Malicious software used in ransom demands
POPULARITY
Categories
LastPass says Klue breach affected customer information, but passwords remain secure. Attackers begin exploiting Cisco Unified CM vulnerability. CISA flags actively exploited Ubiquiti and Lantronix flaws, urges rapid patching. DifyTap flaws could expose private AI conversations across tenants. Researchers find AI plugin registry let unofficial tools masquerade as trusted software. xpl0itrs launches leak site, signaling shift toward full-service cyber extortion. Ransomware attack hits Indian auto giant Bajaj Auto. U.S. presses Meta to submit AI models for national security reviews. Alleged criminal marketplace administrator extradited to the US. U.S. expands sanctions against Cambodian scam network tied to cyber fraud operations. On today's Industry Voices segment, we are joined by Mike Masciulli, Managing Director, Migration Products and Services at Semperis, discussing RC4 and AD Migration: The Break Scenarios Hiding in Your Source Domain. And a lesson in access control. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest On today's Industry Voices segment, we are joined by Mike Masciulli, Managing Director, Migration Products and Services at Semperis, discussing RC4 and AD Migration: The Break Scenarios Hiding in Your Source Domain. If you enjoyed this conversation, check out the full interview here. Selected Reading Password manager maker LastPass says hackers stole customer support case data during Klue breach (TechCrunch) Klue says hackers stole credential from 2022 that led to customer data breaches (TechCrunch) Cisco Unified CM flaw CVE-2026-20230 now exploited in attacks (BleepingComputer) U.S. CISA adds Ubiquiti UniFi OS and Lantronix EDS5000 plugin flaws to its Known Exploited Vulnerabilities catalog (SecurityAffairs) DifyTap: Zafran discovers how attackers can silently wiretap AI data across tenants on a platform powering 1M+ apps (Zafran) 23 ClawHub Plugins Squat Official Org Scopes (Manifold Security) Cyber Intel Brief: xpl0itrs Leak Site Launch (Dataminr) Indian auto giant Bajaj Auto hit by ransomware incident (The Record) U.S. Presses Meta to Agree to A.I. Reviews as Security Concerns Rise (NY Times) Algerian Man Extradited to US for Running Cybercrime Marketplaces (SecurityWeek) US adds sanctions against accused Cambodian scammers Prince Group (Reuters) Ushering in the Next Frontier of Quantum Innovation (The White House) Meta Exposed Data Internally From Its Controversial Employee-Tracking Program (WIRED) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices
You asked, we answered!
Hackers suspected in Brazil cell phone alert Prinz Eugen ransomware prioritizes recent files for encryption Congress presents bill to protect people from AI-generated deepfakes Get the show notes here: https://cisoseries.com/cybersecurity-news-brazil-phone-alert-hack-prinz-eugen-ransomware-congress-deepfake-bill/ Huge thanks to our episode sponsor, Guardsquare Mobile app security isn't just a tech issue; it's a revenue issue. A recent global study found that seventy-two percent of organizations experienced a mobile app security incident last year. Even worse? Sixty-five percent saw customer churn or uninstalls as a result. Protect your brand and your bottom line with layered mobile app protection. Learn more at Guardsquare.com.
Send us Fan MailYour endpoint tool can be world class and still get taken out first. That's the unsettling reality behind a new wave of “EDR killer” capabilities being packaged inside ransomware-as-a-service platforms, where affiliates can plug in advanced evasion without building it themselves. When attackers can blind endpoint detection and response before the ransomware payload runs, the old comfort of “we have EDR, so we're covered” turns into a single point of failure.We unpack the reporting on a highly active ransomware operation and its toolset, then zoom in on the technical path that makes this work: BYOVD, bring your own vulnerable driver. With admin access, attackers load a legitimate but vulnerable signed driver, escalate into kernel mode, and terminate security processes from below the privilege stack. From there, we shift to what matters for real security programs: defence in depth, kernel integrity protections like HVCI and KMCI, strict driver allow and block policies, and aggressive driver hygiene to reduce attack surface.Then we put on the CISSP lens. We tie the scenario to Domain 7 security operations (EDR limits, incident response, monitoring), Domain 3 security architecture and engineering (layered controls, hardening), and Domain 1 security and risk management (risk = threat × vulnerability × impact, plus threat landscape shifts). The big takeaway is simple: your job isn't to find the fanciest tool, it's to build a program that still works when one control fails and to communicate that risk clearly to leadership.If this helps you think like a manager and study smarter, subscribe for weekly CISSP-focused breakdowns, share the episode with a teammate, and leave a review so more people can find the show.Gain exclusive access to 360 FREE CISSP Practice Questions at FreeCISSPQuestions.com and have them delivered directly to your inbox! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!
With VCF 9.1 the name of VMware Live Recovery, or Site Recovery Manager, seems to have changed to VCF Protection and Recovery. In this episode Velina explains how this platform provides administrators the ability to recover workloads from different types of scenarios. Whether you deleted a VM (operational recovery), lost a whole datacenter (disaster recovery), or had a security breach and found data encrypted (ransomware recovery), VCF Protection and Recovery has an end-to-end solution for you!Discussed topics:Ransomware Recovery Demo - https://www.youtube.com/watch?v=UFjSCyLP384Cyber resilience in 9.1 - https://blogs.vmware.com/cloud-foundation/2026/05/05/announcing-vcf-9-1-modern-private-cloud-built-for-efficiency-and-resilience/
In this special Cybersecurity Today weekend interview, host David Shipley speaks with Amy Yee about leadership, resilience, and the human side of cybersecurity. Amy shares her remarkable journey from electrical engineering and venture capital to becoming the inaugural Chief Digital Officer at Accreditation Canada and Health Standards Organization, where she helped build the digital foundation used by hundreds of healthcare organizations across Canada. The conversation takes a deeply personal turn as Amy recounts leading through a ransomware attack that struck her organization before tabletop exercises and incident-response planning had become routine. She describes the chaos of the first 48 hours, the emotional toll on staff, the difficult weeks that followed, and the lessons learned during a 60-day recovery effort. Amy also discusses her popular conference talk inspired by Mitch Albom's The Five People You Meet in Heaven, reimagined for cybersecurity. She explores five people every cyber professional encounters during their career: the person they protected, the person who challenged them, the person who gave them a chance, the person they failed, and the person they inspired. This is a conversation about cybersecurity, leadership, resilience, mentorship, and finding meaning in a profession that often works behind the scenes. Topics covered: Ransomware incident response Cybersecurity leadership Healthcare cybersecurity Digital transformation Executive crisis management Building cyber resilience Career growth in technology Mentorship and leadership lessons The human side of cybersecurity Guest: Amy Yee Host: David Shipley Podcast: Cybersecurity Today #Cybersecurity #Ransomware #Leadership # Chapters 00:00 Weekend Show Intro 01:22 Amy's Career Origin 02:13 Becoming Chief Digital Officer 03:56 Ransomware Wake Up Call 06:46 Inside the First 48 Hours 08:26 The Low Point Weeks In 10:57 Finding a Path Forward 11:55 Leadership Lessons After Incidents 15:01 Five People in Cyber 17:16 Invisible Impact and Resilience 19:38 The Five Archetypes Explained 21:42 Stories From the Community 24:14 Wired for Change Podcast 27:30 Advice to Younger Amy 28:49 Closing and Off Mic Wrap
In un'epoca di trasformazione digitale capillare, gli stadi sportivi si stanno trasformando da semplici infrastrutture per ospitare spettatori a ecosistemi tecnologici. Con l'inizio dei Mondiali di Calcio 2026, il mondo dello sport professionistico ha attivato simultaneamente un vasto ecosistema di innovazioni mai implementato prima: palloni intelligenti dotati di sensori, sistemi di rilevamento ottico del fuorigioco semi-automatico, intelligenza artificiale per l'analisi tattica e infrastrutture digitali che permettono di riconfigurare gli spazi in tempo reale. Ma come si sono evoluti gli stadi più famosi del mondo? E quali sono le sfide tecnologiche e strutturali affrontate dai club europei e americani per modernizzare impianti storici densamente inseriti in contesti urbani? In questa puntata proviamo a capirlo.Nella sezione delle notizie parliamo di un nuovo passo verso il nucleare in Italia grazie agli Small Modular Reactors, della città costruita dall'FBI per simulare attacchi informatici e infine delle icone europee per marcare i contenuti generati dall'intelligenza artificiale.--Indice--00:00 - Introduzione00:56 - Un nuovo passo verso il nucleare in Italia (IlPost.it, Matteo Gallo)02:19 - La finta città dell'FBI per le indagini informatiche (TheVerge.com, Davide Fasoli)03:33 - L'UE spiega come marcare i contenuti IA (DDay.it, Luca Martinelli)05:32 - L'evoluzione tecnologica degli stadi sportivi (Matteo Gallo)18:43 - Conclusione--Testo--Leggi la trascrizione: https://www.dentrolatecnologia.it/S8E25#testo--Contatti--• www.dentrolatecnologia.it• Instagram (@dentrolatecnologia)• Telegram (@dentrolatecnologia)• YouTube (@dentrolatecnologia)• redazione@dentrolatecnologia.it--Brani--• Ecstasy by Rabbit Theft• Never Give Up by Steve Hartz
Send us Fan MailSend us Fan MailIn this insightful episode of Living the Dream with Curveball, we welcome Shane Kawalilak, a seasoned cybersecurity expert and author with nearly 30 years of experience in the field. Shane is on a mission to simplify cybersecurity for everyone, from businesses to everyday users, ensuring that we all stay safe in an increasingly digital world. His book, *Don't Be the Weakest Link*, serves as a guide to understanding common cyber threats and how to combat them effectively.Shane shares his personal journey into cybersecurity and the pivotal moments that ignited his passion for educating non-technical users. He emphasizes the critical role that every individual plays in maintaining their own security and discusses the most common mistakes people make online, such as reusing passwords and falling victim to phishing attacks.Listeners will gain valuable insights into the psychological tactics used by cybercriminals and the importance of developing a cyber-secure mindset. Shane also highlights real-world examples of cyber attacks, illustrating the potential consequences for individuals and businesses alike. He offers practical advice for small business owners feeling overwhelmed by technology and shares tips for creating strong, memorable passwords.Join us for a compelling discussion that not only raises awareness about the importance of cybersecurity but also encourages listeners to foster genuine connections in a tech-driven world. Shane's insights will inspire you to take control of your online safety and make informed decisions about your digital presence.What You'll Learn in This Episode:- The significance of understanding cybersecurity beyond technical jargon- Common online mistakes and how to avoid them- The psychological tactics used by cybercriminals to manipulate users- Practical steps small business owners can take to enhance security- The future of cybersecurity in the age of AI and how to navigate it safelyFor more information on Shane Kawalilak and his work, visit http://www.dontbetheweakestlink.com and download a free copy of his book to empower yourself with essential cybersecurity knowledge.http://curveball337.redflagit.com/Support the show
A ransomware crew can run through your whole company between dinner and dessert. Sean Martin sat down with Cynthia Kaiser — twenty years at the FBI, now leading the Halcyon Ransomware Research Center — on the speed of the threat, the human cost the industry keeps abstracting away, and why a slice of ransomware deserves a harder name than “crime.”
The Ransomware Minute is a rundown of the latest ransomware attacks & news, brought to you Cybercrime Magazine, Page ONE for Cybersecurity. Listen to the podcast weekly and read it daily at https://ransomwareminute.com. For more on cybersecurity, visit us at https://cybercrimemagazine.com.
Got a question or comment? Message us here!A single unpatched VPN could be all it takes. Qilin ransomware is actively exploiting VPN zero-days to breach networks and accelerate ransomware deployment. We walk through the tactics, the real risk to your organization, and actionable SOC strategies to stay ahead.Support the showWatch full episodes at youtube.com/@aliascybersecurity.Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
Google faces liability for AI-generated claims. Washington pauses public AI model assessments. Anthropic ships a safer AI model. OpenAI disrupts influence operations. Ransomware operators get a powerful new backdoor. Urgent patches land for Ivanti and Veeam. PyPI supply chain attacks evolve. And a massive data breach triggers a record fine in South Korea. Our guest is Peter Barker, Chief Product Officer at Ping Identity, sharing how identity increasingly becomes the control plane for how work gets done. AI analyzes the FIFA World cup, one cliché at a time. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest On today's Industry Voices, we are joined by Peter Barker, Chief Product Officer at Ping Identity, sharing how identity increasingly becomes the control plane for how work gets done across humans, automation, and AI agents. You can read more from Ping Identity here. If you enjoyed this conversation, be sure to check out the full interview here. Selected Reading Landmark German ruling declares Google's AI Overviews are Google's own words and makes it liable for false answers (The Decoder) White House Reins In AI-Testing Unit as National-Security Concerns Grow (Wall Street Journal) Anthropic Releases ‘Safe' Version of Its Mythos A.I. Technology (The New York Times) PRC-linked influence operations are targeting AI debates in the US (OpenAI) Technical Analysis of MLTBackdoor (ThreatLabz) CVE-2026-10520, CVE-2026-10523 - Multiple critical vulnerabilities affecting Ivanti Sentry (Rapid7) Mini Shai-Hulud, Miasma, and Hades Worms Target Bioinformatics and MCP Developers via Malicious PyPI Wheels (Socket) Veeam Patches Critical RCE Vulnerability in Backup & Replication published: yesterday (Beyond Machines) ‘Amazon.com of South Korea' Is Fined a Record $409 Million (The New York Times) The 2026 big soccer tournament, in clichés. (Sinch) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices
Are we prepared for the deployment of a functional quantum computer? This week, Technology Now is returning to the topic of post quantum cryptography. We ask why the deadline for migrating to PQC enabled systems has been moved up, we discover what a quantum computer actually needs to be cryptographically relevant, and we pose the question: when it comes to migrating your systems to quantum resistant forms of encryption, could it already be too late for some people to start?This is Technology Now, a weekly show from Hewlett Packard Enterprise. Every week, hosts Michael Bird and Sam Jarrell look at a story that's been making headlines, take a look at the technology behind it, and explain why it matters to organizations.
Discover how Anthropic's secretive red team and the MITRE ATT&CK framework are mapping the chilling rise of malicious AI use, revealing cyber threats that now move faster than defenders can respond. Was a U.S. law firm right to pay a $20 million ransom. Could Cisco have yet another SD-WAN 0-day in the wild. Why is it so difficult to author secure PHP code. Teens use "WeedHack" to spy and attack each other. Researchers create the first AI-enabled Internet worm. Google Chrome pops-up "Shop with confidence." What... The discovered and irresponsibly disclosed HTTP/2 Bomb. What Anthropic learns from their past year of Claude abuse: It's bad Show Notes - https://www.grc.com/sn/SN-1082-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: threatlocker.com for Security Now outsystems.com/twit guardsquare.com doppel.com cyberhoot.com/securitynow
Discover how Anthropic's secretive red team and the MITRE ATT&CK framework are mapping the chilling rise of malicious AI use, revealing cyber threats that now move faster than defenders can respond. Was a U.S. law firm right to pay a $20 million ransom. Could Cisco have yet another SD-WAN 0-day in the wild. Why is it so difficult to author secure PHP code. Teens use "WeedHack" to spy and attack each other. Researchers create the first AI-enabled Internet worm. Google Chrome pops-up "Shop with confidence." What... The discovered and irresponsibly disclosed HTTP/2 Bomb. What Anthropic learns from their past year of Claude abuse: It's bad Show Notes - https://www.grc.com/sn/SN-1082-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: threatlocker.com for Security Now outsystems.com/twit guardsquare.com doppel.com cyberhoot.com/securitynow
Discover how Anthropic's secretive red team and the MITRE ATT&CK framework are mapping the chilling rise of malicious AI use, revealing cyber threats that now move faster than defenders can respond. Was a U.S. law firm right to pay a $20 million ransom. Could Cisco have yet another SD-WAN 0-day in the wild. Why is it so difficult to author secure PHP code. Teens use "WeedHack" to spy and attack each other. Researchers create the first AI-enabled Internet worm. Google Chrome pops-up "Shop with confidence." What... The discovered and irresponsibly disclosed HTTP/2 Bomb. What Anthropic learns from their past year of Claude abuse: It's bad Show Notes - https://www.grc.com/sn/SN-1082-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: threatlocker.com for Security Now outsystems.com/twit guardsquare.com doppel.com cyberhoot.com/securitynow
Discover how Anthropic's secretive red team and the MITRE ATT&CK framework are mapping the chilling rise of malicious AI use, revealing cyber threats that now move faster than defenders can respond. Was a U.S. law firm right to pay a $20 million ransom. Could Cisco have yet another SD-WAN 0-day in the wild. Why is it so difficult to author secure PHP code. Teens use "WeedHack" to spy and attack each other. Researchers create the first AI-enabled Internet worm. Google Chrome pops-up "Shop with confidence." What... The discovered and irresponsibly disclosed HTTP/2 Bomb. What Anthropic learns from their past year of Claude abuse: It's bad Show Notes - https://www.grc.com/sn/SN-1082-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: threatlocker.com for Security Now outsystems.com/twit guardsquare.com doppel.com cyberhoot.com/securitynow
Discover how Anthropic's secretive red team and the MITRE ATT&CK framework are mapping the chilling rise of malicious AI use, revealing cyber threats that now move faster than defenders can respond. Was a U.S. law firm right to pay a $20 million ransom. Could Cisco have yet another SD-WAN 0-day in the wild. Why is it so difficult to author secure PHP code. Teens use "WeedHack" to spy and attack each other. Researchers create the first AI-enabled Internet worm. Google Chrome pops-up "Shop with confidence." What... The discovered and irresponsibly disclosed HTTP/2 Bomb. What Anthropic learns from their past year of Claude abuse: It's bad Show Notes - https://www.grc.com/sn/SN-1082-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: threatlocker.com for Security Now outsystems.com/twit guardsquare.com doppel.com cyberhoot.com/securitynow
Discover how Anthropic's secretive red team and the MITRE ATT&CK framework are mapping the chilling rise of malicious AI use, revealing cyber threats that now move faster than defenders can respond. Was a U.S. law firm right to pay a $20 million ransom. Could Cisco have yet another SD-WAN 0-day in the wild. Why is it so difficult to author secure PHP code. Teens use "WeedHack" to spy and attack each other. Researchers create the first AI-enabled Internet worm. Google Chrome pops-up "Shop with confidence." What... The discovered and irresponsibly disclosed HTTP/2 Bomb. What Anthropic learns from their past year of Claude abuse: It's bad Show Notes - https://www.grc.com/sn/SN-1082-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: threatlocker.com for Security Now outsystems.com/twit guardsquare.com doppel.com cyberhoot.com/securitynow
There is a moment in every conversation about cybercrime when the criminal stops being a shadow and becomes a person with a desk, a calendar, and a complaint about Monday. That moment is the one that interests me. For years I've been told cybersecurity is a technical problem. Firewalls, patches, acronyms nobody outside the room understands. And it is, partly. But sit with Geoff White for fifteen minutes at InfoSecurity Europe and the technical layer becomes what it always was underneath: people. People who get out of bed, argue with their partners, drink too much vodka after a breakup, and worry about a grandmother in the hospital — while running an extortion racket that, somewhere else, is shutting down the hospital treating someone else's grandmother. Geoff is an investigative journalist and author who has built a career out of refusing to let crime stay abstract. His new BBC series, Cyber Hack — the strand that grew out of The Lazarus Heist — turns its attention to one of the world's biggest ransomware gangs, Conti. And here is the detail that stayed with me: he has read their mail. Three hundred thousand internal messages, leaked, written by the criminals themselves when they assumed no one was watching. A journalist's candy store, as he called it. Also a nightmare — in Russian, thick with slang, mistranslated so often that “Bitcoin” comes out as “cue ball” and money hides behind the word for “grandmothers.” What fascinates me is not the heist. It is the self-portrait. Because the gang does not see a gang. They see a company. They have clients, they say. Customers. Negotiations conducted professionally. Some of them even hand the victim a report afterward — here is how we got in, here is what you should fix — as though extortion were a security audit with an invoice attached. Geoff has a theory I find hard to argue with: extortion is exhausting work for a smart person to do every day, so the brain quietly rewrites the job description. Criminal becomes businessman. The part that knows the truth shrinks. The story they tell themselves takes over. I'm Italian, so of course The Godfather arrived uninvited in the middle of our conversation. It's a business. Nothing personal. We laughed — I get to make that joke and Geoff doesn't — but underneath the laugh is something genuinely unsettling, and it has nothing to do with hackers. It's about all of us. We are all narrating ourselves into the people we'd prefer to be. The ransomware gang simply does it with higher stakes and worse intentions. This is why storytelling isn't decoration on top of cybersecurity. It's the only tool that makes the invisible visible. Geoff's last BBC series landed at number seven on the US charts, a few slots below Joe Rogan, because he tells these stories as stories — with the technical iceberg sitting safely below the waterline. People learn when they aren't being lectured. And we should learn, quickly. The same week I'm laughing about cue balls, Geoff describes cloning his own mother's voice with an AI tool and phoning her. She thought the line was just a little muffled. I told him what I tell my parents: if anything feels strange, hang up and call me directly. A pre-digital instinct, used as armor against a very digital trick. So what do we carry forward, and what do we leave behind? We carry the stories. We leave behind the comfortable idea that any of this is happening somewhere else, to someone else. The new season of Cyber Hack is expected in July. Listen to it — not because it will scare you, though it might, but because it makes a hidden world legible, and legibility is where every defense we have begins. Geoff's books and the show are linked below. And if you'd like more of these conversations, subscribe to the newsletter at marcociappelli.com. Let's keep thinking. — Marco Co-Founder ITSPmagazine & Studio C60 | Creative Director | Branding & Marketing Advisor | Personal Branding Coach | Journalist | Writer | Podcast: An Analog Brain In A Digital Age ⚠️ Beware: Pigs May Fly |
Discover how Anthropic's secretive red team and the MITRE ATT&CK framework are mapping the chilling rise of malicious AI use, revealing cyber threats that now move faster than defenders can respond. Was a U.S. law firm right to pay a $20 million ransom. Could Cisco have yet another SD-WAN 0-day in the wild. Why is it so difficult to author secure PHP code. Teens use "WeedHack" to spy and attack each other. Researchers create the first AI-enabled Internet worm. Google Chrome pops-up "Shop with confidence." What... The discovered and irresponsibly disclosed HTTP/2 Bomb. What Anthropic learns from their past year of Claude abuse: It's bad Show Notes - https://www.grc.com/sn/SN-1082-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: threatlocker.com for Security Now outsystems.com/twit guardsquare.com doppel.com cyberhoot.com/securitynow
Discover how Anthropic's secretive red team and the MITRE ATT&CK framework are mapping the chilling rise of malicious AI use, revealing cyber threats that now move faster than defenders can respond. Was a U.S. law firm right to pay a $20 million ransom. Could Cisco have yet another SD-WAN 0-day in the wild. Why is it so difficult to author secure PHP code. Teens use "WeedHack" to spy and attack each other. Researchers create the first AI-enabled Internet worm. Google Chrome pops-up "Shop with confidence." What... The discovered and irresponsibly disclosed HTTP/2 Bomb. What Anthropic learns from their past year of Claude abuse: It's bad Show Notes - https://www.grc.com/sn/SN-1082-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: threatlocker.com for Security Now outsystems.com/twit guardsquare.com doppel.com cyberhoot.com/securitynow
Anyone can build software with AI now, and millions of people are giving it a try. But when AI can spin up an app in minutes, are security risks slipping through the cracks?
A ransomware attack has forced Evanston Township High School to close for two days, canceling summer school classes, sports camps and all other on-campus activities as officials work to restore computer systems and investigate the breach.
A ransomware attack has forced Evanston Township High School to close for two days, canceling summer school classes, sports camps and all other on-campus activities as officials work to restore computer systems and investigate the breach.
A ransomware attack has forced Evanston Township High School to close for two days, canceling summer school classes, sports camps and all other on-campus activities as officials work to restore computer systems and investigate the breach.
Plus - Supabase doubles valuation to $10B in 8 months Learn more about your ad choices. Visit podcastchoices.com/adchoices
The pace of AI development is nuts Something caught my eye this week that shows just how furious the AI race is becoming: Meta is so desperate for more data centres that it's constructing tents while the proper data centres are built. There are now five 12,000 square meter tents erected at a site in Ohio. They build these “rapid development structures” to house likely billions of dollars' worth of chips. A proper data centre can take years to build – they get these live in three months. They build ‘off the grid' gas-turbine power stations beside them too. Meta's next product: an AI pendant According to reports, it's planning to start testing the device early next year. There have been AI pendants hit the market that haven't taken off. Unsure if it's because they're not actually useful, or because people have privacy concerns about a device listening to everything you say. OpenAI is also working on a device with Apple's former designer Jony Ive. Google and the FBI are warning of something that sounds like it's straight from a movie US law enforcement is warning about ransomware gangs sending fake IT workers to offices to try and steal data. The group has been targeting law firms – turning up and social engineering their way to the laptops of victims and then connecting USB drives or using remote access tools to save data. LISTEN ABOVE See omnystudio.com/listener for privacy information.
The Ransomware Minute is a rundown of the latest ransomware attacks & news, brought to you Cybercrime Magazine, Page ONE for Cybersecurity. Listen to the podcast weekly and read it daily at https://ransomwareminute.com. For more on cybersecurity, visit us at https://cybercrimemagazine.com.
Welcome to the Identity Theft Resource Center's Weekly Breach Breakdown for June 5, 2026. I'm Tatiana Cuadras, Communications Assistant for the ITRC. Thanks to Sentilink for their continued support of the podcast and the ITRC. Each week, we break down the latest in data security and privacy, and this week, we have a story that's a little different. It's not about criminals targeting everyday people or businesses. It's about ransomware groups targeting each other. Grab your popcorn. Follow on LinkedIn: linkedin.com/company/idtheftcenter/ Follow on Instagram: instagram.com/idtheftcenter/ Follow on Facebook: facebook.com/IDTheftResourceCenter/ Follow on X: twitter.com/IDTheftCenter Follow on TikTok: www.tiktok.com/@idtheftcenter_ Follow on YouTube: www.youtube.com/@IDTheftCenter
In August 2024, a ransomware attack shut down baggage systems, flight displays, and Wi-Fi at Sea-Tac Airport. What did it reveal about how executives think about cyber investment? And why is “how much more security do we need?” the wrong question to ask after a major incident? Let's find out with our guest Stephanie Warren, Assistant Director of Information Security at the Port of Seattle, who lived through that attack and came out the other side with hard-won lessons about executive decision-making under pressure. Your hosts are Kip Boyle, CISO with Cyber Risk Opportunities, and Jake Bernstein, Partner with K&L Gates. LinkedIn profile – https://www.linkedin.com/in/stephanie-warren-0746343/
The Cybercrime Wire, hosted by Scott Schober, provides boardroom and C-suite executives, CIOs, CSOs, CISOs, IT executives and cybersecurity professionals with a breaking news story we're following. If there's a cyberattack, hack, or data breach you should know about, then we're on it. Listen to the podcast daily and hear it every hour on WCYB. The Cybercrime Wire is brought to you Cybercrime Magazine, Page ONE for Cybersecurity at https://cybercrimemagazine.com. • For more breaking news, visit https://cybercrimewire.com
In this special edition of CyberWire Daily's 10th anniversary series, N2K CyberWire's Maria Varmazis and Dave Bittner consider the tactics, trends, and turning points that shaped the threat landscape over the last decade of ransomware. Ransomware has evolved from small-scale extortion and opportunistic attacks to sprawling, sophisticated, organized crime and state-sponsored attacks. Cryptocurrency plays a pivotal role in enabling ransomware's growth by providing untraceable payment methods. Join us as we explore key incidents like WannaCry and NotPetya, the shift from street crime to organized and nation-state cyber threats, and AI's impact on the future of ransomware. Learn more about your ad choices. Visit megaphone.fm/adchoices
Email: bidemiologunde@gmail.comIn this episode, host Bidemi Ologunde examines a February 2026 vehicle hit-and-run and a March 2026 municipal ransomware incident through the lens of investigative technique. What clues survive after a crash scene is disturbed? What can cyber incident responders learn from accident reconstruction? How does the military concept of a "target indicator" help analysts notice what someone did, failed to do, or accidentally revealed? This episode explores how small details, disciplined timelines, and careful public reporting can turn fragments into accountability.
SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast
Research Review Journal https://assets.contentstack.io/v3/assets/blt83c410d686aa5f84/blt3cff46f63887f83e/research-review-journal https://www.sans.edu/cyber-research Analysis of a Year of Files Uploaded to DShield Sensors https://isc.sans.edu/diary/Analysis%20of%20a%20Year%20of%20Files%20Uploaded%20to%20DShield%20Sensors/33026 The Word 'Toad' Gave Any Website Full Control of Chrome's Most Popular VPN https://amibeingpwned.com/blog/urban-vpn-postmessage-command-injection Silent Ransom Group Impersonating IT Personnel through Social Engineering https://www.ic3.gov/CSA/2026/260526.pdf
What can you learn from a Cybersecurity professional? $ BTC 73,686 Block Height 951,540 Today's guest on the show is Luke Dewolf, author of "Defending Bitcoin," who discusses cybersecurity challenges for critical infrastructure, including Bitcoin, drawing parallels between industrial control systems and the Bitcoin network. Key Topics: Luke's background in critical infrastructure and cybersecurity "Defending Bitcoin" book and its motivations Real-world examples of cyberattacks (Stuxnet, NotPetya/Maersk) Ransomware and Bitcoin's association with it Individual Bitcoin security best practices (hardware wallets, full nodes, social engineering awareness) The CIA triad (Confidentiality, Integrity, Availability) in cybersecurity and Bitcoin The "arbitrary data" debate, Ordinals, Runes, OpReturn, and BIP-110 Bitcoin's layered defenses: policy, miners, and consensus Soft forks versus hard forks The future of Bitcoin security, AI, and adoption challenges BTC Hell conference Connect with Luke and find out more about the book! https://defendingbitcoin.com/ https://bitcoininfinitystore.com/ X - @lukedewolf NOSTR - npub1fk8h6g8zhftw8c7pga2zjd84p2z949up5lc3qdchm9v4m0q7mwws7jcwld Check out my book ‘Choose Life' - https://bitcoinbook.shop/search?q=prince Pleb Service Announcements: Join 20 thousand Bitcoiners on @cluborange https://signup.cluborange.org/co/princey CONFERENCES: BTC PRAGUE - 11th - 13th June 2026 http://btcprg.me/BITTEN - Use code BITTEN for - 10% BTC HEL - 25th - 26th September 2026. - Helsinki https://btchel.com/ Use code BITTEN for - 10% My First Bitcoin. https://myfirstbitcoin.org/ Shills and Mench's: BITBOX - SELF CUSTODY YOUR BITCOIN - www.bitbox.swiss/bitten Use Code BITTEN THE MEETUP BREAKDWON - BITCOIN EVENTS UK - https://www.themeetupbreakdown.com/ SWAN BITCOIN - www.swan.com/bitten PLEBEIAN MARKET - BUY AND SELL STUFF FOR SATS; https://plebeian.market/ @PlebeianMarket ZAPRITE - https://zaprite.com/bitten - Invoicing and accounting for Bitcoiners - Save $40 SATSBACK - Shop online and earn back sats! https://satsback.com/register/5AxjyPRZV8PNJGlM ALL FURTHER LINKS HERE - FOR DISCOUNTS AND OFFERS - https://vida.page/princey - https://linktr.ee/princey21m
SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast
Reconstructing an Akira Ransomware Kill Chain from Perimeter and Endpoint Logs https://isc.sans.edu/diary/Reconstructing%20an%20Akira%20Ransomware%20Kill%20Chain%20from%20Perimeter%20and%20Endpoint%20Logs/33024 Vaultjacking: One Captured PIN, the Entire Google Password Manager Vault https://phishu.net/blogs/blog-vaultjacking-phishing-the-google-password-manager-vault-in-the-phishu-framework.html From poisoned search results to GPU mining: A cryptojacking campaign abusing ScreenConnect and Microsoft .NET utilities https://www.microsoft.com/en-us/security/blog/2026/05/26/poisoned-search-results-gpu-mining-cryptojacking-campaign-abusing-screenconnect-microsoft-net-utilities/
The Ransomware Minute is a rundown of the latest ransomware attacks & news, brought to you Cybercrime Magazine, Page ONE for Cybersecurity. Listen to the podcast weekly and read it daily at https://ransomwareminute.com. For more on cybersecurity, visit us at https://cybercrimemagazine.com.
#SecurityConfidential #DarkRhiinoSecurityMurphy John is the Chief Growth Officer at StorX Network, where he focuses on scaling decentralized data storage solutions and building strategic partnerships. Passionate about data security and privacy, Murphy works at the intersection of decentralization and distributed ledger technology (DLT), helping organizations rethink how data is stored, protected, and accessed globally. His work centers on enabling more secure, resilient, and privacy-first data infrastructure for the future.00:00 Intro01:17 Our Guest02:50 Shifting from On-premise to Cloud Computing09:30 Compliance and Data Privacy in Decentralized systems11:22 Data Recovery13:10 Ransomware and Data security15:31 AI on Cybersecurity19:25 Mindset Challenges in adopting technology26:01 Egress Cost Awareness33:15 Budgeting for Data backup Solutions35:00 More about John
AI is putting ransomware on steroids, and on this week's episode of Feds At the Edge we examine several approaches to reducing the impact of malicious actors through advanced protection strategies and smarter cybersecurity budgeting. Michael Dent, Retired CISO with Fairfax County, shares how he takes cybersecurity training to the next level with what he calls "Challenge Point," rewarding employees for identifying signs of potential attacks. Glendon Schmitz, Virginia State Corporation Commission, discusses the importance of showing leadership the direct financial impact of an attack when seeking successful budget approval. Akamai Technologies' Douglas Holland explores the emotional tactics malicious actors use to pressure unsuspecting users into complying with urgent requests. Tune in on your favorite podcast platform for more on this and ransomware-as-a-service, the long-term effects on public trust, leadership accountability, and the growing need for initiative-taking governance and budgeting.
PODCAST EPISODE | An Analog Brain In A Digital Age With Marco Ciappelli Geoff White goes where organized crime and technology cross, and he comes back with stories. In this one he announces his newest BBC series — the rise and fall of the Conti ransomware gang — and we get into the thing underneath all of it: how you make a crime nobody can see feel real to people who will never see it.
Almost exactly one year after Season 6's Expo 2025 deep dive with Sachiko Yoshimura, the Krewe closes the loop with two people who were actually there. Lea Disimone & Bridget McCarthy served as Youth Ambassadors at the US Pavilion during Expo 2025 Osaka, and they share what the program was really like from the inside, from a day in the life to the lasting impact it left on them. Two New Orleans connections, one world's fair, and a conversation worth the wait. ------ About the Krewe ------ The Krewe of Japan Podcast is a weekly episodic podcast sponsored by the Japan Society of New Orleans. Check them out every Friday afternoon around noon CST on Apple, Google, Spotify, Amazon, Stitcher, or wherever you get your podcasts. Want to share your experiences with the Krewe? Or perhaps you have ideas for episodes, feedback, comments, or questions? Let the Krewe know by e-mail at kreweofjapanpodcast@gmail.com or on social media (Twitter: @kreweofjapan, Instagram: @kreweofjapanpodcast, Facebook: Krewe of Japan Podcast Page, TikTok: @kreweofjapanpodcast, LinkedIn: Krewe of Japan LinkedIn Page, Blue Sky Social: @kreweofjapan.bsky.social, Threads: @kreweofjapanpodcast & the Krewe of Japan Youtube Channel). Until next time, enjoy! ------ Support the Krewe! Offer Links for Affiliates ------ Use the referral links below & our promo code from the episode! Support your favorite NFL Team AND podcast! Shop NFLShop to gear up for football season! Zencastr Offer Link - Use my special link to save 30% off your 1st month of any Zencastr paid plan! ------ Past KOJ Episodes ------ Expo 2025: Japan on the World Stage ft. Sachiko Yoshimura [S6E2] Hanging Out In Hyogo ft. Rob Dyer of The Real Japan [S5E14] Checking Out Miyagi ft. Ryotaro Sakurai (Guest Host, William Woods) [S5E5] Explore Matsue ft. Nicholas McCullough [S4E19] Travel Hiroshima ft. Joy Jarman-Walsh [S4E4] Travel Aomori ft. Kay Allen & Megan DeVille [S3E17] Hungry For Travel ft. Shinichi of TabiEats [S3E15] Henro SZN: Shikoku & the 88 Temple Pilgrimage ft. Todd Wassel [S3E12] ------ JSNO Upcoming Events ------ JSNO Event Calendar Join JSNO Today!
A dangerous new Microsoft Exchange zero-day is being actively exploited, ransomware gangs are adopting nation-state-style tactics, two fired contractors were caught deleting U.S. government databases after accidentally recording themselves on Microsoft Teams, and Fortinet has patched critical remote code execution flaws. In this episode of Cybersecurity Today, David Shipley breaks down four major cybersecurity stories that security teams need to know. Cybersecurity Today would like to thank Material Security for supporting this podcast. Material security provides. faster, more complete detection and response for email, identity, and data threats inside Google Workspace and Microsoft 365. Contact them at material[dot]security Microsoft has confirmed active exploitation of a new Exchange Server zero-day, CVE-2026-42897, affecting Exchange Server 2016, Exchange Server 2019, and Exchange Subscription Edition. There is currently no patch, only mitigations through the Exchange Emergency Mitigation Service, with some trade-offs for Outlook Web App users. Security researcher Marcus Hutchins highlights an unusually disciplined ransomware affiliate operation using tradecraft more commonly associated with nation-state attackers, including a custom SentinelOne endpoint detection and response (EDR) killer and a stripped-down toolset designed to leave fewer forensic traces. In one of the more astonishing insider threat stories of the week, former OPEX Corporation contractors Muneeb and Sohaib Akhtar were allegedly caught deleting 96 U.S. government databases after leaving a Microsoft Teams recording running. Also in this episode: Fortinet has released urgent patches for critical unauthenticated remote code execution vulnerabilities in FortiAuthenticator (CVE-2026-44277) and FortiSandbox (CVE-2026-26083). If you're responsible for enterprise security, patch management, incident response, or cyber risk, this is one you need to see. Chapters: 00:00 Sponsor Message 00:24 Headlines Intro 00:49 Ransomware Nation-State Discipline 04:18 Exchange Zero-Day Mitigation 07:01 Fired Contractors Caught Recording 09:21 Fortinet Critical Vulnerabilities 11:07 Wrap Up and Sign Off 11:38 Sponsor Deep Dive Ad #Cybersecurity #MicrosoftExchange #ZeroDay #Ransomware #Fortinet #CyberAttack #Infosec #DavidShipley #CybersecurityToday
In this episode of The Cybersecurity Defenders Podcast, we discuss some intel being shared in the LimaCharlie community.Researchers have disclosed a new Linux local privilege escalation technique called “Dirty Frag,” which chains together two kernel vulnerabilities: CVE-2026-43284 in xfrm-ESP handling and CVE-2026-43500 in RxRPC.The breach affecting educational technology provider Instructure has raised broader concerns about the security dependencies schools have on third-party cloud platforms.Security researchers at Aikido are tracking a major expansion of the “Mini Shai-Hulud” malware campaign targeting the npm ecosystem.Google Threat Intelligence Group says threat actors are moving from experimental AI usage toward large-scale operational integration of generative models across the cyberattack lifecycle.Support our show by sharing your favorite episodes with a friend, subscribe, give us a rating or leave a comment on your podcast platform.This podcast is brought to you by LimaCharlie, maker of the SecOps Cloud Platform, infrastructure for SecOps where everything is built API first. Scale with confidence as your business grows. Start today for free at limacharlie.io.
In our World Password Day Special, we're digging into credentials, identity, and authentication — and where security is heading next.
Today's Headlines: The Iran war is very much back on — Trump threatened Iran with "one big glow," called the exchange of fire "just a love tap," and bragged about sinking small boats, while US intelligence confirmed Iran still has about 70% of its missiles intact despite Trump claiming it's down to 18-19%. Gas prices have hit $4.50 a gallon — up over 50% since the war started — with CEOs warning that consumer spending is collapsing and everyone is borrowing to get by. Shell, meanwhile, posted $7 billion in Q1 profits, more than double the previous quarter, which seems fine. As if the war weren't enough to worry about, on the redistricting beat, Tennessee signed a new map eliminating the state's one Democratic seat by splitting Memphis into four suburban districts, Alabama passed their gerrymandering legislation while tornado sirens blared and the building flooded, and Mississippi is planning their own special session in a Jim Crow-era capitol that's been a museum for years. On top of that, Marco Rubio announced new sanctions on Cuba's state-owned industries and military conglomerate, while the State Department quietly beefs up disaster preparedness in South Florida in anticipation of further Cuba hostilities. Somehow Kash Patel is in the news again, he reportedly ordered polygraphs for over two dozen staff to find out who talked to The Atlantic about his drinking, while launching a criminal leak investigation against the reporter he's also suing for $250 million. Elsewhere, Trump's 10% tantrum tariff was ruled illegal by the Court of International Trade, Elon Musk was formally summoned by the French government to cooperate in their X investigation after skipping a voluntary interview — with Trump's DOJ calling it a "criminally charged criminal proceeding" — and Kalshi raised a billion dollars bringing its valuation to $22 billion, which means someone should probably check if their headquarters exists. And finally, a ransomware attack on Canvas knocked out coursework for students at over 3,000 schools, which is either a crisis or the greatest thing ever depending on your GPA. Resources/Articles mentioned: Axios: Iran and U.S. exchange fire in Strait of Hormuz Bloomberg: Consumers Are ‘Running Out of Money' and Cutting Back, CEOs Warn Bloomberg: Consumers Are ‘Running Out of Money' and Cutting Back, CEOs Warn NYT: Shell Reports Nearly $7 Billion Profit After Oil Prices Surged Amid U.S.-Iran War WaPo: U.S. intelligence says Iran can outlast Trump's Hormuz blockade for months Axios: Rubio announces new Cuba sanctions Mother Jones: After SCOTUS Destroyed the Voting Rights Act, Southern States Rush to Pass Jim Crow Voting Maps WVLT: TN governor signs new congressional map into law, dividing Memphis and marking end of special session The New Republic: Alabama Republicans Vote to Pass New Map as Tornado Sirens Blare The Guardian: Mississippi house to hold redistricting session at Jim Crow era capitol MS Now: Kash Patel ordered polygraphs of more than two dozen members of his team, sources say NYT: Trade Court Rules Trump's 10% Global Tariff Is Illegal WSJ: Elon Musk Summoned to France to Face Criminal Charges NYT: Kalshi, The Prediction Market, Is Now Valued At $22B WSJ: Harvard, Berkeley and Thousands of Schools Suffer Cyber Outage Subscribe to the Betches News Room and join the Morning Announcements group chat. Go to: betchesnews.substack.com Morning Announcements is produced by Sami Sage and edited by Grace Hernandez-Johnson Learn more about your ad choices. Visit megaphone.fm/adchoices
CISA warns CopyFail is under active exploitation. Attackers compromise installers for a widely used disk imaging utility. MuddyWater masks cyberespionage as ransomware. Attackers spread malware through a fake OpenClaw plugin. Researchers ID a new Linux RAT. Vimeo blames a third party provider for a recent breach. Palo Alto's Captive Portal is under attack. The FTC settles with a data broker over location sharing. A former Conti gang member gets jail time. Our guest is Dov Yoran, CEO of Command Zero, discussing how cybersecurity teams are fighting AI with AI. Geotargeting turns creepy. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Today we are joined by Dov Yoran, CEO of Command Zero, discussing how cybersecurity teams are fighting AI with AI. Selected Reading Attackers are cashing in on fresh 'CopyFail' Linux flaw (The Register) Hackers compromise Daemon Tools in global supply-chain attack, researchers say (The Record) Iranian APT Intrusion Masquerades as Chaos Ransomware Attack (SecurityWeek) Malicious OpenClaw Skill Targets DeepSeek Agentic AI Workflows (Cyber Press) Sophisticated Quasar Linux RAT Targets Software Developers (SecurityWeek) ShinyHunters claims dump puts 119K Vimeo emails in the wild (The Register) Palo Alto Networks warns of firewall RCE zero-day exploited in attacks (Bleeping Computer) FTC bans data broker Kochava from selling sensitive location info (The Record) Conti, Akira Affiliate Sentenced to 102 Months in Prison for Ransomware and Extortion Operations Targeting over 50 Organizations (TechNadu) A college student is suing a dating app that allegedly used her TikTok videos to target men in her dormitory (CyberScoop) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices
Lawfare Book Review Editor Jonathan Cedarbaum sits down with Anja Shortland, professor of political economy at King's College London, to discuss her new book, "Dark Screens: Hackers and Heroes in the Shadowy World of Ransomware." The book offers a history of the development of ransomware into perhaps the most important form of cyber crime, costing the global economy $75 billion a year. In the book, Shortland depicts the evolving strategies of ransomware organizations and the efforts by governments and corporations to defend themselves from this often crippling type of cyber attack. Shortland and Cedarbaum talk about the emergence of organized criminal groups specializing in digital extortion over the past 15 years, some of their most spectacular hacks, how target organizations have worked to make themselves more resilient to ransomware attacks, and how governments have sought to disrupt ransomware groups.To receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/lawfare-institute.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.