ChatGPT banned in Italy, regulatory action for internet connected medical devices, CISA KEV flaws affect 15 million public facing services, WordPress plugin active explout, German police raid DDoS hoster, Azure bug allowed critical system access, Cadbury Easter egg scam, and today's list - 12 tips for Microsoft Excel success.

https://www.bbc.com/news/technology-65139406

https://innovationorigins.com/en/us-regulator-takes-action-to-ensure-internet-security-in-connected-medical-devices/

https://www.bleepingcomputer.com/news/security/15-million-public-facing-services-vulnerable-to-cisa-kev-flaws/

https://hothardware.com/news/wordpress-sites-being-actively-exploited-thanks-to-plugins

https://krebsonsecurity.com/2023/03/german-police-raid-ddos-friendly-host-flyhosting/

https://www.scmagazine.com/news/cloud-security/azure-bug-allowed-access-to-critical-systems

https://www.infosecurity-magazine.com/news/cadbury-warns-of-easter-egg-scam/

https://cmitsolutions.com/blog/12-tips-for-microsoft-excel-success/

IRS tax scam, phishing emails up over 500%, 3CX supply chain attack, insecure storing of work passwords, Defender oops, AlienFox, Apple security releases, Minnesota K-12, cyber legislation, and a preview of my BSides tak.

https://www.hackread.com/irs-tax-forms-w-9-email-scam-emotet-malware/

https://www.darkreading.com/attacks-breaches/phishing-emails-up-whopping-569-percent-2022

https://thehackernews.com/2023/03/3cx-supply-chain-attack-heres-what-we.html

https://www.infosecurity-magazine.com/news/70-employees-keep-work-passwords/

https://www.bleepingcomputer.com/news/microsoft/microsoft-defender-mistakenly-tagging-urls-as-malicious/

https://securityaffairs.com/144239/cyber-crime/alienfox-toolset-cloud-service-providers.html

https://www.cisa.gov/news-events/alerts/2023/03/28/apple-releases-security-updates-multiple-products

https://sahanjournal.com/education/minnesota-legislature-education-cybersecurity-minneapolis-ransomware/

https://bsidesnash2023.sessionize.com/session/400189

From November 1, 2022 - Christian Espinosa is the author of "The Smartest Person in the Room: The Root Cause and New Solution for Cybersecurity", Founder and CEO of Alpine Security, a cybersecurity engineer, certified high-performance coach, professor, and lover of heavy metal music and spicy food. He’s also an Air Force veteran and Ironman triathlete. He used to value being the “smartest guy in the room,” only to realize that his greatest contribution to the fight against cybercrime is his ability to bring awareness to the issue through effective communication. Christian is a speaker, coach, and trainer in the Secure methodology, helping to make the smartest people in the room the best leaders in the field. For more information, visit www.christianespinosa.com, and to order his book, visit https://www.amazon.com/dp/B08T6QK6FN.

For our special last Wednesday of the month episode for March, Greg van der Gaast joins us. Greg is an international speaker on Why Security Fails, IT Quality, Leadership, and Strategy. He also is a former hacker, FBI & DoD operative, author, advisor, CISO, and people and culture enthusiast. Listen to hear his fascinating story and what is a major threat for SMB information security that most don't consider. He can be reached at https://gregvandergaast.com/.

Bill Butler is an experienced Vice President Of Engineering with a demonstrated history of working in the hospital and health care and security compliance industry. He is the Founder and VP Engineering of PolicyCo (policyco.io), a platform that lets you tie Regulations, Policies, Procedures, Control Testing and Remediation together in a single platform, along with a host of other features like version control, reporting, sharing, attestations, and a public API.

Gordon Moore has died, ChatGPT bug exposed more, Windows snip vulnerability, a different take on BEC, North Dakota cyber education program, CISA pre-ransomware notifications initiative, proposed SWEC cyber regs, and today's list - 5 tips for cyber beginners.

GitHub rotates exposed private key, fake ChatGPT Chrome extension, ChatGPT bug leaked users' conversation histories, what type of identity are you talking to,

https://www.bleepingcomputer.com/news/security/githubcom-rotates-its-exposed-private-ssh-key/

https://thehackernews.com/2023/03/fake-chatgpt-chrome-browser-extension.html

https://www.bbc.com/news/technology-65047304

https://www.darkreading.com/vulnerabilities-threats/are-you-talking-to-a-carbon-silicon-or-artificial-identity-

https://www.infosecurity-magazine.com/news/sharepoint-phishing-scam-targets/

https://www.helpnetsecurity.com/2023/03/23/discover-valid-okta-credentials/

https://securityaffairs.com/143902/data-breach/dole-food-company-data-breach.html

https://securityintelligence.com/articles/six-ways-to-secure-organization-on-smaller-budget/

Michael Lines is CISO for Open Technology Solutions, an expert in developing and leading information security and risk programs for organizations ranging from global enterprises to SaaS startup, and is authoring a book titled Heuristic Risk Management, dealing with why most risk management efforts are ineffective and what to do about it.

https://securityaffairs.com/143693/data-breach/nba-data-breach.html

https://www.bleepingcomputer.com/news/security/new-hinatabot-botnet-could-launch-massive-33-tbps-ddos-attacks/

https://thehackernews.com/2023/03/chinese-hackers-exploit-fortinet-zero.html

https://www.scmagazine.com/news/device-security/18-zero-day-samsung-android-wearables-telematics

https://www.helpnetsecurity.com/2023/03/17/chatgpt-cybersecurity-potential/

https://www.techtarget.com/searchsecurity/tip/Is-cybersecurity-recession-proof

https://erikchristianjohnson.com/working-from-home-mistakes-you-dont-want-to-make/