Risky Business

Risky Business #736 -- Azure misconfigurations are 2024's looming threat

Listen Later

In this week’s show Patrick Gray and Adam Boileau discuss the week’s security news. They talk about:

  • Somehow there are still more Ivanti and Fortinet exploits
  • Volt Typhoon have been at it for years
  • Starlink in Ukraine gets complicated
  • Canadians hate poor Flipper
  • Much, much more…

    • In this week’s sponsor interview Feross Aboukhadijeh from Socket joins the show to talk about the sheer volume of malicious packages being committed to code repositories and why older SCA tools aren’t well equipped to deal with them.

    Show notes
    • Microsoft Azure customers hit by phishing, account takeover attacks | Cybersecurity Dive
    • Ivanti publishes urgent warning about new vulnerability
    • How is Pulse Secure Formed
    • Attackers hit more networking gear, this time a critical Fortinet CVE | Cybersecurity Dive
    • End Of General Availability of the free vSphere Hypervisor (ESXi 7.x and 8.x) (2107518)
    • Coker: ONCD is studying ‘liability regimes’ for software flaws
    • Chinese hackers spent 5 years in US infrastructure, ready to attack
    • CISA, FBI warn of China-linked hackers pre-positioning for ‘destructive cyberattacks against US critical infrastructure’
    • Russia using Starlink
    • Canada declares Flipper Zero public enemy No. 1 in car-theft crackdown | Ars Technica
    • Health insurance data breach affects nearly half of France’s population, privacy regulator warns
    • Hackers attack 25 Romanian hospitals
    • Catalin on the Rhysider ransomware decrypter going public
    • A password manager LastPass calls “fraudulent” booted from App Store | Ars Technica
    • From Cybercrime Saul Goodman to the Russian GRU – Krebs on Security
      • ...more
      View all episodesView all episodes
      Download on the App Store
      Risky BusinessBy Patrick Gray
      • 4.6
      • 4.6
      • 4.6
      • 4.6
      • 4.6

      4.6

      364 ratings

      More shows like Risky Business

      View all
      Hacked by Hacked

      Hacked

      183 Listeners

      Security Now (Audio) by TWiT

      Security Now (Audio)

      2,002 Listeners

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

      369 Listeners

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

      638 Listeners

      CyberWire Daily by N2K Networks

      CyberWire Daily

      1,019 Listeners

      Smashing Security by Graham Cluley

      Smashing Security

      322 Listeners

      Click Here by Recorded Future News

      Click Here

      415 Listeners

      Darknet Diaries by Jack Rhysider

      Darknet Diaries

      8,012 Listeners

      Cybersecurity Today by Jim Love

      Cybersecurity Today

      174 Listeners

      Hacking Humans by N2K Networks

      Hacking Humans

      314 Listeners

      CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

      CISO Series Podcast

      189 Listeners

      Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

      Defense in Depth

      73 Listeners

      Cyber Security Headlines by CISO Series

      Cyber Security Headlines

      134 Listeners

      Risky Bulletin by risky.biz

      Risky Bulletin

      44 Listeners

      Hacker And The Fed by Chris Tarbell & Hector Monsegur

      Hacker And The Fed

      169 Listeners