attack hits Ingram Micro — what happened, who's behind it, and what it means for your business. We also dive into the terrifying rise of AI-powered cyberattacks and the dangerous gap between innovation and data protection. In this episode: Ingram Micro ransomware attack breakdown AI cybercrime stats that will shock you Is AI innovation outpacing cybersecurity? Let's debate Tune in now and stay one step ahead of the threats. ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

Today on the Security Squawk Podcast: We're diving into a high-impact lineup of cyber threats and breaches shaking up industries from healthcare to aviation: Aflac Breach – Social Security numbers, health claims, and personal data compromised. ✈️ FBI Alert: 'Scattered Spider' cybercrime gang now targeting major U.S. airlines. Hawaiian Airlines hit by a cyberattack—what it means for travelers. ️ Hungryroot Breach – Over 1.1 million user records reportedly up for sale on the dark web. Tenacious Marketing USA – 414,000 records exposed. Another day, another marketing firm breached. ️ Hosted by Bryan Hornung, Reginald Andre, and Randy Bryan, this episode delivers real-world analysis, breach breakdowns, and what your business should be doing right now to stay protected. Join us live. Ask questions. Stay ahead. ️ New to streaming or looking to level up? Check out StreamYard and get $10 discount! https://streamyard.com/pal/d/65161790...

Cybercriminals are getting bolder—and smarter. This week, the Security Squawk crew tackles some of the most concerning stories in cyber news: a ransomware gang is now telling victims to call their lawyers, insurers like Aflac are struggling with ongoing ransomware outages, and healthcare data for over 50 million people has been exposed. We each bring a real-world case that highlights just how chaotic—and dangerous—the threat landscape has become. Topics this week: Qilin ransomware's new legal scare tactic Episource breach impacts 5.4 million patients McLaren Health confirms sensitive data exfiltration Aflac & other insurers hit by ransomware, causing major outages Tune in for expert breakdowns, sharp insights, and actionable advice to keep your business secure.

What if paying the ransom guaranteed you'd still lose everything? In this week's Security Squawk Podcast, Bryan, Reginald, and Randy break down one of the most disturbing ransomware developments yet—Anubis ransomware, which encrypts your data and wipes it out regardless of payment. There's no negotiation. No way back. We also dive into: Nova Scotia Power breach – A cyberattack hits a major utility provider. Is our infrastructure truly ready for what's coming? Israel-Iran cyber war risks – As these nations trade digital blows, U.S. businesses may find themselves caught in the crossfire. Insider threats exposed – It's not just rogue employees. Negligence and poor culture may be your biggest risk factor. Motel 6 data leak – An investment firm mishandled sensitive data, exposing customers and employees. Who's responsible when partners fumble? Tune in for expert insights, unfiltered opinions, and practical guidance on how these threats could impact your business—and what to do about it.

From the confirmed AT&T breach leaking 80+ million Social Security numbers to AI tools being labeled a “data breach time bomb,” the threats are getting smarter, faster, and more destructive. On this episode of Security Squawk, Bryan, Randy, and Andre break down the nonstop cyber carnage sweeping the U.S., with businesses, hospitals, and government agencies all taking hits. In this episode: AT&T's massive customer data leak finally confirmed AI's dangerous role in future data breaches Ransomware cripples a grocery giant, law enforcement, and mental health clinics Remote monitoring software exploited in hospital attacks Suspicious “outages” and confirmed data theft from major companies

This week on Security Squawk, we dive into the ransomware wave crashing across the U.S. From local governments like Lorain County and Durant to major healthcare providers and even Victoria's Secret, no one is off-limits. We also expose the dangerous rise of triple extortion ransomware and highlight the response playbooks from Kettering Health and the City of Abilene. Tune in as Bryan, Randy, and Andre break it all down and offer insights you can't afford to miss.

This week on the Security Squawk Podcast, Bryan Hornung, Randy Bryan, and Reginald Andre break down a brutal stretch of ransomware attacks that took out hospital systems, 911 emergency services, telecoms, and even a grocery store supply chain. We cover how a zero-day exploit in Microsoft Windows is being used in real-world ransomware campaigns and how legal fallout is brewing for one cultural institution post-breach. From critical infrastructure to everyday consumer access, this episode reveals the growing impact and frequency of ransomware in 2025. Tune in to hear expert analysis and insight you won't get anywhere else. If this episode brings you value, don't forget to like, share, and subscribe—that's how you can help support the show without ads!

This week on Security Squawk, we're diving into high-impact cyber incidents affecting massive brands and vulnerable communities. From Adidas leaking customer data to a lawsuit following a ransomware attack that exposed survivor records, it's clear the cyber threat landscape is only heating up. We also look at Nucor's production shutdown, shocking stats showing most companies wait 4 months to report breaches, and a new debate—Is AI distracting IT from real security threats like ransomware? Tune in for expert takes, powerful insights, and practical questions every business leader should be asking.

Cyber threats are evolving—and fast. In this episode of Security Squawk, we investigate Alabama's mysterious “cybersecurity event,” expose the growing threat of callback phishing from the Silent Ransom Group, and reveal why Lee Enterprises had to spend $2 million to recover from a ransomware attack. Plus, we dive into a Cisco study showing that just 4% of companies are prepared to face AI-powered cyber threats. Tune in as Bryan, Randy, and Andre break down what this means for your business and how to stay ahead of the game. Topics Discussed: Alabama's state-level cyber “event” SilentRansomGroup & Luna Moth callback phishing BEC remains strong despite drop in cyber claims Lee Enterprises' $2M ransomware recovery Cisco's shocking AI-era threat readiness stat Future of AI-powered ransomware M&S and Co-op attack updates

Join us on this week's Cybersecurity Podcast for an in‑depth, ad‑free exploration of the latest ransomware blitz and emerging defense strategies. I'm Bryan Hornung, alongside Randy Bryan and Reginald Andre three industry veterans with decades of hands‑on experience ready to unpack every twist and turn. In our opening deep dive, we'll walk you through two headline‑grabbing attacks: a CBS affiliate in Chattanooga that fell victim to the Lynx ransomware gang, and Hitachi Vantara's flagship data center, crippled for days by the Akira group. What drove these adversaries to target media outlets and global enterprises, and how did each organization scramble to contain the damage? We'll analyze critical containment tactics, rapid recovery plans, and key lessons for shoring up defenses before the next breach strikes. Next, we shift from real‑world incidents to cutting‑edge trends shaping tomorrow's battlefield. Discover why live ransomware simulations are becoming essential “war games” for security teams, and learn how agentic AI could empower attackers to move at machine speed outpacing human defenders. We'll also demystify Microsoft's bold move to make every new account passwordless by default, weighing the promise of passkeys and biometrics against privacy and compliance concerns. And don't miss our examination of the startling insider‑threat case, where a cybersecurity CEO allegedly turned hospital systems into his own surveillance testbed. In our follow‑up segment, we revisit two major UK retail hacks Marks & Spencer's admitted lack of a coherent cyber‑response plan and the Co‑op's mass data theft—plus the alarming rise of “vishing” through fake IT help‑desk calls. Then, we cover the Cobb County leak and its fallout for citizen privacy, before closing with a critical look at DaVita's recent ransomware event, where 1.5 TB of patient data was exfiltrated yet life‑saving dialysis treatments continued under emergency protocols. Whether you're a security leader, IT professional, or simply curious about how today's most dangerous cyber threats unfold and get contained, this episode delivers actionable insights and expert analysis. Listen now, subscribe for the latest updates, and share if you find value your support keeps our show free of ads and full of expertise!

First, the UK's Co-operative Group was forced to shut down part of its IT systems after a suspected cyberattack, disrupting internal operations like stock monitoring and remote access—just weeks after a similar event hit Marks & Spencer. While customer-facing services stayed online, the breach highlights growing risks in the retail supply chain. Meanwhile, a ransomware attack crippled systems at the DuPage County Sheriff's Office and courthouse in Illinois. While 911 and public safety services remained active, critical infrastructure—including judicial and legal records—went dark. The FBI and Secret Service are now leading the investigation. But not all stories end in disruption—Doctors Hospital in the Cayman Islands successfully thwarted a ransomware attack thanks to quick action by its IT Director and a well-practiced incident response plan. No patient data was compromised, and operations resumed with minimal downtime. We'll break down what went right, what went wrong, and why tabletop exercises and segmented infrastructure may be your best defense in this era of relentless cyber threats.

In this episode of Security Squawk, we dissect a wave of high-impact cyber events: a Texas city forced offline by a cyberattack; a 9% jump in ransomware against U.S. infrastructure; the FBI's record-breaking $16.6 B loss in 2024; North Korean spies posing as U.S. firms to infect crypto developers; global cyberwarfare readiness; and headline-grabbing data leaks—from Legends International to Blue Shield's PHI slip. Plus, Randy breaks down AI's promise (and pitfalls) in cybersecurity, and we unpack Verizon's DBIR warning on third-party breach surges. In our Follow-Up, we revisit DaVita's dialysis response, Sensata's production halt, and Frederick Health's 1 M patient-record breach. Tune in now!

This week on Security Squawk, we break down a wave of major ransomware attacks and data breaches shaking up the business world. From the global disruption at Sensata Technologies and a weekend attack on DaVita's kidney care network, to Hertz's customer data breach and a $23 million loss for IKEA's operator, no industry is safe. We also spotlight attacks on CMC Corporation and a dental care provider, revealing why organizations of all sizes are at risk. Join Bryan, Randy, and Andre as they unpack the latest threats, share expert insights, and offer practical tips to keep your data safe!

This week on The Security Squawk cybersecurity podcast, we're diving deep into a cybercrime spree hitting across the nation! First up, Baltimore finds itself $1.5 million lighter after cybercriminals pull off identity theft under the FBI's watchful eye. Then, we unpack the ransomware nightmare hitting close to home in Texas, as the State Bar warns thousands about compromised data. But it doesn't stop there—Minnesota's Sioux Tribe faces operational chaos at Jackpot Junction Casino due to ransomware attackers holding their systems hostage. Meanwhile, cybercriminals shift tactics from encryption to pure extortion, signaling a dangerous new frontier in cyber threats. We'll also expose the shocking truth about how hackers are increasingly using legitimate logins to bypass traditional security, discuss why plug-and-play antivirus solutions are falling short, and explore the fallout from massive breaches at the Port of Seattle and Nationwide Recovery Service, which left tens of thousands vulnerable. Join us as we dissect these alarming trends, break down what went wrong, and give you actionable insights to keep your business and data safe from the evolving cyber threat landscape.

This week on the Security Squawk podcast, we're diving into the biggest cybersecurity stories shaking up the industry: ️ Oracle Health admits to a shocking breach. Ransomware downtime averages 24 days—crippling businesses. Healthcare providers remain dangerously vulnerable to ransomware. ️ Sam's Club investigates Clop ransomware breach claims. ❌ Check Point denies breach allegations while hackers sell access. Local doctor fights to save his practice after ransomware hits—insurance gaps exposed. Fake Zoom installer spreading dangerous ransomware—don't get tricked! Join us live to discuss these critical issues! Don't forget to LIKE and SUBSCRIBE for weekly cybersecurity updates.

In our latest podcast episode, we discuss the evolving landscape of cybersecurity threats, uncovering how sophisticated attacks are impacting various sectors and how organizations are responding.​ We begin by examining the recent Oracle Cloud breach, which has potentially exposed 6 million records, affecting over 140,000 businesses. This incident underscores the critical need for robust cloud security measures.​ Next, we discuss Microsoft's initiative to bolster Teams' security against phishing and cyber attacks. These enhancements aim to support overwhelmed security teams by integrating advanced protective features into the widely used collaboration platform.​ We also explore the shift in cyberattack readiness responsibilities to state and local governments, following an executive order from President Trump. This policy change raises questions about the preparedness of local entities to handle sophisticated cyber threats.​ Additionally, we highlight the increasing targeting of Mac users by hackers through sophisticated Apple ID phishing scams. This trend challenges the perception of Macs being inherently more secure and emphasizes the need for vigilance among all users.​ We then analyze PowerSchool's 'Trust The Hackers' response to a recent cyber incident, critiquing the approach and discussing the importance of transparency and trust in cybersecurity practices.​ Furthermore, we address the cyberattack on DHR Health in Texas, which has raised concerns over the security of healthcare information systems and the protection of patient data.​

In our latest podcast episode, we delve into the evolving landscape of cybersecurity threats, uncovering how sophisticated attacks are crippling industries and government institutions. We examine how the Black Basta ransomware gang is leveraging brute-force attacks against edge devices, enabling them to infiltrate networks with alarming efficiency. This highlights the growing need for businesses to fortify their perimeter defenses. Additionally, we discuss the Cleveland Municipal Court cyberattack, which has left operations crippled for over three weeks, shedding light on the prolonged impact of cyber incidents on the judicial system. Similarly, we explore the Atchison County government shutdown, where a cyberattack forced local offices to close, emphasizing the vulnerabilities in public sector cybersecurity. We also analyze a recent KnowBe4 report, which warns that the education sector remains dangerously unprepared for escalating cyberattacks, leaving schools and universities at high risk. Finally, we examine a newly discovered Microsoft365 exploit, where attackers are bypassing traditional email security measures, prompting an FBI warning for Gmail, Outlook, and VPN users to take immediate action. Cyber threats are evolving rapidly—are organizations prepared to defend against them? Tune in as we break down these incidents and discuss proactive security measures to mitigate risks.

Join Bryan Hornung, Randy Bryan, and Reginald Andre on Security Squawk as we dive into an extensive breakdown of this week's significant cybersecurity incidents impacting a wide range of sectors. We'll begin by examining the troubling cyberattack at the Missouri Department of Conservation (MDC), headquartered in Jefferson City, Missouri, nearly three years after auditors first identified critical vulnerabilities. What lessons can government agencies learn from this delayed response? Next, we'll analyze the ransomware attack on the Penn-Harris-Madison School Corporation in Indiana, highlighting the potential exposure of sensitive student information and discussing best practices for securing educational institutions. We'll also review recent phishing attacks that compromised client data at iTP Partners, a specialized financial advisory firm based in Florida and New York, and Legacy Professionals, an accounting and auditing firm from Westchester, Illinois, emphasizing the ongoing threats posed by these sophisticated scams. Further, we'll explore the far-reaching implications of the cyberattack that temporarily took the Polish Space Agency offline, and the confusion surrounding Home Depot, the world's largest home improvement retailer based in Atlanta, Georgia, amid conflicting reports of a ransomware incident. With approximately 471,600 employees and revenues reaching $152.7 billion in 2023, what can companies of this scale do to maintain transparency and customer trust during cybersecurity crises? Lastly, we'll discuss how ransomware led to the downfall of a 150-year-old company, underscoring that even the most established organizations are vulnerable in today's cyber threat landscape. What proactive steps can legacy businesses take to fortify their cybersecurity posture? Tune in for expert insights, practical advice, and actionable strategies from Bryan Hornung, Randy Bryan, and Reginald Andre. If you find this episode valuable, please like, subscribe, and share to help others stay informed and prepared.

Join Bryan Hornung, Randy Bryan, and Reginald Andre on Security Squawk as we dive into an extensive breakdown of this week's significant cybersecurity incidents impacting a wide range of sectors. We'll begin by examining the troubling cyberattack at the Missouri Department of Conservation (MDC), headquartered in Jefferson City, Missouri, nearly three years after auditors first identified critical vulnerabilities. What lessons can government agencies learn from this delayed response? Next, we'll analyze the ransomware attack on the Penn-Harris-Madison School Corporation in Indiana, highlighting the potential exposure of sensitive student information and discussing best practices for securing educational institutions. We'll also review recent phishing attacks that compromised client data at iTP Partners, a specialized financial advisory firm based in Florida and New York, and Legacy Professionals, an accounting and auditing firm from Westchester, Illinois, emphasizing the ongoing threats posed by these sophisticated scams. Further, we'll explore the far-reaching implications of the cyberattack that temporarily took the Polish Space Agency offline, and the confusion surrounding Home Depot, the world's largest home improvement retailer based in Atlanta, Georgia, amid conflicting reports of a ransomware incident. With approximately 471,600 employees and revenues reaching $152.7 billion in 2023, what can companies of this scale do to maintain transparency and customer trust during cybersecurity crises? Lastly, we'll discuss how ransomware led to the downfall of a 150-year-old company, underscoring that even the most established organizations are vulnerable in today's cyber threat landscape. What proactive steps can legacy businesses take to fortify their cybersecurity posture? Tune in for expert insights, practical advice, and actionable strategies from Bryan Hornung, Randy Bryan, and Reginald Andre. If you find this episode valuable, please like, subscribe, and share to help others stay informed and prepared.

In this hard-hitting episode of Security Squawk, we break down a series of high-profile cyber breaches shaking institutions across America. From the ransomware chaos at Anne Arundel County and the delayed breach disclosure at St. Landry Parish Schools to the dramatic data heist at Riverdale Country School and the cyber assault on Williamsburg-James City County Public Schools, we uncover the tactics behind these attacks. We also explore the shutdown of Cleveland Municipal Court, the significant data breach at DISA Global Solutions, and the swift countermeasures at Cayuga Medical Center. Join us as our experts analyze these incidents, discuss emerging ransomware trends, and reveal why the dark web values healthcare data far above credit card details.