Outlook Ditches Basic Auth, Scattered Spider Leader Tyler Buchanan Arrested, Linux Malware Uses Emojis on Discord
In today’s episode, we discuss the arrest of the alleged ringleader of Scattered Spider, implicated in data breaches affecting Twilio, LastPass, and...
Microsoft President Takes Full Accountability, YouTube Ad Injections, Sleepy Pickle Cyber Attack
In today’s episode, we discuss Microsoft’s commitment to take full responsibility for security failures, as detailed in Brad Smith’s House testimony (https://www.cybersecuritydive.com/news/microsoft–security-failures-house-testimony/718853/),...
Key Takeaways from the Ticketmaster breach and Amazon re:Inforce in Philadelphia
In today’s episode, we explore recent major cybersecurity upgrades aimed at safeguarding the American healthcare system, including a new initiative by Microsoft...
Sp1d3r Hacks Cylance, Google Busts Propaganda, NHS Hit by Russian Hackers
In today’s episode, we delve into the latest cybersecurity incidents, including Cylance confirming old data sold by Sp1d3r for $750,000, ongoing disruptions...
Windows Recall Updates, London NHS Ransomware Crisis, VSCode Darcula Typosquatting Research
In today’s episode, we discuss the NHS’s urgent appeal for O-type blood donations following a ransomware attack on Synnovis, the security risks...
CronUp GitHub Extortions, DuckDuckGo AI Privacy, Muhstik Apache CVE-2023-33246
In today’s episode, we discuss the recent Gitloker attacks affecting GitHub repositories, extorting users by wiping repos and demanding communication via Telegram....
Zero-Click TikTok Hack, Windows Recall Flaws, Qilin Ransomware Group [Updated]
In today’s episode, we look into the recent compromise of celebrity TikTok accounts through a zero-click attack and discuss the exploited vulnerabilities....
Fake Browser Updates, Atlassian RCE Exploit, glup-debugger-log
In today’s episode, we discuss fake browser updates distributing BitRAT and Lumma Stealer via Discord (https://thehackernews.com/2024/06/beware-fake-browser-updates-deliver.html), a malicious npm package targeting Gulp...
Linux Vulnerability Exploits, Ticketmaster Breach, Snowflake Compromise
In today’s episode, we cover the critical Linux vulnerability CVE-2024-1086 being actively exploited and urge users to patch immediately (https://arstechnica.com/security/2024/05/federal-agency-warns-critical-linux-vulnerability-being-actively-exploited/). We also...
Mystery Malware Destroys 600,000 Routers, and CISOs Under Board Pressure, FlyingYeti Exploits WinRAR Vulnerability
In today’s episode, we explore the FlyingYeti campaign exploited by using a WinRAR vulnerability (CVE-2023-38831) to deliver COOKBOX malware in Ukraine, detailed...