A “must patch” list in the making.

CyberWire Daily

N2K Networks, Inc.

News, Tech News, Daily News, Technology

4.8 • 1.1K Ratings

🗓️ 15 October 2024

⏱️ 32 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

CISA adds a Fortinet flaw to its “must patch” list. Splunk releases fixes for 11 vulnerabilities in Splunk Enterprise. ErrorFather is a new malicious Android banking trojan. New evidence backs secure-by-design practices. CISA warns that threat actors are exploiting unencrypted persistent cookies. The FIDO Alliance standardizes passkey portability. Cybercriminals linger on Telegram. On our Industry Voices segment today, our guest is Matt Radolec, Vice President, Incident Response and Cloud Operations at Varonis, discussing how AI amplifies the need for data privacy regulation and opens doors for abuse. We mark the passing of the co creator of the BBS. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest On our Industry Voices segment today, our guest is Matt Radolec, Vice President, Incident Response and Cloud Operations at Varonis, discussing how AI amplifies the need for data privacy regulation and opens doors for abuse. Selected Reading Tens of thousands of IPs vulnerable to Fortinet flaw dubbed 'must patch' by feds (CyberScoop) Fortinet FortiGuard Labs Observes Darknet Activity Targeting the 2024 United States Presidential Election (Fortinet) Splunk Enterprise Update Patches Remote Code Execution Vulnerabilities (SecurityWeek) Cerberus Android Banking Trojan Deployed in New Multi-Stage Malicious Campaign (Infosecurity Magazine) Organizations can substantially lower vulnerabilities with secure-by-design practices, report finds (CyberScoop) Eight Million Users Download 200+ Malicious Apps from Google Play (Infosecurity Magazine) TrickMo malware steals Android PINs using fake lock screen (Bleeping Computer) CISA: Hackers abuse F5 BIG-IP cookies to map internal servers (Bleeping Computer) FIDO Alliance is Standardizing Passkey Portability (Thurrott) So far, cybercriminals appear to be just shopping around for a Telegram alternative (The Record) Ward Christensen, BBS inventor and architect of our online age, dies at age 78 (Ars Technica) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show. Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Transcript

Click on a timestamp to play from that location

0:00.0	You're listening to the CyberWire Network, powered by N2K. And now a word from our sponsor,
0:17.0	Security teams face a barrage of more, more security tools, create more complexity. More devices need protection. More security
0:23.0	devices need protection,
0:25.0	more specialized focus areas create more silos.
0:29.0	The security landscape is changing fast.
0:32.0	How can security operations transform to meet current threats?
0:36.0	Cortex by Palo Alto networks consolidates Secop Tools into an integrated platform
0:42.0	and helps organizations stop threats at scale
0:45.0	with AI automation and analytics. Learn more at Palo Alto Networks
0:49.8	dot com slash cortex. SISA adds a Fortunet flaw to its must-catch list.
1:09.0	Splunk releases fixes for 11 vulnerabilities in Splunk Enterprise.
1:13.0	Error Father is a new malicious Android banking Trojan.
1:17.0	New evidence backs secure by design practices.
1:20.0	CISA warns that threat actors are exploiting unencrypted persistent cookies.
1:24.8	The Fido Alliance standardizes past key portability.
1:28.2	Cyber criminals linger on telegram.
1:30.8	On our industry voices segment, our guest is Matt Radelik, Vice President of
1:34.8	Incident Response and Cloud Operations at Veronis. We're discussing how AI
1:39.4	amplifies the need for data privacy regulation and opens the doors for abuse. And we mark the
1:45.5	passing of the co-creator of the BBS. It's Tuesday, October 15, 2024. I'm Dave Bitner and this is your cyberwire intel briefing. Thanks for joining us here today. It is great to have you with us and great to be back.
2:23.0	Around 87,000 IP addresses are potentially vulnerable to a critical Fortinet flaw,
2:30.0	which CISA added to its must patch list due to active exploitation
	...

Please login to see the full transcript.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from N2K Networks, Inc., and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of N2K Networks, Inc. and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.