February 28, 2023

Risky Business #697 -- LastPass attacker: Do you gotta hand it to 'em?

Listen Later

59 minutes

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including:

A look at LastPass’s intrusion post mortem

A very stable genius decided to ransomware the US Marshals Service

Why Signal’s complaints about UK’s Online Safety Act are bad faith

Much, much more…

This week’s show is brought to you by Tines, the no-code automation platform. Its co-founder and CEO Eoin Hinchy joins the show in the sponsor slot, and you can check out a Tines demo we recorded with Eoin on YouTube.

Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that’s your thing.

Show notes

Additional details of the attack - LastPass Support

LastPass says employee’s home computer was hacked and corporate vault taken | Ars Technica

'Major' U.S. Marshals Service hack compromises sensitive info

DISH tells SEC that ransomware attack caused outages; personal info may have been stolen - The Record from Recorded Future News

DISH says ‘system issue’ affecting internal servers, phone systems - The Record from Recorded Future News

Danish hospitals hit by cyberattack from ‘Anonymous Sudan’ - The Record from Recorded Future News

'A year of cyberwar' with Russia: An inside look from a top Ukrainian cybersecurity official | CyberScoop

Russia blames hackers as commercial radio stations broadcast fake air strike warnings - The Record from Recorded Future News

Dutch intelligence: Many cyberattacks by Russia are not yet public knowledge - The Record from Recorded Future News

Signal CEO: We “1,000% won’t participate” in UK law to weaken encryption | Ars Technica

White House cybersecurity strategy to force large companies to make systems secure by design | CyberScoop

Popular IBM file transfer tool vulnerable to cyberattacks, CISA says - The Record from Recorded Future News

A world of hurt for Fortinet and ManageEngine after users fail to install patches | Ars Technica

Gigamon Exits NDR Market, Sells ThreatInsight Business to Fortinet

Cisco ClamAV anti-malware scanner vulnerable to serious security flaw | The Daily Swig

How I Broke Into a Bank Account With an AI-Generated Voice

Hackers use ChatGPT phishing websites to infect users with malware - The Record from Recorded Future News

Venture capital financing of cyber companies slid to $18.5 billion in 2022 - The Record from Recorded Future News

Tines Automation Platform - YouTube

...more

View all episodes

View all episodes

Download on the App Store

Download on the App Store

Get it on Google Play

Risky Business

By Patrick Gray

4.6

352352 ratings

February 28, 2023

Risky Business #697 -- LastPass attacker: Do you gotta hand it to 'em?

Listen Later

59 minutes

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including:

A look at LastPass’s intrusion post mortem

A very stable genius decided to ransomware the US Marshals Service

Why Signal’s complaints about UK’s Online Safety Act are bad faith

Much, much more…

This week’s show is brought to you by Tines, the no-code automation platform. Its co-founder and CEO Eoin Hinchy joins the show in the sponsor slot, and you can check out a Tines demo we recorded with Eoin on YouTube.

Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that’s your thing.

Show notes

Additional details of the attack - LastPass Support

LastPass says employee’s home computer was hacked and corporate vault taken | Ars Technica

'Major' U.S. Marshals Service hack compromises sensitive info

DISH tells SEC that ransomware attack caused outages; personal info may have been stolen - The Record from Recorded Future News

DISH says ‘system issue’ affecting internal servers, phone systems - The Record from Recorded Future News

Danish hospitals hit by cyberattack from ‘Anonymous Sudan’ - The Record from Recorded Future News

'A year of cyberwar' with Russia: An inside look from a top Ukrainian cybersecurity official | CyberScoop

Russia blames hackers as commercial radio stations broadcast fake air strike warnings - The Record from Recorded Future News

Dutch intelligence: Many cyberattacks by Russia are not yet public knowledge - The Record from Recorded Future News

Signal CEO: We “1,000% won’t participate” in UK law to weaken encryption | Ars Technica

White House cybersecurity strategy to force large companies to make systems secure by design | CyberScoop

Popular IBM file transfer tool vulnerable to cyberattacks, CISA says - The Record from Recorded Future News

A world of hurt for Fortinet and ManageEngine after users fail to install patches | Ars Technica

Gigamon Exits NDR Market, Sells ThreatInsight Business to Fortinet

Cisco ClamAV anti-malware scanner vulnerable to serious security flaw | The Daily Swig

How I Broke Into a Bank Account With an AI-Generated Voice

Hackers use ChatGPT phishing websites to infect users with malware - The Record from Recorded Future News

Venture capital financing of cyber companies slid to $18.5 billion in 2022 - The Record from Recorded Future News

Tines Automation Platform - YouTube

...more

More shows like Risky Business

Security Now (Audio) by TWiT

Security Now (Audio)

1,961 Listeners

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

634 Listeners

Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

368 Listeners

Hacked by Hacked

Hacked

176 Listeners

CyberWire Daily by N2K Networks

CyberWire Daily

1,008 Listeners

Smashing Security by Graham Cluley & Carole Theriault

Smashing Security

312 Listeners

Click Here by Recorded Future News

Click Here

386 Listeners

Malicious Life by Malicious Life

Malicious Life

923 Listeners

Darknet Diaries by Jack Rhysider

Darknet Diaries

7,840 Listeners

Cybersecurity Today by Jim Love

Cybersecurity Today

141 Listeners

CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

CISO Series Podcast

182 Listeners

Hacking Humans by N2K Networks

Hacking Humans

309 Listeners

Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

Defense in Depth

71 Listeners

Cyber Security Headlines by CISO Series

Cyber Security Headlines

120 Listeners

Risky Bulletin by risky.biz

Risky Bulletin

33 Listeners