Back

Explore every episode of the podcast CyberHub Podcast

Dive into the complete episode list for CyberHub Podcast. Each episode is cataloged with detailed descriptions, making it easy to find and explore specific topics. Keep track of all episodes from your favorite podcast and never miss a moment of insightful content.

Rows per page:

1–50 of 300

TitlePub. DateDuration
🚨 Iran Targets Critical Infrastructure & Colludes with Ransomware Gang, Our Grid is Vulnerable, Crowdstrike News29 Aug 202400:16:13

🚨 Iran Targets Critical Infrastructure & Colludes with Ransomware Gang, Our Grid is Vulnerable, Crowdstrike News

🎙️ Join us on the CyberHub Podcast as we delve into the latest headlines for cybersecurity practitioners


Today’s episode will discuss the latest news with Iran trolling critical infrastructure with more news below:

  • Ransomware Collusion Between Iran & Criminal Gangs
  • Hitachi Energy Scada Vulnerability
  • ESXi Ransomware target

           

For more information, please visit our website: https://www.cyberhubpodcast.com/ 

 

👀 SHOW Supporters:

Today’s Episode is supported by our friends at Nudge Security free 14-day trial to all CyberHub Podcast community members at https://www.nudgesecurity.com/cyberhub


✅ Story Links: 

https://www.securityweek.com/iranian-hackers-use-new-tickler-malware-to-collect-intel-from-us-uae/

https://therecord.media/iran-government-working-with-ransomware-hackers-fbi-advisory

https://www.securityweek.com/beckhoff-twincat-bsd-vulnerabilities-expose-plcs-to-tampering-dos-attacks/

https://www.darkreading.com/ics-ot-security/hitachi-energy-vulnerabilities-plague-scada-power-systems

https://www.darkreading.com/ics-ot-security/cctv-zero-day-targeted-by-mirai-botnet-campaign

https://www.darkreading.com/cyberattacks-data-breaches/blackbyte-targets-esxi-bug-with-ransomeware-to-access-virtual-assets

https://www.bleepingcomputer.com/news/security/employee-arrested-for-locking-windows-admins-out-of-254-servers-in-extortion-plot/

https://therecord.media/netherlands-defense-ministry-data-center-malfunction-outages

https://www.securityweek.com/crowdstrike-estimates-the-tech-meltdown-caused-by-its-bungling-left-a-60-million-dent-in-its-sales/


🔔 Subscribe now for the latest insights from industry leaders, in-depth analyses, and real-world strategies to secure your digital world. https://www.youtube.com/@TheCyberHubPodcast/?sub_confirmation=1  


✅ Important Links to

🎙️ US Marshall Service Disputes Breach Claims, Cloud Extortion Attacks, Snowflake & SaaS Security28 Aug 202400:18:06

🚨 US Marshall Service Disputes Breach Claims, Cloud Extortion Attacks, Snowflake & SaaS Security

🎙️ Join us on the CyberHub Podcast as we delve into the latest headlines for cybersecurity practitioners

Today’s episode will discuss the latest news as the US Marshall Service disputes breach claims with more news below:

  • Young Consulting Data Breach
  • Second Apache Vulnerability
  • David Katz Talks Hashing Policy by FTC

           

For more information, please visit our website: https://www.cyberhubpodcast.com/ 

 

👀 SHOW Supporters:

Today’s Episode is supported by our friends at Nudge Security free 14-day trial to all CyberHub Podcast community members at https://www.nudgesecurity.com/cyberhub


✅ Story Links: 

https://www.bleepingcomputer.com/news/security/us-marshals-service-disputes-ransomware-gangs-breach-claims/

https://www.securityweek.com/950000-impacted-by-young-consulting-data-breach/

https://www.darkreading.com/threat-intelligence/threat-group-bling-libra-extortion-cloud-attacks

https://www.cybersecuritydive.com/news/snowflake-security-responsibility-customers/724994/

https://www.securityweek.com/second-apache-ofbiz-vulnerability-exploited-in-attacks/

https://www.securityweek.com/microsoft-convenes-endpoint-security-firms-following-crowdstrike-incident/

https://www.securityweek.com/us-offering-2-5-million-reward-for-belarusian-malware-distributor/

https://www.cybersecuritydive.com/news/sec-settles-cyber-equiniti-trust/725227/


🔔 Subscribe now for the latest insights from industry leaders, in-depth analyses, and real-world strategies to secure your digital world. https://www.youtube.com/@TheCyberHubPodcast/?sub_confirmation=1  


✅ Important Links to Follow: 

👉Substack: http://jamesazar.substack.com

👉Listen here: https://linktr.ee/cyberhubpodcast   


Stay Connected With Us.

👉Facebook:

🚨 DDoS Attack Halts Musk Trump Interview, Prolonged Breach Recovery, Cloud API Bugs, AMD Sinkhole13 Aug 202400:16:34

🚨 DDoS Attack Halts Musk Trump Interview, Prolonged Breach Recovery, Cloud API Bugs, AMD Sinkhole  

🎙️ Join us on the CyberHub Podcast as we delve into the latest headlines for cybersecurity practitioners


Today’s episode will discuss the latest news as X suffers DDoS attack during Musk, Trump interview with more news below:

  • AMD Sinkhole Flaw
  • UN Approves Cybercrime Treaty
  • Prolonged and Costly Breach Recovery

           

For more information, please visit our website: https://www.cyberhubpodcast.com/ 

 

👀 SHOW Supporters:

Today’s Episode is supported by our friends at Nudge Security free 14-day trial to all CyberHub Podcast community members at https://www.nudgesecurity.com/cyberhub


✅ Story Links: 

https://www.securityweek.com/elon-musk-says-cyberattack-crashed-site-ahead-of-trump-livestream-interview/

https://www.cybersecuritydive.com/news/henry-schein-recovery-cyber-incident/723619/

https://www.cybersecuritydive.com/news/loandepot-net-loss-cyber-settlement-q2/723838/

https://www.bleepingcomputer.com/news/security/south-korea-says-dprk-hackers-stole-spy-plane-technical-data/

https://www.securityweek.com/microsoft-warns-of-openvpn-vulnerabilities-potential-for-exploit-chains/

https://www.darkreading.com/ics-ot-security/solar-power-installations-worldwide-open-to-cloud-api-bugs

https://www.bleepingcomputer.com/news/security/new-amd-sinkclose-flaw-helps-install-nearly-undetectable-malware/

https://therecord.media/fbi-seizes-ransomware-servers-radar

https://www.darkreading.com/cyberattacks-data-breaches/un-approves-cybercrime-treaty-despite-major-tech-privacy-concerns


🔔 Subscribe now for the latest insights from industry leaders, in-depth analyses, and real-world strategies to secure your digital world. https://www.youtube.com/@TheCyberHubPodcast/?sub_confirmation=1  


✅ Important Links to Follow: 

👉Substack:...

🚨 Cyber News: TeamCity Exploit in Ransomware, DDoS Target Financial Services, French Government Targeted, Okta Denies Breach12 Mar 202400:12:15

🚨 Cyber News: TeamCity Exploit in Ransomware, DDoS Target Financial Services, French Government Targeted, Okta Denies Breach

 

Cybersecurity News

CyberHub Podcast

March 12th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Recent TeamCity Vulnerability Exploited in Ransomware Attacks

Financial services sees sharp increase in DDoS attacks as geopolitical tensions rise

The French Government Says It’s Being Targeted by Unusual Intense Cyberattacks

Okta says data leaked on hacking forum not from its systems

Sweden's Klarna fined $733,000 over insufficient GDPR information

Broadcom Merges Symantec and Carbon Black Into New Business Unit

Exploited Building Access System Vulnerability Patched 5 Years After Disclosure

South Korean Citizen Detained in Russia on Cyber Espionage Charges

 

Show Notes and Story Links:

https://www.securityweek.com/recent-teamcity-vulnerability-exploited-in-ransomware-attacks/

https://www.cybersecuritydive.com/news/ddos-financial-services-fsisac-akamai/709623/

https://www.securityweek.com/the-french-government-says-its-being-targeted-by-unusual-intense-cyberattacks/

https://www.bleepingcomputer.com/news/security/okta-says-data-leaked-on-hacking-forum-not-from-its-systems/

https://www.reuters.com/technology/swedens-klarna-fined-733000-over-data-protection-shortcomings-2024-03-11/

https://www.securityweek.com/broadcom-merges-symantec-and-carbon-black-into-new-business-unit/

https://www.securityweek.com/exploited-building-access-system-vulnerability-patched-years-after-disclosure/

https://thehackernews.com/2024/03/south-korean-citizen-detained-in-russia.html

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble:

🚨 Cyber News: Microsoft Source Code Stolen, CISA Hacked, TikTok Ban and Intel Officer Sells Secrets to China, Patch Now11 Mar 202400:16:01

🚨 Cyber News: Microsoft Source Code Stolen, CISA Hacked, TikTok Ban and Intel Officer Sells Secrets to China, Patch Now

 

Cybersecurity News

CyberHub Podcast

March 11th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Microsoft Says Russian Gov Hackers Stole Source Code After Spying on Executive Emails

CISA forced to take two systems offline last month after Ivanti compromise

US soldier arrested for selling national defense secrets to China

Bills targeting data brokers and TikTok approved in House committee

Duvel says it has "more than enough" beer after ransomware attack

CISA Outlines Efforts to Secure Open Source Software

Critical Fortinet flaw may impact 150,000 exposed devices

QNAP warns of critical auth bypass flaw in its NAS devices

 

Show Notes and Story Links:

https://www.securityweek.com/microsoft-says-russian-gov-hackers-stole-source-code-after-spying-on-executive-emails/

https://therecord.media/cisa-takes-two-systems-offline-following-ivanti-compromise

https://hongkongfp.com/2024/03/09/us-soldier-arrested-for-selling-national-defense-secrets-to-china/

https://therecord.media/bills-tiktok-data-brokers-advance-congress

https://www.bleepingcomputer.com/news/security/duvel-says-it-has-more-than-enough-beer-after-ransomware-attack/

https://www.securityweek.com/cisa-details-efforts-to-secure-open-source-software/

https://www.bleepingcomputer.com/news/security/critical-fortinet-flaw-may-impact-150-000-exposed-devices/

https://www.bleepingcomputer.com/news/security/qnap-warns-of-critical-auth-bypass-flaw-in-its-nas-devices/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble:

The Pillars of Zero Trust and Least Privilege featuring Chris Foulon and James Azar08 Mar 202400:27:42

The Pillars of Zero Trust and Least Privilege featuring Chris Foulon and James Azar

Connect with the Hosts:

https://www.linkedin.com/in/james-j-azar/

https://www.linkedin.com/in/christophefoulon/

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast

Instagram: https://www.instagram.com/cyberhubpodcast

 

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

 

#cybernews #infosec #cybersecurity #cyberhubpodcast #practitionerbrief #cisotalk #ciso #infosecnews #infosec #infosecurity #cybersecuritytips #podcast #technews #tinkertribe #givingback #securitytribe #securitygang #informationsecurity


🚨 Cyber News: TeamCity Exploit, $12.5B Lost to Cyber Crime, VMware Patch, AI Secrets to China, German Military Hack07 Mar 202400:16:02

🚨 Cyber News: TeamCity Exploit, $12.5B Lost to Cyber Crime, VMware Patch, AI Secrets to China, German Military Hack

 

Cybersecurity News

CyberHub Podcast

March 7th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Critical TeamCity Vulnerability Exploitation Started Immediately After Disclosure

U.S. lost record $12.5 billion to online crime in 2023

A German military officer used an unsecured line for a conference call

First BofA, Now Fidelity: Same Vendor Behind Third-Party Breaches

Capita says cyberattack contributed to annual loss of more than £106 million

Fidelity Investments Notifying 28,000 People of Data Breach

PetSmart warns of credential stuffing attacks trying to hack accounts

VMware fixes critical sandbox escape flaws in ESXi, Workstation, and Fusion

Ex-Google Engineer Arrested for Stealing AI Technology Secrets for China

 

Show Notes and Story Links:

https://www.securityweek.com/critical-teamcity-vulnerability-exploitation-started-immediately-after-disclosure/

https://www.bleepingcomputer.com/news/security/fbi-us-lost-record-125-billion-to-online-crime-in-2023/

https://abcnews.go.com/International/wireStory/german-military-officer-unsecured-line-conference-call-russia-107800959

https://www.darkreading.com/cyberattacks-data-breaches/first-bofa-now-fidelity-same-vendor-third-party-breaches

https://therecord.media/capita-cyberattack-loss-of-hundred-million

https://www.securityweek.com/fidelity-investments-notifying-28000-people-of-data-breach/

https://www.bleepingcomputer.com/news/security/petsmart-warns-of-credential-stuffing-attacks-trying-to-hack-accounts/

https://www.bleepingcomputer.com/news/security/vmware-fixes-critical-sandbox-escape-flaws-in-esxi-workstation-and-fusion/

https://thehackernews.com/2024/03/ex-google-engineer-arrested-for.html

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack:

🚨 Cyber News: Apple Zeroday, NSA Zero Trust Guidelines, Sanctions on Predator Spyware, Consolidation & Cybersec Capital Raises06 Mar 202400:14:32

🚨 Cyber News: Apple Zeroday, NSA Zero Trust Guidelines, Sanctions on Predator Spyware, Consolidation & Cybersec Capital Raises

 

Cybersecurity News

CyberHub Podcast

March 6th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Apple Blunts Zero-Day Attacks With iOS 17.4 Update

Android’s March 2024 Update Patches Critical Vulnerabilities

Southern Company Builds SBOM for Electric Power Substation

CISA Warns of Pixel Phone Vulnerability Exploitation

Criminals target Docker, Hadoop, Redis, Confluence with new Golang malware

NSA shares zero-trust guidance to limit adversaries on the network

U.S. sanctions Predator spyware operators for spying on Americans

Axonius Banks $200 Million in Late-Stage Funding 

CrowdStrike to Acquire Flow Security

Investment Firm Team8 Raises Additional $500 Million

 

Show Notes and Story Links:

https://www.securityweek.com/apple-blunts-zero-day-attacks-with-ios-17-4-update/

https://www.securityweek.com/androids-march-2024-update-patches-critical-vulnerabilities/

https://www.darkreading.com/ics-ot-security/southern-company-builds-a-power-substation-sbom

https://www.securityweek.com/cisa-warns-of-pixel-phone-vulnerability-exploitation/

https://www.bleepingcomputer.com/news/security/hackers-target-docker-hadoop-redis-confluence-with-new-golang-malware/

https://www.bleepingcomputer.com/news/security/nsa-shares-zero-trust-guidance-to-limit-adversaries-on-the-network/

https://www.bleepingcomputer.com/news/legal/us-sanctions-predator-spyware-operators-for-spying-on-americans/

https://www.securityweek.com/axonius-banks-200-million-in-late-stage-funding/

https://www.securityweek.com/crowdstrike-to-acquire-flow-security/

https://www.securityweek.com/investment-firm-team8-raises-additional-500-million/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack:

🚨 Cyber News: TeamCity Exploit, AMEX Breach, BlackCat Retires, North Korea Steals Secrets, Ukraine & Russia05 Mar 202400:13:54

🚨 Cyber News: TeamCity Exploit, AMEX Breach, BlackCat Retires, North Korea Steals Secrets, Ukraine & Russia  

 

Cybersecurity News

CyberHub Podcast

March 5th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Critical Vulnerability Exposes TeamCity Servers to Takeover

BlackCat ransomware turns off servers amid claim they stole $22 million ransom

American Express Discloses Data Breach

ScreenConnect flaws exploited to drop new ToddleShark malware

Zeek Security Tool Vulnerabilities Allow ICS Network Hacking

Pro-Hamas hackers use new malware to attack Israeli companies

Seoul Spies Say North Korea Hackers Stole Semiconductor Secrets

Ukraine claims it hacked Russian Ministry of Defense servers

 

Show Notes and Story Links:

https://www.securityweek.com/critical-vulnerability-exposes-teamcity-servers-to-takeover/

https://www.bleepingcomputer.com/news/security/blackcat-ransomware-turns-off-servers-amid-claim-they-stole-22-million-ransom/

https://www.securityweek.com/american-express-discloses-data-breach/

https://www.bleepingcomputer.com/news/security/screenconnect-flaws-exploited-to-drop-new-toddleshark-malware/

https://www.securityweek.com/zeek-security-tool-vulnerabilities-allow-ics-network-hacking/

https://www.jpost.com/business-and-innovation/tech-and-start-ups/article-789329

https://www.darkreading.com/cyberattacks-data-breaches/seoul-spies-say-north-korea-hackers-stole-semiconductor-secrets

https://www.bleepingcomputer.com/news/security/ukraine-claims-it-hacked-russian-ministry-of-defense-servers/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble:

🚨 Cyber News: German Military Hacked, Taiwan Telco Breached, Phobos Ransomware, Stuxnet Attack on PLC’s04 Mar 202400:14:00

🚨 Cyber News: German Military Hacked, Taiwan Telco Breached, Phobos Ransomware, Stuxnet Attack on PLC’s

 

Cybersecurity News

CyberHub Podcast

March 4th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Germany accuses Russia of 'information war' after military recording released

Critical Infrastructure Organizations Warned of Phobos Ransomware Attacks

Taiwan's Biggest Telco Breached by Suspected Chinese Hackers

Georgia’s Largest County Is Still Repairing Damage From January Cyberattack

Change Healthcare confirms Blackcat/AlphV behind ransomware attack

Remote Stuxnet-Style Attack Possible With Web-Based PLC Malware

Hackers target FCC, crypto firms in advanced Okta phishing attacks

US Charges Iranian Over Cyberattacks on Government, Defense Organizations

 

Show Notes and Story Links:

https://www.jpost.com/international/article-790025

https://www.washingtonpost.com/world/2024/03/03/germany-leaked-call-ukraine-russia/

https://www.securityweek.com/critical-infrastructure-organizations-warned-of-phobos-ransomware-attacks/

https://www.darkreading.com/cyberattacks-data-breaches/taiwan-telco-breached-data-sold-on-dark-web

https://www.securityweek.com/georgias-largest-county-is-still-repairing-damage-from-january-cyberattack/

https://therecord.media/change-healthcare-ransomware-attack-blackcat-alphv

https://www.securityweek.com/remote-stuxnet-style-attack-possible-with-web-based-plc-malware-researchers/

https://www.bleepingcomputer.com/news/security/hackers-target-fcc-crypto-firms-in-advanced-okta-phishing-attacks/

https://www.securityweek.com/us-charges-iranian-over-cyberattacks-on-government-defense-organizations/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube:

What do CISO’s Really think of NIST CSF 2.0 featuring Chris Foulon and James Azar01 Mar 202400:29:24

What do CISO’s Really think of NIST CSF 2.0 featuring Chris Foulon and James Azar

Connect with the Hosts:

https://www.linkedin.com/in/james-j-azar/

https://www.linkedin.com/in/christophefoulon/

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast

Instagram: https://www.instagram.com/cyberhubpodcast

 

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

 

#cybernews #infosec #cybersecurity #cyberhubpodcast #practitionerbrief #cisotalk #ciso #infosecnews #infosec #infosecurity #cybersecuritytips #podcast #technews #tinkertribe #givingback #securitytribe #securitygang #informationsecurity

🚨 Cyber News: Lazarus Windows Zeroday, LockBit is BACK, Australia Espionage Threat, Silver SAML Attack, Linux Malware29 Feb 202400:15:58

🚨 Cyber News: Lazarus Windows Zeroday, LockBit is BACK, Australia Espionage Threat, Silver SAML Attack, Linux Malware

 

Cybersecurity News

CyberHub Podcast

February 29th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Lazarus hackers exploited Windows zero-day to gain Kernel privileges

LockBit ransomware returns to attacks with new encryptors, servers

Ivanti Connect Secure hackers hide in plain sight

Cisco Patches High-Severity Vulnerabilities in Data Center OS

Australia facing its highest-ever threat from espionage and foreign interference

Japan warns of malicious PyPi packages created by North Korean hackers

Echoes of SolarWinds in New 'Silver SAML' Attack Technique

GTPDOOR Linux Malware Targets Telecoms, Exploiting GPRS Roaming Networks

 

 

Show Notes and Story Links:

https://www.bleepingcomputer.com/news/security/lazarus-hackers-exploited-windows-zero-day-to-gain-kernel-privileges/

https://www.bleepingcomputer.com/news/security/lockbit-ransomware-returns-to-attacks-with-new-encryptors-servers/

https://www.cybersecuritydive.com/news/ivanti-connect-secure-state-linked-threat/708706/

https://www.securityweek.com/cisco-patches-high-severity-vulnerabilities-in-data-center-os/

https://therecord.media/australia-facing-highest-ever-threat-from-espionage-interference

https://www.bleepingcomputer.com/news/security/japan-warns-of-malicious-pypi-packages-created-by-north-korean-hackers/

https://www.darkreading.com/cyber-risk/researchers-release-details-on-new-silver-saml-attack-technique

https://thehackernews.com/2024/02/gtpdoor-linux-malware-targets-telecoms.html

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble:

🚨 Cyber News: Cencora Data Breach, SecureConnect Attacks, Intel Security, Russian, Chinese and Iranian Cyber Campaigns28 Feb 202400:15:23

🚨 Cyber News: Cencora Data Breach, SecureConnect Attacks, Intel Security, Russian, Chinese and Iranian Cyber Campaigns

 

Cybersecurity News

CyberHub Podcast

February 28th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Pharmaceutical giant Cencora says data was stolen in a cyberattack

US Government Urges Cleanup of Routers Infected by Russia’s APT28

Black Basta, Bl00dy ransomware gangs join ScreenConnect attacks

FBI, CISA warn US hospitals of targeted BlackCat ransomware attacks

Intel Core Ultra vPro Platform Brings New Security Features

Russian hackers hijack Ubiquiti routers to launch stealthy attacks

Chinese Cyberspies Use New Malware in Ivanti VPN Attacks

'Illusive' Iranian Hacking Group Ensnares Israeli, UAE Aerospace and Defense Firms

Iran hacking group impersonates defense firms, hostage campaigners

 

Show Notes and Story Links:

https://www.bleepingcomputer.com/news/security/pharmaceutical-giant-cencora-says-data-was-stolen-in-a-cyberattack/

https://www.securityweek.com/us-government-urges-cleanup-of-routers-infected-by-russias-apt28/

https://www.bleepingcomputer.com/news/security/black-basta-bl00dy-ransomware-gangs-join-screenconnect-attacks/

https://www.bleepingcomputer.com/news/security/fbi-cisa-warn-us-hospitals-of-targeted-blackcat-ransomware-attacks/

https://www.securityweek.com/intel-core-ultra-vpro-platform-brings-new-security-features/

https://www.bleepingcomputer.com/news/security/russian-hackers-hijack-ubiquiti-routers-to-launch-stealthy-attacks/

https://www.securityweek.com/chinese-cyberspies-use-new-malware-in-ivanti-vpn-attacks/

https://www.darkreading.com/cyberattacks-data-breaches/illusive-iranian-hacking-group-ensnares-israeli-uae-aerospace-and-defense-firms

https://cyberscoop.com/iran-hostages-boeing-dji/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack:

🚨 Trump Campaign Hacked, Iran Accelerates Election Influence, ADT Hacked, Laptop Farm Dismantled12 Aug 202400:14:38

🚨 Trump Campaign Hacked, Iran Accelerates Election Influence, ADT Hacked, Laptop Farm Dismantled  

🎙️ Join us on the CyberHub Podcast as we delve into the latest headlines for cybersecurity practitioners


Today’s episode will discuss the latest news as the Trump campaign reports they were hacked with more news below:

  • Iran Election Influence
  • Crowdstrike Flacon Sensor Bug  
  • 27 Billion Records Leaked For Free

           

For more information, please visit our website: https://www.cyberhubpodcast.com/ 

 

👀 SHOW Supporters:

Today’s Episode is supported by our friends at Nudge Security free 14-day trial to all CyberHub Podcast community members at https://www.nudgesecurity.com/cyberhub


✅ Story Links: 

https://www.securityweek.com/donald-trumps-campaign-says-its-emails-were-hacked/

https://www.securityweek.com/iran-is-accelerating-cyber-activity-that-appears-meant-to-influence-the-us-election-microsoft-says/

https://www.securityweek.com/physical-security-firm-adt-confirms-hack-and-data-breach/

https://www.bleepingcomputer.com/news/security/hackers-leak-27-billion-data-records-with-social-security-numbers/

https://www.bleepingcomputer.com/news/security/us-dismantles-laptop-farm-used-by-undercover-north-korean-it-workers/

https://www.securityweek.com/stolen-credentials-have-turned-saas-apps-into-attackers-playgrounds/

https://www.securityweek.com/warnings-issued-over-cisco-device-hacking-unpatched-vulnerabilities/

https://thecyberexpress.com/openssh-vulnerability-in-freebsd/

https://www.securityweek.com/crowdstrike-dismisses-claims-of-exploitability-in-falcon-sensor-bug/

https://www.bleepingcomputer.com/news/security/chinese-hacking-groups-target-russian-government-it-firms/


🔔 Subscribe now for the latest insights from industry leaders, in-depth analyses, and real-world strategies to secure your digital world.

🚨 Cyber News: NIST CSF 2.0 Released, ThyssenKrupp cyberattack, MGM Woes, HHS Settlement, China & Russia News27 Feb 202400:14:31

🚨 Cyber News: NIST CSF 2.0 Released, ThyssenKrupp cyberattack, MGM Woes, HHS Settlement, China & Russia News

 

Cybersecurity News

CyberHub Podcast

February 27th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

NIST Cybersecurity Framework 2.0 Officially Released

Steel giant ThyssenKrupp confirms cyberattack on automotive division

UnitedHealth subsidiary Optum hack linked to BlackCat ransomware

Russian Cyberspies Targeting Cloud Infrastructure via Dormant Accounts

Hijacked subdomains of major brands used in massive spam campaign

MGM Resorts’ cyberattack headache continues as regulators launch investigations

Zyxel Patches Remote Code Execution Bug in Firewall Products

HHS reaches second-ever ransomware settlement

China Launches New Cyber-Defense Plan for Industrial Networks

 

Show Notes and Story Links:

https://www.securityweek.com/nist-cybersecurity-framework-2-0-officially-released/

https://www.bleepingcomputer.com/news/security/steel-giant-thyssenkrupp-confirms-cyberattack-on-automotive-division/

https://www.bleepingcomputer.com/news/security/unitedhealth-subsidiary-optum-hack-linked-to-blackcat-ransomware/

https://www.securityweek.com/russian-cyberspies-targeting-cloud-infrastructure-via-dormant-accounts/

https://www.bleepingcomputer.com/news/security/hijacked-subdomains-of-major-brands-used-in-massive-spam-campaign/

https://www.cybersecuritydive.com/news/mgm-resorts-federal-state-probes-cyberattack/708494/

https://www.securityweek.com/zyxel-patches-remote-code-execution-bug-in-firewall-products/

https://www.cybersecuritydive.com/news/hhs-ransomware-settlement/708236/

https://www.darkreading.com/cybersecurity-operations/china-rolls-out-strategy-to-prevent-hacking-from-foreign-entities

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website:

🚨 Cyber News: ‘SlashAndGrab’ ScreenConnect Exploit, RCMP Cyberattack, LockBit is Back, AT&T Outage News26 Feb 202400:13:14

🚨 Cyber News: ‘SlashAndGrab’ ScreenConnect Exploit, RCMP Cyberattack, LockBit is Back, AT&T Outage News

 

Cybersecurity News

CyberHub Podcast

February 26th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

‘SlashAndGrab’ ScreenConnect Vulnerability Widely Exploited for Malware Delivery

Change Healthcare hit by cyberattack

RCMP investigating cyber attack as its website remains down

AT&T Says the Outage to Its US Cellphone Network Was Not Caused by a Cyberattack

LockBit ransomware returns, restores servers after police disruption

Eye Care Services Firm Faces Lawsuit Over Data Breach Impacting 2.3 Million

Utilities trade association releases baseline cyber standards for distributed renewable energy

Malawi Immigration Dept. Halts Passport Services Amid Cyberattack

 

Show Notes and Story Links:

https://www.securityweek.com/slashandgrab-screenconnect-vulnerability-widely-exploited-for-malware-delivery/

https://www.cybersecuritydive.com/news/change-healthcare-cyberattack-unitedhealth/708263/

https://www.bleepingcomputer.com/news/security/rcmp-investigating-cyber-attack-as-its-website-remains-down/

https://www.securityweek.com/att-says-the-outage-to-its-us-cellphone-network-was-not-caused-by-a-cyberattack/

https://www.bleepingcomputer.com/news/security/lockbit-ransomware-returns-restores-servers-after-police-disruption/

https://www.securityweek.com/eye-care-services-firm-faces-lawsuit-over-data-breach-impacting-2-3-million/

https://cyberscoop.com/renewable-energy-cybersecurity-baseline/

https://www.darkreading.com/cyberattacks-data-breaches/malawi-immigration-department-halts-services-amid-cyberattack

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube:

The Zero Trust Discussion: Making the right calls for Zero Trust featuring Chris Foulon and James Azar23 Feb 202400:29:34

Key Takeaways from the "Zero Trust Journey: Insights from Two CISOs" Podcast by CyberHub Podcast featuring James Azar and Christophe Foulon

Understanding Zero Trust

- Zero Trust Overview: The podcast kicked off with a discussion on the concept of Zero Trust, highlighting its increasing relevance in cybersecurity. Christoph Foulon, a seasoned cybersecurity expert and author, shared insights into the foundational principles of Zero Trust and its significance for businesses seeking to enhance their security posture and James Azar, CISO and Host of the CyberHub Podcast talking about Zero Trust.

Misconceptions and Challenges

- Common Misconceptions: A notable point in the conversation was the emphasis on the widespread misconceptions surrounding Zero Trust. Many businesses, lured by the buzzword, fail to comprehend the depth and effort required to implement a genuine Zero Trust framework effectively.

- Implementation Challenges: The dialogue underscored the challenges businesses face in implementing Zero Trust, particularly small and medium-sized enterprises (SMEs). The discussion revealed that SMEs often operate under the assumption that they are not potential targets, which can lead to a lax security environment.

Zero Trust Components

- Foundational Elements: The podcast detailed the three foundational elements of Zero Trust: trust no entity by default, employ least privilege access, and always assume a breach. These principles serve as the cornerstone for building a robust Zero Trust architecture.

- Seven Pillars of Zero Trust: The conversation further explored the seven pillars essential to Zero Trust: users, devices, network environments, applications and workloads, data, automation and orchestration, and visibility and analytics. Each pillar plays a critical role in establishing a comprehensive Zero Trust ecosystem.

Application in SMEs

- Adaptation for SMEs: The podcast highlighted the unique challenges SMEs face in adopting Zero Trust principles. Due to limited resources and the nature of small businesses, where roles are less defined, implementing Zero Trust can be particularly challenging. The discussion suggested that SMEs should focus on incremental steps towards Zero Trust, embedding security into their culture as they grow.

Practical Advice

- Continuous Journey: Both speakers emphasized that Zero Trust is not a one-time project but a continuous journey. Businesses, regardless of their size, should view Zero Trust as an evolving strategy that adapts to their changing security needs.

- Resources and Support: The podcast concluded with an offer of support to businesses embarking on their Zero Trust journey. The speakers encouraged listeners to reach out for guidance and leverage available resources to navigate the complexities of Zero Trust implementation.

Conclusion

The "Zero Trust Journey: Insights from Two CISOs" podcast provided a comprehensive overview of Zero Trust, addressing common misconceptions, outlining its core components, and discussing its application within SMEs. The conversation underscored the importance of viewing Zero Trust as a continuous journey and highlighted the need for businesses to adapt and embed security into their organizational culture.

The Zero Trust Discussion: Making the right calls for Zero Trust featuring Chris Foulon and James Azar.

Connect with the Hosts:

https://www.linkedin.com/in/james-j-azar/

https://www.linkedin.com/in/christophefoulon/

Apply now to be a featured partner on the show: 

🚨 Cyber News: $10M Offered for LockBit Leaders, Chinese Hacking Ops, Apple Post-Quantum Encryption, Iran22 Feb 202400:14:49

🚨 Cyber News: $10M Offered for LockBit Leaders, Chinese Hacking Ops, Apple Post-Quantum Encryption, Iran    

 

Cybersecurity News

CyberHub Podcast

February 22nd, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

US Offering $10M for LockBit Leaders as Law Enforcement Taunts Cybercriminals

Leaked documents show how firm supports Chinese hacking operations

Biden administration issues executive order on port cybersecurity

ConnectWise Confirms ScreenConnect Flaw Under Active Exploitation

Joomla fixes XSS flaws that could expose sites to RCE attacks

Apple Adds Post-Quantum Encryption to iMessage

Hackers abuse Google Cloud Run in massive banking trojan campaign

Iranian APTs Dress Up as Hacktivists for Disruption, Influence Ops

 

Show Notes and Story Links:

https://www.securityweek.com/us-offering-10m-for-lockbit-leaders-as-law-enforcement-taunts-cybercriminals/

https://cyberscoop.com/isoon-chinese-apt-contractor-leak/

https://www.cybersecuritydive.com/news/biden-administration-executive-order-port-cybersecurity/708120/

https://www.securityweek.com/connectwise-confirms-screenconnect-flaw-under-active-exploitation/

https://www.bleepingcomputer.com/news/security/joomla-fixes-xss-flaws-that-could-expose-sites-to-rce-attacks/

https://www.securityweek.com/apple-adds-post-quantum-encryption-to-imessage/

https://www.bleepingcomputer.com/news/security/hackers-abuse-google-cloud-run-in-massive-banking-trojan-campaign/

https://www.darkreading.com/threat-intelligence/iranian-apts-dress-up-as-hacktivists-for-disruption-influence-ops

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble:

🚨 Cyber News: VMware & ConnectWise Patch Now, Migo Malware on Redis, TikTok Probe, End of Era @NSA21 Feb 202400:14:45

🚨 Cyber News: VMware & ConnectWise Patch Now, Migo Malware on Redis, TikTok Probe, End of Era @NSA   

 

Cybersecurity News

CyberHub Podcast

February 21st, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

VMware urges admins to remove deprecated, vulnerable auth plug-in

ConnectWise Rushes to Patch Critical Vulns in Remote Access Tool

Chrome 122, Firefox 123 Patch High-Severity Vulnerabilities

New Migo malware disables protection features on Redis servers

Control Systems Firm PSI Struggles to Recover From Ransomware Attack

DC-area school system says data of 100,000 people affected in ransomware attack

Europe announces launch of formal probe into TikTok under digital rights law

NSA Announces Retirement of Cybersecurity Director Rob Joyce

 

Show Notes and Story Links:

https://www.bleepingcomputer.com/news/security/vmware-urges-admins-to-remove-deprecated-vulnerable-auth-plug-in/

https://www.securityweek.com/connectwise-rushes-to-patch-critical-vulns-in-remote-access-tool/

https://www.securityweek.com/chrome-122-firefox-123-patch-high-severity-vulnerabilities/

https://www.bleepingcomputer.com/news/security/new-migo-malware-disables-protection-features-on-redis-servers/

https://www.securityweek.com/control-systems-firm-psi-struggles-to-recover-from-ransomware-attack/

https://therecord.media/md-school-system-says-people-affected-ransomware

https://therecord.media/tiktok-investigation-dsa-european-commission

https://www.securityweek.com/nsa-announces-retirement-of-cybersecurity-director-rob-joyce/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook:

🚨 Cyber News: LockBit Disrupted Globally, El Al Hacking Attempt, Android Banking Trojan, ESET Patch, Exchange Bug20 Feb 202400:12:47

🚨 Cyber News: LockBit Disrupted Globally, El Al Hacking Attempt, Android Banking Trojan, ESET Patch, Exchange Bug   

 

Cybersecurity News

CyberHub Podcast

February 20th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

LockBit ransomware disrupted by global police operation

Israeli El Al Alleges Hackers Targeted Flights in Mid-Air Hijack Attempt

Over 28,500 Exchange servers vulnerable to actively exploited bug

Anatsa Android Banking Trojan Continues to Spread via Google Play

Ransomware Group Takes Credit for LoanDepot Prudential Financial Attacks

Cactus ransomware claim to steal 1.5TB of Schneider Electric data

ESET Privilege Escalation Flaw Let Attackers Delete Arbitrary Files

Iran and Hezbollah Hackers Launch Attacks to Influence Israel-Hamas Narrative

 

Show Notes and Story Links:

https://www.bleepingcomputer.com/news/security/lockbit-ransomware-disrupted-by-global-police-operation/

https://www.bleepingcomputer.com/news/security/police-arrests-lockbit-ransomware-members-release-decryptor-in-global-crackdown/

https://www.hackread.com/israeli-el-al-flights-hackers-mid-air-hijacking/

https://www.bleepingcomputer.com/news/security/over-28-500-exchange-servers-vulnerable-to-actively-exploited-bug/

https://www.securityweek.com/anatsa-android-banking-trojan-continues-to-spread-via-google-play/

https://www.securityweek.com/ransomware-group-takes-credit-for-loandepot-prudential-financial-attacks/

https://www.bleepingcomputer.com/news/security/cactus-ransomware-claim-to-steal-15tb-of-schneider-electric-data/

https://gbhackers.com/eset-privilege-escalation-flaw/

https://thehackernews.com/2024/02/iran-and-hezbollah-hackers-launch.html

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube:

🚨 Cyber News: Ivanti Woes Continue, FBI Disrupts Botnet, DoD Breach, NSO’s MMS Fingerprint, Iran19 Feb 202400:15:13

🚨 Cyber News: Ivanti Woes Continue, FBI Disrupts Botnet, DoD Breach, NSO’s MMS Fingerprint, Iran  

 

Cybersecurity News

CyberHub Podcast

February 19th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Over 13,000 Ivanti gateways vulnerable to actively exploited bugs

FBI disrupts Russian Moobot botnet infecting Ubiquiti routers

DOD notifying more than 26,000 people who may be impacted by a year-old data breach

SolarWinds fixes critical RCE bugs in access rights audit solution

Mysterious ‘MMS Fingerprint’ Hack Used by Spyware Firm NSO Group Revealed

Russian APT 'Winter Vivern' Targets European Government, Military

Iran Warship Aiding Houthi Pirates Hacked by US

Former NSA chief calls for alternative approach to cyberdefense

 

Show Notes and Story Links:

https://www.bleepingcomputer.com/news/security/over-13-000-ivanti-gateways-vulnerable-to-actively-exploited-bugs/

https://www.bleepingcomputer.com/news/security/fbi-disrupts-russian-moobot-botnet-infecting-ubiquiti-routers/

https://defensescoop.com/2024/02/13/dod-notifying-people-year-old-data-breach/

https://www.bleepingcomputer.com/news/security/solarwinds-fixes-critical-rce-bugs-in-access-rights-audit-solution/

https://www.securityweek.com/mysterious-mms-fingerprint-hack-used-by-spyware-firm-nso-group-revealed/

https://www.darkreading.com/cyberattacks-data-breaches/russian-apt-winter-vivern-targets-european-government-military

https://www.darkreading.com/cyberattacks-data-breaches/iranian-ship-aiding-houthi-pirates-hacked-by-us

https://therecord.media/former-nsa-chief-alternative-approach-cyber

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble:

🚨 Cyber News: Microsoft Exchange Zero-Day, Trans-Northern Pipelines Cyberattack, Nation-States Weaponize AI, U.S. Internet Leak15 Feb 202400:15:41

🚨 Cyber News: Microsoft Exchange Zero-Day, Trans-Northern Pipelines Cyberattack, Nation-States Weaponize AI, U.S. Internet Leak  

 

Cybersecurity News

CyberHub Podcast

February 15th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Microsoft Warns of Exploited Exchange Server Zero-Day

Trans-Northern Pipelines investigating ALPHV ransomware attack claims

New Wi-Fi Authentication Bypass Flaws Expose Home, Enterprise Networks

LockBit claims ransomware attack on Fulton County, Georgia

Nation-States Are Weaponizing AI in Cyberattacks

Chinese Hackers Using Deepfakes in Advanced Mobile Banking Malware Attacks

U.S. Internet Leaked Years of Internal, Customer Emails

Cisco Announces It is Laying Off Thousands of Workers

 

Show Notes and Story Links:

https://www.securityweek.com/microsoft-warns-of-exploited-exchange-server-zero-day/

https://www.bleepingcomputer.com/news/security/trans-northern-pipelines-investigating-alphv-ransomware-attack-claims/

https://www.securityweek.com/new-wi-fi-authentication-bypass-flaws-expose-home-enterprise-networks/

https://www.bleepingcomputer.com/news/security/lockbit-claims-ransomware-attack-on-fulton-county-georgia/

https://www.darkreading.com/threat-intelligence/microsoft-openai-nation-states-are-weaponizing-ai-in-cyberattacks

https://thehackernews.com/2024/02/chinese-hackers-using-deepfakes-in.html

https://krebsonsecurity.com/2024/02/u-s-internet-leaked-years-of-internal-customer-emails/#more-66376

https://www.securityweek.com/cisco-announces-it-is-laying-off-thousands-of-workers/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble:

🚨 Cyber News: Prudential Breach, $290M Stolen from PlayDapp, Patch Tuesday, Bumblebee Malware, Iran14 Feb 202400:16:03

🚨 Cyber News: Prudential Breach, $290M Stolen from PlayDapp, Patch Tuesday, Bumblebee Malware, Iran

 

Cybersecurity News

CyberHub Podcast

February 14th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Prudential Financial breached in data theft cyberattack

Microsoft Confirms Windows Exploits Bypassing Security Features

Hackers steal $290 million in crypto from PlayDapp gaming platform

Microsoft February 2024 Patch Tuesday fixes 2 zero-days, 73 flaws

SAP Patches Critical Vulnerability Exposing User, Business Data

Adobe Warns of Critical Flaws in Widely Deployed Software

Bumblebee Malware Returns with New Tricks, Targeting U.S. Businesses

Iranian, regional hacking operations that target Israel remain opportunistic

 

Show Notes and Story Links:

https://www.bleepingcomputer.com/news/security/prudential-financial-breached-in-data-theft-cyberattack/

https://www.securityweek.com/microsoft-confirms-windows-exploits-bypassing-security-features/

https://www.bleepingcomputer.com/news/security/hackers-steal-290-million-in-crypto-from-playdapp-gaming-platform/

https://www.bleepingcomputer.com/news/microsoft/microsoft-february-2024-patch-tuesday-fixes-2-zero-days-73-flaws/

https://www.securityweek.com/sap-patches-critical-vulnerability-exposing-user-business-data/

https://www.securityweek.com/patch-tuesday-adobe-warns-of-critical-flaws-in-widely-deployed-software/

https://thehackernews.com/2024/02/bumblebee-malware-returns-with-new.html

https://cyberscoop.com/google-iranian-regional-hacking-operations-that-target-israel-remain-opportunistic-but-focused/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble:

🚨 Cyber News: CISA 2024 Priorities, ExpressVPN User Data Exposed, Ivanti Exploit, Azure Hijacking, FCC Order13 Feb 202400:14:22

🚨 Cyber News: CISA 2024 Priorities, ExpressVPN User Data Exposed, Ivanti Exploit, Azure Hijacking, FCC Order

 

Cybersecurity News

CyberHub Podcast

February 13th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Ongoing Microsoft Azure account hijacking campaign targets executives

CISA releases 2024 priorities for the Joint Cyber Defense Collaborative

Hackers exploit Ivanti SSRF flaw to deploy new DSLog backdoor

ExpressVPN User Data Exposed Due to Bug

Bank of America warns customers of data breach after vendor hack

FCC orders telecom carriers to report PII data breaches within 30 days

United Nations Digging Into DPRK Crypto Cyberattacks

 

Show Notes and Story Links:

https://www.bleepingcomputer.com/news/security/ongoing-microsoft-azure-account-hijacking-campaign-targets-executives/

https://cyberscoop.com/cisa-jcdc-2024-priorities/

https://www.cisa.gov/topics/partnerships-and-collaboration/joint-cyber-defense-collaborative/2024-jcdc-priorities

https://www.bleepingcomputer.com/news/security/hackers-exploit-ivanti-ssrf-flaw-to-deploy-new-dslog-backdoor/

https://www.securityweek.com/expressvpn-user-data-exposed-due-to-bug/

https://www.bleepingcomputer.com/news/security/bank-of-america-warns-customers-of-data-breach-after-vendor-hack/

https://www.bleepingcomputer.com/news/security/fcc-orders-telecom-carriers-to-report-pii-data-breaches-within-30-days/

https://www.federalregister.gov/documents/2024/02/12/2024-01667/data-breach-reporting-requirements

https://www.darkreading.com/cyberattacks-data-breaches/un-digging-into-dprk-crypto-cyberattacks-totaling-3b

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube:

🚨 Windows Update Flaw Allows Downgrade Attacks, Blacksuit Ransomware Warning, SEC Ends MOVEit Probe08 Aug 202400:14:11

🚨 Windows Update Flaw Allows Downgrade Attacks, Blacksuit Ransomware Warning, SEC Ends MOVEit Probe

🎙️ Join us on the CyberHub Podcast as we delve into the latest headlines for cybersecurity practitioners


Today’s episode will discuss the latest research on how Safebreach was able to launch a Windows update flaw allowing downgrade attack with more news below:


  • FBI Warning on BlackSuit
  • Crowdstrike gives up control
  • Crypto Hack

           

For more information, please visit our website: https://www.cyberhubpodcast.com/ 

 

👀 SHOW Supporters:

Today’s Episode is supported by our friends at Nudge Security free 14-day trial to all CyberHub Podcast community members at https://www.nudgesecurity.com/cyberhub


✅ Story Links: 

https://www.securityweek.com/safebreach-sounds-alarm-on-windows-update-flaws-allowing-undetectable-downgrade-attacks/

https://www.bleepingcomputer.com/news/security/fbi-blacksuit-ransomware-made-over-500-million-in-ransom-demands/

https://www.darkreading.com/cyber-risk/crowdstrike-will-give-customers-control-over-falcon-sensor-content-updates

https://www.securityweek.com/over-40000-internet-exposed-ics-devices-found-in-us-censys/

https://www.bleepingcomputer.com/news/security/sec-ends-probe-into-moveit-attacks-impacting-95-million-people/

https://thecyberexpress.com/aws-vulnerabilities-black-hat-research/

https://www.bleepingcomputer.com/news/security/ronin-network-hacked-12-million-returned-by-white-hat-hackers/

https://thecyberexpress.com/nexera-crypto-hack-only-440k-only-stolen/

https://www.cybersecuritydive.com/news/federal-watchdog-epa-cyber-strategy/723427/

https://therecord.media/us-offers-reward-for-info-on-iranian-hackers-water-utilities


🔔 Subscribe now for the latest insights from industry leaders, in-depth analyses, and real-world strategies to secure your digital world.

🚨 Cyber News: Another Ivanti Exploit, Fortinet Exploit, China Propaganda, RustDoor Malware, Israel-Iran War12 Feb 202400:15:00

🚨 Cyber News: Another Ivanti Exploit, Fortinet Exploit, China Propaganda, RustDoor Malware, Israel-Iran War   

 

Cybersecurity News

CyberHub Podcast

February 12th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Exploitation of Another Ivanti VPN Vulnerability Observed

New Fortinet RCE bug is actively exploited

Ransomware attack forces 18 Romanian hospitals to go offline

New RustDoor macOS malware impersonates Visual Studio update

China's Dogged Campaign to Portray Itself as Victim of US Hacking

Stealthy Cyberespionage Campaign Remained Undiscovered for Two Years

Iran-Israel Cyber War Goes Global

Warzone RAT Shut Down by Law Enforcement

 

Show Notes and Story Links:

https://www.securityweek.com/exploitation-of-another-ivanti-vpn-vulnerability-observed/

https://www.bleepingcomputer.com/news/security/new-fortinet-rce-bug-is-actively-exploited-cisa-confirms/

https://www.bleepingcomputer.com/news/security/ransomware-attack-forces-18-romanian-hospitals-to-go-offline/

https://www.darkreading.com/cybersecurity-operations/china-dogged-campaign-victim-of-us-hacking

https://www.securityweek.com/stealthy-cyberespionage-campaign-remained-undiscovered-for-two-years/

https://www.darkreading.com/ics-ot-security/iran-israel-cyber-war-goes-global

https://www.bleepingcomputer.com/news/security/new-rustdoor-macos-malware-impersonates-visual-studio-update/

https://www.securityweek.com/warzone-rat-shut-down-by-law-enforcement-two-arrested/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook:

🚨 Cyber News: China Aims at US Critical Infrastructure, Bitlocker encryption Broken, Cisco Bug, Toothbrush DDoS08 Feb 202400:17:08

🚨 Cyber News: China Aims at US Critical Infrastructure, Bitlocker encryption Broken, Cisco Bug, Toothbrush DDoS  

 

Cybersecurity News

CyberHub Podcast

February 8th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

China's Cyberattackers Maneuver to Disrupt US Critical Infrastructure

Chinese hackers fail to rebuild botnet after FBI takedown

Microsoft: Iran is refining its cyber operations

BitLocker encryption broken in 43 seconds

Critical Cisco bug exposes Expressway gateways to CSRF attacks

Linux Distros Hit by RCE Vulnerability in Shim Bootloader

AnyDesk says software ‘safe to use’ after cyberattack

Were 3 Million Toothbrushes Really Used for a DDoS Attack?

 

 

Show Notes and Story Links:

https://www.darkreading.com/threat-intelligence/china-cyberattackers-disrupt-us-critical-infrastructure

https://www.bleepingcomputer.com/news/security/chinese-hackers-fail-to-rebuild-botnet-after-fbi-takedown/

https://cyberscoop.com/microsoft-iran-is-refining-its-cyber-operations/

https://www.tomshardware.com/pc-components/cpus/youtuber-breaks-bitlocker-encryption-in-less-than-43-seconds-with-sub-dollar10-raspberry-pi-pico

https://www.bleepingcomputer.com/news/security/critical-cisco-bug-exposes-expressway-gateways-to-csrf-attacks/

https://www.darkreading.com/vulnerabilities-threats/rce-vulnerability-in-shim-bootloader-impacts-all-linux-distros

https://therecord.media/anydesk-software-safe-to-use-cyberattack

https://www.securityweek.com/3-million-toothbrushes-abused-for-ddos-attacks-real-or-not/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble:

🚨 Cyber News: China Hacks Dutch Military, Verizon Insider Breach, FortiSIEM Patch, Gil Shwed Steps Down07 Feb 202400:13:19

🚨 Cyber News: China Hacks Dutch Military, Verizon Insider Breach, FortiSIEM Patch, Gil Shwed Steps Down

 

Cybersecurity News

CyberHub Podcast

February 7th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Fortinet Patches Critical Vulnerabilities in FortiSIEM

Chinese hackers infect Dutch military network with malware

A Chicago Children’s Hospital Has Taken Its Networks Offline After a Cyberattack

Verizon insider data breach hits over 63,000 employees

Millions of User Records Stolen From 65 Websites via SQL Injection Attacks

JetBrains warns of new TeamCity auth bypass vulnerability

Check Point CEO to Step Down After 3 Decades

 

Show Notes and Story Links:

https://www.securityweek.com/fortinet-patches-critical-vulnerabilities-in-fortisiem/

https://www.bleepingcomputer.com/news/security/chinese-hackers-infect-dutch-military-network-with-malware/

https://www.securityweek.com/a-chicago-childrens-hospital-has-taken-its-networks-offline-after-a-cyberattack/

https://www.bleepingcomputer.com/news/security/verizon-insider-data-breach-hits-over-63-000-employees/

https://www.securityweek.com/millions-of-user-records-stolen-from-65-websites-via-sql-injection-attacks/

https://www.bleepingcomputer.com/news/security/jetbrains-warns-of-new-teamcity-auth-bypass-vulnerability/

https://www.darkreading.com/endpoint-security/check-point-ceo-announces-intention-stand-down

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin:

🚨 Cyber News: The War on Spyware Abuse Wages, HPE New Breach, Philippine Cyberattack, Ivanti Mass Exploit06 Feb 202400:18:50

🚨 Cyber News: The War on Spyware Abuse Wages, HPE New Breach, Philippine Cyberattack, Ivanti Mass Exploit

 

Cybersecurity News

CyberHub Podcast

February 6th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

HPE investigates new breach after data for sale on hacking forum

DDoS attack on Pennsylvania court system

Google Links Over 60 Zero-Days to Commercial Spyware Vendors

UK, France Host Conference to Tackle ‘Hackers for Hire’

State Department will not issue visas to individuals linked to spyware abuse

Philippine lawmakers demand briefing following China-linked cyberattack

Newest Ivanti SSRF zero-day now under mass exploitation

QNAP Patches High-Severity Bugs in QTS, Qsync Central

 

Show Notes and Story Links:

https://www.bleepingcomputer.com/news/security/hpe-investigates-new-breach-after-data-for-sale-on-hacking-forum/

https://therecord.media/ddos-attack-knocks-pennsylvania-court-system-services-offline

https://www.securityweek.com/google-links-over-60-zero-days-to-commercial-spyware-vendors/

https://www.securityweek.com/uk-france-host-conference-to-tackle-hackers-for-hire/

https://cyberscoop.com/visa-travel-commercial-spyware/

https://therecord.media/philippine-lawmakers-demand-briefing-on-china-linked-cyberattack

https://www.bleepingcomputer.com/news/security/newest-ivanti-ssrf-zero-day-now-under-mass-exploitation/

https://www.securityweek.com/qnap-patches-high-severity-bugs-in-qts-qsync-central/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin:

🚨 Cyber News: Ivanti Ordered Offline, AnyDesk Breach, Cyberattacks cost Money, Iran Sanctions, Layoffs05 Feb 202400:14:36

🚨 Cyber News: Ivanti Ordered Offline, AnyDesk Breach, Cyberattacks cost Money, Iran Sanctions, Layoffs

 

Cybersecurity News

CyberHub Podcast

February 5th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

CISA orders Ivanti devices targeted by Chinese hackers be disconnected

AnyDesk says hackers breached its production servers, reset passwords

Clorox and Johnson Controls report financial losses from cyberattacks

US Slaps Sanctions on ‘Dangerous’ Iranian Hackers Linked to Water Utility Hacks 

Nation-state actor used stolen Okta credentials in Thanksgiving attack

Mastodon vulnerability allows attackers to take over accounts

Layoffs Hit Security Vendors Okta, Proofpoint, Netography

 

 

Show Notes and Story Links:

https://cyberscoop.com/ivanti-connect-secure-china/

https://www.bleepingcomputer.com/news/security/anydesk-says-hackers-breached-its-production-servers-reset-passwords/

https://therecord.media/clorox-johnson-controls-report-losses-sec

https://www.securityweek.com/us-slaps-sanctions-on-dangerous-iranian-gov-hackers/

https://therecord.media/nation-state-actor-used-stolen-okta-credentials-to-target-cloudflare

https://www.bleepingcomputer.com/news/security/mastodon-vulnerability-allows-attackers-to-take-over-accounts/

https://www.securityweek.com/layoffs-hit-security-vendors-okta-proofpoint-netography/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter:

Embracing Software Supply Chain Security with Cassie Crossley Author of Software Supply Chain Security02 Feb 202400:43:04

In a revealing interview with Cassie Crossley, Vice President of Supply Chain Security at Schneider Electric, the podcast delves into the intricate world of software supply chain security.

Crossley, a seasoned cybersecurity technology executive, shares her journey from coding to leading in the cybersecurity space and discusses her latest book, "Software Supply Chain Security: Securing the End-to-End Supply Chain for Software, Firmware, and Hardware."

Connect with Cassie: https://www.linkedin.com/in/cassiecrossley/

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast

Instagram: https://www.instagram.com/cyberhubpodcast

 

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

 

#cybernews #infosec #cybersecurity #cyberhubpodcast #practitionerbrief #cisotalk #ciso #infosecnews #infosec #infosecurity #cybersecuritytips #podcast #technews #tinkertribe #givingback #securitytribe #securitygang #informationsecurity

🚨 Cyber News: Charged Day on Capitol Hill, Chinese Threat to US Exposed, Ivanti Patches ZeroDay, RIPE Creds on Sale01 Feb 202400:16:26

🚨 Cyber News: Charged Day on Capitol Hill, Chinese Threat to US Exposed, Ivanti Patches ZeroDay, RIPE Creds on Sale

 

Cybersecurity News

CyberHub Podcast

February 1st, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

U.S. officials warn of dire Chinese cyber threats

Charged Judiciary Committee hearing promotes child online safety bills

Ivanti Patches Zero-Days and Confirms New Exploit

Johnson Controls Ransomware Attack

Looted RIPE Credentials for Sale on the Dark Web

CISA warns of patched iPhone kernel bug now exploited in attacks

Vulnerabilities in Docker, other container engines enable host OS access

 

Show Notes and Story Links:

https://cyberscoop.com/chinese-cyber-threats-fbi-operation-botnet/

https://www.axios.com/2024/01/31/china-cyber-threats-congressional-hearing

https://therecord.media/judiciary-committee-hearing-promotes-kids-safety

https://www.securityweek.com/after-delays-ivanti-patches-zero-days-and-confirms-new-exploit/

https://www.securityweek.com/johnson-controls-ransomware-attacks-data-theft-confirmed-cost-exceeds-27-million/

https://www.darkreading.com/cyberattacks-data-breaches/looted-ripe-credentials-for-sale-on-dark-web

https://www.bleepingcomputer.com/news/security/cisa-warns-of-patched-iphone-kernel-bug-now-exploited-in-attacks/

https://www.csoonline.com/article/1303004/vulnerabilities-in-docker-other-container-engines-enable-host-os-access.html

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin:

🚨 Cyber News: Schneider Electric responds to Ransomware, Fulton County Ransomware, Mercedes Source Code Leak31 Jan 202400:17:13

🚨 Cyber News: Schneider Electric responds to Ransomware, Fulton County Ransomware, Mercedes Source Code Leak

 

Cybersecurity News

CyberHub Podcast

January 31st, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Schneider Electric Responding to Ransomware Attack, Data Breach

Georgia’s largest county confirms cyberattack causing widespread issues

Leaked GitHub Token Exposed Mercedes Source Code

US Sanctions Two ISIS-Affiliated ‘Cybersecurity Experts’

Citibank sued over failure to defend customers against hacks, fraud

Feds Reportedly Try to Disrupt 'Volt Typhoon' Attack Infrastructure

Data of 750 Million Indian Mobile Subscribers Sold on Hacker Forums

 

Show Notes and Story Links:

https://www.securityweek.com/schneider-electric-division-responding-to-ransomware-attack-data-breach/

https://therecord.media/fulton-county-georgia-atlanta-cyberattack-causing-outages

https://www.securityweek.com/leaked-github-token-exposed-mercedes-source-code/

https://www.securityweek.com/us-sanctions-two-isis-affiliated-cybersecurity-experts/

https://www.bleepingcomputer.com/news/technology/citibank-sued-over-failure-to-defend-customers-against-hacks-fraud/

https://www.darkreading.com/cybersecurity-operations/us-govt-reportedly-trying-to-disrupt-volt-typhoon-attack-infrastructure

https://www.securityweek.com/data-of-750-million-indian-mobile-subscribers-sold-on-hacker-forums/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin:

🚨 Cyber News: Ivanti Struggles with Patch, Schneider Electric Ransomware, Jenkins Exploit, SolarWinds Motion30 Jan 202400:15:08
Technical Difficulties and Commitment to the Audience

The CyberHub Podcast, hosted by James Azar, experienced a minor hiccup with the publication timing of a previous episode due to technical issues. Azar, while traveling for work, emphasizes the integral role the podcast and its audience play in his daily routine, likening it to a morning ritual essential for starting his day.

Ivanti's Rocky Start in 2024

Ivanti's Security Challenge: The year 2024 began with significant challenges for Ivanti, formerly known as Pulse Secure, as they faced multiple zero-day vulnerabilities being exploited in their Connect Secure VPN appliances. This situation underscores the importance of incorporating secure software development life cycle (SLDC) practices from the outset to prevent such vulnerabilities.

Schneider Electric's Ransomware Ordeal

Cactus Ransomware Hits Schneider Electric: Schneider Electric fell victim to an alleged Cactus ransomware attack, leading to the theft of corporate data from its sustainability business division. The attack, which occurred on January 17th, disrupted services and poses a threat to Schneider Electric's clients, including major corporations like Clorox, DHL, and PepsiCo. Schneider Electric's effective divisional segmentation limited the attack's impact, showcasing the importance of network segmentation in corporate resilience against cyber threats.

SolarWinds Challenges SEC Charges

SolarWinds' Legal Battle: SolarWinds is pushing back against charges from the FCC related to the mishandling of a Russian-backed cyber espionage attack, arguing that the charges exceed the FCC's expertise and authority. SolarWinds maintains that it acted transparently and appropriately, stressing that it was a victim of a nation-state attack, not a perpetrator.

Critical Vulnerabilities and Cybersecurity Alerts
  • Jenkins Vulnerability Alert: A critical vulnerability in Jenkins (CVE-20-242389 or 7) necessitates immediate patching to prevent exploitation.
  • Python Package Index (PyPI) Malware: Malicious packages on PyPI have been found delivering Whitesnake Stealer malware, affecting Windows systems and highlighting ongoing threats within open-source repositories.
  • Juniper and Durant Security Updates: High-severity flaws in Juniper's SRX and EX series demand urgent patches to secure systems against potential control by threat actors.

Data Breach Notifications and Scams Alert
  • Keenan & Associates Data Breach: Over 1.5 million customers have been notified of a data breach at Keenan & Associates, an insurance brokerage firm, exposing sensitive personal information.
  • FBI Warns of Courier Scams: The FBI alerts the public, especially senior citizens, about scams involving couriers collecting money or valuables under false pretenses, emphasizing the need for community awareness and protection of vulnerable populations.

Conclusion and Call to Action

Azar concludes the episode by urging listeners to spread awareness about the latest scams, particularly among senior citizens, to protect them from becoming victims. The episode encapsulates a mix of cybersecurity challenges, legal battles, and community efforts to safeguard against evolving cyber threats, emphasizing the collective role in maintaining cyber safety.

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack:

🚨 Cyber News: $1.3M Paid @Pwn2Own, Russia Ukraine Trade Hacks, China Targets Software Updates 4 Malware29 Jan 202400:17:03

🚨 Cyber News: $1.3M Paid @Pwn2Own, Russia Ukraine Trade Hacks, China Targets Software Updates 4 Malware   

 

Cybersecurity News

CyberHub Podcast

January 29th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Cyber-criminals Stole $7.5 Million in Grant Money From US Health Department

Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware

Hack wiped 2 petabytes of data from Russian research center

Kyiv data center says some services restored after attack affecting state-owned clients

Westermo Switch Vulnerabilities Can Facilitate Attacks on Industrial Organizations

Cyber Criminals stole raw genotype data, health reports

Microsoft Shares New Guidance in Wake of 'Midnight Blizzard' Cyberattack

Good Guy Hackers Earn $1.3M for Tesla, EV Charger, Infotainment Exploits at Pwn2Own Automotive

 

Show Notes and Story Links:

https://www.bloomberg.com/news/articles/2024-01-18/us-health-department-cyber-attack-led-to-millions-in-grant-money-being-stolen?leadSource=uverify%20wall

https://www.securityweek.com/elusive-chinese-cyberspy-group-hijacks-software-updates-to-deliver-malware/

https://www.bleepingcomputer.com/news/security/ukraine-hack-wiped-2-petabytes-of-data-from-russian-research-center/

https://therecord.media/ukraine-parkovy-data-center-cyberattack-recovery

https://www.securityweek.com/westermo-switch-vulnerabilities-can-facilitate-attacks-on-industrial-organizations/

https://www.bleepingcomputer.com/news/security/23andme-data-breach-hackers-stole-raw-genotype-data-health-reports/

https://www.darkreading.com/cyberattacks-data-breaches/microsoft-shares-new-guidance-in-wake-of-midnight-blizzard-cyberattack

https://www.securityweek.com/hackers-earn-1-3m-for-tesla-ev-charger-infotainment-exploits-at-pwn2own-automotive/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website:

🚨 CrowdStrike Root Cause Released, Microsoft Hits Back, Criminals Remote Wipe Devices, Interpol Recovery07 Aug 202400:18:40

🚨 CrowdStrike Root Cause Released, Microsoft Hits Back, Criminals Remote Wipe Devices, Interpol Recovery

🎙️ Join us on the CyberHub Podcast as we delve into the latest headlines for cybersecurity practitioners


Today’s episode will discuss the latest on the root cause of the crowdstrike with more news below:


  • Criminals Remote Wipe Devices
  • Interpol Recovers Funds
  • Bypass Reputation based Security

           

For more information, please visit our website: https://www.cyberhubpodcast.com/ 

 

👀 SHOW Supporters:

Today’s Episode is supported by our friends at Nudge Security free 14-day trial to all CyberHub Podcast community members at https://www.nudgesecurity.com/cyberhub


✅ Story Links: 

https://www.securityweek.com/crowdstrike-releases-root-cause-analysis-of-falcon-sensor-bsod-crash/

https://www.securityweek.com/microsoft-hits-back-at-delta-after-the-airline-said-last-months-tech-outage-cost-it-500-million/

https://www.securityweek.com/thousands-of-devices-wiped-remotely-following-mobile-guardian-hack/

https://www.bleepingcomputer.com/news/security/interpol-recovers-over-40-million-stolen-in-a-bec-attack/

https://www.darkreading.com/application-security/attackers-use-multiple-techniques-to-bypass-reputation-based-security

https://thecyberexpress.com/apt28-groups-fake-car-ads-headlace-malware/

https://therecord.media/nhs-software-supplier-hit-with-6-million-fine

https://www.securityweek.com/samsung-bug-bounty-program-payouts-reach-5m-top-reward-increased-to-1m/


🔔 Subscribe now for the latest insights from industry leaders, in-depth analyses, and real-world strategies to secure your digital world. https://www.youtube.com/@TheCyberHubPodcast/?sub_confirmation=1  


✅ Important Links to Follow: 


👉Substack: http://jamesazar.substack.com

👉Listen here: https://linktr.ee/cyberhubpodcast   


Stay Connected With Us.


👉Facebook:...

Navigating the Treacherous Waters of SEC Rules & CISO Challenges: Insights from Sue Bergamo26 Jan 202400:35:47

Join James Azar and Sue Bergamo for an in-depth discussion on the evolving role of CISOs amidst regulatory pressures and security dilemmas.

In this enlightening episode of "CISO Talk" with James Azar, special guest Sue Bergamo, a seasoned CISO and CIO advisor for BTE Partners, delves into the multifaceted world of cybersecurity leadership. Bergamo shares her extensive experience, highlighting her journey from roles at Microsoft to leading security at Active Campaign, underscoring the significance of having a vocal presence in the cybersecurity industry.


The conversation takes a critical turn as they discuss the challenges faced by CISOs, including regulatory burdens and the ineffectiveness of compliance in preventing data breaches. Azar questions the practicality of new SEC cybersecurity regulations, expressing concerns over their potential to exacerbate the scapegoating of CISOs in the aftermath of security incidents.

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast

Instagram: https://www.instagram.com/cyberhubpodcast

 

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

 

🚨 Cyber News: HPE Latest Victim by Russia, Equiland Cyberattack, Jenkins Vulnerability, $1.7B Crypto Jacked in 202325 Jan 202400:13:26

🚨 Cyber News: HPE Latest Victim by Russia, Equiland Cyberattack, Jenkins Vulnerability, $1.7B Crypto Jacked in 2023   

 

Cybersecurity News

CyberHub Podcast

January 25th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

HPE Says Russian Government Hackers Had Access to Emails for 6 Months

Global fintech firm EquiLend offline after recent cyberattack

Critical Jenkins Vulnerability Exposes Servers to RCE Attacks

Fortra Discloses Critical Auth Bypass Vuln in GoAnywhere MFT

Cisco Patches Critical Vulnerability in Enterprise Collaboration Products

Over 5,300 GitLab servers exposed to zero-click account takeover attacks

Cybercriminals stole $1.7 billion from crypto funds in 2023 as attacks proliferated

 

Show Notes and Story Links:

https://www.securityweek.com/hpe-says-russian-government-hackers-had-access-to-emails-for-6-months/

https://www.bleepingcomputer.com/news/security/global-fintech-firm-equilend-offline-after-recent-cyberattack/

https://thehackernews.com/2024/01/critical-jenkins-vulnerability-exposes.html

https://www.darkreading.com/cyberattacks-data-breaches/fortra-discloses-critical-auth-bypass-vuln-in-goanywhere-mft

https://www.securityweek.com/cisco-patches-critical-vulnerability-in-enterprise-collaboration-products/

https://www.bleepingcomputer.com/news/security/over-5-300-gitlab-servers-exposed-to-zero-click-account-takeover-attacks/

https://therecord.media/cybercriminals-stole-over-1-billion-from-crypto-funds-2023

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin:

🚨 Cyber News: US & UK Water Companies Ransomware, CISA Pre-Ransomware Alert, Trello Abuse, Fortra POC24 Jan 202400:15:26

Cybersecurity News

CyberHub Podcast

January 24th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Major US, UK Water Companies Hit by Ransomware

CISA’s 1,200 pre-ransomware alerts saved organizations millions in damages

Trello API abused to link email addresses to 15 million accounts

Hackers behind Solarwinds breach accessed emails of senior Microsoft leaders

Chrome 121 Patches 17 Vulnerabilities

PoC Code Published for Just-Disclosed Fortra GoAnywhere Vulnerability

Ivanti Connect Secure exploitation accelerates as Moody’s calls impact credit negative

Consensus growing around ‘narrow’ UN cybercrime treaty

 

Show Notes and Story Links:

https://www.securityweek.com/major-us-uk-water-companies-hit-by-ransomware/

https://www.cybersecuritydive.com/news/cisa-pre-ransomware-alerts/705046/

https://www.bleepingcomputer.com/news/security/trello-api-abused-to-link-email-addresses-to-15-million-accounts/

https://therecord.media/russian-hackers-accessed-emails-of-senior-microsoft-leaders

https://www.securityweek.com/chrome-121-patches-17-vulnerabilities/

https://www.securityweek.com/poc-code-published-for-just-disclosed-fortra-goanywhere-vulnerability/

https://www.cybersecuritydive.com/news/ivanti-exploitation-moodys-credit-negative/705035/

https://therecord.media/consensus-growing-around-cybercrime-treaty

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter:

🚨 Cyber News: Apple Patches Zero Day, Ivanti Woes Continue, AerCap Ransomware, MOVEit News & Easterly Swatted23 Jan 202400:14:03

🚨 Cyber News: Apple Patches Zero Day, Ivanti Woes Continue, AerCap Ransomware, MOVEit News & Easterly Swatted  

 

Cybersecurity News

CyberHub Podcast

January 23rd, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Apple fixes first zero-day bug exploited in attacks this year

Hackers Targeting Critical Atlassian Confluence Vulnerability Days After Disclosure

Ivanti: VPN appliances vulnerable if pushing configs after mitigation

Aircraft Lessor AerCap Confirms Ransomware Attack

SEC confirms X account was hacked in SIM swapping attack

Progress Software shakes off MOVEit’s financial consequences

North Korean government hackers target individuals of interest, infosec professionals

CISA's Easterly the target of ‘harrowing’ swatting incident

 

Show Notes and Story Links:

https://www.bleepingcomputer.com/news/apple/apple-fixes-first-zero-day-bug-exploited-in-attacks-this-year/

https://www.securityweek.com/hackers-start-targeting-critical-atlassian-confluence-vulnerability-days-after-disclosure/

https://www.bleepingcomputer.com/news/security/ivanti-vpn-appliances-vulnerable-if-pushing-configs-after-mitigation/

https://www.bleepingcomputer.com/news/security/sec-confirms-x-account-was-hacked-in-sim-swapping-attack/

https://www.securityweek.com/aircraft-lessor-aercap-confirms-ransomware-attack/

https://www.cybersecuritydive.com/news/progress-software-shakes-moveit-financial-impact/704900/

https://cyberscoop.com/north-korean-government-hackers-scarcruft/

https://therecord.media/cisa-jen-easterly-swatting-incident

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook:

🚨 Cyber News: VMware vCenter Exploit, Russia Hacks Microsoft Exec Emails, Apache Flaw Exploit, MFA Hack22 Jan 202400:14:27

🚨 Cyber News: VMware vCenter Exploit, Russia Hacks Microsoft Exec Emails, Apache Flaw Exploit, MFA Hack

 

Cybersecurity News

CyberHub Podcast

January 22nd, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

CISA emergency directive: Mitigate Ivanti zero-days immediately

VMware vCenter Server Vulnerability Exploited in Wild 

Chinese Spies Exploited VMware vCenter Server Vulnerability Since 2021

Microsoft Says Russian Gov Hackers Stole Email Data From Senior Execs

Apache ActiveMQ Flaw Exploited in New Godzilla Web Shell Attacks

Financial platform Payoneer blames account hacks on phishing campaign

VF Corp Says Data Breach Resulting From Ransomware Attack Impacts 35 Million

FTC bans one more data broker from selling your location info

 

Show Notes and Story Links:

https://www.bleepingcomputer.com/news/security/cisa-emergency-directive-mitigate-ivanti-zero-days-immediately/

https://www.securityweek.com/vmware-vcenter-server-vulnerability-exploited-in-wild/

https://www.securityweek.com/chinese-spies-exploited-vmware-vcenter-server-vulnerability-since-2021/

https://www.securityweek.com/microsoft-says-russian-gov-hackers-stole-email-data-from-senior-execs/

https://thehackernews.com/2024/01/apache-activemq-flaw-exploited-in-new.html

https://therecord.media/financial-platform-payoneer-account-hacks-phishing

https://www.securityweek.com/vf-corp-says-data-breach-resulting-from-ransomware-attack-impacts-35-million/

https://www.bleepingcomputer.com/news/security/ftc-bans-one-more-data-broker-from-selling-your-location-info/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook:

🚨 Cyber News: Docker Hack, MediaPI Malware by Iran, Indian Air Force Malware, $80M In Crypto Jacked, Jira Down18 Jan 202400:13:57

🚨 Cyber News: Docker Hack, MediaPI Malware by Iran, Indian Air Force Malware, $80M In Crypto Jacked, Jira Down

 

Cybersecurity News

CyberHub Podcast

January 18th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Docker hosts hacked in ongoing website traffic theft scheme

Jira down: Atlassian outage affecting multiple cloud services

Taiwanese semiconductor company hit by ransomware attack

Iranian hackers target researchers with new MediaPl malware

Indian Air Force potentially targeted with info-stealing malware

$80M in Crypto Disappears Into Drainer-as-a-Service Malware Hell

FBI and CISA warn of national security threat posed by Chinese drones

 

Show Notes and Story Links:

https://www.bleepingcomputer.com/news/security/docker-hosts-hacked-in-ongoing-website-traffic-theft-scheme/

https://www.bleepingcomputer.com/news/technology/jira-down-atlassian-outage-affecting-multiple-cloud-services/

https://therecord.media/foxsemicon-ransomware-attack-taiwan

https://www.bleepingcomputer.com/news/security/microsoft-iranian-hackers-target-researchers-with-new-mediapl-malware/

https://therecord.media/indian-air-force-infostealing-malware

https://www.darkreading.com/cloud-security/80m-crypto-disappears-drainer-malware-hell

https://therecord.media/fbi-cisa-warn-of-drone-threat-china

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast

Instagram:

🚨 Cyber News: Citrix Zeroday Exploit, Chrome Zeroday, Iran Cyber Espionage, Cybersecurity Funding, Cloud Botnet17 Jan 202400:14:09

🚨 Cyber News: Citrix Zeroday Exploit, Chrome Zeroday, Iran Cyber Espionage, Cybersecurity Funding, Cloud Botnet

 

Cybersecurity News

CyberHub Podcast

January 17th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Citrix warns of new Netscaler zero-days exploited in attacks

Google Warns of Chrome Browser Zero-Day Being Exploited

FBI warns against cloud credential-stealing Androxgh0st botnet

GitHub Rotates Credentials in Response to Vulnerability

Oracle Patches 200 Vulnerabilities With January 2024 CPU

Atlassian warns of critical RCE flaw in older Confluence versions

Shin Bet exposes Iranian cyber espionage targeting Israeli hostage families

Cybersecurity Startup Funding Hits 5-Year Low

 

Show Notes and Story Links:

https://www.bleepingcomputer.com/news/security/citrix-warns-of-new-netscaler-zero-days-exploited-in-attacks/

https://www.securityweek.com/google-warns-of-chrome-browser-zero-day-being-exploited/

https://www.csoonline.com/article/1291495/fbi-warns-against-cloud-credential-stealing-androxgh0st-botnet.html

https://www.securityweek.com/github-rotates-credentials-in-response-to-vulnerability/

https://www.securityweek.com/oracle-patches-200-vulnerabilities-with-january-2024-cpu/

https://www.bleepingcomputer.com/news/security/atlassian-warns-of-critical-rce-flaw-in-older-confluence-versions/

https://www.jpost.com/israel-hamas-war/article-782239?utm

https://news.crunchbase.com/cybersecurity/funding-drops-eoy-2023/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook:

🚨 Cyber News: Widespread Exploitation of Ivanti Zeroday, Spike in Botnet Scanning, Cryptomining Malware, SmartScreen Bypass16 Jan 202400:14:41

🚨 Cyber News: Widespread Exploitation of Ivanti Zeroday, Spike in Botnet Scanning, Cryptomining Malware, SmartScreen Bypass

 

Cybersecurity News

CyberHub Podcast

January 16th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Government, Military Targeted as Widespread Exploitation of Ivanti Zero-Days Begins

Information Stealer Exploits Windows SmartScreen Bypass

Cloud Server Abuse Leads to Huge Spike in Botnet Scanning

Over 178K SonicWall firewalls vulnerable to DoS, potential RCE attacks

VMware Urges Customers to Patch Critical Aria Automation Vulnerability 

US court docs expose fake antivirus renewal phishing tactics

Ukrainian arrested for infecting US cloud provider with cryptomining malware

SEC X Account Hack Draws Senate Outrage

 

Show Notes and Story Links:

https://www.securityweek.com/governments-military-targeted-as-widespread-exploitation-of-ivanti-zero-days-begins/

https://www.securityweek.com/information-stealer-exploits-windows-smartscreen-bypass/

https://www.securityweek.com/cloud-server-abuse-leads-to-huge-spike-in-botnet-scanning/

https://www.securityweek.com/vmware-urges-customers-to-patch-critical-aria-automation-vulnerability/

https://www.bleepingcomputer.com/news/security/over-178k-sonicwall-firewalls-vulnerable-to-dos-potential-rce-attacks/

https://www.bleepingcomputer.com/news/security/us-court-docs-expose-fake-antivirus-renewal-phishing-tactics/

https://therecord.media/ukraine-arrests-suspect-cryptojacking-cloud-resources

https://www.darkreading.com/cyberattacks-data-breaches/sec-x-account-crypto-hack-draws-senate-ire-

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble:

🚨 Cyber News: Ransomware on US Navy ShipBuilder, Sandworm Danish Attach, GitLab Patch, China Targets Cisco15 Jan 202400:12:16

🚨 Cyber News: Ransomware on US Navy ShipBuilder, Sandworm Danish Attach, GitLab Patch, China Targets Cisco   

 

Cybersecurity News

CyberHub Podcast

January 15th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

GitLab Patches Critical Password Reset Vulnerability

Ransomware attack on US Navy shipbuilder

Juniper Networks Patches Critical Remote Code Execution Flaw in Firewalls, Switches

Sandworm probably wasn’t behind Danish critical infrastructure cyberattack

Critical Microsoft SharePoint bug now actively exploited

End-of-life Cisco routers targeted by China’s Volt Typhoon group

Growing pains at the Bureau of Cyberspace and Digital Policy

 

 

Show Notes and Story Links:

https://www.securityweek.com/gitlab-patches-critical-password-reset-vulnerability/

https://therecord.media/fincantieri-shipbuilder-us-navy-wisconsin-ransomware

https://www.securityweek.com/juniper-networks-patches-critical-remote-code-execution-flaw-in-firewalls-switches/

https://cyberscoop.com/sandworm-sektorcert-critical-infrastructure-zyxel/

https://www.bleepingcomputer.com/news/security/cisa-critical-microsoft-sharepoint-bug-now-actively-exploited/

https://therecord.media/cisco-routers-end-of-life-china-espionage-volt-typhoon

https://cyberscoop.com/gao-report-cyber-diplomacy/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast

Instagram:

🚨 Cyber News: China Exploits Ivanti Zeroday, DDoS Attack Surge in 2023, HMG Healthcare Data Breach, FNF Breach11 Jan 202400:14:12

🚨 Cyber News: China Exploits Ivanti Zeroday, DDoS Attack Surge in 2023, HMG Healthcare Data Breach, FNF Breach  

 

Cybersecurity News

CyberHub Podcast

January 11th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Chinese Hackers Exploiting Ivanti VPN Zero-Days

Fidelity National Financial: Hackers stole data of 1.3 million people

HMG Healthcare Says Data Breach Impacts 40 Facilities

Mandiant's X account hacked by crypto Drainer-as-a-Service gang

CISA Flags 6 Vulnerabilities

Microsoft Exchange 2019 has reached end of mainstream support

DDoS attack traffic surged in 2023

 

Show Notes and Story Links:

https://www.securityweek.com/volexity-catches-chinese-hackers-exploiting-ivanti-vpn-zero-days/

https://www.bleepingcomputer.com/news/security/fidelity-national-financial-hackers-stole-data-of-13-million-people/

https://www.securityweek.com/hmg-healthcare-says-data-breach-impacts-40-facilities/

https://www.bleepingcomputer.com/news/security/mandiants-x-account-hacked-by-crypto-drainer-as-a-service-gang/

https://thehackernews.com/2024/01/cisa-flags-6-vulnerabilities-apple.html

https://www.bleepingcomputer.com/news/microsoft/microsoft-exchange-2019-has-reached-end-of-mainstream-support/

https://www.cybersecuritydive.com/news/ddos-attacks-surge-cloudflare/704011/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble: https://rumble.com/c/c-1353861

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter:

🚨 Apache Ofbiz ZeroDay, Another Azure outage, Android Kernal ZeroDay, Crowdstrike & Delta Faceoff06 Aug 202400:13:39

🚨 Apache Ofbiz ZeroDay, Another Azure outage, Android Kernal ZeroDay, Crowdstrike & Delta Faceoff

🎙️ Join us on the CyberHub Podcast as we delve into the latest headlines for cybersecurity practitioners


Today’s episode will discuss the latest on multiple zerodays across multiple products with more news below:

  • Crowdstrike fights back against Delta
  • Apache Ofbiz Zeroday
  • AWS Deployment   

           

For more information, please visit our website: https://www.cyberhubpodcast.com/ 

 

👀 SHOW Supporters:

Today’s Episode is supported by our friends at Nudge Security free 14-day trial to all CyberHub Podcast community members at https://www.nudgesecurity.com/cyberhub


✅ Story Links: 

https://thehackernews.com/2024/08/new-zero-day-flaw-in-apache-ofbiz-erp.html

https://www.bleepingcomputer.com/news/microsoft/microsoft-azure-outage-takes-down-services-across-north-america/

https://www.bleepingcomputer.com/news/security/google-fixes-android-kernel-zero-day-exploited-in-targeted-attacks/

https://therecord.media/crowdstrike-delta-litigation-aggressive-response

https://therecord.media/key-tronic-cyberattack-cost-17-million-sec

https://www.securityweek.com/aws-deploying-mithra-neural-network-to-predict-and-block-malicious-domains/

https://www.bleepingcomputer.com/news/security/north-korean-hackers-exploit-vpn-update-flaw-to-install-malware/

https://www.darkreading.com/mobile-security/sophisticated-android-spyware-targets-users-in-russia


🔔 Subscribe now for the latest insights from industry leaders, in-depth analyses, and real-world strategies to secure your digital world. https://www.youtube.com/@TheCyberHubPodcast/?sub_confirmation=1  


✅ Important Links to Follow: 

👉Substack: http://jamesazar.substack.com

👉Listen here: https://linktr.ee/cyberhubpodcast   


Stay Connected With Us.

👉Facebook:

🚨 Cyber News: China Cracks AirDrop, SEC Chair X Account Hacked, Patch Tuesday Jan 2024 Recap, FTC Bans Location Data10 Jan 202400:13:07

🚨 Cyber News: China Cracks AirDrop, SEC Chair X Account Hacked, Patch Tuesday Jan 2024 Recap, FTC Bans Location Data

 

Cybersecurity News

CyberHub Podcast

January 10th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

SEC Chair Says Account on X Was Hacked

Hackers target Microsoft SQL servers in Mimic ransomware attacks

China claims it cracked Apple's AirDrop to find numbers, email addresses

Microsoft January 2024 Patch Tuesday fixes 49 flaws, 12 RCE bugs

Android’s January 2024 Security Update Patches 58 Vulnerabilities

Siemens, Schneider Electric Release First ICS Patch Tuesday Advisories of 2024

FTC bans data broker from selling Americans’ location data

Hewlett Packard Enterprise to Acquire Juniper Networks for $14 Billion

Delinea Acquires Authomize to Tackle Identity-Based Threats

 

 

Show Notes and Story Links:

https://www.securityweek.com/sec-chair-says-account-on-x-was-hacked/

https://www.bleepingcomputer.com/news/security/hackers-target-microsoft-sql-servers-in-mimic-ransomware-attacks/

https://www.bleepingcomputer.com/news/security/china-claims-it-cracked-apples-airdrop-to-find-numbers-email-addresses/

https://www.bleepingcomputer.com/news/microsoft/microsoft-january-2024-patch-tuesday-fixes-49-flaws-12-rce-bugs/

https://www.securityweek.com/androids-january-2024-security-update-patches-58-vulnerabilities/

https://www.securityweek.com/siemens-schneider-electric-release-first-ics-patch-tuesday-advisories-of-2024/

https://www.bleepingcomputer.com/news/security/ftc-bans-data-broker-from-selling-americans-location-data/

https://www.securityweek.com/hewlett-packard-enterprise-to-acquire-juniper-networks-for-14-billion/

https://www.securityweek.com/delinea-acquires-authomize-to-tackle-identity-based-threats/

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website:...

🚨 Cyber News: Turkey Targets Holland, Wiper Malware is Mainstream, QNAP Patches, Stuxnet Truth, Iran Crypto09 Jan 202400:14:02

🚨 Cyber News: Turkey Targets Holland, Wiper Malware is Mainstream, QNAP Patches, Stuxnet Truth, Iran Crypto     

Cybersecurity News

CyberHub Podcast

January 9th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Turkish Cyberspies Targeting Netherlands

Wiper malware found in analysis of Iran-linked attacks on Albanian institutions

DPRK Hackers Stole $600 Million in Cryptocurrency in 2023

QNAP Patches High-Severity Flaws in QTS

US mortgage lender loanDepot confirms ransomware attack

Iranian Crypto Exchange Misstep Exposes User Details

Netgear, Hyundai latest X accounts hacked to push crypto drainers

US, Israel Used Dutch Spy to Launch Stuxnet Malware Against Iran

 

Show Notes and Story Links:

https://www.securityweek.com/turkish-cyberspies-targeting-netherlands/

https://therecord.media/albania-parliament-telecoms-airline-cyberattacks-wiper-malware

https://thehackernews.com/2024/01/north-koreas-cyber-heist-dprk-hackers.html

https://www.securityweek.com/qnap-patches-high-severity-flaws-in-qts-video-station-qumagie-netatalk-products/

https://www.bleepingcomputer.com/news/security/us-mortgage-lender-loandepot-confirms-ransomware-attack/

https://www.darkreading.com/application-security/iranian-crypto-exchange-misstep-exposes-user-details

https://www.bleepingcomputer.com/news/security/netgear-hyundai-latest-x-accounts-hacked-to-push-crypto-drainers/

https://www.darkreading.com/ics-ot-security/us-israel-dutch-spy-stuxnet-malware-against-iran

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble:

🚨 Cyber News: LoanDepot Cyberattack, 23andMe Turns on Users, Merck Settles Ransomware Attack, New US Cyber Mission Force08 Jan 202400:14:00

🚨 Cyber News: LoanDepot Cyberattack, 23andMe Turns on Users, Merck Settles Ransomware Attack, New US Cyber Mission Force    

 

Cybersecurity News

CyberHub Podcast

January 8th, 2024

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Mortgage firm loanDepot cyberattack impacts IT systems, payment portal

23andMe: 'Negligent' Users at Fault for Breach of 6.9M Records

Stealthy AsyncRAT malware attacks targets US infrastructure for 11 months

Merck settles with insurers who denied $700 million NotPetya claim

Ivanti Patches Critical Vulnerability in Endpoint Manager

Lebanon Airport Screens Display Anti-Hezbollah Message After Being Hacked

Russia Hacked Residential Cameras in Ukraine to Spy on Air Defense

US military’s Cyber National Mission Force gets a new chief

 

Show Notes and Story Links:

https://www.bleepingcomputer.com/news/security/mortgage-firm-loandepot-cyberattack-impacts-it-systems-payment-portal/

https://www.darkreading.com/cyberattacks-data-breaches/23andme-negligent-users-at-fault-breach-7m-records

https://www.bleepingcomputer.com/news/security/stealthy-asyncrat-malware-attacks-targets-us-infrastructure-for-11-months/

https://therecord.media/merck-insurance-settlement-notpetya

https://www.securityweek.com/ivanti-patches-critical-vulnerability-in-endpoint-manager/

https://www.securityweek.com/lebanon-airport-screens-display-anti-hezbollah-message-after-being-hacked/

https://www.securityweek.com/russia-hacked-residential-cameras-in-ukraine-to-spy-on-air-defense-critical-infrastructure/

https://therecord.media/cyber-national-mission-force-lorna-mahlock

Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!

 

Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact

******

Listen here: https://linktr.ee/cyberhubpodcast

SubStack: https://jamesazar.substack.com/

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/c/TheCyberHubPodcast

Rumble:

© My Podcast Data