Stealth, command, exfiltrate: The three-headed cyber dragon of Crimson Palace.

CyberWire Daily

N2K Networks, Inc.

Tech News, News, Daily News, Technology

4.8 • 1.1K Ratings

🗓️ 10 September 2024

⏱️ 26 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

Crimson Palace targets Asian organizations on behalf of the PRC. Europe’s AI Convention has lofty goals and legal loopholes. The NoName ransomware gang may be working as a RansomHub affiliate. Wisconsin Physicians Service Insurance Corporation, SLIM CD, and Acadian Ambulance Service each suffer significant data breaches. CISA adds three vulnerabilities to its Known Exploited Vulnerabilities Catalog. Researchers from Ben-Gurion University in Israel develop new techniques to exfiltrate data from air-gapped computers. In our latest Threat Vector segment, David Moulton, Director of Thought Leadership at Unit 42, sits down with Ryan Barger, Director of Offensive Security Services, to explore how AI is revolutionizing offensive security. Sextortion scammers have gone to the dogs. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. Threat Vector Segment In this segment of Threat Vector, David Moulton, Director of Thought Leadership at Unit 42, sits down with Ryan Barger, Director of Offensive Security Services, to explore how AI is revolutionizing offensive security. Ryan delves into the practical applications of AI in tasks such as OSINT analysis, payload development, and evading endpoint detection systems. To listen to their full conversation, check out the episode here. You can catch new episodes of Threat Vector every Thursday on the N2K CyberWire network. Selected Reading Chinese Tag Team APTs Keep Stealing Asian Gov't Secrets (Dark Reading) The AI Convention: Lofty Goals, Legal Loopholes, and National Security Caveats (SecurityWeek) NoName ransomware gang deploying RansomHub malware in recent attacks (Bleeping Computer) Wisconsin Insurer Discloses Data Breach Impacting 950,000 Individuals (SecurityWeek) Payment Gateway SLIM CD Data Breach: 1.7 Million Users Impacted (HACKREAD) Acadian Ambulance service is reporting data breach, exposing almost 3 Million people (Beyond Machines) CISA Warns of Three Vulnerabilities That Are Actively Exploited in the Wild (Cyber Security News) Researchers Detail Attacks on Air-Gapped Computers to Steal Data (Cyber Security News) Sextortion scams now use your "cheating" spouse’s name as a lure (Bleeping Computer) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show. Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Transcript

Click on a timestamp to play from that location

0:00.0	You're listening to the CyberWire Network, powered by N2K.
0:07.0	Defense contractors face immense
0:13.7	face immense pressure to comply with CMMC 2.0 security standards,
0:17.7	needing a secure user-friendly file sharing solution.
0:21.3	Kiteworks, a FedRamp moderate authorized solution, supports nearly 90%
0:26.4	of CMMC 2.0 level 3 requirements, reducing compliance effort and cost. Kiteworks leverages a zero trust framework. using compliance
0:33.4	and offers a zero trust framework for swift compliance
0:36.2	and offers a secure platform for defense data protection needs
0:40.0	with advanced security features and ease of use.
0:43.3	Its intuitive UI mobile apps and centralized policy management
0:47.8	simplify administration.
0:49.9	Accelerate your CMMC 2.0 compliance and address federal zero trust requirements with
0:56.3	Kiteworks Universal Secure File Sharing Platform made for defense contractors.
1:02.1	Visit Kiteworks.
1:04.0	To get started. Crimson Palace targets Asian organizations on behalf of the PRC.
1:21.0	Europe's AI Convention has lofty goals and legal loopholes.
1:25.0	The no-name ransomware gang may be working as a ransom hub affiliate.
1:29.0	Wisconsin Physicians Service Insurance Corporation, Slim CD, and Acadian Ambulance Service each suffer significant
1:36.2	data breaches. SISA adds three vulnerabilities to its known exploited vulnerabilities catalog. Researchers from Ben-Gurion University in Israel develop new techniques
1:46.0	to exfiltrate data from air-gapped computers. In our latest Threat Vector segment,
1:51.0	David Moulton, director of thought leadership at Unit 42,
1:54.4	sits down with Ryan Varger, director of offensive security services,
	...

Please login to see the full transcript.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from N2K Networks, Inc., and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of N2K Networks, Inc. and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.