A swift fix for a serious router bug.

CyberWire Daily

N2K Networks, Inc.

Daily News, Tech News, News, Technology

4.6 • 1K Ratings

🗓️ 1 July 2024

⏱️ 22 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

Juniper issues an emergency patch for its routers. A compromised helpdesk portal sends out phishing emails. Prudential updates the victim count in their February data breach. Rapid7 finds trojanized software installers in apps from a popular developer in India. Australian authorities arrest a man for running a fake mile-high WiFi network. Florida Man's Violent Bid for Bitcoin Ends Behind Bars. N2K’s CSO Rick Howard for a preview of his latest CSO Perspectives podcast episode on The Current State of Identity and Access Management (IAM). A scholarship scammer gets a one-way ticket home. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CSO Perspectives preview N2K’s CSO Rick Howard for a preview of his latest CSO Perspectives podcast episode on The Current State of Identity and Access Management (IAM): A Rick-the-Toolman episode. N2K CyberWire Pro members can find the full episode here. Rick’s accompanying essay can be found here. If you are not yet an N2K CyberWire Pro member, you can get a preview of the episode here. Selected Reading Juniper Networks Warns of Critical Authentication Bypass Vulnerability (SecurityWeek) Router maker's support portal hacked, replies with MetaMask phishing (Bleeping Computer) Prudential Financial Data Breach Impacts 2.5 Million (SecurityWeek) Supply Chain Compromise Leads to Trojanized Installers for Notezilla, RecentX, Copywhiz (Rapid7 Blog) Police allege ‘evil twin’ in-flight Wi-Fi used to steal info (The Register) Inside a violent gang’s ruthless crypto-stealing home invasion spree (ARS Technica) Cyber insurance costs finally stabilising, says Howden (Tech Monitor) AI Transcript, Fake School Website: Student’s US Scholarship Scam Exposed on Reddit (Hackread) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show. Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at [email protected] to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Transcript

Click on a timestamp to play from that location

0:00.0	You're listening to the CyberWire Network, powered by N2K.
0:07.0	The IT world used to be simpler. You only had to secure and manage environments that you controlled.
0:20.0	Then came new technologies and new ways to work. Now employees, apps, and networks are everywhere.
0:27.0	This means poor visibility, security gaps, and added risk.
0:31.0	That's why Cloudflare created the first ever connectivity cloud.
0:35.6	Visit Cloud.com to protect your business everywhere you do business. Juneper issues and Juniper issues an emergency patch for its routers, a compromised help desk
0:58.3	portal sends out fishing emails, prudential updates the victim count in their February data breach.
1:05.0	Rapid 7 finds Trojanized software installers and apps from a popular developer in India.
1:10.0	Australian authorities arrest a man for running a fake mile-high Wi-Fi network.
1:15.0	Florida Mann's violent bid for Bitcoin ends behind bars.
1:19.0	N2K's CSO Rick Howard has a preview of his latest CSO perspectives podcast, the current state
1:26.0	of identity and access management.
1:28.9	And a scholarship scammer gets a one-way ticket home.
1:33.0	It's Monday, July 1st,
1:35.0	it's Monday, July 1st, 2024.
1:41.0	I'm Dave Bitner and this is your CyberWire Intel briefing. Thanks for joining us here today.
1:53.0	It's great to have you with us.
2:05.0	Juniper Networks issued emergency patches for a critical vulnerability affecting its routers,
2:11.0	urging users to apply them immediately.
2:14.5	The authentication bypass flaw scored a perfect 10 on both CVSS 3.1 and 4 systems,
2:22.2	highlighting its severity.
2:24.4	The bug allows attackers to bypass authentication and take full control of affected devices,
	...

Please login to see the full transcript.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from N2K Networks, Inc., and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of N2K Networks, Inc. and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.