A hacker claims to have stolen internal documents from  a major French telecommunications company. A security breach hits Russia’s financial sector. Cyberattacks targeting ICS and OT surged dramatically last year. Chinese group Silver Fox is spoofing medical software. The UK Home Office’s new vulnerability reporting policy risks prosecuting ethical hackers. Ransomware actors are shifting away from encryption. A sophisticated macOS malware campaign is distributing Poseidon Stealer. The LightSpy surveillance framework evolves into a cross-platform espionage tool. A Chinese botnet is targeting Microsoft 365 accounts using password spraying attacks. Our guest today is Lauren Buitta, Founder and CEO at Girl Security, discussing mentoring and intergenerational strategies. There may be a backdoor in your front door.

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

Our guest today is Lauren Buitta, Founder and CEO at Girl Security, discussing mentoring and intergenerational strategies.

Selected Reading

Orange Group confirms breach after hacker leaks company documents (Bleeping Computer)

Russia warns of breach of major IT service provider LANIT serving the financial sector (Beyond Machines) 

Dragos: Surge of new hacking groups enter ICS space as states collaborate with private actors (CyberScoop)

China's Silver Fox spoofs medical imaging apps to hijack patients' computers (The Register)

UK Home Office’s new vulnerability reporting mechanism leaves researchers open to prosecution (The Record)

Only a Fifth of Ransomware Attacks Now Encrypt Data (Infosecurity Magazine)

Poseidon Stealer Malware Attacking Mac Users via Fake DeepSeek Site (Cyber Security News) 

Exploits for unpatched Parallels Desktop flaw give root on Macs (Bleeping Computer)

LightSpy Malware Expands with 100+ Commands to Target Users Across All Major OS Platforms (GB Hackers) 

Chinese Botnet Bypasses MFA in Microsoft 365 Attacks (Infosecurity Magazine)

CISA Warns of Attacks Exploiting Oracle Agile PLM Vulnerability (SecurityWeek)

A single default password exposes access to dozens of apartment buildings (TechCrunch)

Share your feedback.

We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show. 

Want to hear your company in the show?

You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at [email protected] to request more info.

The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc.

Learn more about your ad choices. Visit megaphone.fm/adchoices