Cyber Security Headlines
Technology Podcasts
Daily stories from the world of information security. To delve into any daily story, head to CISOseries.com.
Location:
United States
Genres:
Technology Podcasts
Description:
Daily stories from the world of information security. To delve into any daily story, head to CISOseries.com.
Twitter:
@dspark
Language:
English
Website:
http://cisoseries.com/
Email:
info@cisoseries.com
Episodes
Avis rentals breach, Microsoft disables ActiveX, Wisconsin Medicare breach
9/9/2024
Car rental company Avis discloses data breach
Microsoft Office 2024 to disable ActiveX controls by default
Wisconsin Medicare users had information leaked in MOVEit breach
Huge thanks to our sponsor, Vanta
Whether you’re starting or scaling your security program, Vanta helps you automate compliance across frameworks like SOC 2, ISO 27001, and more. With Vanta, you can streamline security reviews by automating questionnaires and demonstrating your security posture with a customer-facing Trust Center. Over 7,000 global companies like Atlassian, Flo Health, and Quora use Vanta to manage risk and prove security. Our listeners get $1,000 off at Vanta.com/headlines.
Get the story behind the headlines at CISOSeries.com
Duration:00:07:32
Week in Review: MFA bypass bust, Airport security SQL, GitHub help malware
9/6/2024
Link to blog post
This week’s Cyber Security Headlines – Week in Review is hosted by Rich Stroffolino with guest Justin Somaini, partner, YL Ventures
Thanks to our show sponsor, Scrut Automation
Scrut Automation allows compliance and risk teams of any size to establish enterprise-grade security programs. Their best-in-class features like process automation, AI, and over 75 native integrations reverse compliance debt and help manage risk proactively as your business grows. Visit scrut.io to schedule a demo or learn more. That’s www.scrut.io.
All links and the video of this episode can be found on CISO Series.com
Duration:00:24:53
Planned Parenthood cyberattack, DoJ propaganda takedown, Microchip Technology theft
9/6/2024
Planned Parenthood suffers cyberattack
DoJ propaganda domains takedown
Microchip Technology confirms data theft
Thanks to today's episode sponsor, Scrut Automation
Scrut Automation allows compliance and risk teams of any size to establish enterprise-grade security programs. Their best-in-class features like process automation, AI, and over 75 native integrations reverse compliance debt and help manage risk proactively as your business grows. Visit scrut.io to schedule a demo or learn more. That’s www.scrut.io.
Find the stories behind the headlines at CISOseries.com.
Duration:00:07:44
Spyware research, Cicada rebrand, MacroPack malware
9/5/2024
Spyware research report
They found a way to make Cicadas more annoying
MacroPack red teaming tool used for malware
Thanks to today's episode sponsor, Scrut Automation
Scrut Automation allows compliance and risk teams of any size to establish enterprise-grade security programs. Their best-in-class features like process automation, AI, and over 75 native integrations reverse compliance debt and help manage risk proactively as your business grows. Visit scrut.io to schedule a demo or learn more. That’s www.scrut.io.
Duration:00:07:05
Halliburton data stolen, Columbus sues researcher, White House protects internet
9/4/2024
Halliburton confirms data stolen in cyberattack
City of Columbus sues researcher after ransomware attack
White House publishes plan to protect a key component of the internet
Thanks to today's episode sponsor, Scrut Automation
Scrut Automation allows compliance and risk teams of any size to establish enterprise-grade security programs. Their best-in-class features like process automation, AI, and over 75 native integrations reverse compliance debt and help manage risk proactively as your business grows. Visit scrut.io to schedule a demo or learn more. That’s www.scrut.io.
For the stories behind the headlines, visit CISOseries.com.
Duration:00:08:30
London transport cyberattack, German ATC attack, Sweden’s heightened risk
9/3/2024
Transport for London suffers cyberattack
German air traffic control agency confirms cyberattack
Sweden warns of heightened risk of Russian sabotage
Thanks to today's episode sponsor, Scrut Automation
Scrut Automation allows compliance and risk teams of any size to establish enterprise-grade security programs. Their best-in-class features like process automation, AI, and over 75 native integrations reverse compliance debt and help manage risk proactively as your business grows. Visit scrut.io to schedule a demo or learn more. That’s www.scrut.io.
Find the stories behind the headlines at CISOseries.com
Duration:00:07:36
Seattle airport woes, aircraft cockpit SQL, North Korea’s FudModule
9/2/2024
Seattle Airport issues travelers’ advisory for Labor Day travel
SQL injection able to bypass airport TSA security checks
North Korea uses FudModule Rootkit in Chrome zero-day exploit
Thanks to today's episode sponsor, Scrut Automation
Scrut Automation allows compliance and risk teams of any size to establish enterprise-grade security programs. Their best-in-class features like process automation, AI, and over 75 native integrations reverse compliance debt and help manage risk proactively as your business grows. Visit scrut.io to schedule a demo or learn more. That’s www.scrut.io.
Find the stories behind the headlines at CISOseries.com.
Duration:00:08:07
DICK’S Sporting Goods cyberattack, Brain Cipher hacked Paris
8/30/2024
DICK’S Sporting Goods suffers cyberattack
Brain Cipher claims attack on Paris museums, promises data leak
Play ransomware hackers claim attack on Microchip Technology
Thanks to today's episode sponsor, Scrut Automation
Scrut Automation allows compliance and risk teams of any size to establish enterprise-grade security programs. Their best-in-class features like process automation, AI, and over 75 native integrations reverse compliance debt and help manage risk proactively as your business grows. Visit scrut.io to schedule a demo or learn more. That’s www.scrut.io.
Find the stories behind the headlines at CISOSeries.com
Duration:00:08:13
Iran hacking, Labour Party backlog, more Telegram warrants
8/29/2024
Iran targeting presidential administration officials
Iran working with ransomware gangs
UK Labour Party chided over cyberattack backlog
Thanks to today's episode sponsor, Scrut Automation
Scrut Automation allows compliance and risk teams of any size to establish enterprise-grade security programs. Their best-in-class features like process automation, AI, and over 75 native integrations reverse compliance debt and help manage risk proactively as your business grows. Visit scrut.io to schedule a demo or learn more. That’s www.scrut.io.
Find the stories behind the headlines at CISOSeries.com
Duration:00:07:40
Another MOVEit incident, U.S. Marshals disputes breach, Park’N Fly data swiped
8/28/2024
Texas credit union user data exposed in another MOVEit breach
US Marshals Service disputes ransomware gang's breach claims
Park’N Fly notifies 1 million customers of data breach
Thanks to today's episode sponsor, Scrut Automation
Scrut Automation allows compliance and risk teams of any size to establish enterprise-grade security programs. Their best-in-class features like process automation, AI, and over 75 native integrations reverse compliance debt and help manage risk proactively as your business grows. Visit scrut.io to schedule a demo or learn more. That’s www.scrut.io.
Find the stories behind the headlines at CISOSeries.com
Duration:00:08:06
SonicWall access flaw, Microsoft security summit, Telegram details
8/27/2024
SonicWall warns of critical access control flaw
Microsoft to host security summit
More details on Telegram CEO’s arrest
Thanks to today's episode sponsor, Scrut Automation
Scrut Automation allows compliance and risk teams of any size to establish enterprise-grade security programs. Their best-in-class features like process automation, AI, and over 75 native integrations reverse compliance debt and help manage risk proactively as your business grows. Visit scrut.io to schedule a demo or learn more. That’s www.scrut.io.
Find the stories behind the headlines at CISOSeries.com
Duration:00:07:05
Halliburton suffers cyberattack, Telegram CEO arrested, Georgia Tech lawsuit
8/26/2024
Halliburton takes systems offline following cyberattack
French police arrest Telegram CEO Pavel Durov
DOJ joins suit against Georgia Tech over Defense Department cybersecurity failures
Thanks to today's episode sponsor, Scrut Automation
Scrut Automation allows compliance and risk teams of any size to establish enterprise-grade security programs. Their best-in-class features like process automation, AI, and over 75 native integrations reverse compliance debt and help manage risk proactively as your business grows. Visit scrut.io to schedule a demo or learn more. That’s www.scrut.io.
Find the stories behind the headlines at CISOSeries.com
Duration:00:07:20
Week in Review: NPD breach update, Hawaii hacker sentenced, Poisoned LLM coders
8/23/2024
Link to blog post
This week’s Cyber Security Headlines – Week in Review is hosted by Rich Stroffolino with guest Bethany De Lude, CISO, The Carlyle Group
Thanks to today’s episode sponsor, Nudge Security
When your CEO asks “Hey, are we using that SaaS app that was just breached?”, how quickly and confidently can you answer? Stop guessing with Nudge Security. Discover all SaaS accounts ever introduced by anyone in your org, in minutes and get alerted when any SaaS app used in your org is breached.
Start a 14-day trial now at nudgesecurity.com/saas
All links and the video of this episode can be found on CISO Series.com
Duration:00:31:12
Russia’s questionable DDoS, FAA’s cybersecurity proposal, Windows Recall reappears
8/23/2024
Kremlin complains of DDoS attack, digital experts not so sure
FAA proposes new cybersecurity rules for airplanes
Windows Recall to reappear
Thanks to today’s episode sponsor, Nudge Security
Do you know who’s using genAI tools in your org? Find out today with Nudge Security. Their patented approach to SaaS discovery gives you a full inventory of all apps ever introduced by anyone in your org, in minutes, including genAI apps. And, automated workflows help you scale security and governance without breaking a sweat. Start a free trial today at nudgesecurity.com/genai
For the stories behind the headlines, head to CISOseries.com.
Duration:00:07:50
Japanese auto security, Feds tap encrypted messages, Microsoft breaks Linux dual-booting
8/22/2024
Security initiative from Japanese auto companies
Feds tapping into encrypted messaging haul
Microsoft breaks Linux dual-boot systems
Thanks to today’s episode sponsor, Nudge Security
How big is your SaaS attack surface? Find out today with Nudge Security. Nudge Security discovers all SaaS accounts ever created by anyone in your org, in minutes, and gives you automated workflows to scale SaaS security and governance. Take control of your SaaS security posture. Start a free trial today at nudgesecurity.com/cisoseries
Duration:00:07:20
Toyota third-party breach, Hawaii registry hack, Iran disrupting campaigns
8/21/2024
Toyota confirms third-party data breach impacting customers
Man who hacked Hawaii state registry sentenced
U.S. Intelligence blames Iran for Trump campaign hack
Thanks to today’s episode sponsor, Nudge Security
When your CEO asks “Hey, are we using that SaaS app that was just breached?”, how quickly and confidently can you answer? Stop guessing with Nudge Security. Discover all SaaS accounts ever introduced by anyone in your org, in minutes and get alerted when any SaaS app used in your org is breached. Start a 14-day trial now at nudgesecurity.com/saas
For the stories behind the headlines, visit CISOseries.com.
Duration:00:07:42
National Public Data breach update, Flaws in macOS apps, FlightTracker configuration issue
8/20/2024
‘Only’ 1.3 million affected by National Public Data Breach
Flaws in Microsoft macOS Apps allowing secret recording
Configuration issue exposes flight tracking site
Thanks to today’s episode sponsor, Nudge Security
Do you know who’s using genAI tools in your org? Find out today with Nudge Security. Their patented approach to SaaS discovery gives you a full inventory of all apps ever introduced by anyone in your org, in minutes, including genAI apps. And, automated workflows help you scale security and governance without breaking a sweat. Start a free trial today at nudgesecurity.com/genai
Duration:00:08:25
Entra forces MFA, another AnyDesk heist, Google Pixel vulnerability
8/19/2024
Microsoft Entra admins must enable MFA or lose access to admin portals
Cybercrime gang uses fake Windows update screen to hide data theft
Google Pixel devices shipped with vulnerable Verizon app
Thanks to today’s episode sponsor, Nudge Security
How big is your SaaS attack surface? Find out today with Nudge Security. Nudge Security discovers all SaaS accounts ever created by anyone in your org, in minutes, and gives you automated workflows to scale SaaS security and governance. Take control of your SaaS security posture. Start a free trial today at nudgesecurity.com/cisoseries
For the stories behind the headlines, head to CISOseries.com.
Duration:00:07:31
Week in Review: NIST encryption standards, NPD breach analyzed, Texas sues GM
8/16/2024
Link to blog post
This week’s Cyber Security Headlines – Week in Review is hosted by Rich Stroffolino with guest Edwin Covert, head of cyber risk engineering, Bowhead Specialty Underwriters and edwincovert.com
Thanks to our show sponsor, ThreatLocker
Do zero-day exploits and supply chain attacks keep you up at night? Worry no more; you can harden your security with ThreatLocker. ThreatLocker helps you take a proactive, default-deny approach to cybersecurity and provides a full audit of every action, allowed or blocked, for risk management and compliance. Onboarding and operation are fully supported by their US-based support team.
To learn more about how ThreatLocker can help keep your organization running efficiently and protected from ransomware, visit ThreatLocker.com.
All links and the video of this episode can be found on CISO Series.com
Duration:00:26:21
GitHub artifact warning, RansomHub’s EDR killer, SolarWinds latest hotfix
8/16/2024
GitHub vulnerability warning regarding ArtiPacked
RansomHub affiliate launches new EDR-killing tool
SolarWinds issues hotfix for web help desk vulnerability
Thanks to today's episode sponsor, ThreatLocker
Do zero-day exploits and supply chain attacks keep you up at night? Worry no more; you can harden your security with ThreatLocker.
ThreatLocker helps you take a proactive, default-deny approach to cybersecurity and provides a full audit of every action, allowed or blocked, for risk management and compliance. Onboarding and operation are fully supported by their US-based support team.
To learn more about how ThreatLocker can help keep your organization running efficiently and protected from ransomware, visit ThreatLocker.com.
For the stories behind the headlines, head to CISOseries.com.
Duration:00:08:38