Risky Business

Risky Business #775 -- Cl0p is back, SEC hack disclosures disappoint

Listen Later

On this week’s show, Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:

  • The SEC’s cyber incident reporting isn’t very exciting after all
  • China Telecom on the way to being thrown out of the US
  • The NSA/Cybercom might get two separate hats
  • The Cl0p ransomware crew are back and taking responsibility for the Cleo hacks
  • (Yet another) File upload bug in Struts makes Java admins weep
  • And much, much more.

    • This episode is sponsored by SpecterOps, who run a pretty top notch offsec/pentest team when they’re not busy making the Bloodhound Enterprise identity attack path enumeration software. SpecterOps’ Robby Winchester joins to talk about how pentest has changed, and how their customers get value from their testing.

    This episode is also available Youtube.

    Show notes
    • SEC cyber incident reporting rule generates 71 filings in 11 months | Cybersecurity Dive
    • US senators, green groups call for accountability over hacking of Exxon critics | Reuters
    • Biden Administration Takes First Step to Retaliate Against China Over Hack - The New York Times
    • Unfinished business for Trump: Ending the Cyber Command and NSA 'dual hat' | The Record from Recorded Future News
    • EU opens investigation into TikTok and the Romanian election – POLITICO
    • Clop ransomware claims responsibility for Cleo data theft attacks
    • CISA warns of ransomware gangs exploiting Cleo, CyberPanel bugs | The Record from Recorded Future News
    • CVE-2024-55956 | AttackerKB
    • Apache issues patches for critical Struts 2 RCE bug • The Register
    • Japanese game and anime publisher reportedly pays $3 million ransom to Russia-linked hackers | The Record from Recorded Future News
    • Israeli spyware firm Paragon acquired by US investment group, report says | Reuters
    • How Cryptocurrency Turns to Cash in Russian Banks – Krebs on Security
    • Arizona man arrested for alleged involvement in violent online terror networks | CyberScoop
    • Russia bans Viber, claiming app facilitates terrorism and drug trafficking | The Record from Recorded Future News
      • ...more
      View all episodesView all episodes
      Download on the App Store
      Risky BusinessBy Risky Business Media
      • 4.6
      • 4.6
      • 4.6
      • 4.6
      • 4.6

      4.6

      364 ratings

      More shows like Risky Business

      View all
      Hacked by Hacked

      Hacked

      187 Listeners

      Security Now (Audio) by TWiT

      Security Now (Audio)

      2,011 Listeners

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

      372 Listeners

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

      651 Listeners

      CyberWire Daily by N2K Networks

      CyberWire Daily

      1,028 Listeners

      Smashing Security by Graham Cluley

      Smashing Security

      317 Listeners

      Click Here by Recorded Future News

      Click Here

      418 Listeners

      Darknet Diaries by Jack Rhysider

      Darknet Diaries

      8,077 Listeners

      Cybersecurity Today by Jim Love

      Cybersecurity Today

      175 Listeners

      Hacking Humans by N2K Networks

      Hacking Humans

      315 Listeners

      CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

      CISO Series Podcast

      195 Listeners

      Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

      Defense in Depth

      73 Listeners

      Cybersecurity Headlines by CISO Series

      Cybersecurity Headlines

      139 Listeners

      Risky Bulletin by Risky Business Media

      Risky Bulletin

      45 Listeners

      Hacker And The Fed by Chris Tarbell & Hector Monsegur

      Hacker And The Fed

      168 Listeners