Risky Business

Risky Business #721 -- Why Storm-0558's Microsoft hack should have failed

Listen Later

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news. They cover:

  • How Storm-0558 stole Microsoft’s signing key
  • Cisco 0day being used by ransomware crews
  • We were right about Elon stumbling into the Ukraine war
  • Someone’s amazing image library 0day just got crushed
  • Much, much more!

    • This week’s show is brought to you by Nucleus Security. Co-founder Scott Kuffer is this week’s sponsor guest.

    Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that’s your thing.

    Show notes
    • Results of Major Technical Investigations for Storm-0558 Key Acquisition | MSRC Blog | Microsoft Security Response Center
    • Microsoft reveals how hackers stole its email signing key… kind of | TechCrunch
    • Kevin Beaumont: "One extra thing to highlight -…" - Cyberplace
    • Preventing Authentication Bypass: A Tale of Two Researchers - YouTube
    • BEC phishing kit hits thousands of Microsoft 365 business accounts | Cybersecurity Dive
    • Microsoft Teams phishing attack pushes DarkGate malware
    • CISA warns of attacks using Microsoft Word, Adobe bugs
    • New Emergency Chrome Security Update After Critical iOS 16.6.1 Release
    • Mozilla patches Firefox, Thunderbird against zero-day exploited in attacks
    • Cisco security appliance 0-day is under attack by ransomware crooks | Ars Technica
    • Cisco BroadWorks vulnerability snags highest CVSS score | Cybersecurity Dive
    • High-profile CVEs turn up in vulnerability exploit sales | Cybersecurity Dive
    • MGM Resorts takes systems offline following cyberattack
    • Save the Children International hit with cyberattack, but says operations weren’t impacted
    • Sri Lankan government loses months of data following ransomware attack
    • (6) Risky Biz News: US and UK dox and sanction 11 more Trickbot/Conti members. Charges included too.
    • Opinion | The untold story of Elon Musk’s support for Ukraine - The Washington Post
    • Elon Musk on X:
    • SpaceX unveils Starshield, a military variation of Starlink satellites
    • China-Linked Hackers Breached a Power Grid—Again | WIRED
    • Just waiting for a mate - YouTube
    • North Korea-backed hackers target security researchers with 0-day | Ars Technica
    • Cars are collecting data on par with Big Tech, watchdog report finds
    • Crypto Town Hall on X: "Crypto Kingpin's Downfall: 11,196 Years Behind Bars!"https://t.co/1RCNJ8um4c" / X
      • ...more
      View all episodesView all episodes
      Download on the App Store
      Risky BusinessBy Patrick Gray
      • 4.6
      • 4.6
      • 4.6
      • 4.6
      • 4.6

      4.6

      364 ratings

      More shows like Risky Business

      View all
      Hacked by Hacked

      Hacked

      185 Listeners

      Security Now (Audio) by TWiT

      Security Now (Audio)

      2,004 Listeners

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

      371 Listeners

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

      638 Listeners

      CyberWire Daily by N2K Networks

      CyberWire Daily

      1,023 Listeners

      Smashing Security by Graham Cluley

      Smashing Security

      322 Listeners

      Click Here by Recorded Future News

      Click Here

      415 Listeners

      Darknet Diaries by Jack Rhysider

      Darknet Diaries

      8,010 Listeners

      Cybersecurity Today by Jim Love

      Cybersecurity Today

      174 Listeners

      Hacking Humans by N2K Networks

      Hacking Humans

      314 Listeners

      CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

      CISO Series Podcast

      189 Listeners

      Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

      Defense in Depth

      73 Listeners

      Cyber Security Headlines by CISO Series

      Cyber Security Headlines

      134 Listeners

      Risky Bulletin by risky.biz

      Risky Bulletin

      44 Listeners

      Hacker And The Fed by Chris Tarbell & Hector Monsegur

      Hacker And The Fed

      169 Listeners