Episode 48: March 06 2023
Popular fintech apps expose exploitable secrets, Microsoft Word RCE PoC is public, Phishing Campaign Targets Job Seekers and Employers, Old Vulnerabilities haunt organizations
Read MorePopular fintech apps expose exploitable secrets, Microsoft Word RCE PoC is public, Phishing Campaign Targets Job Seekers and Employers, Old Vulnerabilities haunt organizations
Read MoreFortinet Patches 40 Flaws, Twitter MMS MFA Disaster, Coinbase cyberattack targeted employees with fake SMS alert, Spain Orders Extradition of Alleged British Hacker to US
Read MoreTA866 Threat Group Selectively Targets U.S. and German Organizations, 4,000 Women’s Health Patient Data Breach, Pepsi Bottling Ventures suffers data breach after malware attack , How not to handle an incident: DMS vendors silence over XSS zero-days
Read MoreLG UPlus’ dat breach impacts 290,000 users, Mortgage Financial Technologies Company Exposes Hundreds of Thousands of Records Online, India’s largest truck brokerage company leaks 140GB of Data, Security Teams feel an inability to prevents bad things from happening
Read MoreOld Vulnerabilities used to attack VMware, Nevada Ransomware Group, Data breach at Vice Media involved SSNs and Financial Info, New LockBit color
Read MoreBullet points of key topics + chapter markers [00:36] New CrySIS/Dharma Ransomware Variants [07:45] No Fly List Uncovered [17:12] Riot Games Hacked [22:23] MailChimp discloses new breach
Read MoreBullet points of key topics + chapter markers [00:36] Hackers go after PII the most [09:35] InfoSec Community Target in Phishing Campaign [16:09] Harder to Detect Phishing Technique [23:47] Ransomware Victims Pay for Data Deletion
Read MoreCisco Warns of Many Old Vulnerabilities Being Exploited in Attacks, Glupteba botnet is back after Google disrupted it, 85% of attacks now use encrypted channels, InfraGard Hacked/Hacker Halts Sale of FBI’s High-Profile InfraGard Database
Read MoreSequoia Discloses a Data Breach, Health Dept warns of Royal Ransomware, Hackers earn $989,750 for 63 zero-days exploited at Pwn2Own Toronto, Cisco discloses high-severity IP phone zero-day
Read MoreHow not to handle vulnerabilites, HHS warns use of pixel tracking tech without BAA violates HIPAA, Trustcor dropped as root certificate authority, Hyundai app bugs allowed hackers to remotely unlock, start cars
Read More