Risky Business

Risky Business #756 -- Move fast and break everything

Listen Later

The Risky Biz main show returns from a break to the traditional internet-melting mess that happens whenever Patrick Gray takes a holiday. Pat and Adam Boileau talk through the week’s security news, including:

  • Oh Crowdstrike, no, oh no, honey, no
  • AT&T stored call records on Snowflake and you’ll never guess what happened next
  • Squarespace buys Google Domains and makes a hash of it
  • Some but not all of the SECs case against Solarwinds gets thrown out
  • Pity the incident responders digging through a terabyte of Disney Slack dumps
  • Internet Explorer rises from the grave, and it wants SHELLS RAAAAARGH SSHHEEELLLS
  • And much, much more.

    • This week’s show is brought to you by Sublime Security, a flexible and modern email security platform. If you’re sick of using a black box email security solution, Sublime is a terrific option for you.

    Show notes
    • Risky Biz News: CrowdStrike faulty update affects 8.5 million Windows systems
    • Low-level cybercriminals are pouncing on CrowdStrike-connected outage | CyberScoop
    • CrowdStrike says flawed update was live for 78 minutes | Cybersecurity Dive
    • Crooks Steal Phone, SMS Records for Nearly All AT&T Customers – Krebs on Security
    • Researchers: Weak Security Defaults Enabled Squarespace Domains Hijacks – Krebs on Security
    • Teenage suspect in MGM Resorts hack arrested in Britain
    • Majority of SEC civil fraud case against SolarWinds dismissed, but core remains | Cybersecurity Dive
    • How Russia-Linked Malware Cut Heat to 600 Ukrainian Buildings in Deep Winter | WIRED
    • Kaspersky Lab Closing U.S. Division; Laying Off Workers
    • Hackers Claim to Have Leaked 1.1 TB of Disney Slack Messages | WIRED
    • Wallets tied to CDK ransom group received $25 million two days after attack | CyberScoop
    • UnitedHealth’s cyberattack response costs to surpass $2.3B this year | Cybersecurity Dive
    • Ransomware ecosystem fragmenting under law enforcement pressure and distrust
    • Threat actors exploited Windows 0-day for more than a year before Microsoft fixed it | Ars Technica
      • ...more
      View all episodesView all episodes
      Download on the App Store
      Risky BusinessBy Patrick Gray
      • 4.6
      • 4.6
      • 4.6
      • 4.6
      • 4.6

      4.6

      352 ratings

      More shows like Risky Business

      View all
      Security Now (Audio) by TWiT

      Security Now (Audio)

      1,961 Listeners

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

      634 Listeners

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

      368 Listeners

      Hacked by Hacked

      Hacked

      176 Listeners

      CyberWire Daily by N2K Networks

      CyberWire Daily

      1,008 Listeners

      Smashing Security by Graham Cluley & Carole Theriault

      Smashing Security

      312 Listeners

      Click Here by Recorded Future News

      Click Here

      386 Listeners

      Malicious Life by Malicious Life

      Malicious Life

      923 Listeners

      Darknet Diaries by Jack Rhysider

      Darknet Diaries

      7,840 Listeners

      Cybersecurity Today by Jim Love

      Cybersecurity Today

      141 Listeners

      CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

      CISO Series Podcast

      182 Listeners

      Hacking Humans by N2K Networks

      Hacking Humans

      309 Listeners

      Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

      Defense in Depth

      71 Listeners

      Cyber Security Headlines by CISO Series

      Cyber Security Headlines

      120 Listeners

      Risky Bulletin by risky.biz

      Risky Bulletin

      33 Listeners