Podcasts about Ransomware

Kevin Pentecost and Jason Poppillon, hosts of the Cyber Distortion podcast, stop by BarCode to share their experiences and insights in the field of cybersecurity. We discuss topics such as ransomware, social engineering, and the CISSP. Their podcast combines technical expertise with a fun and engaging approach, making it accessible to both technical and non-technical audiences. They also highlight the importance of networking and building relationships in the cybersecurity industry. TIMESTAMPS:0:00: Introductions and cybersecurity importance0:05: Hosts' backgrounds0:07: Ransomware attack experience0:09: Lessons learned0:11: Preparedness0:15: How hosts met0:24: CDP - Goals and approach0:29: Content delivery balancing0:31: Episode output0:34: Memorable guests0:42: Production workflow0:47: Process improvements0:50: Future topics0:55: CDP future plans1:08: Where to connect with CDPSYMLINKSCDP - YOUTUBEKevin - LinkedinJason - LinkedinDRINK INSTRUCTIONCrooked Tree2 oz Bourbon3/4 oz Lemon Juice3/4 oz Honey SyrupCombine all ingredients into a shaker with ice. Shake it and then fine strain into a rocks glass.CONNECT WITH USBecome a SponsorSupport us on PatreonFollow us on LinkedInTweet us at @BarCodeSecurityEmail us at info@barcodesecurity.com

Guest editors Ian Smith and Eleanor Morton join host Alice Fraser for episode 138 of The Gargle - the sonic glossy magazine to The Bugle, with one rule: no politics! Ransomware theft OpenAI firing Musk biopic Bat sex ReviewsStory 1: https://arstechnica.com/security/2023/11/ransomware-group-reports-victim-it-breached-to-sec-regulators/Story 2: https://www.bbc.co.uk/news/technology-67474879Story 3: https://www.theguardian.com/science/2023/nov/20/caught-not-quite-in-the-act-church-cameras-reveal-bat-sex-ritualStory 4: https://variety.com/2023/film/news/elon-musk-biopic-a24-darren-aronofsky-1235787115/HOW TO SUPPORT THE GARGLE- Keep The Gargle alive and well by joining Team Bugle with a one-off payment, or become a Team Bugler or Super Bugler to receive extra bonus treats!https://www.thebuglepodcast.com/donateCONTENTS00:00 Start01:47 Front cover02:23 Satirical cartoon02:46 Story 1: Ransomware group reports victim for not reporting theft07:04 Ads08:15 Story 2: Sam Altman controversially fired from OpenAI then rehired18:25 Reviews22:51 Story 3: Bats mate without penetration30:11 Story 4: Darren Aronofsky to direct Elon Musk biopic39:09 Bye / Anything to plug? Hosted on Acast. See acast.com/privacy for more information.

The Ransomware Minute is a rundown of the latest ransomware attacks & news, brought to you by KnowBe4. Listen to the podcast weekly and read it daily at https://ransomwareminute.com • KnowBe4 is the world's largest integrated platform for security awareness training combined with simulated phishing attacks. Join our more than 50,000 customers to manage the continuing problem of social engineering. To learn more about our sponsor KnowBe4, visit https://knowbe4.com

This episode explores the recent Boeing cyber attack, dissecting the Lockbit Ransomware group and Boeing's response to the incident. Cybersecurity experts discuss the implications, the leaked data, and the intricacies of dealing with such high-profile breaches. This episode also dives into the changing landscape of AI investments versus traditional cybersecurity spending. The hosts discuss the potential consequences of diverting funds to AI rather than fortifying cybersecurity measures. Lastly, this episode discusses the recent cyber attack on the City of Long Beach, underlining the critical need for robust cybersecurity measures in local government entities.

In this episode of CISO Tradecraft, host G Mark Hardy talks to Kevin O'Connor, the Director of Threat Research at Adlumin. They discuss the importance of comprehensive cybersecurity for Small to Medium-sized Businesses (SMBs), including law firms and mid-sized banks. The conversation explores the complexities of managing security infrastructures, the role of managed security service providers, and the usefulness of managed detection and response systems. The discussion also delves into the increasing threat of ransomware and the critical importance of managing data vulnerabilities and providing security awareness training. Big Thanks to our Sponsor: Adlumin - https://adlumin.com/ Transcripts: https://docs.google.com/document/d/1V_qkMFdGC4NRLCG-80gcsiSA8ikT8SwP Youtube: https://youtu.be/diCZfWWB3z8   Chapters 00:12 Introduction and Sponsor Message 01:42 Guest Introduction: Kevin O'Connor 02:29 Discussion on Cybersecurity Roles and Challenges 03:20 The Importance of Defense in Cybersecurity 04:23 The Role of Managed Security Services for SMBs 07:26 The Cost and Staffing Challenges of In-House SOCs 14:41 The Value of Managed Security Services for Legal Firms 16:30 The Threat Landscape for Small and Mid-Sized Banks 18:19 The Difference Between Compliance and Security 20:08 Understanding the Reality of Cybersecurity 20:45 The Challenges of Building IT Infrastructure 21:08 Outsourcing vs In-house Security Management 21:55 The Importance of Understanding Your Data 22:43 Security Operations Center vs Security Operations Platform 24:21 The Role of Managed Detection and Response 24:54 The Importance of Quick Response in Security 28:07 The Threat of Ransomware and Data Breaches 34:31 The Role of Pen Testing in Cybersecurity 36:33 The Growing Threat of Ransomware 38:28 The Importance of Security Awareness Training 40:42 The Role of Incident Response and Forensics 42:11 Final Thoughts on Cybersecurity

In today's podcast we cover four crucial cyber and technology topics, including: 1.        Toyota victim of Medusa Ransomware who demands 8 million USD 2.        U.S. teen guilty of accessing over 60 thousand sports betting accounts 3.        Israeli man sentenced to prison for role in phishing, data theft 4.        OpenAI relieves CEO after allegations of failure to communicate  I'd love feedback, feel free to send your comments and feedback to  | cyberandtechwithmike@gmail.com

Ferhat Dikbiyik is the Head of Research & Intelligence at Black Kite. In this episode of Hidden Risk, he joins host Heather Engel to discuss the evolution of ransomware groups, including how they've changed over the years, if their motivations are different, and more. An award-winning intelligence platform, Black Kite is disrupting traditional third-party risk management practices worldwide by providing cybersecurity experts with full visibility they've never experienced before. Learn more about our sponsor at https://blackkite.com.

This episode reports on ransomware attacks and 1.6 million more victims of MOVEit hacks

In this episode, host Bidemi Ologunde presented five stories from obscure corners of the news media and the internet.1. Manila, Philippines2. Bangkok, Thailand3. Jakarta, Indonesia4. Kuala Lumpur, Malaysia5. SingaporeSupport the show

Ransomware group reports a victim company to the SEC for failing to promptly disclose a breach. Shadowy hack-for-hire group behind sprawling web of global cyberattacks Electrical arc detection devices that can prevent dangerous home fires caused by faulty wiring. The worst passwords of 2023 The NIS2 Directive: The first piece of EU-wide legislation on cybersecurity Jenna Bilotta of LaunchDarkly joins to discuss transforming DevOps tools with better user experiences. Hosts: Louis Maresca, Brian Chee, and Curtis Franklin Guest: Jenna Bilotta Download or subscribe to this show at https://twit.tv/shows/this-week-in-enterprise-tech. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

Timestamps: 0:00 We love a callback 0:10 Windows imporvements in EU 1:20 iPhones to get RCS support 2:42 Amazon to sell cars 3:38 Seasonic 4:08 QUICK BITS INTRO 4:14 Youtube's AI music tool 4:50 Google AI saves Christmas shopping 5:23 Microsoft decorates your office 5:53 Ransomware tattles on victim 6:27 Thousands ghosted by AI girlfriends News Sources: https://lmg.gg/GQQDt

Ransomware group reports a victim company to the SEC for failing to promptly disclose a breach. Shadowy hack-for-hire group behind sprawling web of global cyberattacks Electrical arc detection devices that can prevent dangerous home fires caused by faulty wiring. The worst passwords of 2023 The NIS2 Directive: The first piece of EU-wide legislation on cybersecurity Jenna Bilotta of LaunchDarkly joins to discuss transforming DevOps tools with better user experiences. Hosts: Louis Maresca, Brian Chee, and Curtis Franklin Guest: Jenna Bilotta Download or subscribe to this show at https://twit.tv/shows/this-week-in-enterprise-tech. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

Ransomware group reports a victim company to the SEC for failing to promptly disclose a breach. Shadowy hack-for-hire group behind sprawling web of global cyberattacks Electrical arc detection devices that can prevent dangerous home fires caused by faulty wiring. The worst passwords of 2023 The NIS2 Directive: The first piece of EU-wide legislation on cybersecurity Jenna Bilotta of LaunchDarkly joins to discuss transforming DevOps tools with better user experiences. Hosts: Louis Maresca, Brian Chee, and Curtis Franklin Guest: Jenna Bilotta Download or subscribe to this show at https://twit.tv/shows/this-week-in-enterprise-tech. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

Ransomware group reports a victim company to the SEC for failing to promptly disclose a breach. Shadowy hack-for-hire group behind sprawling web of global cyberattacks Electrical arc detection devices that can prevent dangerous home fires caused by faulty wiring. The worst passwords of 2023 The NIS2 Directive: The first piece of EU-wide legislation on cybersecurity Jenna Bilotta of LaunchDarkly joins to discuss transforming DevOps tools with better user experiences. Hosts: Louis Maresca, Brian Chee, and Curtis Franklin Guest: Jenna Bilotta Download or subscribe to this show at https://twit.tv/shows/this-week-in-enterprise-tech. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

On this episode of the Futurum Tech Webcast - Interview Series, I am joined by Rubrik's Steve Stone, Head of Rubrik Zero Labs for a conversation on data security, understanding what role AI plays in data protection, and the importance of data visibility. Our discussion covers: An introduction from Steve Stone as Head of Rubrik Zero Labs and a brief background on how Rubrik Zero Labs came to be The role AI plays in data growth How organizations are keeping up with data protection and the importance of data visibility Key strategies and recommendations cybersecurity leaders can take from Rubrik Zero Labs' new report

Finally, in the enterprise security news, Lots of new security startups with early stage funding SentinelOne picks up Chris Krebs and Alex Stamos's consulting firm PE firm picks up ActiveState - a company I haven't thought about since I last downloaded ActiveState Perl 1000 years ago Microsoft announces the limited release of Security Copilot Semgrep releases a secrets scanner AGI predicted to come much sooner than you might expect NY State doubles down on cybersecurity regulations to protect its hospitals the young hackers behind Mirai, one of the biggest botnets ever Ransomware groups snitch on businesses to the SEC Show Notes: https://securityweekly.com/esw-340

In today's podcast we cover four crucial cyber and technology topics, including: 1.        Ukrainian scam gang arrested, face 12 years in Czech prison 2.        Zimbra flaw abused after patch released to steal government data 3.        City of Long Beach faces disruption amidst cyber-attack 4.        Cryptocurrency miners found throughout Polish courthouse  I'd love feedback, feel free to send your comments and feedback to  | cyberandtechwithmike@gmail.com

Finally, in the enterprise security news, Lots of new security startups with early stage funding SentinelOne picks up Chris Krebs and Alex Stamos's consulting firm PE firm picks up ActiveState - a company I haven't thought about since I last downloaded ActiveState Perl 1000 years ago Microsoft announces the limited release of Security Copilot Semgrep releases a secrets scanner AGI predicted to come much sooner than you might expect NY State doubles down on cybersecurity regulations to protect its hospitals the young hackers behind Mirai, one of the biggest botnets ever Ransomware groups snitch on businesses to the SEC Show Notes: https://securityweekly.com/esw-340

Guilherme Venere from Talos Outreach joins the show this week to talk about his research into the 8Base threat actor and its use of a variant of the Phobos ransomware. He recently published several works on the many variants of Phobos that exist in the wild, and why 8Base has been so successful using it for years now. 

Guest: Andrzej Cetnarski, CEO and founder of Cyber Nation Central, trains and advises boards and c-suites on cybersecurity perspectives and best practices. On LinkedIn | https://www.linkedin.com/in/andrzejcetnarski/Host: Matthew RosenquistOn ITSPmagazine  

We discuss with Rumbi Petrozzello, the lead author of the winter 2023 issue of Eye on Fraud, a quarterly publication created by the FLS Fraud Task Force:   What is ransomware? What are the key techniques used to attach IT networks What should forensic accountants do, both professionally and personally, before and after an attack? The FVS podcast will be featuring an episode on each Eye of Fraud publication from 2023 and forward. If you are a FVS section member perhaps you have already read this content.  We hope these podcast episodes give you a new and different way to explore this information.  If you are not a Section member, this episode will give you a sample of what is included in the FVS Section's resource library.   Host:   Frank Previti, CPA/CFF, CFE, DiSanto, Priest & Co. Guest:  Rumbi Bwerinofa-Petrozzello, CPA/CFF, CFE, Head of Strategy, Consulting, Seramount Please share your thoughts about the episode - click here to leave us a review   Want to get involved with future FVS conferences, committees, task forces, or the standing ovation program? Send a message to infoFVS@aicpa-cima.com RESOURCES FOR FURTHER EXPLORATION If you're using a podcast app that does not hyperlink to the resources, please visit  https://fvssection.libsyn.com/fvs to access the show notes with direct links.  Exclusive content – Free for FVS Section members Ransomware attacks and the Forensic Accountant's role | FVS Eye on Fraud, Mar 2023 Impact of everyday cyber intrusions - claims and coverages, Mar 2020 Increased risk of ransomware during a crisis | Eye on Fraud, Feb 2019 Available on AICPA-CIMA.com Cybersecurity Resources for Organizations and CPA Firms Safeguarding against ransomware risk 3 ways to defeat ransomware: Plan, prevent, not pay The crucial role of cybersecurity for accounting firms U.S. Securities and Exchange Commission - Cybersecurity Discount for AICPA members - Impact of everyday cyber intrusions - claims and coverages This podcast episode is part of the extensive resource library available from the AICPA's Forensic and Valuation Services Section, the premier provider of guidance, tools, and advocacy for professionals who specialize in providing forensics, valuation, litigation, and fraud services.  Visit us online, and if you're not already a member, consider joining this active community of your FVS peers. You'll get free CPE and access to rich technical content. LEARN MORE ABOUT  Accredited in Business Valuation(ABV) – Visit the home page and/or check out the ABV Infographic Certified in Fraud and Forensics (CFF) - Visit the home page and/or check out the CFF Infographic This is a podcast from AICPA & CIMA, together as the Association of International Certified Professional Accountants. To enjoy more conversations from our global community of accounting and finance professionals, explore our network of free shows here. Your feedback and comments are welcomed at podcast@aicpa-cima.com

Once again, Theresa Lanowitz joins us to discuss Edge Computing, but with a twist this time, as Mani Keerthi Nagotu from SentinelOne joins us as well! As a field CISO, Mani knows all too well the struggles security leaders are going through, given the current market and threat landscape: Maybe not less budget, but more pressure to produce results and justify spending Security leaders being held personally accountable for performance Potential layoffs, and the need to achieve the same goals with less labor and tool overhead Segment Resources https://cybersecurity.att.com/insights-report This segment is sponsored by AT&T Cybersecurity. Visit https://securityweekly.com/attcybersecurity to learn more about them! We regularly cover significant breaches on this podcast, but it is rare that we have enough information about a major breach to cover in enough detail to devote an entire segment to. Today, we dive into lessons learned from the breach of Okta's customer support system that targeted some other major security vendors. This is part of a troubling trend, where the target of an attack only serves as a jumping off point to other organizations. China's 2023 attack of Microsoft is an example of this. It was easier to attack Microsoft 365, one of the world's largest business SaaS platforms, than to go after each of the 25 individual targets these Chinese actors needed access to. Traditionally, we've thought of lateral movement as something that happens within a network segment, or even within a single organization. Now, we're seeing lateral movement between SaaS platforms, between clouds, from third party vendors to customer, and even from open source project to open source adopters. In this segment, we'll cover five key lessons learned from Okta's breach, from information shared by Okta and three of its customers: 1Password, Cloudflare, and BeyondTrust. Protect Your Session Tokens Monitor for Unusual Behavior SaaS Vendors Are Common Targets Zero Trust Principles Work MFA Isn't a Binary (on or off) Control Segment Resources https://www.valencesecurity.com/resources/blogs/five-lessons-learned-from-oktas-support-site-breach Finally, in the enterprise security news, Lots of new security startups with early stage funding SentinelOne picks up Chris Krebs and Alex Stamos's consulting firm PE firm picks up ActiveState - a company I haven't thought about since I last downloaded ActiveState Perl 1000 years ago Microsoft announces the limited release of Security Copilot Semgrep releases a secrets scanner AGI predicted to come much sooner than you might expect NY State doubles down on cybersecurity regulations to protect its hospitals the young hackers behind Mirai, one of the biggest botnets ever Ransomware groups snitch on businesses to the SEC Visit https://www.securityweekly.com/esw for all the latest episodes! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly Visit https://www.securityweekly.com/esw for all the latest episodes! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly Show Notes: https://securityweekly.com/esw-340

The latest episode of the Transatlantic Cable podcast kicks off with META (aka, Facebook and Instagram) will now require political advertisers to mark when they use deepfakes. From there, the team discuss how META and Google are being sued for “spying” in Irish courts.  To wrap up the team discuss two final stories – the first around the Royal ransomware gang siphoning off over $200M in ransom payments and the second on the recent cyber-attack against DP World – a port operator in Australia. If you liked what you heard, please consider subscribing. Meta requires political advertisers to mark when deepfakes used Meta, YouTube face criminal spying complaints in Ireland Royal ransomware asked 350 victims to pay $275 million Port operator gradually restarting operations around Australia after cyber-attack

In today's podcast we cover four crucial cyber and technology topics, including: 1.        SAP addresses critical flaw in Business One product 2.        Ransomware group files SEC complaint after victim fails to negotiate 3.        DP World of Australia operations impacted in cyber attack 4.        FCC gets new power to address “digital divide”  I'd love feedback, feel free to send your comments and feedback to  | cyberandtechwithmike@gmail.com

TikTok tries to convince the EU to reconsider designating parent company ByteDance as a "gatekeeper" under the Digital Markets Act. A ransomware group tattles on its victim to the SEC. And SpaceX is getting ready to test the Starship launch vehicle, hopefully with better results.See omnystudio.com/listener for privacy information.

Once again, Theresa Lanowitz joins us to discuss Edge Computing, but with a twist this time, as Mani Keerthi Nagotu from SentinelOne joins us as well! As a field CISO, Mani knows all too well the struggles security leaders are going through, given the current market and threat landscape: Maybe not less budget, but more pressure to produce results and justify spending Security leaders being held personally accountable for performance Potential layoffs, and the need to achieve the same goals with less labor and tool overhead Segment Resources https://cybersecurity.att.com/insights-report This segment is sponsored by AT&T Cybersecurity. Visit https://securityweekly.com/attcybersecurity to learn more about them! We regularly cover significant breaches on this podcast, but it is rare that we have enough information about a major breach to cover in enough detail to devote an entire segment to. Today, we dive into lessons learned from the breach of Okta's customer support system that targeted some other major security vendors. This is part of a troubling trend, where the target of an attack only serves as a jumping off point to other organizations. China's 2023 attack of Microsoft is an example of this. It was easier to attack Microsoft 365, one of the world's largest business SaaS platforms, than to go after each of the 25 individual targets these Chinese actors needed access to. Traditionally, we've thought of lateral movement as something that happens within a network segment, or even within a single organization. Now, we're seeing lateral movement between SaaS platforms, between clouds, from third party vendors to customer, and even from open source project to open source adopters. In this segment, we'll cover five key lessons learned from Okta's breach, from information shared by Okta and three of its customers: 1Password, Cloudflare, and BeyondTrust. Protect Your Session Tokens Monitor for Unusual Behavior SaaS Vendors Are Common Targets Zero Trust Principles Work MFA Isn't a Binary (on or off) Control Segment Resources https://www.valencesecurity.com/resources/blogs/five-lessons-learned-from-oktas-support-site-breach Finally, in the enterprise security news, Lots of new security startups with early stage funding SentinelOne picks up Chris Krebs and Alex Stamos's consulting firm PE firm picks up ActiveState - a company I haven't thought about since I last downloaded ActiveState Perl 1000 years ago Microsoft announces the limited release of Security Copilot Semgrep releases a secrets scanner AGI predicted to come much sooner than you might expect NY State doubles down on cybersecurity regulations to protect its hospitals the young hackers behind Mirai, one of the biggest botnets ever Ransomware groups snitch on businesses to the SEC Visit https://www.securityweekly.com/esw for all the latest episodes! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly Visit https://www.securityweekly.com/esw for all the latest episodes! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly Show Notes: https://securityweekly.com/esw-340

In today's podcast we cover four crucial cyber and technology topics, including: 1.        Postmeds company Truepill leaks customer data 2.        Lockbit claims data breach against Finland's leading frozen food storage firm 3.        U.S. asking for details about hacker “Nopaoh” in relation to 2016 heist 4.        FBI says they have dismantled IPStorm proxy net  I'd love feedback, feel free to send your comments and feedback to  | cyberandtechwithmike@gmail.com

In this podcast episode, cybersecurity experts discuss the activities of the Royal ransomware, a hacker group that has now successfully targeted 350 victims worldwide, amassing $275 million in ransom payments. They delve into the group's sophisticated tactics which made them successful in their cyber exploits. Additionally, the hosts shift the discussion to McLaren Healthcare, a Michigan-based healthcare provider that fell victim to a cyberattack by the Alfie ransomware gang. They highlight the severity of the breach, exposing which personal information was released to the cybercriminals. The episode concludes with a mention of the ransomware attack on the state of Maine, affecting approximately 1.3 million individuals. The hosts discuss the extensive data theft, the government's response, and the offer of two years of free credit monitoring and identity theft protection services to affected individuals.

We're taking a trip to the movies this episode.

In today's podcast we cover four crucial cyber and technology topics, including: 1.        Royal ransomware rebranding as BlackSuit 2.        Ohio suffering from ransomware attack, online payments impacted 3.        Medical supply company says 2-6% of growth lost amidst ransomware attack 4.        Israel requests Meta and TikTok content taken down due to violence, terror  I'd love feedback, feel free to send your comments and feedback to  | cyberandtechwithmike@gmail.com

The Ransomware Minute is a rundown of the latest ransomware attacks & news, brought to you by KnowBe4. Listen to the podcast weekly and read it daily at https://ransomwareminute.com • KnowBe4 is the world's largest integrated platform for security awareness training combined with simulated phishing attacks. Join our more than 50,000 customers to manage the continuing problem of social engineering. To learn more about our sponsor KnowBe4, visit https://knowbe4.com

Please LISTEN

The San Diego City Council is meeting today to tackle the city's housing crisis as well as its crumbling infrastructure in some areas. Tri-City Medical Center continues to recover in the wake of what a county source tells NBC 7 was a "ransomware attack". Part of one of the busiest freeways in California is shut down indefinitely because of an intense pallet fire that erupted over the weekend. See Privacy Policy at https://art19.com/privacy and California Privacy Notice at https://art19.com/privacy#do-not-sell-my-info.

Australian ports are recovering from a cyberattack. SysAid is hit by Cl0p user Lace Tempest. Ransomware targets China's largest bank. LockBit doxes Boeing as Boeing hangs tough on paying ransom. Docker Engine for DDoS. Rick Howard looks at the SEC's targeting of SolarWinds' CISO. And Anonymous Sudan claims attacks on ChatGPT and Cloudflare. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/216 Selected reading. Freight giant DP World recovers from cyber attack, but warns investigation and remediation is 'ongoing' (ABC) DP World port operations in Australia recovering after cyber-attack (The Loadstar)  Ransomware attack against China's largest bank. (CyberWire) China's biggest lender ICBC hit by ransomware attack (Reuters) Ransomware attack on ICBC disrupts trades in US Treasury market (Financial Times)  Hackers Hit Wall Street Arm of Chinese Banking Giant ICBC (Wall Street Journal) LockBit finally publishes its proof-of-hack as Boeing hangs tough. (CyberWire) SysAid On-Prem Software CVE-2023-47246 Vulnerability (SysAid)  Critical Vulnerability: SysAid CVE-2023-47246 (Huntress) SysAid Zero-Day Vulnerability Exploited By Lace Tempest (Rapid7) SysAid vulnerability exploited. (CyberWire) OracleIV - A Dockerised DDoS Botnet (Cado Security) Anonymous Sudan and OpenAI. (CyberWire) Russia-Linked Hackers Claim Credit for OpenAI Outage This Week (Bloomberg)  Major ChatGPT Outage Caused by DDoS Attack (SecurityWeek)  Anonymous Sudan and Skynet claim Cloudflare DDoS takedown (Cyber Daily) Cloudflare website downed by DDoS attack claimed by Anonymous Sudan (BleepingComputer) Learn more about your ad choices. Visit megaphone.fm/adchoices

45Drives' Head of R&D, Brett Kelly, joins Coruzant Technologies for the Digital Executive podcast.  Brett shares his transformational role as an engineer turned Head of R&D at 45Drives. During his tenure, he helped transform 45Drives products and technology, contributing to both his success and the company's success.

In the latest epsiode of the Weekly Security Sprint, Dave and Andy talked about the following topics: Announcement! Venue Security, The IAVM Podcast Series! A new monthly podcast starting in 2024. Venue Security, The IAVM Podcast Series is our newest podcast as Gate 15's founder and Managing Director, Andy Jabbour hosts short interviews with venue safety and security experts from the International Association of Venue Managers' (IAVM) Venue Safety and Security Committee (VSSC) and other special guests from the IAVM community.  SHIELDS READY. The Department of Homeland Security (DHS), the Cybersecurity and Infrastructure Security Agency (CISA), and the Federal Emergency Management Agency (FEMA) launched the new Shields Ready campaign to encourage the critical infrastructure community to focus on strengthening resilience. Resilience is the ability to prepare for, adapt to, withstand, and rapidly recover from disruptions caused by changing conditions. CISA Launches Critical Infrastructure Security and Resilience Month 2023   Scams. ‘with sales come scams'. https://www.ncsc.gov.uk/news/black-friday-bargain-hunters-warned-of-enhanced-online-scams-after-millions-lost-last-year  MDM The Truth Crisis | The Rising Threat of Online Misinformation and Disinformation The Gate 15 Interview: Malicious Info Operations & MDM, the Space Sector, supply chain resilience, the City of Light, and nudging the world in a better direction. Nerd Out: EP 41. Dave Clark joins to talk about MDM and other nerd topics.   Ransomware. Ransomware Actors Continue to Gain Access through Third Parties and Legitimate System Tools. CYBERSECURITY ADVISORY - #StopRansomware: Royal Ransomware, November 13, 2023 update Security Affairs: DOLLY.COM PAYS RANSOM, ATTACKERS RELEASE DATA ANYWAY Brazen ransomware attack on US unit of Chinese banking giant has financial sector on alert Risky Biz News: Clop is coming after your SysAid servers Basically all of Maine had data stolen by a ransomware gang; Maine's state agencies are the latest victims in the far-reaching MOVEit file transfer tool hack. Boeing data published by Lockbit hacking gang Cerber Ransomware Exploits Atlassian Confluence Vulnerability CVE-2023-22518 Same threats, different ransomware; A threat cluster's switch from Vice Society to Rhysida Hive Ransomware's Offspring: Hunters International Takes the Stage Ransomed[.]vc Sunsets Operations, Auctions Off Infrastructure Critical Vulnerability: SysAid CVE2023-47246   Quick Hits Critical infrastructure Updates: Major Australian Ports Affected By Cyber Incident Operations at DP World Australia resume, though ‘doesn't mean the incident has concluded' Washington state transportation services partially restored after cyberattack The NSA Seems Pretty Stressed About the Threat of Chinese Hackers in US Critical Infrastructure Sandworm Disrupts Power in Ukraine Using a Novel Attack Against Operational Technology International Terrorism: Five right-wing terrorists arrested throughout Europe with the support of Eurojust and Europol Israel: Mossad foils Hezbollah terror plot against Jews in Brazil FEMA and CISA Release Joint Guidance on Planning Considerations for Cyber Incidents Faith-Based and Israel-Gaza Related Updates: OpenAI blames DDoS attack for ongoing ChatGPT outage. In a series of Telegram messages seen by TechCrunch, hacktivist group Anonymous Sudan took credit for the alleged attack. In the messages, Anonymous Sudan said the reason it targeted OpenAI is due to the company's “general biasness towards Israel and against Palestine”. Earthquake Preparedness. FEMA's Earthquake & Wind Programs Branch, along with the National Earthquake and Hazard Reduction Program (NEHRP), is excited to announce the updated Earthquake Safety Checklist (FEMA B-526). CISA, NSA, and Partners Release New Guidance on Securing the Software Supply Chain FEMA's National Business Emergency Operations Center (NBEOC) - YouTube  

The Cybercrime Wire, hosted by Scott Schober, provides boardroom and C-suite executives, CIOs, CSOs, CISOs, IT executives and cybersecurity professionals with a breaking news story we're following. If there's a cyberattack, hack, or data breach you should know about, then we're on it. Listen to the podcast daily and hear it every hour on WCYB. The Cybercrime Wire is sponsored by KnowBe4. To learn more about our sponsor, visit https://knowbe4.com • For more breaking news, visit https://cybercrimewire.com

This episode reports on a cyber attack on the operator of ports in Australia, the hack of a reporter's Experian account, the latest data breaches, and more

HAPPY WEEKEND! Three Things You Need to KnowBlame it on Ransomware?Envelopes of FentanylBigs for Next WeekInterviewsOily Drinks (Royce/Caroline)Commercial to Condos (Royce/Darin)Verbal Blogs:Financial Deep Dive with Daniel: A Short Story The Internet Apocalypse 2024 This Week's Winner and LoserTrade while you sleep and across time zones with Arbitrage Trade AssistVisit arbitragetrade.com NFASupport this show http://supporter.acast.com/arbitrage. Hosted on Acast. See acast.com/privacy for more information.

OCR just announced its first ransomware settlement, emphasizing the importance of proactive cybersecurity measures and the implications for business associates. Ransomware threats are increasingly common, evolving rapidly and continue to target the healthcare industry which highlights the importance of healthcare organizations and their business associates to prioritize cybersecurity. More info at HelpMeWithHIPAA.com/432

This week at Explore Barcelona, VMware introduced groundbreaking enhancements to VMware Cloud DR and VMware Ransomware Recovery including Intelligent Threat Detection and VMware Live Recovery. On this episode of The Virtually Speaking Podcast Pete and John welcome Sr Director of Product Marketing Mark Chaung and Sr Director of Product Management Amit Sinha to discuss the details of these new features.

China's biggest bank, the Industrial and Commercial Bank of China's (ICBC), has been hacked by ransomware - and it has caused problems in America, the world's most important sovereign bond market. Roger Hearing looks at what this means for security at global financial institutions. We also look at why Polish truckers have spent almost a week blockading the border with Ukraine. And as the Hindu festival of Diwali begins, are cash-strapped Indian families going to be spending as much as usual on the celebrations?

In a live stream discussion,  experts Robert Kornovich and AV discussed the escalating threat of ransomware and data breaches. They emphasized the importance of proactive planning and regular training for staff to recognize and respond to potential threats. They also highlighted the need for organizations to prioritize their most critical services and ensure they have the necessary resources to recover quickly in the event of an attack. The experts warned against complacency and the false sense of security from relying on cybersecurity insurance or AI tools. They also advised organizations to regularly review and update their cybersecurity policies and procedures and consider seeking external help in case of a breach.

Steve Wozniak is recovering in a hospital in Mexico City and we wish him well. Internal documents from Meta show that Mark Zuckerberg repeatedly shut down initiatives meant to promote user well being. Microsoft says it has a plan for AI-generated misinformation during the election season. And the Omegle service shuts down.See omnystudio.com/listener for privacy information.

CISA, FEMA, and Shields Ready. Ransomware operators exploit 3rd-party tools. A Bittrex bankruptcy phishing campaign. Spammers abuse Google Forms quizzes. Imperial Kitten in action against Israeli targets. Iranian cyberattacks against Israel are called "reactive and opportunistic." In our sponsored Industry Voices segment, Adam Bateman from Push Security outlines how attackers are targeting cloud identities. Luke Vander Linden from RH-ISAC speaks with Target's Ryan Miller and Leah Schwartzman about the evolving fraud landscape retailers are facing with the holidays approaching. And Sandworm and Ukraine's power grid: 2022 attacks may foreshadow the winter of 2023 and 2024. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/215 Selected reading. Shields Ready | CISA (Cybersecurity and Infrastructure Security Agency CISA)  DHS Unveils New Shields Ready Campaign to Promote Critical Infrastructure Security and Resilience (FEMA)  US Urges Critical Infrastructure Firms to Get “Shields Ready” (Infosecurity Magazine)  US launches “Shields Ready” campaign to secure critical infrastructure (CSO Online)  DHS Launches New Critical Infrastructure Security and Resilience Campaign (SecurityWeek)  Ransomware Actors Continue to Gain Access through Third Parties and Legitimate System Tools (FBI)  Phishing Attack Driven by Bittrex Bankruptcy (Abnormal)  Spammers abuse Google Forms' quiz to deliver scams (Cisco Talos Blog) IMPERIAL KITTEN Deploys Novel Malware Families in Middle East-Focused Operations (CrowdStrike) Microsoft shares threat intelligence at CYBERWARCON 2023 (Microsoft Security) Iran and Hamas showed no signs of cyber coordination in run-up to war, researchers say (Washington Post)  Sandworm Disrupts Power in Ukraine Using a Novel Attack Against Operational Technology (Mandiant) Russian spies behind cyber attack on Ukraine power grid in 2022 - researchers (Reuters)  Hackers Linked To Russian Intelligence Blamed For 2022 Ukraine Grid Disruption (RadioFreeEurope/RadioLiberty)  Ukraine updates: Russia hacked Kyiv's power grid — report – DW – 11/09/2023 (Deutsche Welle)  Russian Hackers Used OT Attack to Disrupt Power in Ukraine Amid Mass Missile Strikes (SecurityWeek)  Energy security at forefront of NATO-Ukraine Council meeting (NATO) Learn more about your ad choices. Visit megaphone.fm/adchoices

In this episode, host Ron Eddings is joined by Sr. Director of Red Team Operations at Coalfire, Pete Deros, to discuss the hottest topic around; adversarial AI. Ron and Pete discuss how AI is used and how the adversary is using AI so everyone can stay one step ahead of them as well. Impactful Moments 00:00 - Welcome 01:35 - Introducing Pete Deros 03:30 - More Easily Phished 05:09 - 11 Labs Video 06:42 - Is this AI or LLM? 9:18 - AI or LLMs: Who has the Speed? 10:36 - Fine Tuning LLMs 14:37 - WormGPT & Hallucinations 17:01 - LLMs Changing Second to Second 18:38 - A Word From Our Sponsor 20:19 - ‘Write me Ransomware!' 23:24 - Working Around AI Roadblocks 28:00 - “Undetectable for A Human” 31:58 - Pete Can Help You Floss! 34:56 - OWASP Top 10 & Resources 37:00 - Check out Coalfire Links: Connect with our guest Pete Deros: https://www.linkedin.com/in/pete-deros-94524b9a/ Coalfire's Website: https://www.coalfire.com/ Coalfire Securialities Report: https://www.coalfire.com/insights/resources/reports/securealities-report-2023-compliance OWASP Top 10 LLM: https://owasp.org/www-project-top-10-for-large-language-model-applications/ Join our creative mastermind and stand out as a cybersecurity professional: https://www.patreon.com/hackervalleystudio Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/ Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com Continue the conversation by joining our Discord: https://hackervalley.com/discord

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Nick Biasini has been working in information security for nearly two decades. In his current role as head of outreach for Cisco Talos Intelligence Group, he leads a team of threat researchers tasked with tracking nation-state APTs, mercenary hacker groups and ransomware cybercriminals. In this episode, Biasini talks about the cryptic world of threat actor attribution, the rise of PSOAs (private sector offensive actors) and why network edge devices are a happy hunting ground for attackers.

A precautionary shutdown at a major US mortgage lender. Call centers as targets. A push to decouple data and identity. The cyber front in the Hamas-Israeli war. Hacktivism and state-sponsored cyberattacks against Israel. The instructive case of TASS and managing influence operations. Deepen Desai from Zscaler talking about the TOITOIN Trojan. Our guest is Joe Nocera, of PwC sharing their latest Global Digital Trust Insights survey and the impact of the SEC's new cybersecurity disclosure rules. And cybercrime on the side of Ukraine (or at least, cybercrime against Russia). For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/212 Selected reading. Mortgage Giant Mr. Cooper Shuts Down Systems Following Cyberattack (SecurityWeek) TransUnion Report Shows Fraud Attacks on Financial Industry Call Centers Rising (Transunion) A Bold New Plan to Make Cloud Computing More Secure (IEEE Spectrum)  The Cyberwarfare Front of the Israel-Gaza War (The National Interest) Agonizing Serpens (Aka Agrius) Targeting the Israeli Higher Education and Tech Sectors (Unit 42) GhostSec offers Ransomware-as-a-Service Possibly Used to Target Israel (Uptycs)  Kremlin Sacks TASS Chief for Wagner Mutiny Coverage (The Moscow Times)  Russia's 2nd-Largest Insurer Rosgosstrakh Hacked; 400GB of Data Sold Online (Hackread - Latest Cybersecurity News, Press Releases & Technology Today) Learn more about your ad choices. Visit megaphone.fm/adchoices

In this episode, host Bidemi Ologunde presented an Analysis of Competing Hypotheses (ACH) on a recent cyberattack in Kuwait.Support the show

The Hamas-Israel war continues to be marked by hacktivism. Arid Viper's exploitation of Arabic speaker's Android devices. Iran shows improved cyberespionage capabilities. A URL shortener in the C2C market. Taking down the Mozi botnet. Ransomware in healthcare. Two are Russians arrested on treason charges, accused of hacking for Ukraine. In our sponsored Industry Voices segment, Anna Belak from Sysdig shares a new threat framework for the cloud. Rick Howard previews his new online course on cyber security first principles. And no, Russia hasn't really replaced its currency with Arctic Ocean gastropods. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/209 Selected reading. ‘Hacktivists' join the front lines in Israel-Hamas war (C4ISRNet)  The global cyber divide between Gaza and Israel - IT-Online (IT-Online) Arid Viper disguising mobile spyware as updates for non-malicious Android applications (Cisco Talos Blog) In Cyberattacks, Iran Shows Signs of Improved Hacking Capabilities (New York Times) FBI ‘keeping a close eye' on Iranian hackers as Israel-Hamas war intensifies (Record) Why Iran Is Gambling on Hamas (Foreign Affairs) To Aid and Abet: Prolific Puma Helps Cybercriminals Evade Detection (Infoblox Blog) Who killed Mozi? Finally putting the IoT zombie botnet in its grave (ESET) The State of Ransomware in Healthcare 2023 (Sophos) Russian security service detains two hackers allegedly working for Ukraine (Record)  Pro-Ukraine group says it breached Russian card payment system (Record)  Learn more about your ad choices. Visit megaphone.fm/adchoices