Chaos and security concerns continue in Washington. Spanish authorities arrest a man suspected of hacking NATO, the UN, and the US Army. A major U.S. hiring platform exposes millions of resumes. Another British engineering firm suffers a cyberattack. Cisco patches multiple vulnerabilities. Cybercriminals exploit SVG files in phishing attacks. SparkCat SDK targets cryptocurrency via Android and iOS apps. CISA directs federal agencies to patch a high-severity Linux kernel flaw. Thailand leaves scamming syndicates in the dark. Positive trends in the fight against ransomware. Our guest is Cliff Crosland, CEO and Co-founder at Scanner.dev, discusses the evolution of security data lakes and the "bring your own" model for security tools. Don’t eff with the FCC.

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

Today on our Industry Voices segment, guest Cliff Crosland, CEO and Co-founder at Scanner.dev, discusses the evolution of security data lakes and the "bring your own" model for security tools. For some additional details, check out their blog on “Security Data Lakes: A New Tool for Threat Hunting, Detection & Response, and GenAI-Powered Analysis.”

Selected Reading

Musk’s DOGE agents access sensitive personnel data, alarming security officials (Washington Post)

Union groups sue Treasury over giving DOGE access to sensitive data (The Record)

Hacker Who Targeted NATO, US Army Arrested in Spain (SecurityWeek)

Hiring platform serves users raw with 5.4 million CVs exposed (Cybernews)

IMI becomes the latest British engineering firm to be hacked (TechCrunch)

Cisco Patches Critical Vulnerabilities in Enterprise Security Product (SecurityWeek)

Scalable Vector Graphics files pose a novel phishing threat (Sophos News)

Crypto-stealing apps found in Apple App Store for the first time (Bleeping Computer)

Ransomware payments dropped in 2024 as victims refused to pay hackers (TechCrunch)

CISA orders agencies to patch Linux kernel bug exploited in attacks (Bleeping Computer)

Thailand cuts power supply to Myanmar scam hubs (The Record)

Robocallers posing as FCC fraud prevention team call FCC staff (Bleeping Computer)

Share your feedback.

We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show. 

Want to hear your company in the show?

You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at [email protected] to request more info.

The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc.

Learn more about your ad choices. Visit megaphone.fm/adchoices