Sign up to save your podcasts
Or
Share Notes from the cyber phases of two hybrid wars. Alerts on Cisco, Atlassian vulnerability exploitation. Updated guidance on security by design.
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Notes from the cyber phases of two hybrid wars. Alerts on Cisco, Atlassian vulnerability exploitation. Updated guidance on security by design.
A bogus RedAlert app delivered spyware as well as panic. BloodAlchemy backdoors ASEAN southeast asian targets. A serious Cisco zero-day is being exploited. Valve implements additional security measures for Steam. A warning on Atlassian vulnerability exploitation. Allies update their security-by-design guide. Ukrainian telecommunications providers hit by cyberattack. Ben Yelin explains attempts to tamp down pornographic deepfakes. Our guest is Ashley Rose from Living Security with a look at measuring human risk. And, as always, criminals see misery as opportunity.
For links to all of today's stories check out our CyberWire daily news briefing:
https://thecyberwire.com/newsletters/daily-briefing/12/198
Malicious “RedAlert - Rocket Alerts” Application Targets Israeli Phone Calls, SMS, and User Information (The Cloudflare Blog)
Disclosing the BLOODALCHEMY backdoor (Elastic Security Labs)
BLOODALCHEMY provides backdoor to ASEAN secrets (Register)
Active exploitation of Cisco IOS XE Software Web Management User Interface vulnerability (Cisco Talos Blog)
Actively exploited Cisco 0-day with maximum 10 severity gives full network control (Ars Technica)
Cisco warns of actively exploited zero-day in IOS XE software (Computing)
Widespread Cisco IOS XE Implants in the Wild (VulnCheck)
Steam enforces SMS verification to curb malware-ridden updates (BleepingComputer)
Threat Actors Exploit Atlassian Confluence CVE-2023-22515 for Initial Access to Networks | CISA (Cybersecurity and Infrastructure Security Agency CISA)
CISA, U.S. and International Partners Announce Updated Secure by Design Principles Joint Guide (Cybersecurity and Infrastructure Security Agency)
CERT-UA Reports: 11 Ukrainian Telecom Providers Hit by Cyberattacks (The Hacker News)
CVE-2023-38831 Exploited by Pro-Russia Hacking Groups in RU-UA Conflict Zone for Credential Harvesting Operations (Cluster25)
Pro-Russian Hackers Exploiting Recent WinRAR Vulnerability in New Campaign (The Hacker News)
Cyberattack targets Belgian public service websites for second time in a week (Brussels Times)
Spam trends of the week: Spammers piggyback on the Israel-Gaza war to plunder donations (Hot for Security)
Learn more about your ad choices. Visit megaphone.fm/adchoices
View all episodes
By N2K Networks
4.8
999999 ratings
A bogus RedAlert app delivered spyware as well as panic. BloodAlchemy backdoors ASEAN southeast asian targets. A serious Cisco zero-day is being exploited. Valve implements additional security measures for Steam. A warning on Atlassian vulnerability exploitation. Allies update their security-by-design guide. Ukrainian telecommunications providers hit by cyberattack. Ben Yelin explains attempts to tamp down pornographic deepfakes. Our guest is Ashley Rose from Living Security with a look at measuring human risk. And, as always, criminals see misery as opportunity.
For links to all of today's stories check out our CyberWire daily news briefing:
https://thecyberwire.com/newsletters/daily-briefing/12/198
Malicious “RedAlert - Rocket Alerts” Application Targets Israeli Phone Calls, SMS, and User Information (The Cloudflare Blog)
Disclosing the BLOODALCHEMY backdoor (Elastic Security Labs)
BLOODALCHEMY provides backdoor to ASEAN secrets (Register)
Active exploitation of Cisco IOS XE Software Web Management User Interface vulnerability (Cisco Talos Blog)
Actively exploited Cisco 0-day with maximum 10 severity gives full network control (Ars Technica)
Cisco warns of actively exploited zero-day in IOS XE software (Computing)
Widespread Cisco IOS XE Implants in the Wild (VulnCheck)
Steam enforces SMS verification to curb malware-ridden updates (BleepingComputer)
Threat Actors Exploit Atlassian Confluence CVE-2023-22515 for Initial Access to Networks | CISA (Cybersecurity and Infrastructure Security Agency CISA)
CISA, U.S. and International Partners Announce Updated Secure by Design Principles Joint Guide (Cybersecurity and Infrastructure Security Agency)
CERT-UA Reports: 11 Ukrainian Telecom Providers Hit by Cyberattacks (The Hacker News)
CVE-2023-38831 Exploited by Pro-Russia Hacking Groups in RU-UA Conflict Zone for Credential Harvesting Operations (Cluster25)
Pro-Russian Hackers Exploiting Recent WinRAR Vulnerability in New Campaign (The Hacker News)
Cyberattack targets Belgian public service websites for second time in a week (Brussels Times)
Spam trends of the week: Spammers piggyback on the Israel-Gaza war to plunder donations (Hot for Security)
Learn more about your ad choices. Visit megaphone.fm/adchoices
More shows like CyberWire Daily
View all
Hacked
187 Listeners
Security Now (Audio)
2,000 Listeners
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
374 Listeners
Risky Business
376 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
653 Listeners
Smashing Security
320 Listeners
Click Here
416 Listeners
Darknet Diaries
8,012 Listeners
Cybersecurity Today
177 Listeners
Hacking Humans
316 Listeners
CISO Series Podcast
189 Listeners
Defense in Depth
74 Listeners
Cyber Security Headlines
136 Listeners
Risky Bulletin
46 Listeners
Hacker And The Fed
171 Listeners