One tap, total access: Pegasus exploits unveiled.

CyberWire Daily

N2K Networks, Inc.

News, Tech News, Daily News, Technology

4.8 • 1.1K Ratings

🗓️ 15 November 2024

⏱️ 40 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

Unredacted court filings from WhatsApp’s 2019 lawsuit against NSO Group reveal the scope of spyware infections. Glove Stealer can bypass App-Bound Encryption in Chromium-based browsers. Researchers uncover a new zero-day vulnerability in Fortinet’s FortiManager. Rapid7 detects an updated version of LodaRAT. CISA warns of active exploitation of Palo Alto Networks’ Expedition tool. Misconfigured Microsoft Power Pages accounts expose sensitive data. Iranian state hackers mimic North Koreans in fake job scams. Australia warns its critical infrastructure providers about state sponsored embedded malware. An especially cruel cybercriminal gets ten years in the slammer. Guest Ambuj Kumar, Co-founder and CEO of Simbian, joins us to discuss how AI Agents may change the cyber landscape. We’re countin’ down the top ten least secure passwords. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Guest Ambuj Kumar, Co-founder and CEO of Simbian, joins us to discuss how AI Agents are going to change the cyber landscape. Selected Reading 1,400 Pegasus spyware infections detailed in WhatsApp’s lawsuit filings (The Record) Glove Stealer Malware Bypasses Chrome's App-Bound Encryption (SecurityWeek) watchTowr Finds New Zero-Day Vulnerability in Fortinet Products ( Infosecurity Magazine) LodaRAT: Established malware, new victim patterns (Rapid7 Blog) CISA Warns of Two More Palo Alto Expedition Flaws Exploited in Attacks (SecurityWeek) Microsoft Power Pages misconfigs exposing sensitive data (The Register) Iranian Threat Actors Mimic North Korean Job Scam Techniques (BankInfo Security) Hackers Lurking in Critical Infrastructure to Wage Attacks (BankInfo Security) Cybercriminal devoid of boundaries gets 10-year prison sentence (The Register) Top 200 Most Common Passwords (NordPass) Special voting request. Just when you thought voting was over for this year…It’s time to vote…again! The N2K CyberWire hosting team of Dave Bittner, Maria Varmazis, and Joseph Carrigan have been nominated for the Creator of the Year category in the Baltimore region’s 2024 Technical.ly Awards for their incredible work on the Hacking Humans podcast! If you're a fan of Hacking Humans, we’d be thrilled to have your support! Please cast your vote here. (Make sure you select the “Baltimore” region). Thanks for your vote! Voting ends Monday, November 18th, so don't delay! Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts wit h us by completing our brief listener survey as we continually work to improve the show. Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Transcript

Click on a timestamp to play from that location

0:00.0	You're listening to the Cyberwire Network, powered by N2K.
0:09.7	Hey, everybody, Dave here.
0:15.6	I want to talk about our sponsor, Legal Zoom.
0:19.5	You know, I started my first business back in the early 90s,
0:23.2	and oh, what I would have done to have been able to have the services of an organization like LegalZoom back then.
0:31.1	Just getting all of those business ducks in a row, all of that technical stuff, the legal stuff,
0:36.8	the registrations of the business, the taxes, all of those technical stuff, the legal stuff, the registrations of the business,
0:39.1	the taxes, all of those things that you need to go through when you're starting a business,
0:44.2	the hard stuff, the stuff that sucks up your time when you just want to get that business
0:49.4	launched and out there. Well, LegalZoom has everything you need to launch, run, and protect your
0:56.3	business all in one place. And they save you from wasting hours making sense of all that
1:02.7	legal stuff. Launch, run, and protect your business to make it official today at legalzoom.com.
1:10.4	You can use promo code Cyber10 to get 10% off any LegalZoom business information product,
1:17.1	excluding subscriptions and renewals.
1:19.4	That expires at the end of this year.
1:21.4	Get everything you need from setup to success at LegalZoom.com and use promo code Cyber10. That's legalzoom.com and promo code
1:30.8	cyber 10. LegalZoom provides access to independent attorneys and self-service tools. LegalZ
1:37.0	is not a law firm and does not provide legal advice except where authorized through its
1:41.1	subsidiary law firm, LZ Legal Services LLC.
1:58.5	Unredacted court filings from WhatsApp's 2019 lawsuit against NSO group reveal the scope of spyware infections.
2:06.3	Glove-stealer can bypass app-bound encryption in chromium-based browsers.
2:10.7	Researchers uncover a new zero-day vulnerability in Fortinette's Forda manager.
	...

Please login to see the full transcript.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from N2K Networks, Inc., and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of N2K Networks, Inc. and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.