SecurityMetrics News

Follow SecurityMetrics News
Share on
Copy link to clipboard

Your Threat Intelligence Digest - The latest in Cyber-News. Join Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Forrest Barth (SOC Analyst, CISSP, CMNO, Security+) as they dive in to all the updates in the world of cybersecurity. | Presented by SecurityMetrics

SecurityMetrics


    • Sep 15, 2022 LATEST EPISODE
    • every other week NEW EPISODES
    • 31m AVG DURATION
    • 41 EPISODES


    Search for episodes from SecurityMetrics News with a specific topic:

    Latest episodes from SecurityMetrics News

    Firewalls 101 - What is a Firewall? | SecurityMetrics News

    Play Episode Listen Later Sep 15, 2022 5:02


    Subscribe to the SecurityMetrics Threat Intelligence Center News Feed!What is a firewall?How do firewalls work?Where should I use a firewall?Tune in this week as Noah Pack and Kaden Payne give you the basics on all things firewallsHosted by Noah Pack (Threat Hunter/Security Operations Center Analyst, Security+, ITF+, Sophos Certified Engineer) and Kayden Payne (SOC Intern).

    Best Sites to Learn Cybersecurity | SecurityMetrics News

    Play Episode Listen Later Sep 2, 2022 9:43


    Subscribe to our Weekly Threat Intelligence Center News Feed! - https://www.securitymetrics.com/lp/education/threat-intelligence-subscribeThe vast field of Cybersecurity can be very intimidating for a newcomer. Tune in this week as Noah Pack gives his top recommended sites and tools to get you building your skills in infosec.Hosted by Noah Pack (Threat Hunter/Security Operations Center Analyst, Security+, ITF+, Sophos Certified Engineer).Links:-SecurityMetrics Academy-TryHackMe-Over The Wire-Linux Journey-Lets Defend

    Rising Vishing Scams - Apple Malware - Twitter Breach - Slack Leak | SecurityMetrics News

    Play Episode Listen Later Aug 19, 2022 28:18


    Subscribe to our Weekly Threat Intelligence Center News Feed!Tune in this week as Heff and Jared give you the latest in this week's cyber news!This Week's Stories:Apple app store plagued with malwareTwitter leaking APIsVishing tactics on the riseHosted by Matthew Heffelfinger (Deputy CISO, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Jared Bergenthal (SOC Intern).

    3 Projects to Get You Into InfoSec | SecurityMetrics News

    Play Episode Listen Later Aug 5, 2022 12:12


    The vast field of InfoSec can be very intimidating for a newcomer wanting to get into the trade. Tune in this week as Noah Pack gives his top 3 recommended projects to get your foot into cybersecurity.Hosted by Noah Pack (Threat Hunter/Security Operations Center Analyst, Security+, ITF+, Sophos Certified Engineer).PiHoleHoneypotPwnagotchi

    Amazon Scams - Disney Hack - Drone Hack - Fake Cisco Tech - Honda Car Hack | SecurityMetrics News

    Play Episode Listen Later Jul 15, 2022 30:08


    Subscribe to the SecurityMetrics News Feed!Tune in this week as Heff and Kaden give you the latest cyber-news! Common Amazon scams to look for, recent Disneyland hack, counterfeit Cisco tech and more!Also Included:Apple "Lockdown Mode"The Return of MacrosNew Ransomware Search ToolHosted by Matthew Heffelfinger (Deputy CISO, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Kaden Payne (SOC Intern).

    Internet Explorer - Apple M1 - Russia Cyber War | SecurityMetrics News

    Play Episode Listen Later Jun 17, 2022 24:56


    Subscribe to our Weekly Threat Intelligence Center News Feed!Tune in this week as Heff and Noah give you the latest cybersecurity news - The retirement of Internet Explorer, Apple M1 chip vulnerability, Russia cyber war updates and more.Also included:New Jersey Healthcare BreachLargest Botnet EVERLatest Ransomware AttacksHosted by Matthew Heffelfinger (Deputy CISO, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Noah Pack (Threat Hunter/Security Operations Center Analyst, Security+, ITF+, Sophos Certified Engineer).

    iPhone Hack - Tesla Hack - PrintNightmare Return - $5 Trojans and More | SecurityMetrics News

    Play Episode Listen Later May 20, 2022 29:15


    Subscribe to our Weekly Threat Intelligence Center News Feed! iPhones and Teslas can now be hacked remotely?? Tune in this week as Heff and Noah give you the LATEST CYBER NEWS. Included This Week:PrintNightmare RETURNS$5 Trojans for SaleiPhones Hackable Even When Shut OffHosted by Matthew Heffelfinger (Deputy CISO, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Noah Pack (Threat Hunter/Security Operations Center Analyst, Security+, ITF+, Sophos Certified Engineer).

    Google Privacy Update - PII Can Now be Removed from Searches | SecurityMetrics News

    Play Episode Listen Later May 6, 2022 25:42


    Subscribe to our Weekly Threat Intelligence Center News Feed!Have you ever been worried of the fact that people can google your name, phone number, address, and more? Join Heff and Noah this week as they give you the latest with the recent Google update, allowing you to REMOVE your PII from search. Additional Stories:Black Basta Ransomware Gang - Conti 2.0?Twitter seeks to authenticate all users - good or bad?How to protect your network from FAKE Cisco hardware.Hosted by Matthew Heffelfinger (Deputy CISO, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Noah Pack (Threat Hunter/Security Operations Center Analyst, Security+, ITF+, Sophos Certified Engineer).

    T-Mobile Breached AGAIN | SecurityMetrics News

    Play Episode Listen Later May 1, 2022 26:20


    Subscribe to our Weekly Threat Intelligence Center News Feed! Tune in this week as Heff and Noah update you on the latest T-Mobile breach and more!Additional stories:Latest MOST sophisticated Facebook phishingVirustotal Security FlawsLATEST on the Russian/Ukraine Cyber warHosted by Matthew Heffelfinger (Deputy CISO, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Noah Pack (Threat Hunter/Security Operations Center Analyst, Security+, ITF+, Sophos Certified Engineer).

    Top 10 Tax Scams - 5 Tips to Avoid Getting Tricked | SecurityMetrics News

    Play Episode Listen Later Apr 14, 2022 9:52


    Subscribe to our Weekly Threat Intelligence Center News Feed!Tax season is here, and so are the SCAMS! Don't get fooled - tune in with Heff and Noah as they give you the top scams to look out for, and 5 TIPS on how to stay SAFE.Listen to learn:-Common tactics used by scammers-How to spot a scam-5 tips to keep your data secure from scammersHosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Noah Pack (Threat Hunter/Security Operations Center Analyst, Security+, ITF+, Sophos Certified Engineer).

    Google Chrome, Apple Vulnerabilities & 4,000 FAKE Job Offers | SecurityMetrics News

    Play Episode Listen Later Apr 8, 2022 26:30


    Subscribe to our Weekly Threat Intelligence Center News Feed!Hop in this week as Heff and Noah give the run down of this weeks TOP CYBER STORIES. Subscribe to get the latest news in the world of cyber.Covered this week:- Ukraine, Russia CYBER WAR flames on- HUGE Apple zero day- Log4Shell is BACK - Spring4ShellHosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Noah Pack (Threat Hunter/Security Operations Center Analyst, Security+, ITF+, Sophos Certified Engineer).

    Lapsus$ Okta Breach Timeline | SecurityMetrics News

    Play Episode Listen Later Mar 31, 2022 24:58


    Subscribe to our Weekly Threat Intelligence Center News Feed!How does a breach like the recent Okta breach happen? How do the hackers get in? Tune in this week as Heff and Noah dive into the step by step process taken by Lapsus$ on the recent Okta breach.Hosted by Matthew Heffelfinger (Deputy CISO, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Noah Pack (Threat Hunter/Security Operations Center Analyst, Security+, ITF+, Sophos Certified Engineer).

    Okta and Microsoft Breach | SecurityMetrics News

    Play Episode Listen Later Mar 24, 2022 21:51


    Subscribe to our Weekly Threat Intelligence Center News Feed!Okta, an authentication company used by thousands of organizations around the world, has now confirmed they have been breached - affecting around 2.5 percent of its customers.Any hack of Okta could have major ramifications for the companies, universities, and government agencies that depend upon Okta to authenticate user access to internal systems.Get the latest updates in the BREAKING Okta breach and more with Heff and Noah!Hosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Noah Pack (Threat Hunter/Security Operations Center Analyst, Security+, ITF+, Sophos Certified Engineer).

    Ukraine Russia Cyber War Rages On | SecurityMetrics News

    Play Episode Listen Later Mar 11, 2022 21:25


    Subscribe to our Weekly Threat Intelligence Center News Feed! The cybersecurity war between Russia and the rest of the world is hotter than ever before. Hackers taking sides, companies leaving Russia, and even a good old "Rick Roll" comes into the field. Tune in this week as Heff and Noah run down the latest on this cyber war.Included this week:Companies deny service to RussiaConti Ransomware BREACHEDRussian PHISHING to be aware ofHosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Noah Pack (Threat Hunter/Security Operations Center Analyst, Security+, ITF+, Sophos Certified Engineer).

    Ukraine vs Russia: Hackers Take Sides | SecurityMetrics News

    Play Episode Listen Later Mar 4, 2022 39:13


    Subscribe to our Weekly Threat Intelligence Center News Feed!The battles between Russia and Ukraine rage even in the cyberverse, and hackers are taking sides. Tune in this week as Heff and Noah run you down with the latest cyber news this week.Also included:-Elon Musk gives Starlink to Ukraine-Hacker rally under the Anonymous banner-Russian electric car charging stations hackedHosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Noah Pack (Threat Hunter/Security Operations Center Analyst, Security+, ITF+, Sophos Certified Engineer).Resources:-https://krebsonsecurity.com/2022/02/russia-sanctions-may-spark-escalating-cyber-conflict/-https://therecord.media/russia-or-ukraine-hacking-groups-take-sides/-https://www.cyberscoop.com/ukraine-wiper-malware-eset-sentinelone-whispergate/-https://www.securityweek.com/conti-chats-leaked-after-ransomware-gang-expresses-support-russia-https://therecord.media/ukraine-swift-russia-banks/-https://www.bloomberg.com/news/articles/2022-02-27/musk-activates-starlink-satellites-in-response-to-ukraine-plea-https://www.rferl.org/a/russia-websites-hacked-anonymous/31728186.html-https://www.zdnet.com/article/google-increasing-account-protections-for-users-impacted-by-russian-invasion-of-ukraine/-https://www.zdnet.com/article/meta-blocks-russian-state-media-accounts-in-ukraine/-https://electrek.co/2022/02/28/hacked-electric-car-charging-stations-russia-displays-putin-dckhead-glory-to-ukraine/-https://www.bloomberg.com/news/articles/2022-02-27/musk-activates-starlink-satellites-in-response-to-ukraine-plea-https://www.cisa.gov/free-cybersecurity-services-and-tools-https://www.cisa.gov/shields-up-https://www.zdnet.com/article/how-a-digital-war-with-russia-threatens-it-industry/-https://www.cyberscoop.com/ukraine-russia-intelligence-preparation-battlefield-ipb/-https://www.zdnet.com/article/this-stealthy-and-most-advanced-malware-burrows-deep-into-networks-to-steal-data/-https://www.crn.com/news/security/nvidia-hacks-ransomware-gang-back-to-block-data-leaks-group-claims-https://www.cyberscoop.com/toyota-kojima-cyberattack-japan/-https://global.toyota/en/newsroom/corporate/36961051.html-https://status.axis.com/-https://www.zdnet.com/article/swedish-camera-giant-axis-still-recovering-from-cyberattack/-https://www.zdnet.com/article/microsoft-warning-some-files-might-not-be-deleted-when-you-reset-a-windows-pc/-https://www.zdnet.com/article/this-hotel-is-using-technology-in-a-truly-creepy-way-but-some-will-like-it/

    E-Commerce Payment Skimming Attacks On The Rise | SecurityMetrics News

    Play Episode Listen Later Feb 18, 2022 30:11


    Subscribe to our Weekly Threat Intelligence Center News Feed!HUNDREDS of e-commerce sites have been hit with payment card-skimming malware. Tune in this week as Heff and Noah discuss the latest online skimming attacks, and tools out there that can prevent them.Additional Stories:FAKE Windows 11 downloader - BEWAREFrance BANS Google Analytics, claim GDPR violationHacker finds unlimited Ethereum glitchHosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Noah Pack (Threat Hunter/Security Operations Center Analyst, Security+, ITF+, Sophos Certified Engineer).

    Crypto Exchanges HACKED - Wormhole, Bitmart, Crypto.com | SecurityMetrics News

    Play Episode Listen Later Feb 4, 2022 37:51


    Subscribe to our Weekly Threat Intelligence Center News Feed!Multiple crypto exchange sites get hit BIG, loosing hundreds of millions of dollars worth of crypto. Tune in this week as Heff and Noah dive into the latest crypto breaches this year.Also Included:- Ukraine Malware Attacks Uncovered- Unsafe Browser Saved Passwords- Kronos BreachHosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Noah Pack (Threat Hunter/Security Operations Center Analyst, Security+, ITF+, Sophos Certified Engineer)

    Millions of Home Wi-Fi Routers Threatened by Malware - How to Find It | SecurityMetrics News

    Play Episode Listen Later Nov 19, 2021 31:10


    Subscribe to our Weekly Threat Intelligence Center News Feed!Newly found malware is plaguing MILLIONS of home and work routers. Join Heff and Forrest as they discuss what this new malware is, and what YOU can do to stop it.Also Included:- PS5 and Xbox Black Friday Scams- FBI Email HACKED- Fake Amazon SitesHosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Forrest Barth (SOC Analyst, CISSP, CMNO, Security+).

    Black Friday Scams - Don't Get Fooled | SecurityMetrics News

    Play Episode Listen Later Nov 5, 2021 37:45


    Subscribe to our Weekly Threat Intelligence Center News Feed! Phishing scams are nothing new, but the tactics used by threat actors definitely are. Tune in this week as Heff and Forrest keep you up to date on the phishing lures to look out for this Black Friday.Also Included:- How to stop your SmartTV from spying on you.- How much Data does Big Tech collect?- Trojan source code attackHosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Forrest Barth (SOC Analyst, CISSP, CMNO, Security+).

    Latest Phishing Lures - Cyber Security Month | SecurityMetrics News

    Play Episode Listen Later Oct 15, 2021 33:18


    Sign up for this year's SecurityMetrics Summit free live event!Subscribe to our Weekly Threat Intelligence Center News Feed!Phishing tactics are always on the move, and you need to be as well if you want to stay safe. Join Heff this week as he covers the latest changes and tactics used in phishing.Listen to learn:- Recent patches released- Facebook breach- Dahua and Hikvision security camera breachHosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Forrest Barth (SOC Analyst, CISSP, CMNO, Security+).

    How to Know If an App Is Secure | SecurityMetrics News

    Play Episode Listen Later Oct 4, 2021 22:43


    Subscribe to our Weekly Threat Intelligence Center News Feed!Throughout the last decade, we have become more and more reliant on apps on our phones. With an ever-increasing number of apps to download, you would be surprised at how many apps are unsecure and funnel your data. Tune in this week as Heff and Forrest tackle the steps you need to take in making sure your apps are secure.Hosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Forrest Barth (SOC Analyst, CISSP, CMNO, Security+).

    Apple's "ForcedEntry" Patch and More | SecurityMetrics News

    Play Episode Listen Later Sep 17, 2021 40:30


    Subscribe to our Weekly Threat Intelligence Center News Feed!Patch all the things! Join Heff and Forrest this week as the give the latest on all the recent patches released by Apple, Microsoft, Google and more!Listen to learn:- How likely is your employee to cause a data breach?- TV remotes now hackable?- How to search for hidden cameras in your AirBnB/VRBO.Hosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Forrest Barth (SOC Analyst, CISSP, CMNO, Security+).

    Hackers Changing Their Tactics - Deepfakes, CPU Malware, and More | SecurityMetrics News

    Play Episode Listen Later Sep 3, 2021 38:46


    Join us this week as Heff and Forrest rip into the latest tactics used by hackers to breach YOUR DATA.Watch to learn more about additional stories:Best Browser Extensions to Improve SecuritySmart TV MADNESS - Samsung TV LockAMD Processors MELTING??Hosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Forrest Barth (SOC Analyst, CISSP, CMNO, Security+).

    T-Mobile Breach Leaks Data in the Millions | SecurityMetrics News

    Play Episode Listen Later Aug 20, 2021 34:04


    Subscribe to our Weekly Threat Intelligence Center News Feed! - https://www.securitymetrics.com/lp/education/threat-intelligence-subscribeTune in this week as Heff and Forrest discuss the HUGE T-Mobile data breach.Watch to learn more about additional stories:-Healthcare breaches rising to new high.-Can you trust your Smart TV?-Healthcare systems shut down in ransomware attackHosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Forrest Barth (SOC Analyst, CISSP, CMNO, Security+).

    BlackMatter Ransomware Succeeds Darkside and Revil | SecurityMetrics News

    Play Episode Listen Later Aug 6, 2021 34:53


    Subscribe to our Weekly Threat Intelligence Center News Feed!Tune in this week as Heff and Forrest dive into the recent news with BLACKMATTER Ransomware.Watch to learn more about additional stories:-Hackers turn to EXOTIC code languages.-Pegasus Spyware targets journalists.-Top 25 most dangerous vulnerabilities.Hosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Forrest Barth (SOC Analyst, CISSP, CMNO, Security+).

    Kaseya VSA Zero Day UPDATE | SecurityMetrics News

    Play Episode Listen Later Jul 16, 2021 31:46


    Subscribe to our Weekly Threat Intelligence Center News Feed! - https://www.securitymetrics.com/lp/education/threat-intelligence-subscribeJoin Heff and Forrest this week as they go over the latest in the Kaseya VSA Zero Day.Watch to learn more about additional stories:-The MONSOON of patches released in Patch Tuesday.-Mint Mobile breach sending many users phones to other services.-HUGE CNA Insurance breach.Hosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Forrest Barth (SOC Analyst, CISSP, CMNO, Security+).

    Kaseya VSA Zero Day | SecurityMetrics News

    Play Episode Listen Later Jul 8, 2021 15:19


    Subscribe to our Threat Intelligence Center News Feed! - https://www.securitymetrics.com/lp/education/threat-intelligence-subscribeTune in for this breaking news segment where Heff and Forrest dive into all you need to know about the Kaseya VSA Zero Day.Resources: -https://vimeo.com/571285457-https://www.lawfareblog.com/kaseya-ransomware-attack-really-big-deal

    Western Digital Vulnerability Causes Data Loss in Hard Drives | SecurityMetrics News

    Play Episode Listen Later Jul 2, 2021 30:20


    Subscribe to our Weekly Threat Intelligence Center News Feed! - https://www.securitymetrics.com/lp/education/threat-intelligence-subscribeJoin Heff this week as he dives into the Western Digital hard drive vulnerability, the recent bad news from Microsoft, and breach #2 of this year for LinkedIn.Watch to learn more about additional stories:-Google requiring multi-factor authentication from their android app developers.-The scary truth about the lack of security at our water utilities-How good cyber hygiene can help your company stay secure.Hosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Forrest Barth (SOC Analyst, CISSP, CMNO, Security+).Resources:-https://www.wired.com/story/western-digital-hard-drives-erased-amazon-wickr-security-news/-https://www.bleepingcomputer.com/news/security/adata-suffers-700-gb-data-leak-in-ragnar-locker-ransomware-attack/-https://www.infosecurity-magazine.com/news/mercedes-benz-leak-card-social/?_hsmi=78978938&_hsenc=p2ANqtz-8Lx8gtVf-hD-nYqAd5kWnyxJlhznvuHl3iJ_buqkGpGF7qUpLRqVnSMezNKlsNQL4zCGIJKrqwmD50cW4PKZybZybTNXyTtde0ev6YGZTSXCgmT4A-https://www.pcmag.com/news/microsoft-warns-of-continued-attacks-by-the-nobelium-hacking-group-https://rusi.org/explore-our-research/publications/occasional-papers/cyber-insurance-and-cyber-security-challenge-https://www.cisa.gov/BadPractices-https://thehill.com/policy/cybersecurity/559426-cyber-agency-says-solarwinds-hack-could-have-been-deterred-by-simple?rl=1-https://gcn.com/articles/2021/06/18/water-utility-cybersecurity.aspx-https://therecord.media/google-to-require-2fa-and-a-physical-address-from-android-app-devs/?utm_campaign=cyber-daily&utm_medium=email&_hsmi=137018509&_hsenc=p2ANqtz--O6xBVQIyAK27AR79zu6qPT1V-z38F36WeaOfiqDLE4quhRb9T8s0PAQi7oMzJBwXq1yBZb1jcf9jCQE4Lcnc58TougwUhThIZL4VYR8Oh1_EJf5s&utm_content=137018509&utm_source=hs_email

    Volkswagen and Fujifilm - Breaches Galore! | SecurityMetrics News

    Play Episode Listen Later Jun 18, 2021 34:52


    Subscribe to our Weekly Threat Intelligence Center News Feed! - https://www.securitymetrics.com/lp/education/threat-intelligence-subscribeJoin Heff and Forrest as they cover the plethora of breaches in the news this week! More malware, more ransomware, and even more lessons learned!Watch to learn more about additional stories:RFID tags now in car tires.Anonymous send message to Elon Musk.DHL phishing email case study.Hosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Forrest Barth (SOC Analyst, CISSP, CMNO, Security+).Resources: - https://docs.apwg.org/reports/apwg_trends_report_q1_2021.pdf- https://techcrunch.com/2021/06/11/volkswagen-says-a-vendors-security-lapse-exposed-3-3-million-drivers-details/- https://www.foxnews.com/us/cox-media-tv-news-hack- https://www.zdnet.com/article/lax-security-around-url-shortener-exposed-pii-of-us-retailer-carters-customer-base/- https://krebsonsecurity.com/- https://yac.news/blogs/news/anonymous-sends-message-to-elon-musk- https://www.automotive-iq.com/chassis-systems/articles/radio-frequency-identification-rfid-is-coming-to-a-tire-near-you

    Amazon Sidewalk Gives Users ONE WEEK to Opt Out of Mass Wireless Sharing | SecurityMetrics News 12

    Play Episode Listen Later Jun 4, 2021 31:38


    Tune in this week as Heff and Forrest discuss Amazon Sidewalk and their short notice to allow users to opt of of their wireless sharing.Watch to learn more about additional stories:How safe are browser extensions?JBS meat plant breach.US banks give green light to use facial recognition technologyHosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Forrest Barth (SOC Analyst, CISSP, CMNO, Security+).

    Colonial Pipeline PAYS $5M Ransomware! | SecurityMetrics News 11

    Play Episode Listen Later May 21, 2021 37:35


    Watch this week as Heff and Forrest dive into the latest on the HUGE US Colonial Pipeline breach, the recent D.C. police ransomware, and the recent change in malware as a service.Watch to learn more about additional stories:-Apple Airtags HACKABLE!-Ireland refuses to pay any ransomware.-Frag Attacks expose vulnerabilities in all wifi devices.Hosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Forrest Barth (SOC Analyst, CISSP, CMNO, Security+).

    Ivanti Pulse Secure Breach Update | SecurityMetrics News 10

    Play Episode Listen Later May 7, 2021 51:13


    Watch this week as Heff and Forrest discuss the recent Ivanti breach, Apple ransomware, SonicWall's 3 zero days, and more.Listen to learn more about additional stories:92% of businesses that pay ransomware never get their data backRecent security additions to Apple's recent software updatePassing of Dan KaminskyHosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Forrest Barth (SOC Analyst, CISSP, CMNO, Security+).

    FBI Remotely Hacking Computers to Aid Microsoft Exchange Breach | SecurityMetrics News 9

    Play Episode Listen Later Apr 16, 2021 46:15


    Heff and Forrest analyze the recent court order allowing the FBI to remotely hack hundreds of private computers. They also cover recent malware introduced via LinkedIn and the downplaying of the Facebook and Ubiquiti data breaches.Listen to learn more about additional stories:Homeless man "pen tests" USC football practiceHow to search if to see your data was part of a recent breachCorporations that gaslight their customers after compromisesHosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Forrest Barth (SOC Analyst, CISSP, CMNO, Security+).https://haveibeenpwned.com/

    PHP GIT Breach | SecurityMetrics News 8

    Play Episode Listen Later Apr 2, 2021 50:36


    Heff and Forrest analyze prominent data breaches in the news, including the PHP Git Server, SITA, and Hobby Lobby. They brief viewers on the current state of ransomware–now known as ransomware 2.0, and dissect the extent of Ubiquiti's breach; their possible ransom payments, and organizational missteps. Listen to learn more about additional stories:US Strategic Command Base Command's Twitter account left unattended and results spur conspiracy theories.The depths phone scammers will go to trick the elderly into sending cash. The prevalence of nation-state cyber attacks, retaliation, and overall impact on national security. Hosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Forrest Barth (SOC Analyst, CISSP, CMNO, Security+).

    Verkada Security Camera Breach and More | SecurityMetrics News 7

    Play Episode Listen Later Mar 20, 2021 43:06


    Heff and Forrest analyze recent cybersecurity news, including the Verkada Security Camera Breach, WeLeakInfo Return, updates on the Microsoft Exchange Server, and an examination of hacker group FIN8.Hosted by Matthew Heffelfinger (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF, PECB) and Forrest Barth (SOC Analyst, CISSP, CMNO, Security+).Watch to learn more about: 150,000 of Verkada's AI-driven camera feeds exposed by hacktivists including private homes, prisons, hospitals, and businessesFormerly shut-down WeLeakInfo website domain lapses and a new hacker takes overAnalysis of  phishing training campaign tactics and revisions on guidance by NISTResources: -https://www.latimes.com/business/tech...​-https://www.businessinsider.com/molso...​-https://www.infosecurity-magazine.com...​-https://www.helpnetsecurity.com/2021/...​-https://www.fireeye.com/content/dam/f...​-https://thehackernews.com/2021/03/fin...​-https://www.zdnet.com/article/dutch-p...​

    Microsoft Exchange Server Zero-Days, SEO Cyberattack, Password Manager Security | SecurityMetrics News 6

    Play Episode Listen Later Mar 5, 2021 71:11


    SecurityMetrics News, from SecurityMetrics Threat Intelligence Center, is a cybersecurity news series to inform businesses of developing threats, and provide analysis, best practices, and tips to protect your data. SecurityMetrics News airs new episodes bi-monthly, with new topics every time. In this episode, Heff and Forrest cover topics including:Emergency directive to patch Microsoft Exchange server zero-days immediately SEO Cyberattack: hackers use strategy to push malicious web pages up the rankingsAre password managers safe? Experts compare LastPass vs. 1Password

    Sudo Vulnerability, Emotet and Netwalker Takedown, Bonobos Breach | SecurityMetrics News 4

    Play Episode Listen Later Feb 19, 2021 38:53


    SecurityMetrics News, from SecurityMetrics Threat Intelligence Center, is a cybersecurity news series to inform businesses of developing threats, and provide analysis, best practices, and tips to protect your data. SecurityMetrics News airs new episodes bi-monthly, with new topics every time. This episode includes: Apple's recent security updatesEmotet takedown by the U.S. GovernmentNew strains of ransomwareThe Parler saga and COVID vaccine misinformationMatthew Heffelfinger - (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF,  PECB)Forrest Barth - (SOC Analyst, CISSP, CMNO, Security+)[Disclaimer] Before implementing any policies or procedures you hear about on this or any other episodes, make sure to talk to your legal department, IT department, and any other department assisting with your data security and compliance efforts.Learn more at https://www.securitymetrics.com/​Links- https://www.helpnetsecurity.com/2021/...​- https://support.apple.com/en-us/HT201222​- https://www.europol.europa.eu/newsroo...​- https://www.justice.gov/opa/pr/depart...​-  https://www.bankinfosecurity.com/rans...​​

    Water Treatment Plant Breach, Supercookies, and Voice Assistant Privacy | SecurityMetrics News 5

    Play Episode Listen Later Feb 19, 2021 42:30


    SecurityMetrics News, from SecurityMetrics Threat Intelligence Center, is a cybersecurity news series to inform businesses of developing threats, and provide analysis, best practices, and tips to protect your data. SecurityMetrics News airs new episodes bi-monthly, with new topics every time. In this episode, Heff and Forrest cover topics including: New creative hacking methods involving supercookies and faviconsCyber attack at Oldsmar water-treatment facility SolarWinds attack updatesCyberpunk 2077 source code soldTips for better security of your IoT devices–Google Home, Alexa, SiriMatthew Heffelfinger - (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF,  PECB)Forrest Barth - (SOC Analyst, CISSP, CMNO, Security+)

    US Capitol Breach, Ubiquiti Breach, and Attacks on Parler CEO | SecurityMetrics News 3

    Play Episode Listen Later Jan 22, 2021 31:08


    In this SecurityMetrics News episode, Heff and Forrest analyze recent cybersecurity news, including the recent breaches in the US Capitol, the details on the Ubiquiti breach, Malwarebytes breach update, and the nasty cyber-attacks on Parler CEO. They dive in to help you understand the threats and attacks, and give tips to avoid data breaches at your organization.Matthew Heffelfinger - (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF,  PECB)Forrest Barth - (SOC Analyst, CISSP, CMNO, Security+)[Disclaimer] Before implementing any policies or procedures you hear about on this or any other episodes, make sure to talk to your legal department, IT department, and any other department assisting with your data security and compliance efforts.

    Microsoft Source Code Exposed, T-Mobile Breach, Whirlpool Ransomware Attack | SecurityMetrics News 2

    Play Episode Listen Later Jan 8, 2021 23:33


    In this SecurityMetrics News episode, Heff and Forrest analyze recent cybersecurity news, including the recent Microsoft source code leak, the T-Mobile breach, Whirlpool ransomware attack, updates on the alarming Solarwinds breach, and a review of all the nasty breaches recorded in 2020. They dive in to help you understand the attacks and give tips to avoid data breaches at your organization.Matthew Heffelfinger - (Director of SIEM Operations, GSTRT, CyRP (Pepperdine), GRCP, SSAP, ITIL4-F, GISF,  PECB)Forrest Barth - (SOC Analyst, CISSP, CMNO, Security+)[Disclaimer] Before implementing any policies or procedures you hear about on this or any other episodes, make sure to talk to your legal department, IT department, and any other department assisting with your data security and compliance efforts.

    SolarWinds Breach | SecurityMetrics News 1

    Play Episode Listen Later Dec 18, 2020 31:31


    In this SecurityMetrics News episode, Heff and Forrest analyze recent cybersecurity news, including the unprecedented SolarWinds security breach and the FireEye compromise. They dive in to help you understand the attacks and give tips to avoid data breaches at your organization.[Disclaimer] Before implementing any policies or procedures you hear about on this or any other episodes, make sure to talk to your legal department, IT department, and any other department assisting with your data security and compliance efforts.

    Claim SecurityMetrics News

    In order to claim this podcast we'll send an email to with a verification link. Simply click the link and you will be able to edit tags, request a refresh, and other features to take control of your podcast page!

    Claim Cancel