NATO suspects Russia is developing a new anti-satellite weapon to disrupt the Starlink network. A failed polygraph sparks a DHS probe and deepens turmoil at CISA. A look back at Trump’s cyber policy shifts. MacSync Stealer adopts a stealthy new delivery method.  Researchers warn a popular open-source server monitoring tool is being abused. Cyber criminals are increasingly bypassing technical defenses by recruiting insiders. Scripted Sparrow sends millions of BEC emails each month. Federal prosecutors take down a global fake ID marketplace. Monday business brief. Our guest is Eric Woodruff, Chief Identity Architect at Semperis, discussing "NoAuth Abuse Alert: Full Account Takeover." Atomic precision meets Colorado weather.

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

Today on our Industry Voices, we are joined by Eric Woodruff, Chief Identity Architect at Semperis, discussing "NoAuth Abuse Alert: Full Account Takeover." Tune into the full conversation here.

Selected Reading

Starlink in the crosshairs: How Russia could attack Elon Musk's conquering of space (AP News)

Project West Ford (Wikipedia)

Acting CISA director failed a polygraph. Career staff are now under investigation (POLITICO)

Dismantling Defenses: Trump 2.0 Cyber Year in Review (Krebs on Security)

MacSync macOS Malware Distributed via Signed Swift Application (SecurityWeek)

From ClickFix to code signed: the quiet shift of MacSync Stealer malware (Jamf) 

Hackers Abuse Popular Monitoring Tool Nezha as a Stealth Trojan (Hackread)

Cyber Criminals Are Recruiting Insiders in Banks, Telecoms, and Tech (Check Point)

Scripted Sparrow Sends Millions of BEC Emails Each Month (Infosecurity Magazine)

FBI Seizes Fake ID Template Domains Operating from Bangladesh (Hackread)

Adaptive Security raises $81 million in a Series B round led by Bain Capital Ventures. (N2K Pro)

NIST tried to pull the pin on NTP servers after blackout caused atomic clock drift (The Register)

Share your feedback.

What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show.

Want to hear your company in the show?

N2K CyberWire helps you reach the industry’s most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com.

The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc.

Learn more about your ad choices. Visit megaphone.fm/adchoices