meta_pixel
Tapesearch Logo
Log in
CyberWire Daily

Klue me in on the breach.

CyberWire Daily

N2K Networks, Inc.

Technology, News, Tech News, Daily News

4.81.1K Ratings

🗓️ 24 June 2026

⏱️ 30 minutes

🧾️ Download transcript

Summary

LastPass says Klue breach affected customer information, but passwords remain secure. Attackers begin exploiting Cisco Unified CM vulnerability. CISA flags actively exploited Ubiquiti and Lantronix flaws, urges rapid patching. DifyTap flaws could expose private AI conversations across tenants. Researchers find AI plugin registry let unofficial tools masquerade as trusted software. xpl0itrs launches leak site, signaling shift toward full-service cyber extortion. Ransomware attack hits Indian auto giant Bajaj Auto. U.S. presses Meta to submit AI models for national security reviews. Alleged criminal marketplace administrator extradited to the US. U.S. expands sanctions against Cambodian scam network tied to cyber fraud operations. On today’s Industry Voices segment, we are joined by Mike Masciulli, Managing Director, Migration Products and Services at Semperis, discussing RC4 and AD Migration: The Break Scenarios Hiding in Your Source Domain. And a lesson in access control. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest On today’s Industry Voices segment, we are joined by Mike Masciulli, Managing Director, Migration Products and Services at Semperis, discussing RC4 and AD Migration: The Break Scenarios Hiding in Your Source Domain. If you enjoyed this conversation, check out the full interview here. Selected Reading Password manager maker LastPass says hackers stole customer support case data during Klue breach (TechCrunch) Klue says hackers stole credential from 2022 that led to customer data breaches (TechCrunch) Cisco Unified CM flaw CVE-2026-20230 now exploited in attacks (BleepingComputer) U.S. CISA adds Ubiquiti UniFi OS and Lantronix EDS5000 plugin flaws to its Known Exploited Vulnerabilities catalog (SecurityAffairs)  DifyTap: Zafran discovers how attackers can silently wiretap AI data across tenants on a platform powering 1M+ apps  (Zafran)  23 ClawHub Plugins Squat Official Org Scopes (Manifold Security)  Cyber Intel Brief: xpl0itrs Leak Site Launch (Dataminr)  Indian auto giant Bajaj Auto hit by ransomware incident (The Record)  U.S. Presses Meta to Agree to A.I. Reviews as Security Concerns Rise (NY Times) Algerian Man Extradited to US for Running Cybercrime Marketplaces (SecurityWeek) US adds sanctions against accused Cambodian scammers Prince Group (Reuters) Ushering in the Next Frontier of Quantum Innovation (The White House)  Meta Exposed Data Internally From Its Controversial Employee-Tracking Program (WIRED)  Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry’s most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Transcript

Click on a timestamp to play from that location

0:00.0

You're listening to the Cyberwire Network, powered by N2K.

0:11.5

AI is making fishing attacks faster, more convincing, and harder for people to spot,

0:17.3

and traditional security awareness and fishing training weren't designed for this level of attack.

0:22.7

Hock's Hunt helped security teams prepare employees for the attacks they face every day,

0:28.1

with personalized fishing training that adapts to each employee and reduces risky behavior over time.

0:34.8

For IT and security leaders looking to strengthen their human layer of defense,

0:39.4

without adding more manual work, visit hoxhunt.com slash cyberwire to learn more. That's

0:46.5

h-o-x-hunt-com slash cyberwire.

1:03.3

Thank you. slash Cyberwire. Last Pass says Clue breach affected customer information, but passwords remain secure.

1:08.9

Attackers begin exploiting Cisco Unified CM vulnerability.

1:12.9

Sisa flags actively exploited, ubiquity, and Lantronics flaws, urges rapid patching.

1:19.0

Diffy tap flaws could expose private AI conversations across tenants.

1:24.2

Researchers find AI plug-in registry let unofficial tools masquerade as trusted software.

1:30.0

Exploaders launches leak site, signaling shift towards full-service cyber extortion.

1:35.5

Ransomware attack hits Indian auto-giant Bajajaj Auto.

1:39.5

U.S. presses meta to submit AI models for national security reviews.

1:44.3

Alleged criminal marketplace administrator extradited to the U.S.

1:47.7

The United States expands sanctions against Cambodian scam network tied to cyber fraud operations.

1:54.5

On today's industry voices segment, we are joined by Mike Mashuli, managing director ofration Products and Services at Semperis, discussing

2:02.3

RC4 and AD Migration, the break scenarios hiding in your source domain, and 24th, 20206.

2:28.1

I'm Maria Vermazes in for Dave Bittner, and this is your Cyberwire Intel briefing.

2:45.9

Thank you for joining me today. Let's get into it.

...

Transcript will be available on the free plan in 21 days. Upgrade to see the full transcript now.

Disclaimer: The podcast and artwork embedded on this page are from N2K Networks, Inc., and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of N2K Networks, Inc. and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.

Copyright © Tapesearch 2026.