Breached but not broken.

CyberWire Daily

N2K Networks, Inc.

Tech News, News, Daily News, Technology

4.8 • 1.1K Ratings

🗓️ 19 December 2024

⏱️ 28 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

CISA urges senior government officials to enhance mobile device security. Russian state-sponsored hacker group Sandworm is targeting Ukrainian soldiers. A website bug in GPS tracking firm Hapn is exposing customer information. Multiple critical vulnerabilities have been identified in Sharp branded routers. Ireland’s Data Protection Commission fines Meta $263 million for alleged GDPR violations. Google releases an urgent Chrome security update to address four high-rated vulnerabilities. Cyberattacks on India-based organizations surged 92% year-over-year. Cybercriminals target Google Calendar to launch phishing attacks. Fortinet patches a critical vulnerability in FortiWLM. Juniper Networks warns of a botnet infection targeting routers with default credentials. Our guest is Jeff Krull, principal and practice leader of Baker Tilly's cybersecurity practice, with advice on using employee access controls to limit internal cyber threats. When is “undesirable” a badge of honor? Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Our guest is Jeff Krull, principal and practice leader of Baker Tilly's cybersecurity practice, talking about using employee access controls to limit internal cyber threats. Selected Reading CISA urges senior government officials to lock down mobile devices amid ongoing Salt Typhoon breach (The Record) Sandworm-linked hackers target users of Ukraine’s military app in new spying campaign (The Record) Tracker firm Hapn spilling names of thousands of GPS tracking customers (TechCrunch) Multiple security flaws reported in SHARP routers (Beyond Machines) Meta fined $263 million for alleged GDPR violations that led to data breach (The Record) Update Google Chrome Now—4 New Windows, Mac, Linux Security Warnings (Forbes) India Sees Surge in Banking, Utilities API Attacks (Dark Reading) Google Calendar Phishing Scam Targets Users with Malicious Invites (Hackread) Fortinet Patches Critical FortiWLM Vulnerability (SecurityWeek) Juniper Warns of Mirai Botnet Targeting Session Smart Routers (SecurityWeek) Recorded Future CEO Calls Russia’s “Undesirable” Listing a “Compliment” (Infosecurity Magazine) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show. Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Transcript

Click on a timestamp to play from that location

0:00.0	You're listening to the Cyberwire Network, powered by N2K.
0:09.7	Do you know the status of your compliance controls right now? Like right now.
0:18.1	We know that real-time visibility is critical for security, but when it comes to
0:22.6	our GRC programs, we rely on point-in-time checks. But get this, more than 8,000 companies
0:29.9	like Atlassian and Quora have continuous visibility into their controls with Vanta. Here's the
0:36.4	gist. Vanta brings automation to evidence collection across 30 frameworks,
0:41.5	like SOC2 and ISO-271.
0:45.6	They also centralize key workflows like policies, access reviews, and reporting,
0:51.1	and helps you get security questionnaires done five times faster with AI.
0:56.2	Now, that's a new way to GRC.
0:59.2	Get $1,000 off Vanta when you go to Vanta.com slash cyber.
1:04.9	That's Vanta.com slash cyber for $1,000 off.
1:29.7	SISA urges senior government officials to enhance mobile device security.
1:34.3	Russian state-sponsored hacker group Sandworm is targeting Ukrainian soldiers.
1:39.6	A website bug and GPS tracking firm happen is exposing customer information.
1:44.1	Multiple critical vulnerabilities have been identified in sharp branded routers.
1:50.4	Ireland's Data Protection Commission fines meta-263 million dollars for alleged GDPR violations.
1:55.9	Google releases an urgent Chrome security update to address four high-rated vulnerabilities.
2:01.1	Cyber attacks on India-based organizations surge 92% year-over-year.
2:05.0	Cybercriminals target Google Calendar to launch fishing attacks.
2:08.8	BordaNet patches a critical vulnerability in Forta WLM.
2:13.4	Juniper Networks warns of a botnet infection targeting routers with default credentials.
	...

Please login to see the full transcript.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from N2K Networks, Inc., and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of N2K Networks, Inc. and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.