Podcasts about Kaspersky Lab

How did Microsoft's Copilot expose private GitHub repositories, and what are the risks?Copilot accessed over 20,000 private GitHub repositories due to cached data from when they were public. Even after repos were made private, Copilot could still generate responses using this cached data, risking exposure of sensitive information like credentials and corporate secrets.What is the "nRootTag" exploit in Apple's Find My network?The "nRootTag" exploit allows attackers to track Bluetooth devices like AirTags without owners knowing. While AirTags use cryptographic keys to change Bluetooth addresses, attackers can rapidly compute these keys using GPUs, achieving a 90% tracking success rate.Why is the UK demanding an iCloud backdoor, and how has Apple responded?The UK wants access to encrypted iCloud data for law enforcement, but Apple opposes it, withdrawing its Advanced Data Protection from the UK. The US has also criticized the demand as a privacy and legal overreach.Why is Signal withdrawing from Sweden?Signal is leaving Sweden over proposed laws requiring backdoor access to encrypted chats. The company refuses to weaken encryption, emphasizing its commitment to user privacy.Why has the US reportedly halted offensive cyber operations against Russia?The US Cyber Command, under Defense Secretary orders, has paused cyber attacks on Russia, possibly for diplomatic reasons. Supporters see it as de-escalation; critics worry it weakens deterrence against Russian cyber threats.Why has Australia banned Kaspersky Lab products?Australia banned Kaspersky from government systems, citing espionage and foreign interference risks. The move signals concerns over antivirus software's deep system access and the company's Russian ties.How was a Cellebrite exploit used to hack a Serbian student's phone?A Cellebrite zero-day targeting Android's Linux kernel USB drivers allowed attackers with physical access to bypass the lock screen. This raises concerns over surveillance tools being misused against activists.What changes did Mozilla make to Firefox Terms of Use, and why was there backlash?Mozilla initially claimed broad rights over user-submitted content, sparking fears of data monetization. After criticism, they revised the terms, clarifying user ownership and denying AI data harvesting.

* Russian Threat Actors Target Signal Messenger Accounts* Australian Fertility Services Giant Genea Suffers Data Breach* Australia Bans Kaspersky Products on Government Systems Over Security Concerns* PayPal "New Address" Feature Abused in Widespread Phishing Scam* Apple Disables iCloud End-to-End Encryption in UK Following Government DemandRussian Threat Actors Target Signal Messenger Accountshttps://cloud.google.com/blog/topics/threat-intelligence/russia-targeting-signal-messenger/Google's Threat Intelligence Group (GTIG) has observed a surge in efforts by multiple Russian state-aligned threat actors to compromise Signal Messenger accounts, particularly those belonging to individuals of interest to Russian intelligence services.These groups are exploiting Signal's "linked devices" feature by using malicious QR codes to link victim accounts to attacker-controlled devices, allowing them to eavesdrop on secure conversations in real-time. This tactic has proven effective due to its low-signature nature, making it difficult to detect.GTIG has identified several threat actors involved in these campaigns, including:* UNC5792: This group modifies legitimate Signal group invite pages to redirect victims to malicious URLs that link their accounts to attacker devices.* UNC4221: This group operates a tailored Signal phishing kit that mimics applications used by the Ukrainian military, embedding malicious QR codes or redirecting victims to fake device-linking instructions.* APT44 (Sandworm): This group has been observed using malware and scripts to steal Signal database files from compromised Android and Windows devices.* Turla: This Russian threat actor uses PowerShell scripts to exfiltrate Signal Desktop messages.* UNC1151: This Belarus-linked group uses command-line utilities to stage Signal Desktop files for exfiltration.The targeting of Signal, along with other messaging apps like WhatsApp and Telegram, highlights a growing trend of state-sponsored actors seeking to intercept secure communications. GTIG recommends users take several precautions, including:* Enabling strong screen locks on mobile devices.* Keeping operating systems and messaging apps updated.* Regularly auditing linked devices.* Exercising caution with QR codes and suspicious links.* Using two-factor authentication.This increased activity underscores the importance of heightened security awareness and proactive measures to protect against these sophisticated attacks.Australian Fertility Services Giant Genea Suffers Data Breachhttps://www.genea.com.au/pages/important-update-about-a-cyber-incident-MCI2XUN2KJWRFXNMZI2ZZ3QVD2JAGenea, a major Australian fertility services provider, has confirmed a security breach after detecting unauthorized access to its network.The company is currently investigating the extent of the data breach and working to restore affected systems.Genea has stated that it will notify individuals if their personal information has been compromised. The breach comes days after a phone and app outage at Genea's clinics, raising questions about the timeline of the cyber incident.The company has apologized for any concern caused and reassured patients that they are working to minimize disruptions to treatment schedules. Genea is a significant player in the Australian fertility services market, operating 22 clinics across the country.Australia Bans Kaspersky Products on Government Systems Over Security Concernshttps://www.protectivesecurity.gov.au/system/files/2025-02/PSPF-Direction-002-2025.pdfThe Australian government has banned all Kaspersky Lab products and web services from its systems, citing an "unacceptable security risk" due to potential foreign interference, espionage, and sabotage.The decision, made by the Department of Home Affairs, requires all non-corporate Commonwealth entities to identify, remove, and prevent the future installation of Kaspersky products.While an exemption exists for national security or regulatory purposes, the ban signals a strong policy stance against the use of Kaspersky software.Kaspersky has refuted the allegations, claiming the ban is politically motivated and lacks technical justification. The company argues that the decision was made without due process or engagement, highlighting the growing trend of Western governments restricting the use of Kaspersky products due to national security concerns.PayPal "New Address" Feature Abused in Widespread Phishing Scamhttps://www.bleepingcomputer.com/news/security/beware-paypal-new-address-feature-abused-to-send-phishing-emails/A widespread phishing scam is exploiting PayPal's "new address" feature to send fraudulent purchase notifications to users, tricking them into granting remote access to scammers.The scam involves adding a fake address to a PayPal account, along with a fabricated purchase confirmation message, which triggers a legitimate PayPal email notification to the account holder.The email, sent directly from PayPal, includes a fake purchase confirmation for a high-value item, such as a MacBook, and instructs the recipient to call a provided phone number if the purchase was unauthorized.When victims call the number, scammers pose as PayPal support and convince them to download remote access software, such as ConnectWise ScreenConnect, allowing the scammers to take control of their computers.The scammers then attempt to steal money, deploy malware, or steal sensitive data.This scam is made possible by PayPal's lack of character limits in address form fields, allowing scammers to inject their fraudulent messages. PayPal needs to implement character limits to prevent this abuse. Users are advised to ignore these emails and verify any account changes directly through the PayPal website.Apple Disables iCloud End-to-End Encryption in UK Following Government Demandhttps://www.bloomberg.com/news/articles/2025-02-21/apple-removes-end-to-end-encryption-feature-from-uk-after-backdoor-orderApple has removed its Advanced Data Protection (ADP) feature, which provides end-to-end encryption for iCloud data, for new users in the United Kingdom.This decision follows a secret order from the UK government demanding Apple create a backdoor to access encrypted user data.Apple expressed disappointment with the situation, emphasizing the importance of end-to-end encryption in protecting user privacy, particularly in the face of increasing data breaches.While existing ADP users in the UK will initially retain the feature, they will eventually be required to disable it to continue using their iCloud accounts.Apple maintains its commitment to user privacy and hopes to offer enhanced security features in the UK in the future. iMessage, FaceTime, Health data, and iCloud Keychain remain end-to-end encrypted in the UK. This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit edwinkwan.substack.com

Podcast: PrOTect It All (LS 24 · TOP 10% what is this?)Episode: Navigating Cybersecurity Challenges: AI, Tabletop Exercises, and Operational TechnologyPub date: 2024-11-04Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationIn this episode, host Aaron Crow is joined by Clint Bodungen, Director of Cybersecurity Innovation at Morgan Franklin Cyber and founder of Threatgen, alongside Michael Welch, Managing Director at Morgan Franklin Cyber. Together, they delve into the ever-evolving world of cybersecurity in honor of Cybersecurity Awareness Month. Aaron kicks things off by discussing the importance of iterative processes and tabletop exercises in enhancing decision-making and preparedness. The conversation then shifts to the exciting yet complex role of AI in cybersecurity, particularly in operational technology (OT) and critical infrastructure. The experts emphasize the potential of generative AI for data analysis while underscoring the need for human oversight to avoid biases and misinformation. Clint introduces an “engineering informed cyber” approach to better integrate OT and IT in managing cybersecurity risks, while Aaron stresses the importance of collaboration between cybersecurity professionals and engineers. The episode also tackles balancing convenience and security, the intricacies of password management, and the critical role of communication and trust. Listeners will gain valuable insights into AI's role in enhancing security operations, the consequences of system failures, and the debate between compliance and true security. This episode offers expert opinions, real-world examples, and practical advice for navigating today's cybersecurity challenges. Join us for a comprehensive discussion on protecting our digital world.   Key Moments:    04:20 Generative AI aids efficient GRC and cybersecurity management. 08:40 AI lacks context for verifying asset information. 11:38 Generative AI creating and automating malware tools. 15:58 Building data centers using decommissioned power plants. 17:14 Regulation growing in infrastructure for compliance security. 22:09 Compliance is binary; partial compliance isn't sufficient. 24:33 Prioritize "engineering informed cyber" for OT resilience. 28:14 Collaboration between IT and OT is essential. 33:54 Frustration with excessive video game security measures. 34:49 Cybersecurity fails due to over-engineering complexity. 40:49 Make security easy with password managers, authenticators. 42:31 AI improves tabletop exercises for comprehensive insights. 45:31 Generative AI augments human capabilities and creativity. 48:08 Automated injects streamline engagement and business continuity. 53:46 Executives misunderstand risk, leading to false security. 54:29 Strong IT security, but vulnerable weak points. About the Guests :    Clint Bodungen:    Clint Bodungen is a globally recognized cybersecurity professional and thought leader with 30 years of experience (focusing primarily on industrial cybersecurity, red teaming, and risk assessment). He is the author of two best-selling books, "Hacking Exposed: Industrial Control Systems" and “ChatGPT for Cybersecurity Cookbook. Clint is a United States Air Force veteran and has worked for notable cybersecurity firms like Symantec, Booz Allen Hamilton, and Kaspersky Lab, and is currently the founder of ThreatGEN and Director of Cybersecurity Innovation at Morgan Franklin Consulting. Renowned for his creative approach to cybersecurity education and training, he has been at the forefront of integrating gamification and AI applications into cybersecurity training; he created ThreatGEN® Red vs. Blue, the world's first online multiplayer computer designed to teach real-world cybersecurity. His latest innovation is AutoTableTop, which uses the latest generative AI technology to automate, simplify, and revolutionize IR tabletop exercises. As AI technology continues evolving, so does his pursuit of helping revolutionize the cybersecurity industry using gamification generative AI. Connect Clint at - https://www.linkedin.com/in/clintb/   Michael Welch :    Michael Welch has over twenty-five years of expertise in Governance, Risk Management, Compliance and Cybersecurity.  In his role as Sector Lead, Michael  will focus on the importance of cybersecurity in Utilities and Industrial Manufacturing.  Michael understands that robust cybersecurity measures are not just a regulatory requirement but are pivotal in safeguarding the resilience of organizations, safety of its people, and overall economic stability.  Michael has worked for organizations such as NextEra and Duke Energy as well as engineering firm Burns & McDonnell.  In addition, he was the Global CISO for the food manufacturing firm OSI Industries.Some of the certifications he has obtained through his career are Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Security Auditor (CISA), Global Industrial Cyber Security Professional (GICSP), Certified Data Privacy Solutions Engineer (CDPSE) and CMMC - Registered Practitioner Advanced (RPA).  Connect Michael Welch at : https://www.linkedin.com/in/michael-welch-93375a4/ Connect With Aaron Crow: Website: www.corvosec.com  LinkedIn: https://www.linkedin.com/in/aaronccrow   Learn more about PrOTect IT All: Email: info@protectitall.co  Website: https://protectitall.co/  X: https://twitter.com/protectitall  YouTube: https://www.youtube.com/@PrOTectITAll  FaceBook:  https://facebook.com/protectitallpodcast    To be a guest or suggest a guest/episode, please email us at info@protectitall.coThe podcast and artwork embedded on this page are from Aaron Crow, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Miért szögletes dobozban szállítják ki a kerek pizzát, amit háromszögekre vágunk? Player     2024-09-28 05:51:04     Infotech Miért háromszögre vágják a pizzát, és miért kerek egyáltalán a pizza? Pizzageometriai kérdéseket tisztázunk. Nemcsak átrepülhetnek fekete lyukak a Naprendszeren, de ráadásul elég gyakran – évtizedenként Rakéta     2024-09-28 07:18:10     Tudomány Világűr Mars Minderről a Mars pályája is árulkodhat – ha pedig bebizonyosodna, úgy nemcsak az ősi fekete lyukakról, de a sötét anyag természetéről is többet tudnánk. Emelkedő tengerszint: A csendes-óceáni szigetországok sötét jövője PlanetZ     2024-09-28 08:00:52     Tudomány Világűr NASA A csendes-óceáni szigetországokat súlyosan érinti az ember okozta éghajlatváltozás. A NASA előrejelzései szerint a következő 30 évben akár 20,32 centiméteres tengerszint-emelkedéssel kell szembenézniük, ami gyakori áradásokat és part menti közösségek eltűnését okozhatja. A szigetországok jövője már most is veszélyben van, és az éghajlatváltozás nem A Kaspersky eladta az amerikai ügyfeleit Mínuszos     2024-09-28 04:33:05     Infotech USA Joe Biden Kiberbiztonság Hacker Kaspersky Lab A héten a Kaspersky törölte a szoftvereit az Egyesült Államokban lévő ügyfeleinek számítógépeiről, és kérdés nélkül feltelepítette az UltraAV szoftverére. Idén nyáron a Biden-kormányzat bejelentette, hogy 2024. szeptember 29-től kezdődően betiltják a Kaspersky Lab vírusirtó szoftverének értékesítését és frissítéseit az Egyesült Államokban, a potenc A drón nem gyerekjáték: a technológia az iparban is hódít InStyle Men     2024-09-28 06:10:00     Infotech Drón Amikor a drónok először bekerültek a köztudatba, sokan szinte játékként használták őket: szórakozásból repkedtek, esetleg fotóztak-videóztak. Csakhogy ez számos biztonságtechnikai és jogi problémát felvetett, így idővel megérkezett az alapos szabályozás is. Mára ezek az eszközök hatalmas fejlődésen mentek keresztül minden tekintetben, és számos ipa A szoftverfejlesztés a motor a jövő autógyártásában ICT Global     2024-09-28 09:03:11     Infotech Kína Tesla Toyota Volkswagen A nagy globális autógyártók, mint a Toyota, a Volkswagen, vagy a General Motors jócskán lemaradtak a szoftverfejlesztések terén a Tesla és a kínai konkurensek mögött. Autonóm vízalatti robot MI vezérléssel ITBusiness     2024-09-28 12:12:44     Infotech Mesterséges intelligencia Robot Tengeralattjáró Offshore A brit "Beam" nevű cég, amely az offshore technológiában tevékenykedő Rovco és Vaarst vállalatok egyesüléséből jött létre, bemutatta a világ első teljesen autonóm, mesterséges intelligenciával vezérelt víz alatti robotját. Az autonóm tengeralattjáró képes bonyolult feladatokat végrehajtani emberi beavatkozás nélkül. A robot úgynevezett "edge AI"-va Egy startup könnyű álmot ígér – altató nélkül! Bitport     2024-09-28 10:20:00     Infotech Startup Olyan fejpántot fejlesztenek, amely egy zűrös nap után segíti a szellemi feszültségek lekeverését és a gyors elalvást. K&H: már mobilbankon keresztül is lehet parkolni Digital Hungary     2024-09-28 14:44:00     Mobiltech Parkolás Rendszám A rendszám megadása után csak be kell kapcsolni a mobilon a helymeghatározást és az app automatikusan kiválasztja az autós számára szükséges zónát. A K&H mobilbankjában az összes hazai közterületi parkolási zóna elérhető, számos zárt helyi parkolóval kiegészítve. Szabványosítanák az elfogadható jelszavakat SG.hu     2024-09-28 08:38:16     Infotech Szabályok lesznek a kötelező visszaállításra és bizonyos karakterek kötelező vagy korlátozott használatára. A mesterséges intelligencia átalakítja az oktatást – de milyen áron? UNIside     2024-09-28 06:04:26     Karrier Oktatás egyetem Mesterséges intelligencia Corvinus A Budapesti Corvinus Egyetem két matematikai kurzusának tapasztalatai alapján a mesterséges intelligencia (MI) használata nemcsak lehetőségeket, hanem kihívásokat is rejt magában az oktatásban. Budapesti Corvinus Egyetem két oktatója, Benedek Márton és Sziklai R. Balázs, megengedte diákjaiknak, hogy feladataik és vizsgáik során szabadon alkalmazzan Bemutatkoznak az alakváltó Furnituroidok, a jövő japán bútorai Rakéta     2024-09-28 08:15:07     Mobiltech Japán Robot A Furnituroidok, azaz Bútoroidok többféle funkciót betöltő mobil robotok, amelyek átformálhatják a városok képét. AI funkciók a Samsung Galaxy S24 FE-ben Mínuszos     2024-09-28 13:33:56     Mobiltech Telefon Mesterséges intelligencia Okostelefon Samsung Dél-Korea Fotográfus A Samsung bemutatta a Galaxy S24 FE okostelefont, a dél-koreai gyártó mesterséges intelligencia (AI) ökoszisztéma legújabb tagját. A Galaxy S24 FE AI-alapú ProVisual motorral és a Galaxy AI Fotósegéd által támogatott, továbbfejlesztett kamerabeállítási opciókkal rendelkezik, hogy a felhasználók még kreatívabbak lehessenek. A 6,7 colos Dinamikus AMO A további adásainkat keresd a podcast.hirstart.hu oldalunkon.

Miért szögletes dobozban szállítják ki a kerek pizzát, amit háromszögekre vágunk? Player     2024-09-28 05:51:04     Infotech Miért háromszögre vágják a pizzát, és miért kerek egyáltalán a pizza? Pizzageometriai kérdéseket tisztázunk. Nemcsak átrepülhetnek fekete lyukak a Naprendszeren, de ráadásul elég gyakran – évtizedenként Rakéta     2024-09-28 07:18:10     Tudomány Világűr Mars Minderről a Mars pályája is árulkodhat – ha pedig bebizonyosodna, úgy nemcsak az ősi fekete lyukakról, de a sötét anyag természetéről is többet tudnánk. Emelkedő tengerszint: A csendes-óceáni szigetországok sötét jövője PlanetZ     2024-09-28 08:00:52     Tudomány Világűr NASA A csendes-óceáni szigetországokat súlyosan érinti az ember okozta éghajlatváltozás. A NASA előrejelzései szerint a következő 30 évben akár 20,32 centiméteres tengerszint-emelkedéssel kell szembenézniük, ami gyakori áradásokat és part menti közösségek eltűnését okozhatja. A szigetországok jövője már most is veszélyben van, és az éghajlatváltozás nem A Kaspersky eladta az amerikai ügyfeleit Mínuszos     2024-09-28 04:33:05     Infotech USA Joe Biden Kiberbiztonság Hacker Kaspersky Lab A héten a Kaspersky törölte a szoftvereit az Egyesült Államokban lévő ügyfeleinek számítógépeiről, és kérdés nélkül feltelepítette az UltraAV szoftverére. Idén nyáron a Biden-kormányzat bejelentette, hogy 2024. szeptember 29-től kezdődően betiltják a Kaspersky Lab vírusirtó szoftverének értékesítését és frissítéseit az Egyesült Államokban, a potenc A drón nem gyerekjáték: a technológia az iparban is hódít InStyle Men     2024-09-28 06:10:00     Infotech Drón Amikor a drónok először bekerültek a köztudatba, sokan szinte játékként használták őket: szórakozásból repkedtek, esetleg fotóztak-videóztak. Csakhogy ez számos biztonságtechnikai és jogi problémát felvetett, így idővel megérkezett az alapos szabályozás is. Mára ezek az eszközök hatalmas fejlődésen mentek keresztül minden tekintetben, és számos ipa A szoftverfejlesztés a motor a jövő autógyártásában ICT Global     2024-09-28 09:03:11     Infotech Kína Tesla Toyota Volkswagen A nagy globális autógyártók, mint a Toyota, a Volkswagen, vagy a General Motors jócskán lemaradtak a szoftverfejlesztések terén a Tesla és a kínai konkurensek mögött. Autonóm vízalatti robot MI vezérléssel ITBusiness     2024-09-28 12:12:44     Infotech Mesterséges intelligencia Robot Tengeralattjáró Offshore A brit "Beam" nevű cég, amely az offshore technológiában tevékenykedő Rovco és Vaarst vállalatok egyesüléséből jött létre, bemutatta a világ első teljesen autonóm, mesterséges intelligenciával vezérelt víz alatti robotját. Az autonóm tengeralattjáró képes bonyolult feladatokat végrehajtani emberi beavatkozás nélkül. A robot úgynevezett "edge AI"-va Egy startup könnyű álmot ígér – altató nélkül! Bitport     2024-09-28 10:20:00     Infotech Startup Olyan fejpántot fejlesztenek, amely egy zűrös nap után segíti a szellemi feszültségek lekeverését és a gyors elalvást. K&H: már mobilbankon keresztül is lehet parkolni Digital Hungary     2024-09-28 14:44:00     Mobiltech Parkolás Rendszám A rendszám megadása után csak be kell kapcsolni a mobilon a helymeghatározást és az app automatikusan kiválasztja az autós számára szükséges zónát. A K&H mobilbankjában az összes hazai közterületi parkolási zóna elérhető, számos zárt helyi parkolóval kiegészítve. Szabványosítanák az elfogadható jelszavakat SG.hu     2024-09-28 08:38:16     Infotech Szabályok lesznek a kötelező visszaállításra és bizonyos karakterek kötelező vagy korlátozott használatára. A mesterséges intelligencia átalakítja az oktatást – de milyen áron? UNIside     2024-09-28 06:04:26     Karrier Oktatás egyetem Mesterséges intelligencia Corvinus A Budapesti Corvinus Egyetem két matematikai kurzusának tapasztalatai alapján a mesterséges intelligencia (MI) használata nemcsak lehetőségeket, hanem kihívásokat is rejt magában az oktatásban. Budapesti Corvinus Egyetem két oktatója, Benedek Márton és Sziklai R. Balázs, megengedte diákjaiknak, hogy feladataik és vizsgáik során szabadon alkalmazzan Bemutatkoznak az alakváltó Furnituroidok, a jövő japán bútorai Rakéta     2024-09-28 08:15:07     Mobiltech Japán Robot A Furnituroidok, azaz Bútoroidok többféle funkciót betöltő mobil robotok, amelyek átformálhatják a városok képét. AI funkciók a Samsung Galaxy S24 FE-ben Mínuszos     2024-09-28 13:33:56     Mobiltech Telefon Mesterséges intelligencia Okostelefon Samsung Dél-Korea Fotográfus A Samsung bemutatta a Galaxy S24 FE okostelefont, a dél-koreai gyártó mesterséges intelligencia (AI) ökoszisztéma legújabb tagját. A Galaxy S24 FE AI-alapú ProVisual motorral és a Galaxy AI Fotósegéd által támogatott, továbbfejlesztett kamerabeállítási opciókkal rendelkezik, hogy a felhasználók még kreatívabbak lehessenek. A 6,7 colos Dinamikus AMO A további adásainkat keresd a podcast.hirstart.hu oldalunkon.

Talking Cyber is a Cybercrime Magazine podcast series that covers the latest news and breaking stories on the cybereconomy, hackers, intrusions, privacy, security and much more. In this episode, host Amanda Glassner is joined by Heather Engel, Managing Partner at Strategic Cyber Partners, to discuss the recent announcement that Russian cybersecurity firm Kaspersky Lab will “gradually wind down” its US operations and layoff employees. To learn more about today's stories, visit https://cybercrimewire.com • For more on cybersecurity, visit us at https://cybersecurityventures.com

Podcast: Nexus: A Claroty Podcast (LS 32 · TOP 5% what is this?)Episode: Vincente Diaz on Using AI for Malware AnalysisPub date: 2024-07-21Vincente Diaz, Threat Intelligence Strategist on Google's VirusTotal team and formerly the EU director of Kaspersky Lab's Global Research & Analysis Team, joins the Nexus Podcast to discuss how artificial intelligence and machine learning is an integral part of what VirusTotal is doing around malware analysis. Vincente describes the advantages these advanced technologies bring to malware analysis, in particular how it cuts down analysis time, and improves exploit detection. The podcast and artwork embedded on this page are from Claroty, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Vincente Diaz, Threat Intelligence Strategist on Google's VirusTotal team and formerly the EU director of Kaspersky Lab's Global Research & Analysis Team, joins the Nexus Podcast to discuss how artificial intelligence and machine learning is an integral part of what VirusTotal is doing around malware analysis. Vincente describes the advantages these advanced technologies bring to malware analysis, in particular how it cuts down analysis time, and improves exploit detection. 

With Howard away and today's episode of Hashtag Trending being all about security stories, I took the liberty of doing a cross posting. Hope we'll have Howard back next week. In today's episode of Hashtag Trending, host Jim Love covers significant cybersecurity news. Microsoft faces criticism for mishandling a reported MSHTML browser engine vulnerability, and Disney investigates a hack by 'Null Bulge,' a group accusing the company of unethical AI use. Additionally, Kaspersky Labs announces its exit from the U.S. market due to government sanctions. The episode also discusses the FBI's swift unlocking of a shooter's phone, indicating advanced law enforcement capabilities. Tune in for these updates and more. 00:00 Introduction and Overview 00:43 Microsoft's Vulnerability Disclosure Controversy 02:28 Disney Hacked: Internal Messages Leaked 03:42 Kaspersky Exits the U.S. Market 04:59 FBI Cracks Encrypted Phones 06:54 Conclusion and Upcoming Shows

Some Squarespace users see their domains hijacked. Kaspersky Lab is shutting down US operations. BackPack APKs break malware analysis tools. Hackers use 7zip files to deliver Poco RAT malware. CISA's red-teaming reveals security failings at an unnamed federal agency. Microsoft fixes an Outlook bug triggering false security alerts. Switzerland mandates open source software in the public sector. On our Industry Voices segment, N2K's Rick Howard speaks with Alex Lawrence and Matt Stamper from Sysdig about their 555 Cloud Security Benchmark.  Bellingcat sleuths pinpoint an alleged cartel member.  Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest On our Industry Voices segment, N2K's Rick Howard speaks with Alex Lawrence and Matt Stamper from Sysdig about their 555 Cloud Security Benchmark. Learn more about the /555 benchmark. Selected Reading Researchers: Weak Security Defaults Enabled Squarespace Domains Hijacks (Krebs on Security) Kaspersky Lab Closing U.S. Division; Laying Off Workers (Zero Day) Beware of BadPack: One Weird Trick Being Used Against Android Devices (Palo Alto Networks Unit 42) New Poco RAT Weaponizing 7zip Files Using Google Drive (GB Hackers) CISA broke into a US federal agency, and no one noticed for a full 5 months (The Register) Organizations Warned of Exploited GeoServer Vulnerability (Security Week) Microsoft finally fixes Outlook alerts bug caused by December updates (Bleeping Computer) New Open Source law in Switzerland (Joinup) Exploring the Skyline: How we Located an Alleged Cartel Member in Dubai (Bellingcat) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

　公安調査庁は7月9日、最近の内外情勢（2024年6月）の更新を発表した。

Gli Stati Uniti hanno imposto sanzioni ai dirigenti di Kaspersky Lab, uno dei giganti mondiali della sicurezza informatica con sede in Russia. Questa mossa solleva interrogativi non solo sulla sicurezza informatica, ma anche sulle implicazioni geopolitiche di tali decisioni.Analizziamo il contesto storico e le conseguenze economiche e politiche di queste sanzioni: quali sono le implicazioni per la guerra cibernetica e come influisce sulla tensione tra Stati Uniti e Russia?Ve ne parlo oggi in questa nuova puntata di #CiaoInternet ! ~~~~~ SOSTIENI IL CANALE! ~~~~~Con la Membership PRO puoi supportare il Canale » https://link.mgpf.it/proSe vuoi qui la mia attrezzatura » https://mgpf.it/attrezzatura~~~~~ SEGUIMI ANCHE ONLINE CON LE NOTIFICHE! ~~~~~» CANALE WHATSAPP » https://link.mgpf.it/wa» CANALE TELEGRAM » https://mgpf.it/tg» CORSO (Gratis) IN FUTURO » https://mgpf.it/nl» NEWSLETTER » https://mgpf.it/nl~~~~~ CIAO INTERNET E MATTEO FLORA ~~~~~ Questo è “Ciao Internet!” la prima e più seguita trasmissione di TECH POLICY in lingua italiana, online su YouTube e in Podcast.Io sono MATTEO FLORA e sono:» Professore in Fondamenti di Sicurezza delle AI e delle SuperIntelligenze (ESE)» Professore ac in Corporate Reputation e Crisis Management (Pavia).Sono un Imprenditore Seriale del digitale e ho fondato:» The Fool » https://thefool.it - La società italiana leader di Customer Insight» The Magician » https://themagician.agency - Atelier di Advocacy e Gestione della Crisi» 42 Law Firm » https://42lf.it - Lo Studio Legale per la Trasformazione Digitale » ...e tante altre qui: https://matteoflora.com/#aziendeSono Future Leader (IVLP) del Dipartimento di Stato USA sotto Amministrazione Obama nel programma “Combating Cybercrime (2012)”.Sono Presidente di PermessoNegato, l'associazione italiana che si occupa di Pornografia Non- Consensuale e Revenge Porn.Conduco in TV “Intelligenze Artificiali” su Mediaset/TgCom.~~~~~ INGAGGI E SPONSORSHIP ~~~~~ Per contatti commerciali: sales@matteoflora.com

This week on Cyber Matters, Tanner Wilburn and Katherine Kennelly cover a wide range of cybersecurity, privacy, and regulatory news. The episode begins with a discussion of the Department of Commerce's final determination prohibiting Kaspersky Lab from providing antivirus software and cybersecurity services in the United States.  Tanner then delves into the ongoing challenges with the SEC's cyber disclosure rules that went into effect in December 2023. Many companies have been using cautious language in their Form 8-K filings, often stating that they have not yet determined the materiality of cyber incidents. The SEC has issued further clarifications, including guidance on how companies should assess and disclose ransomware attacks. Katherine discusses the American Privacy Rights Act, which was unexpectedly pulled from a congressional hearing. The pair then covers the Protecting Americans' Data from Foreign Adversaries Act (PADFA), which took effect on June 23. This act establishes new restrictions on data brokers transferring sensitive personal data to foreign adversary countries, enforced by the Federal Trade Commission (FTC). Tanner and Katherine cover several significant court decisions. These include a ruling from the Northern District of Texas in American Hospital Association v. Becerra, which challenged the Department of Health and Human Services' definition of individually identifiable health information. The Supreme Court's decision in Murthy v. Missouri, addressing government involvement in social media content moderation, is also discussed. Additionally, they touch on the landmark Supreme Court decision overturning the Chevron deference doctrine and its potential effect on the administrative state. (More to come on future episodes).  State-level privacy legislation is a major focus of this episode, with Tanner highlighting three new state privacy laws taking effect on July 1: the Oregon Consumer Privacy Act, the Texas Data Privacy and Security Act, and the Florida Digital Bill of Rights Act. He discusses unique aspects of each law and notes Texas's aggressive approach to enforcement. The podcast also covers other state-level developments, including Florida Governor Ron DeSantis's veto of a cybersecurity safe harbor bill, Vermont's failure to pass a privacy bill, and Rhode Island's enactment of comprehensive privacy legislation. Katherine examines New York's newly enacted child and teen online safety bills, the New York Child Data Protection Act and the Stop Addictive Feeds Exploitation (SAFE) for Kids Act. Tanner then discusses California's third CCPA settlement, involving Tilting Point Media and its mobile gaming app. International cooperation in privacy regulation is touched upon, with Tanner noting the California Privacy Protection Agency (CPPA) signing a partnership agreement with France's data protection authority (CNIL) for joint research and information sharing. The episode concludes with discussions on several other topics, including a lawsuit by the Arkansas Attorney General against Temu, Project Veritas challenging an Oregon privacy law before the Ninth Circuit Court of Appeals, Microsoft's blog post on "skeleton key" AI jailbreak techniques, and a brief mention of a Neiman Marcus hack. __________________________ Questions, comments, and feedback can go to cybermatterspodcast@gmail.com, and dont forget to subscribe to the podcast and share with your network.  Thanks for joining us, and we'll see you next week! _______________________ Links Mentioned in the show: https://www.bakerlaw.com/insights/northern-district-of-texas-flashes-the-blue-lights-on-ocrs-pixel-guidance/

Drex dives into the ongoing ransomware attack affecting hospitals in London, resulting in postponed surgeries and diverted organ donations. We also cover the U.S. Department of Commerce's ban on Kaspersky Labs software due to security concerns and a joint alert from HHS and the FBI about a sophisticated phishing scheme targeting hospital payment systems.Remember, Stay a little paranoid.Subscribe: https://www.thisweekhealth.com/subscribe/Linkedin: https://www.linkedin.com/company/ThisWeekHealthTwitter: https://twitter.com/thisweekhealthDonate: Alex's Lemonade Stand: Foundation for Childhood Cancer - https://www.alexslemonade.org/mypage/3173454

On this week's show, Patrick Gray and Adam Boileau discuss the week's security news, including: Julian Assange finally cuts a deal, pleads guilty, and goes free USA to ban Kaspersky - even updates Car dealer SaaS provider CDK contemplates paying a ransom Intolerable healthcare ransomware attacks continue We revisit Windows proximity bugs via wifi and bluetooth And much, much more. This week's episode is sponsored by enterprise browser maker Island. Crowdstrike co-founder Dmitri Alperovitch is an investor in Island, and joins on its behalf to discuss why an enterprise browser is really starting to make sense. Show notes Julian Assange released from prison and has left UK, WikiLeaks says US to ban Kaspersky Lab software nationwide later this year Cyberattack on CDK Global stymies work at car dealerships across US Almost 200 cancer operations postponed as ransomware group publishes London hospitals data UK government weighs action against Russian hackers over NHS records theft South Africa's national health lab hit with ransomware attack amid mpox outbreak Ransomware victims are becoming less likely to pay up | Cybersecurity Dive Lawmakers in Philippines push for probe into Pentagon's anti-vax propaganda operation | Reuters Telegram says it has 'about 30 engineers'; security experts say that's a red flag | TechCrunch Two bluetooth vulnerabilities in Windows Thread on reversing the patch Basic concept for the latest windows wifi driver CVE

00:00 - PreShow Banter™ — Life is a Highway04:28 - BHIS - Talkin' Bout [infosec] News 2024-06-2405:30 - Story # 1: Colorado Privacy Act Amended To Include Biometric Data Provisions14:18 - Story # 2: Scathing report on Medibank cyberattack highlights unenforced MFA24:30 - Story # 3: CDK suffered another data breach as it was attempting to recover35:08 - Story # 4: LockBit claims the hack of the US Federal Reserve40:00 - Story # 5: Amazon-Powered AI Cameras Used to Detect Emotions of Unwitting UK Train Passengers45:36 - Story # 6: That PowerShell ‘fix' for your root cert ‘problem' is a malware loader in disguise 51:13 - Story # 7: US sanctions Kaspersky Lab executives, board members over ‘cooperation' with Russia 53:23 - Story # 7b: Treasury Sanctions Kaspersky Lab Leadership in Response to Continued Cybersecurity Risks

En Estados Unidos, la administración del presidente Biden, anunció un bloqueo de venta del antivirus de Kaspersky Lab debido a supuestos vínculos de la compañía con el gobierno ruso. Esta nueva legislación podría asestar un duro golpe a la reputación de al empresa, afectando sus ventas en el resto del mundo.Disponible en Spotify y en Apple Podcasts

In today's episode, we discuss the conviction of five men behind the illegal streaming service Jetflicks (https://www.bleepingcomputer.com/news/legal/five-men-convicted-for-operating-illegal-streaming-site-jetflicks/), the U.S. Treasury's sanctions on 12 Kaspersky executives following a software ban (https://thehackernews.com/2024/06/us-treasury-sanctions-12-kaspersky.html), and the details of the Change Healthcare ransomware attack that exposed sensitive medical data for millions (https://www.bleepingcomputer.com/news/security/change-healthcare-lists-the-medical-data-stolen-in-ransomware-attack/). We cover the implications of these events on national security, legal consequences, and the impact on affected individuals. 00:00 Intro 01:00 Five Men Convicted for Jetflicks Piracy Empire 03:30 U.S. Treasury Targets 12 Kaspersky Execs in Sanctions 06:06 UnitedHealth Confirms Massive Data Breach Details 09:56 Outro Video Episode: https://youtu.be/gEFHGaSbbCI Thanks to Jered Jones for providing the music for this episode. https://www.jeredjones.com/ Logo Design by https://www.zackgraber.com/ Tags: Jetflicks, illegal streaming service, pirated, FBI, movie piracy, TV show piracy, online piracy, streaming crackdown, illicit streaming, cybersecurity, U.S. Treasury, sanctions, Kaspersky, cyber threats, ransomware attack, UnitedHealth, Change Healthcare, health data breach, personal information theft, medical data theft Search Phrases: How did Jetflicks operate as an illegal streaming service Tactics used by Jetflicks for piracy FBI shuts down Jetflicks streaming service Impact of Jetflicks on movie and TV industry U.S. Treasury sanctions on Kaspersky executives Cyber threats from Kaspersky cybersecurity ban Details on the Change Healthcare ransomware attack UnitedHealth data breach impact Types of information stolen in Change Healthcare attack Consequences of UnitedHealth's health data breach Five men convicted for operating illegal streaming site Jetflicks https://www.bleepingcomputer.com/news/legal/five-men-convicted-for-operating-illegal-streaming-site-jetflicks/ Key Information: Conviction Details: A federal jury in Las Vegas convicted five individuals for operating Jetflicks, a significant illegal streaming service. Jetflicks ran from 2007 to 2019 before the FBI shut it down. Service Scale: Jetflicks offered over 10,500 movies and 183,000 TV episodes, pirated from platforms like Netflix, Hulu, and Amazon Prime. The service attracted tens of thousands of paid subscribers, providing new episodes often the day after their TV release. Financial Impact: The operation generated millions of dollars in illicit gains. The U.S. Department of Justice noted substantial financial damages to copyright owners but did not provide specific figures. Individuals Involved: Kristopher Dallmann, Douglas Courson, Felipe Garcia, Jared Jaurequi, and Peter Huber were all convicted. Dallmann faces additional charges for money laundering, making his potential sentence up to 48 years in prison. The other four face maximum sentences of five years each. Next Steps: Sentencing will be decided by a federal district court judge, with the date yet to be scheduled.` U.S. Treasury Sanctions 12 Kaspersky Executives Amid Software Ban https://thehackernews.com/2024/06/us-treasury-sanctions-12-kaspersky.html `- Sanctions Announcement: The U.S. Treasury's Office of Foreign Assets Control (OFAC) sanctioned 12 senior executives at Kaspersky Lab, following a ban by the Commerce Department on Kaspersky software and services in the U.S. Actionable Insight: Be aware of potential impacts on global cybersecurity dynamics and consider alternative security solutions if currently relying on Kaspersky products. Commitment to Cybersecurity Integrity: Brian E. Nelson, Under Secretary of the Treasury for Terrorism and Financial Intelligence, emphasized the U.S. commitment to protecting its cyber domain from malicious threats. Question for Listeners: How do you think these sanctions will affect global cybersecurity policies? Share your thoughts with us. Scope of Sanctions: Sanctions target 12 C-suite and senior-level executives but do not extend to Kaspersky Lab itself or its founder and CEO, Eugene Kaspersky. Engagement Tip: Consider discussing in your team meetings how leadership changes at major cybersecurity firms could impact your organization's security posture. List of Sanctioned Executives: Key roles affected include the COO, Deputy CEO, Chief Business Development Officer, and several vice presidents and heads of business units. Critical Implication: Monitoring the leadership shakeup can provide insights into potential changes in Kaspersky's operational strategies. Commerce Department Ban: As of July 20, 2024, Kaspersky is prohibited from offering its software and services in the U.S., having been added to the Entity List due to national security concerns. Efficiency Note: Prioritize reviewing and updating any Kaspersky-related security protocols before the ban takes effect. Russia's Response: Russia claims the ban is a typical move by the U.S. to limit foreign competition, while Kaspersky asserts it has no ties to the Russian government.` Change Healthcare lists the medical data stolen in ransomware attack https://www.bleepingcomputer.com/news/security/change-healthcare-lists-the-medical-data-stolen-in-ransomware-attack `- Massive Data Exposure Announced: UnitedHealth confirms the types of medical and patient data stolen in the Change Healthcare ransomware attack. Affected data includes health insurance details, medical records, billing info, and personal identifiers like Social Security numbers. Key takeaway: Be vigilant with your health data; monitor for signs of misuse. Scope of the Breach: UnitedHealth CEO reveals that approximately one-third of Americans might be impacted. Actionable Insight: Consider enrolling in credit monitoring and identity theft protection services offered by Change Healthcare. Impact and Response: The attack led to significant disruptions in the US healthcare system, especially affecting pharmacies' ability to process claims. Educational Note: Multi-factor authentication (MFA) could have prevented this breach. Ensure your organization implements MFA for all access points. Ransom Payment and Fallout: UnitedHealth paid a ransom of $22 million, which resulted in internal conflict among the attackers. Despite the ransom payment, some data was still leaked, leading to additional demands. Financial Impact: The breach has cost UnitedHealth $872 million so far. Next Steps for Affected Individuals: Formal data breach notifications will be sent out in July. Affected individuals can visit changecybersupport.com for more information and to sign up for free credit monitoring. Listener Engagement: Have you checked if your healthcare provider offers identity theft protection? Share your experiences with us!`

Az OUR Team megalkotta Magyarország első egyhengeres turbófeltöltésű Formula Student versenyautóját Helló Sajtó!     2024-06-22 05:33:26     Infotech Oktatás egyetem Óbuda Nagy érdeklődés mellett mutatták be az Óbuda University Racing Team csapatának a fejlesztését, Magyarország első egyhengeres turbófeltöltésű Formula Student versenyautóját, aminek az erőforrását a Széchenyi István Egyetemen működő SZEngine Hallgatói Motorfejlesztő Csapata fejlesztette ki. Szankciók a Kaspersky Lab ellen: A Kreml tiltakozik Mínuszos     2024-06-22 07:33:36     Infotech Moszkva Hacker Kreml Kiberbiztonság Kaspersky Lab A tisztességtelen verseny megnyilvánulása, hogy az Egyesült Államok a Kaspersky Lab orosz vírusvédelmi szoftverfejlesztő céggel szemben exportkorlátozást vezetett be. „A Kaspersky Lab olyan vállalat, amely a saját piaci szegmensében nemzetközi szinten nagyon-nagyon versenyképes, és számos paraméterében felülmúlja versenytársait. Az Egyesült Államok A Hubble Űrteleszkóp élete merőben más, új szakaszba lépett Rakéta     2024-06-22 07:24:05     Tudomány Húsz éve tervezték azt a változtatást, amit most valósítottak meg a Hubble Űrteleszkópon. Lemerült Teslában ragadt egy 20 hónapos gyerek 24.hu     2024-06-22 06:48:44     Infotech Baleset Tesla Ha lemerült az autó, nem lehet kívülről kinyitni. Ez elég nagy gondnak tűnik, az elmúlt hetekben több ilyen baleset is történt. Darazsak a nyaralóban, kukac a cseresznyében, szúnyogok mindenütt – Az entomofóbia tönkreteheti a nyarunkat? refresher.hu     2024-06-22 09:38:00     Tudomány Szúnyog Darázs Az entomofóbia, azaz a rovarfóbia első ránézésre egy teljesen egyértelmű problémának tűnik: az ember irreális módon irtózik ezektől az ízeltlábúaktól. De mi van akkor, ha teljesen félreértjük ezt a betegséget, és az egésznek semmi köze nincs a rovarokhoz? MI számolja a virágokat a gyümölcsfákon ITBusiness     2024-06-22 10:11:19     Infotech Spanyolország Telefon Mesterséges intelligencia Gyümölcs Okostelefon Egyesült Királyság Chile Tudósok betanítottak egy mesterséges intelligencia- (MI-) algoritmust arra, hogy megszámolja a gyümölcsfákon lévő virágokat kizárólag okostelefonos felvételek alapján. A rendszer hónapokkal előre megjósolhatja a termés nagyságát időt, pénzt és vizet spórolva ezzel a gazdáknak. Chile, Spanyolország és az Egyesült Királyság kutatói fejlesztették ki a A jó oldalon is készülnek az MI-modellek feltörésére Bitport     2024-06-22 10:31:00     Infotech Mesterséges intelligencia A sebezhetőségek feltárásának egyik módja, amikor különféle trükkökkel próbálják rendellenes működésre bírni a mesterséges intelligenciát, és ezeket az erőfeszítéseket is az automatizálás emelheti új szintre. Tovább élhetnek a macskák egy alkalmazásnak hála, odáig vannak érte a gazdik Liner     2024-06-22 11:53:03     Infotech Egymással is megoszthatják tapasztalataikat a macskatartók, ami nagy segítséget jelent. Nem fognak kapni a magyarok az Apple mesterséges intelligenciájából PC Fórum     2024-06-22 08:00:00     Infotech Mesterséges intelligencia Apple WWDC A magyar Apple rajongók hiába is várják, hogy ősztől kezdődően elkezdhetik majd használni az almás vállalat a WWDC-n bejelentett, mesterséges intelligencián alapuló újdonságait - mivel erre nem lesz lehetőségük. Az Apple ugyanis úgy döntött, hogy Európában - így Magyarországon is - nem fogja elérhetővé tenni az Apple Intelligence szolgáltatásokat. Futball-Eb: visszatértünk a klasszikus magyar stílushoz, de nem azért, mert mi magyarok vagyunk Qubit     2024-06-22 08:06:35     Tudomány Mielőtt bárki a kardjába dőlne a magyar válogatott eddigi szereplése miatt, ne felejtsük el, hogy a keretek erőssége és a játékosminőség alapján mindhárom csoportbeli riválisunk előttünk van. Így tehát mégiscsak pozitívum, hogy az utolsó csoportmeccsen még a továbbjutásra is van esélyünk. Színre lépett Elon Musk hordozható műholdas terminálja, a Starlink Mini PCW     2024-06-22 07:04:09     Infotech Elon Musk Műhold Méretéből adódódon lényegében bárhová magunkkal vihetjük majd. Elhalasztják a Boeing által tervezett űrhajó visszatérését Portfolio     2024-06-22 11:46:00     Külföld Világűr NASA Boeing Űrállomás A NASA és a Boeing úgy döntött, hogy határozatlan időre elhalasztja a Starliner űrhajó visszatérését a Nemzetközi Űrállomásról (ISS) a Földre - áll a NASA pénteki közleményében. A mesterséges intelligencia irányíthatná a jövő fegyvereit? hirado.hu     2024-06-22 05:48:42     Külföld Mesterséges intelligencia Drón Egy német dróngyártó vállalat az MI-re bízná a harctéren az ellenség beazonosítását és megsemmisítését. A további adásainkat keresd a podcast.hirstart.hu oldalunkon.

Az OUR Team megalkotta Magyarország első egyhengeres turbófeltöltésű Formula Student versenyautóját Helló Sajtó!     2024-06-22 05:33:26     Infotech Oktatás egyetem Óbuda Nagy érdeklődés mellett mutatták be az Óbuda University Racing Team csapatának a fejlesztését, Magyarország első egyhengeres turbófeltöltésű Formula Student versenyautóját, aminek az erőforrását a Széchenyi István Egyetemen működő SZEngine Hallgatói Motorfejlesztő Csapata fejlesztette ki. Szankciók a Kaspersky Lab ellen: A Kreml tiltakozik Mínuszos     2024-06-22 07:33:36     Infotech Moszkva Hacker Kreml Kiberbiztonság Kaspersky Lab A tisztességtelen verseny megnyilvánulása, hogy az Egyesült Államok a Kaspersky Lab orosz vírusvédelmi szoftverfejlesztő céggel szemben exportkorlátozást vezetett be. „A Kaspersky Lab olyan vállalat, amely a saját piaci szegmensében nemzetközi szinten nagyon-nagyon versenyképes, és számos paraméterében felülmúlja versenytársait. Az Egyesült Államok A Hubble Űrteleszkóp élete merőben más, új szakaszba lépett Rakéta     2024-06-22 07:24:05     Tudomány Húsz éve tervezték azt a változtatást, amit most valósítottak meg a Hubble Űrteleszkópon. Lemerült Teslában ragadt egy 20 hónapos gyerek 24.hu     2024-06-22 06:48:44     Infotech Baleset Tesla Ha lemerült az autó, nem lehet kívülről kinyitni. Ez elég nagy gondnak tűnik, az elmúlt hetekben több ilyen baleset is történt. Darazsak a nyaralóban, kukac a cseresznyében, szúnyogok mindenütt – Az entomofóbia tönkreteheti a nyarunkat? refresher.hu     2024-06-22 09:38:00     Tudomány Szúnyog Darázs Az entomofóbia, azaz a rovarfóbia első ránézésre egy teljesen egyértelmű problémának tűnik: az ember irreális módon irtózik ezektől az ízeltlábúaktól. De mi van akkor, ha teljesen félreértjük ezt a betegséget, és az egésznek semmi köze nincs a rovarokhoz? MI számolja a virágokat a gyümölcsfákon ITBusiness     2024-06-22 10:11:19     Infotech Spanyolország Telefon Mesterséges intelligencia Gyümölcs Okostelefon Egyesült Királyság Chile Tudósok betanítottak egy mesterséges intelligencia- (MI-) algoritmust arra, hogy megszámolja a gyümölcsfákon lévő virágokat kizárólag okostelefonos felvételek alapján. A rendszer hónapokkal előre megjósolhatja a termés nagyságát időt, pénzt és vizet spórolva ezzel a gazdáknak. Chile, Spanyolország és az Egyesült Királyság kutatói fejlesztették ki a A jó oldalon is készülnek az MI-modellek feltörésére Bitport     2024-06-22 10:31:00     Infotech Mesterséges intelligencia A sebezhetőségek feltárásának egyik módja, amikor különféle trükkökkel próbálják rendellenes működésre bírni a mesterséges intelligenciát, és ezeket az erőfeszítéseket is az automatizálás emelheti új szintre. Tovább élhetnek a macskák egy alkalmazásnak hála, odáig vannak érte a gazdik Liner     2024-06-22 11:53:03     Infotech Egymással is megoszthatják tapasztalataikat a macskatartók, ami nagy segítséget jelent. Nem fognak kapni a magyarok az Apple mesterséges intelligenciájából PC Fórum     2024-06-22 08:00:00     Infotech Mesterséges intelligencia Apple WWDC A magyar Apple rajongók hiába is várják, hogy ősztől kezdődően elkezdhetik majd használni az almás vállalat a WWDC-n bejelentett, mesterséges intelligencián alapuló újdonságait - mivel erre nem lesz lehetőségük. Az Apple ugyanis úgy döntött, hogy Európában - így Magyarországon is - nem fogja elérhetővé tenni az Apple Intelligence szolgáltatásokat. Futball-Eb: visszatértünk a klasszikus magyar stílushoz, de nem azért, mert mi magyarok vagyunk Qubit     2024-06-22 08:06:35     Tudomány Mielőtt bárki a kardjába dőlne a magyar válogatott eddigi szereplése miatt, ne felejtsük el, hogy a keretek erőssége és a játékosminőség alapján mindhárom csoportbeli riválisunk előttünk van. Így tehát mégiscsak pozitívum, hogy az utolsó csoportmeccsen még a továbbjutásra is van esélyünk. Színre lépett Elon Musk hordozható műholdas terminálja, a Starlink Mini PCW     2024-06-22 07:04:09     Infotech Elon Musk Műhold Méretéből adódódon lényegében bárhová magunkkal vihetjük majd. Elhalasztják a Boeing által tervezett űrhajó visszatérését Portfolio     2024-06-22 11:46:00     Külföld Világűr NASA Boeing Űrállomás A NASA és a Boeing úgy döntött, hogy határozatlan időre elhalasztja a Starliner űrhajó visszatérését a Nemzetközi Űrállomásról (ISS) a Földre - áll a NASA pénteki közleményében. A mesterséges intelligencia irányíthatná a jövő fegyvereit? hirado.hu     2024-06-22 05:48:42     Külföld Mesterséges intelligencia Drón Egy német dróngyártó vállalat az MI-re bízná a harctéren az ellenség beazonosítását és megsemmisítését. A további adásainkat keresd a podcast.hirstart.hu oldalunkon.

The US Department of Commerce classified Kaspersky Lab as a threat to US National security, SpaceX launches the Starlink Mini, and Patrick Norton makes us smarter about chatbots making us dumber.Starring Tom Merritt, Sarah Lane, Patrick Norton, Amos, Joe.Link to the Show Notes.

Apple still plans to launch a more affordable mixed reality headset before the end of next year, but the Vision Pro sounds like a one off. Plus, Nvidia, Microsoft and Apple vie for the title of most valuable company in the world. And much more!See omnystudio.com/listener for privacy information.

Plus: the IRS plans to deny billions of dollars of what it says are improper claims for a popular Covid-era tax credit. And, the Biden administration bans sales of software built by Russia's Kaspersky Lab in the U.S. Luke Vargas hosts. Sign up for the WSJ's free What's News newsletter.  Learn more about your ad choices. Visit megaphone.fm/adchoices

The US Department of Commerce classified Kaspersky Lab as a threat to US National security, SpaceX launches the Starlink Mini, and Patrick Norton makes us smarter a bout chatbots making us dumber. Starring Tom Merritt, Sarah Lane, Patrick Norton, Amos, Joe. To read the show notes in a separate page click here! Support the show on Patreon by becoming a supporter!

Administraţia Biden va anunţa joi planuri de a interzice vânzarea software-ului antivirus realizat de Kaspersky Labs din Rusia în Statele Unite, a declarat o persoană familiarizată cu problema, citând marii clienţi ai companiei din SUA, inclusiv furnizorii de infrastructuri critice şi autorităţile de stat şi locale, transmite Reuters.

Ilya Sutskever, former OpenAI chief scientist, starts a new AI company, Safe Superintelligence, The EU canceled a vote to amend a law over CSAM that faced stiff opposition, and the Biden Administration will announce a ban on Kaspersky Lab's antivirus software. https://open.acast.com/public/streams/619570402eacc3a36070252c/episodes/66745357c23b2c001281077d.mp3 Please SUBSCRIBE HERE. You can get an ad-free feed of Daily Tech HeadlinesContinue reading "Former OpenAI Cheif Scientist Starts A New, Safe, AI Company – DTH"

Our news stories today include SBF filing an appeal on his recent sentencing, a UK court denies Apple's request to dismiss a huge lawsuit and Microsoft may soon make the Copilot AI feature an auto-launch program in Windows 11. Plus much more!See omnystudio.com/listener for privacy information.

The US authorities explain the decision to ban the Russian anti-virus program, citing as a threat to national security and alleging the company's possible connection with the Kremlin. - Свое решение запретить российскую антивирусную программу Вашингтон связывает с угрозой национальной безопасности и возможной связью компании с Кремлем.

Podcast: PrOTect It AllEpisode: Harnessing AI in Cybersecurity: Revolutionizing OT ProtectionPub date: 2024-02-20Hosted by: Aaron Crow Guest: Clint Bodungen Clint Bodungen is a globally recognized cybersecurity professional and thought leader with 25+ years of experience (focusing primarily on industrial cybersecurity, red teaming, and risk assessment). He is the author of two books, "Hacking Exposed: Industrial Control Systems" and “ChatGPT for Cybersecurity Cookbook. Clint is a United States Air Force veteran and has worked for notable cybersecurity firms like Symantec, Booz Allen Hamilton, and Kaspersky Lab, and is currently the co-founder and CEO of a cybersecurity training startup, ThreatGEN. Renowned for his creative approach to cybersecurity education and training, he has been at the forefront of integrating gamification and AI applications into cybersecurity training, creating his flagship product, “ThreatGEN® Red vs. Blue”, the world's first online multiplayer computer designed to teach real-world cybersecurity. His latest innovation is AutoTableTop, which uses the latest generative AI technology to automate, simplify, and revolution IR tabletop exercises. As AI technology continues to evolve, so too does his pursuit to help revolutionize the cybersecurity industry using generative AI and large language models (LLM). Summary In this conversation, Clint and Aaron discuss the value of tabletop exercises in cybersecurity and the development of auto tabletop, an AI-based tool for facilitating incident response tabletop exercises. They highlight the limitations of traditional tabletops and the benefits of using AI to enhance engagement and flexibility. They address concerns about AI in cybersecurity, such as data privacy and security, and emphasize the use of local language models to mitigate risks. They also discuss the future of AI in the industry and the workforce, emphasizing the importance of learning generative AI and prompt engineering for future job prospects. In this conversation, Clint discusses the automation of tasks using AI and the benefits of using AI as a tool to enhance human creativity. He also explores the future of AI and its potential for accelerating technological advancement. Clint acknowledges the concerns about the potential misuse of AI but emphasizes the importance of using it for good. He highlights the role of AI in reducing barriers to innovation and its significance in cybersecurity. Overall, the conversation highlights the transformative power of AI and its impact on various industries. Takeaways Tabletop exercises are important for testing incident response plans and should be conducted regularly for maximum effectiveness. AI-based tabletop exercises, such as auto tabletop, offer increased engagement and flexibility compared to traditional tabletops. Concerns about data privacy and security can be addressed by using local language models and fine-tuning models for specific tasks. AI has the potential to enhance productivity and efficiency in the industry, but proper understanding and implementation are crucial. Learning generative AI and prompt engineering can increase job prospects in the future. AI can automate menial tasks, allowing humans to focus on more valuable work. AI has the potential to enhance human creativity and accelerate technological advancement. The responsible use of AI is crucial to prevent misuse and ensure positive outcomes. AI can reduce barriers to innovation and empower individuals to bring their ideas to life. Chapters 00:00 Introduction and Background 02:13 The Value of Tabletop Exercises 03:01 The Development of Auto Tabletop 04:27 The Importance of Regular Tabletop Exercises 05:53 Limitations of Traditional Tabletops 07:41 The Benefits of AI-based Tabletops 09:45 Increased Engagement and Flexibility 11:36 Expanding the Reach of Tabletop Exercises 14:43 Addressing Concerns about AI in Cybersecurity 19:32 Using Local Language Models for Enhanced Security 25:15 Misconceptions and Pitfalls of AI in the Industry 30:37 Preparing for the Adoption of AI in OT 37:52 Overcoming Fear of the Unknown 40:38 The Future of AI in Industry and Workforce 46:30 Automating Tasks with AI 48:16 The Future of AI 49:18 Enhancing Human Creativity 52:08 Accelerating Technological Advancement 53:02 The Potential for Good and Bad 55:23 Reducing Barriers to Innovation 57:16 Using AI for Cybersecurity 57:43 The Importance of AI in OT and Cybersecurity Connect with Clint Bodungen: Website: LinkedIn: Connect with Aaron Crow: Website: www.corvosec.com LinkedIn: https://www.linkedin.com/in/aaronccrow Learn more about PrOTect IT All: Email: info@protectitall.co Website: https://www.protectitall.co X: https://twitter.com/protectitall YouTube: https://www.youtube.com/@PrOTectITAll FaceBook: https://facebook.com/protectitallpodcast To be a guest, or suggest a guest/episode please email us at info@protectitall.co — Show notes by NMP. Audio production by NMP. We hear you loud and clear.The podcast and artwork embedded on this page are from Aaron Crow, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: PrOTect It AllEpisode: Harnessing AI in Cybersecurity: Revolutionizing OT ProtectionPub date: 2024-02-20Hosted by: Aaron Crow Guest: Clint Bodungen Clint Bodungen is a globally recognized cybersecurity professional and thought leader with 25+ years of experience (focusing primarily on industrial cybersecurity, red teaming, and risk assessment). He is the author of two books, "Hacking Exposed: Industrial Control Systems" and “ChatGPT for Cybersecurity Cookbook. Clint is a United States Air Force veteran and has worked for notable cybersecurity firms like Symantec, Booz Allen Hamilton, and Kaspersky Lab, and is currently the co-founder and CEO of a cybersecurity training startup, ThreatGEN. Renowned for his creative approach to cybersecurity education and training, he has been at the forefront of integrating gamification and AI applications into cybersecurity training, creating his flagship product, “ThreatGEN® Red vs. Blue”, the world's first online multiplayer computer designed to teach real-world cybersecurity. His latest innovation is AutoTableTop, which uses the latest generative AI technology to automate, simplify, and revolution IR tabletop exercises. As AI technology continues to evolve, so too does his pursuit to help revolutionize the cybersecurity industry using generative AI and large language models (LLM). Summary In this conversation, Clint and Aaron discuss the value of tabletop exercises in cybersecurity and the development of auto tabletop, an AI-based tool for facilitating incident response tabletop exercises. They highlight the limitations of traditional tabletops and the benefits of using AI to enhance engagement and flexibility. They address concerns about AI in cybersecurity, such as data privacy and security, and emphasize the use of local language models to mitigate risks. They also discuss the future of AI in the industry and the workforce, emphasizing the importance of learning generative AI and prompt engineering for future job prospects. In this conversation, Clint discusses the automation of tasks using AI and the benefits of using AI as a tool to enhance human creativity. He also explores the future of AI and its potential for accelerating technological advancement. Clint acknowledges the concerns about the potential misuse of AI but emphasizes the importance of using it for good. He highlights the role of AI in reducing barriers to innovation and its significance in cybersecurity. Overall, the conversation highlights the transformative power of AI and its impact on various industries. Takeaways Tabletop exercises are important for testing incident response plans and should be conducted regularly for maximum effectiveness. AI-based tabletop exercises, such as auto tabletop, offer increased engagement and flexibility compared to traditional tabletops. Concerns about data privacy and security can be addressed by using local language models and fine-tuning models for specific tasks. AI has the potential to enhance productivity and efficiency in the industry, but proper understanding and implementation are crucial. Learning generative AI and prompt engineering can increase job prospects in the future. AI can automate menial tasks, allowing humans to focus on more valuable work. AI has the potential to enhance human creativity and accelerate technological advancement. The responsible use of AI is crucial to prevent misuse and ensure positive outcomes. AI can reduce barriers to innovation and empower individuals to bring their ideas to life. Connect with Clint Bodungen: Website: https://threatgen.com/ LinkedIn: https://www.linkedin.com/in/clintb/ Connect with Aaron Crow: Website: www.corvosec.com LinkedIn: https://www.linkedin.com/in/aaronccrow Learn more about PrOTect IT All: Email: info@protectitall.co Website: https://www.protectitall.co X: https://twitter.com/protectitall YouTube: https://www.youtube.com/@PrOTectITAll FaceBook: https://facebook.com/protectitallpodcast To be a guest, or suggest a guest/episode please email us at info@protectitall.co — Show notes by NMP. Audio production by NMP. We hear you loud and clear.The podcast and artwork embedded on this page are from Aaron Crow, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Clint Bodungen | Co-Founder / CEO @ ThreatGENClint Bodungen is a globally recognized cybersecurity professional and thought leader with over 25 years of experience (of which 20 years have been focused on ICS/OT cybersecurity). His journey in cybersecurity began at the age of eleven when he started programming on a Tandy 1200, and since then, his career has been nothing short of remarkable. A veteran of the United States Air Force, Clint has established himself as a prominent figure in the field, having worked for notable cybersecurity firms like Symantec, Industrial Defender, Booz Allen Hamilton, and Kaspersky Lab. His expertise extends to the impact of AI on cybersecurity, and he has played a pivotal role in addressing the industry's training and education gaps. Clint is renowned for his innovative approaches and has contributed to the field as the author of two books: the best seller, "Hacking Exposed: Industrial Control Systems," and the upcoming "ChatGPT for Cybersecurity Cookbook." He has written an array of articles, technical papers, and training courses, with a primary focus on cybersecurity vulnerability assessment, penetration testing/red teaming, and risk management. Even before the public emergence of generative AI and large language models (LLM), he had already developed a variety of cybersecurity tools and apps that leverage this technology. Over the past decade, Clint has been at the forefront of integrating gamification and AI applications into cybersecurity training. His dedication and innovation culminated in the creation of ThreatGEN® Red vs. Blue, the world's first online multiplayer cybersecurity game crafted to impart real-world cybersecurity skills. This flagship product marks Clint's foray as a pioneer in cybersecurity gamification, a testament to his progressive vision. Clint's enduring passion and goal are to redefine industry standards for cybersecurity education using computer gaming (gamification) and AI technology to present a revolutionary, engaging approach to this essential field, and set new precedents for effective and interactive learning.Clint rejoins Manufacturing Hub to shed some more light on hackers and what groups can do to learn more about cybersecurity.We'll get into Clint's new book: ChatGPT for Cybersecurity Cookbook.Plus, we'll check in on how Red vs. Blue continues to change about how we learn about cybersecurity.Thanks to Phoenix Contact USA for sponsoring this show and 100-year anniversary wishes. Connect with Us Clint Bodungen Vlad Romanov Dave Griffith Manufacturing Hub SolisPLC #manufacturing #automation #cybersecurity

This week's theme on the Retirement Quick Tips Podcast is: How To Protect Yourself From Cyber Theft Today, I'm talking about some of the top ways you can protect yourself from cyber theft.  #1: Check your credit reports. You can get a free copy of your credit report every week. If you make it a habit to check regularly and often, you'll catch any suspicious activity sooner before years pass and a lot of damage has been done.  #2: Password protection: Phone - For many of us, there is a lot of sensitive information on our phones. A plain notepad note with your social maybe? Apps for all of your bank accounts and every other account you frequently use. In 2018, Kaspersky Labs found that 52 percent of people don't password-protect their phones. Turning on password or biometric identification (like fingerprints or facial recognition) can prevent a thief from accessing personal information on your phone. And use the longer 6 digit code. It will be harder to guess if someone does steal your phone.  Use a password manager - One of the ways hackers can steal your info is that they get one of your passwords, and then they test it on different sites to see if it works there. Most people use repeat passwords that aren't very strong - password1. It takes like 12 seconds to guess weak passwords and then it's just a matter of time before they are able to hack into your facebook, email, bank accounts, etc. So its critical to use a unique and strong password for every single online login account you have. Whether that's Amazon, your bank, email, place you shop, etc. You don't need to remember these passwords because they're stored securely in the password manager. You only need to remember your master password, and make sure that it is strong and hard to guess. #3: 2FA - create another step for log in for your most sensitive log ins with 2FA. This is where you have to enter a code, similar for entering your pin when you use your debit card. It's that extra step that can stop a thief from logging into your account if they do get your login credentials.  That's it for today. Thanks for listening! My name is Ashley Micciche and this is the Retirement Quick Tips podcast.    --------- >>> Subscribe on Apple Podcasts: https://apple.co/2DI2LSP >>> Subscribe on Amazon Alexa: https://amzn.to/2xRKrCs >>> Visit the podcast page: https://truenorthra.com/podcast/  ---------- Tags: retirement, investing, money, finance, financial planning, retirement planning, saving money, personal finance

È bufera su Ledger dopo che l'azienda annuncia un nuovo servizio che offre ai clienti la possibilità di cedere la custodia delle chiavi private ad un servizio cloud based. Analiziamo con cura di cosa si tratta e vediamo perché è una pessima idea.Una versione modificata di un Trezor ci consente di parlare dei supply chain attack e di come comportarsi per mitigare i rischi.Inoltre: la chiave del successo di Bitcoin non è nella sua ideologia ma nella sua implementazione all'interno di applicazioni terze e servizi. Vediamo perché i Lightning Service Provider e i Software Development Kit sono la chiave per la vittoria.It's showtime!

Alexey Tyurenkov has worked in the news all his life, he came right before the Georgian-Ossetian conflict in August 2008. Since 2010, news has been linked to social media. After 10 years in the news (RT International, RT in Russian, Lenta.ru) he began to look for himself in other areas. So he got into a startup that barely survived the pandemic, then to the Premier online cinema, and then he got into the social networks of his beloved city, Moscow Transport. There, he had to not only manage posting to numerous accounts, but also actively help people, respond to their numerous requests, and manage a lot of crisis management. And now in Kaspersky Lab, he is the leader in the content direction in internal communications. And he also has a website, the once full-fledged media "Catonauts", which 10 years ago (anniversary on March 1) was one of the first projects of enthusiasts about the entertainment industry: cinema, series, games, comics, and anime. Then there was a boom in this direction, which continues to this day. It was great to start this story. FIND ALEXEY ON SOCIAL MEDIA Facebook | Twitter | Instagram | VKontakte ================================ SUPPORT & CONNECT: Support on Patreon: https://www.patreon.com/denofrich Twitter: https://twitter.com/denofrich Facebook: https://www.facebook.com/mark.develman/ YouTube: https://www.youtube.com/denofrich Instagram: https://www.instagram.com/den_of_rich/ Hashtag: #denofrich © Copyright 2023 Den of Rich. All rights reserved.

In this episode of the Cybersecurity Defenders podcast, we recount some hacker history and tell the story of Amit Serper, a hacker and reverse engineer, who was instrumental in stopping the most devastating cyber attack in history: NotPetya.On 27 June 2017, a major global cyberattack began (Ukrainian companies were among the first to state they were being attacked), utilizing a new variant of Petya. On that day, Kaspersky Lab reported infections in France, Germany, Italy, Poland, the United Kingdom, and the United States, but that the majority of infections targeted Russia and Ukraine, where more than 80 companies were initially attacked, including the National Bank of Ukraine. ESET estimated on 28 June 2017 that 80% of all infections were in Ukraine, with Germany second hardest hit with about 9%.Russian president Vladimir Putin's press secretary, Dmitry Peskov, stated that the attack had caused no serious damage in Russia. Experts believed this was a politically-motivated attack against Ukraine, since it occurred on the eve of the Ukrainian holiday Constitution Day.Kaspersky dubbed this variant "NotPetya", as it has major differences in its operations in comparison to earlier variants. McAfee engineer Christiaan Beek stated that this variant was designed to spread quickly, and that it had been targeting "complete energy companies, the power grid, bus stations, gas stations, the airport, and banks".This episode was written by Nathaniel Nelson, narrated by Christopher Luft and produced by the team at LimaCharlie.The Cybersecurity Defenders Podcast: a show about cybersecurity and the people that defend the internet.

On this episode of The Insuring Cyber Podcast, host Elizabeth Blosfield speaks with David Emm, principal security researcher at Kaspersky Lab, about cybersecurity concerns resulting from digital devices, … Read More » The post EP. 52: What to Know About an Unlikely Vector for Cyber Threats: Household Pets appeared first on Insurance Journal TV.

On this episode of The Insuring Cyber Podcast, host Elizabeth Blosfield speaks with David Emm, principal security researcher at Kaspersky Lab, about cybersecurity concerns resulting from digital devices, … Read More » The post EP. 52: What to Know About an Unlikely Vector for Cyber Threats: Household Pets appeared first on Insurance Journal TV.

A daily look at the relevant information security news from overnight - 20 July, 2022Episode 269 - 20 July 2022Knauf Knocked Out- https://www.bleepingcomputer.com/news/security/building-materials-giant-knauf-hit-by-black-basta-ransomware-gang/Rusty Luna - https://thehackernews.com/2022/07/new-rust-based-ransomware-family.htmlGPS Over-Tracking - https://www.zdnet.com/article/flaws-in-a-popular-gps-tracker-could-allow-hackers-to-track-or-stop-vehicles-say-security-researchers/Oracle Patchfest- https://www.securityweek.com/oracle-releases-349-new-security-patches-july-2022-cpu Magicart Skim - https://docs.google.com/document/d/1Kse6lMi7hJEg1wDnVS_ZEND2pZOEMT4a9We3erCPsXE/editHi, I'm Paul Torgersen. It's Wednesday July 20th, 2022, and from Victoria, this is a look at the information security news from overnight. From BleepingComputer.com:The Knauf Group, a large Germany based building materials company, has announced it has been the target of a cyberattack that has disrupted its business operations. Their global IT team has shut down all systems to isolate the incident. Knauf has not confirmed it is a ransomware attack, but the Black Basta group has claimed responsibility for the attack on their extortion site. So far they claim to have released about 20% of the information they stole, which indicates they are likely still hopeful to receive a ransom from the victim. From TheHackerNews.com:Researchers have disclosed a brand-new ransomware family written in Rust, that Kaspersky Labs has named Luna. The ransomware is fairly simple and appears to be in its early development. It is designed to be used by Russian speaking threat actors, and can run on Windows, Linux, and ESXi systems. From ZDNet.com:Critical security vulnerabilities in the MiCODUS MV720 vehicle GPS tracker could be used to remotely track, stop or even take control of vehicles in which it is installed. These devices are popular with large companies and government entities, with approximately 1.5 million of them currently in use in 169 countries. Researchers at BitSight, who found the flaws, say these devices should not be used until patches are available. No word from MiCODUS on when that might be. From SecurityWeek.com:Oracle's quarterly Critical Patch Update has a total of 349 new security patches, including 230 for vulnerabilities that can be exploited by remote, unauthenticated attackers. 64 of the vulnerabilities are rated critical, with four of those scoring a ten out of ten. Financial Services Applications received the largest number of fixes, followed by Oracle Communications, then Fusion Middleware. Get your patch on kids. And last today, from ThreatPost.com:A Magecart campaign has been skimming payment-card credentials from customers using three online restaurant-ordering systems. The attack has affected over 300 restaurants and compromised at least 50,000 cards so far, which have already been offered up for sale on the dark web. The platforms impacted are MenuDrive, Harbortouch, and InTouchPOS. That's all for me today. Have a great rest of your day. Like and subscribe, and until next tomorrow, be safe out there.

Evgeny Pitolin is an expert in the domain of cybersecurity, IT and communications. Born in 1983 in St. Petersburg. In 2005 graduated from St. Petersburg State University of Telecommunications. Started his career in the field of information technology and communications in 2000. Evgeny worked @ ISP/Broadcom companies "Peterlink", "PeterStar" and "Teleplus", was also an employee of the meaningful Russian state media ITAR-TASS (regional division in St. Petersburg). He also works as business analyst for Commercial Department of JSC "Arctel" branch in St. Petersburg, worked at JSC "St. Petersburg Cable Television", where he held the position of marketing and PR manager. Since 2007, he has been in charge of the marketing department of the Northwest Branch of the Federal multiservice telecom operator Effortel. In 2008, he started working at Kaspersky Lab. By the time of his collaboration with LC, he was widely well known in IT circles. On January 21, 2009, he was appointed as Kaspersky head of regional representative office in the North-Western Federal District. Later in 2016, Evgeny had been promoted and became Managing Director of Central Asian office since 2016, and in 2020 the CIS and Baltic countries came under his authority. Currently, he works as the Director of the TerraLink Cybersecurity Practice. Also, he is ongoing author for the columns in Forbes.kz , Kursiv, Business Kazakhstan, Bluescreen, Moskva FM, etc. There are own projects on Atameken business, Forbes channel, etc. FIND EVGENY ON SOCIAL MEDIA LinkedIn | Facebook | Instagram | Telegram ================================ SUPPORT & CONNECT: Support on Patreon: https://www.patreon.com/denofrich Twitter: https://twitter.com/denofrich Facebook: https://www.facebook.com/denofrich YouTube: https://www.youtube.com/denofrich Instagram: https://www.instagram.com/den_of_rich/ Hashtag: #denofrich © Copyright 2022 Den of Rich. All rights reserved.

Picture of the Week. A high severity 0-day vulnerability update for Chrome. An interview with the CTO of a large Ukraine ISP, Ukrtelecom. NPM under attack, again. Honda says, nothing to worry about... The U.S., the FCC, Kaspersky Labs and Chinese Telecoms. Closing The Loop. Targeted Exploitation. We invite you to read our show notes at https://www.grc.com/sn/SN-864-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: grammarly.com/securitynow NetFoundry.io/TWIT wwt.com/twit

Picture of the Week. A high severity 0-day vulnerability update for Chrome. An interview with the CTO of a large Ukraine ISP, Ukrtelecom. NPM under attack, again. Honda says, nothing to worry about... The U.S., the FCC, Kaspersky Labs and Chinese Telecoms. Closing The Loop. Targeted Exploitation. We invite you to read our show notes at https://www.grc.com/sn/SN-864-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: grammarly.com/securitynow NetFoundry.io/TWIT wwt.com/twit

Picture of the Week. A high severity 0-day vulnerability update for Chrome. An interview with the CTO of a large Ukraine ISP, Ukrtelecom. NPM under attack, again. Honda says, nothing to worry about... The U.S., the FCC, Kaspersky Labs and Chinese Telecoms. Closing The Loop. Targeted Exploitation. We invite you to read our show notes at https://www.grc.com/sn/SN-864-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: grammarly.com/securitynow NetFoundry.io/TWIT wwt.com/twit

Picture of the Week. A high severity 0-day vulnerability update for Chrome. An interview with the CTO of a large Ukraine ISP, Ukrtelecom. NPM under attack, again. Honda says, nothing to worry about... The U.S., the FCC, Kaspersky Labs and Chinese Telecoms. Closing The Loop. Targeted Exploitation. We invite you to read our show notes at https://www.grc.com/sn/SN-864-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: grammarly.com/securitynow NetFoundry.io/TWIT wwt.com/twit

Cybersecurity expert Tony Grasso joins Kathryn to look at why Russian cybersecurity company Kaspersky Lab has been added to the national security threat list by the FCC. He'll also talk about a Chinese threat actor known as Scarab that has been associated with a campaign against Ukraine, the seven teens arrested in the UK as part of cyber-crime gang Lapsus$ and US charges laid against Russian government employees over their hacks of critical energy infrastructure.

Picture of the Week. A high severity 0-day vulnerability update for Chrome. An interview with the CTO of a large Ukraine ISP, Ukrtelecom. NPM under attack, again. Honda says, nothing to worry about... The U.S., the FCC, Kaspersky Labs and Chinese Telecoms. Closing The Loop. Targeted Exploitation. We invite you to read our show notes at https://www.grc.com/sn/SN-864-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: grammarly.com/securitynow NetFoundry.io/TWIT wwt.com/twit

Picture of the Week. A high severity 0-day vulnerability update for Chrome. An interview with the CTO of a large Ukraine ISP, Ukrtelecom. NPM under attack, again. Honda says, nothing to worry about... The U.S., the FCC, Kaspersky Labs and Chinese Telecoms. Closing The Loop. Targeted Exploitation. We invite you to read our show notes at https://www.grc.com/sn/SN-864-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: grammarly.com/securitynow NetFoundry.io/TWIT wwt.com/twit

0:00 Dennis: "No" 0:10 Tariffs removed, GPU prices down? 1:04 Silicon prices up, though? 2:07 iPhone SE production reduced 3:00 Brilliant 3:48 QUICK BITS 3:56 M2 iPad Pro? 4:28 Ryzen 9 7950X is a chonker 5:03 Kaspersky Lab is a threat 5:43 iCloud class action settlement 6:18 Apple game console? News Sources: https://lmg.gg/HpOzm

Picture of the Week. A high severity 0-day vulnerability update for Chrome. An interview with the CTO of a large Ukraine ISP, Ukrtelecom. NPM under attack, again. Honda says, nothing to worry about... The U.S., the FCC, Kaspersky Labs and Chinese Telecoms. Closing The Loop. Targeted Exploitation. We invite you to read our show notes at https://www.grc.com/sn/SN-864-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: grammarly.com/securitynow NetFoundry.io/TWIT wwt.com/twit

In this episode I welcome newly retired fellow FBI SSA Scot Huntsberry to talk about his career, and an important crimes against children case he ran in the early 2002s that highlights the important work the FBI has done in this arena for decades. The educational piece of the week is what crimes against children is, and the threat of the week is Kaspersky Labs.  Give a listen, tell a friend. Questions of comments, feel free to email me at darren@thecyburguy.com or follow me at linkedin.com/in/darrenmott. For the video discussed in the podcast go to: https://youtu.be/Yf8HST1ed1c

Guest BioClint is a world-renowned industrial cybersecurity expert, public speaker, published author, and cybersecurity gamification pioneer. He is the lead author of Hacking Exposed: Industrial Control Systems, and creator of the ThreatGEN® Red vs. Blue cybersecurity gamification platform. He is a United States Air Force veteran, has been a cybersecurity professional for more than 25 years, and is an active part of the cybersecurity community, especially in ICS/OT (BEER-ISAC #046). Focusing exclusively on ICS/OT cybersecurity since 2003, he has helped many of the world's largest energy companies, worked for cybersecurity companies such as Symantec, Kaspersky Lab, and Industrial Defender, and has published multiple technical papers and training courses on ICS/OT cybersecurity vulnerability assessment, penetration testing, and risk management. Clint hopes to revolutionize the industry approach to cybersecurity education and help usher in the next generation of cybersecurity professionals, using gamification. His flagship product, ThreatGEN® Red vs. Blue, is the world's first online multiplayer cybersecurity computer game, designed to teach real-world cybersecurity.Main Discussion Points- Industrial Cybersecurity- Gamification of Cybersecurity Awareness- Building Knowledge in CybersecurityTheme: Industrial CybersecurityManufacturing Hub Episode 50.Special thanks to our sponsors Phoenix Contact for the support.The mGuard family from Phoenix Contact is designed to provide cybersecurity protection and network resilience in all rugged and industrial environments.  Combining features of a stateful-packet-inspection firewall, NAT Router, and an end-point security appliance, the mGuards were engineered to be both IT and OT friendly.  With features such as Firewall Assistant and Easy Protect mode, the mGuards are simple to configure securely while still providing unassailable protection for your critical assets. Relevant Ressources- DEF CON Groups | https://forum.defcon.org/social-groups- AWASP Foundation | https://owasp.org/- InfraGard | https://www.infragard.org/Recommended Materials- BEERISAC Podcast | https://podcasts.apple.com/us/podcast/beerisac-ot-ics-security-podcast-playlist/id1459741251- Industrial Cybersecurity: Efficiently secure critical infrastructure systems 1st Edition | https://amzn.to/3tv7Rcu- Industrial Cybersecurity: Efficiently monitor the cybersecurity posture of your ICS environment, 2nd Edition | https://amzn.to/3hSxUFvConnect with UsClint Bodungen | https://www.linkedin.com/in/clintb/Vlad Romanov | https://www.linkedin.com/in/vladromanov/Dave Griffith | https://www.linkedin.com/in/davegriffith23/Manufacturing Hub | https://www.linkedin.com/company/manufacturing-hub-podcast/Let Us Know What You ThinkIf you enjoyed the show, it would mean the world to us if you could leave us a review: https://podcasts.apple.com/us/podcast/manufacturing-hub/id1546805573#manufacturing #automation #cybersecurity