NotLockBit takes a bite out of macOS.

CyberWire Daily

N2K Networks, Inc.

Technology, Tech News, Daily News, News

4.8 • 1.1K Ratings

🗓️ 23 October 2024

⏱️ 32 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

NotLockBit mimics its namesake while targeting macOS. Symantec uncovers popular mobile apps with hardcoded credentials. Avast releases a Mallox ransomware decryptor. Akira ransomware reverts to tactics tried and true. Lawmakers ask the DOJ to prosecute tax prep firms for privacy violations. The SEC levies fines for misleading disclosures following the SolarWinds breach. Software liability remains a sticky issue. Updated guidance reiterates the feds’ commitment to the Traffic Light Protocol. A task force has cybersecurity recommendations for the next U.S. president. Today’s guest is Jérôme Segura, Sr. Director of Research at Malwarebytes, sharing their work on "Scammers advertise fake AppleCare+ service via GitHub repos." Warrantless surveillance, powered by your favorite apps. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Today’s guest is Jérôme Segura, Sr. Director of Research at Malwarebytes, sharing their work on "Scammers advertise fake AppleCare+ service via GitHub repos." You can learn more about this research here. Selected Reading NotLockBit Ransomware Can Target macOS Devices (SecurityWeek) Millions of iOS and Android Users at Risk as Popular Apps Expose Cloud Keys (Hackread) Mallox Ransomware Flaw Let Victims Recover Files Without Ransom Payment (Cyber Security News) Akira ransomware pivots back to double extortion, C++ code (SC Media) Lawmakers ask DOJ to prosecute tax prep firms for sharing customer data with big tech (The Record) SEC fines four companies $7M for 'misleading cyber disclosures' regarding SolarWinds hack (TechCrunch) The struggle for software liability: Inside a ‘very, very, very hard problem’ (The Record) US Government Pledges to Cyber Threat Sharing Via TLP Protocol (Infosecurity Magazine) Task force unveils cyber recommendations for the next president (CyberScoop) The Global Surveillance Free-for-All in Mobile Ad Data (Krebs on Security) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show. Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Transcript

Click on a timestamp to play from that location

0:00.0	You're listening to the CyberWire Network, powered by N2K.
0:07.0	Around every entry point and every clever attacker, Vectra sees the attacks others can't.
0:18.6	How? Vectra has AI on it. Vectra's AI attacks signal intelligence tells security teams where to focus
0:26.4	what matters. It wades through thousands of individual threat events so you don't have
0:31.8	to. Attackers infiltrating your network,
0:34.8	Vectra has AI on it. Attackers compromising your identities. Vectra has AI on it.
0:41.3	Vectra AI, the integrated signal powering your XDR.
0:46.2	Visit Vectra.
0:50.3	dot AI slash show me to learn more. That's VE C T R A dot AI slash show me to learn more. Not Lockbit mimics its namesake while targeting Mac OS.
1:13.0	Symantec covers popular mobile apps with hard-coded credentials.
1:17.0	A Vast releases a Malx ransomware decryptor.
1:20.0	A-Kira ransomware reverts to tactics tried and true.
1:24.0	Lawmakers ask the DOJ to prosecute tax prep firms for privacy violations.
1:29.0	The SEC levies fines from his leading disclosures following the Solar Winds breach.
1:35.0	Software liability remains a sticky issue.
1:38.0	Updated guidance reiterates the Fed's commitment to the traffic light protocol.
1:42.0	A task force has cybersecurity recommendations
1:45.1	for the next U.S. President. Today's guest is Jerome Segura, senior director of research at MalwareBites sharing their work on scammers advertising fake
1:54.8	AppleCare Services via GitHub Repos and warrantless surveillance powered by
2:00.7	your favorite apps. It's Wednesday, October 23rd, 2024.
2:04.0	I'm Dave. It's Wednesday, October 23rd, 2024.
2:14.0	I'm Dave Bittner and this is your Cyberwire Intel briefing. Thanks for joining us here today. Great to have you with us as always.
	...

Please login to see the full transcript.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from N2K Networks, Inc., and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of N2K Networks, Inc. and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.