Risky Business

Risky Business #807 -- Shai-Hulud npm worm wreaks old-school havoc

Listen Later

On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:

  • Shai-Hulud worm propagates via npm and steals credentials
  • Jaguar Land Rover attack may put smaller suppliers out of business
  • Leaked data emerges from the vendor behind the Great Firewall of China
  • Vastaamo hacker walks free while appeal is underway
  • Why is a senator so mad about Kerberos?

    • This week’s episode is sponsored by Knocknoc. Chief exec Adam Pointon joins to talk through the surprising number of customers that are using Knocknoc’s identity-to-firewall glue to protect internal services and networks.

    This week’s episode is also available on Youtube.

    Show notes
    • Self-Replicating Worm Hits 180+ Software Packages – Krebs on Security
    • Jaguar Land Rover: Some suppliers 'face bankruptcy' due to hack crisis
    • Jaguar Land Rover production shutdown could last until November
    • U.S. Investors, Trump Close In on TikTok Deal With China - WSJ
    • U.S. Investors, Trump Close In on TikTok Deal With China - WSJ
    • How China’s Propaganda and Surveillance Systems Really Operate | WIRED
    • Mythical Beasts: Diving into the depths of the global spyware market - Atlantic Council
    • Hacker convicted of extorting 20,000 psychotherapy victims walks free during appeal | The Record from Recorded Future News
    • US national charged in Finnish psychotherapy center extortion | The Record from Recorded Future News
    • BreachForums administrator given three-year prison stint after resentencing | The Record from Recorded Future News
    • Microsoft, Cloudflare disrupt RaccoonO365 credential stealing tool run by Nigerian national | The Record from Recorded Future News
    • Senator blasts Microsoft for making default Windows vulnerable to “Kerberoasting” - Ars Technica
    • Exclusive: US warns hidden radios may be embedded in solar-powered highway infrastructure | Reuters
    • Israel announces seizure of $1.5M from crypto wallets tied to Iran | TechCrunch
      • ...more
      View all episodesView all episodes
      Download on the App Store
      Risky BusinessBy Patrick Gray
      • 4.6
      • 4.6
      • 4.6
      • 4.6
      • 4.6

      4.6

      362 ratings

      More shows like Risky Business

      View all
      Security Now (Audio) by TWiT

      Security Now (Audio)

      2,001 Listeners

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

      639 Listeners

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

      369 Listeners

      Hacked by Hacked

      Hacked

      185 Listeners

      CyberWire Daily by N2K Networks

      CyberWire Daily

      1,017 Listeners

      Smashing Security by Graham Cluley

      Smashing Security

      321 Listeners

      Click Here by Recorded Future News

      Click Here

      415 Listeners

      Darknet Diaries by Jack Rhysider

      Darknet Diaries

      7,978 Listeners

      Cybersecurity Today by Jim Love

      Cybersecurity Today

      176 Listeners

      CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

      CISO Series Podcast

      188 Listeners

      Hacking Humans by N2K Networks

      Hacking Humans

      316 Listeners

      Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

      Defense in Depth

      73 Listeners

      Cyber Security Headlines by CISO Series

      Cyber Security Headlines

      133 Listeners

      Risky Bulletin by risky.biz

      Risky Bulletin

      43 Listeners

      The AI Fix by Graham Cluley and Mark Stockley

      The AI Fix

      33 Listeners