This CISO Daily Update covers: 00:00 Introduction 00:06 Hackers Detail How They Allegedly Stole Ticketmaster Data From Snowflake 00:57 LA County’s Department of Public Health (DPH) Data Breach Impacted Over 200,000 Individuals 01:47 Panera Bread Likely Paid a Ransom in March Ransomware Attack 02:38 Fake Google Chrome Errors Trick You Into Running Malicious PowerShell Scripts 03:25 Beware Of Malicious Search Results Leading To SolarMarker Malware Installation 03:59 Hackers Exploit Legitimate Webs...
Jun 19, 2024•9 min•Ep. 72
This CISO Daily Update covers: 00:00 Introduction 00:06 Dordt University Faces Massive Data Leak: Millions of Students and Staff Potentially Affected 00:45 Keytronic Confirms Data Breach After Ransomware Gang Leaks Stolen Files 01:37 New York Times Says Data Breach Affected Freelance Visual Contributors 02:17 Globe Life Discloses Breach Amid Accusations of Fraud and Shady Business Tactics 03:03 Los Angeles Schools Investigating Claims of Data for Sale on Dark Web 03:46 Blackbaud Must Pay $6.75 M...
Jun 18, 2024•10 min•Ep. 71
This CISO Daily Update covers: 00:00 Introduction 00:06 Truist Bank Confirms Breach After Stolen Data Shows Up on Hacking Forum 00:45 Panera Warns of Employee Data Breach After March Ransomware Attack 01:28 Grand Traverse County Faces Cyberattack: FBI and State Police Investigate 02:10 City of Cleveland Scrambling to Restore Systems Following Cyberattack 03:02 Life360 Says Personal Information Stolen From Tile Customer Support Platform 03:45 New Attack Technique 'Sleepy Pickle' Targets Machine L...
Jun 14, 2024•11 min•Ep. 70
This CISO Daily Update covers: 00:00 Introduction 00:06 CISA Warns of Criminals Impersonating Its Employees in Phone Calls 00:42 Findlay Automotive Hit by Cybersecurity Attack, Investigation Ongoing 01:15 Medusa Ransomware Group Claims Cyberattack on Organizations in USA, Canada 01:46 Data Broker Shuts Down Product Related to Driver Behavior Patterns 02:36 Ransomware Group May Have Exploited Windows Vulnerability as Zero-Day 03:24 RansomHub Brings Scattered Spider Into Its RaaS Fold 03:59 Chrome...
Jun 13, 2024•9 min•Ep. 69
This CISO Daily Update covers: 00:00 Introduction 00:06 Cyber Incident Forces Cleveland to Shut Down City Hall 00:43 Pure Storage Confirms Data Breach After Snowflake Account Hack 01:27 Ascension Makes Progress in Restoring Systems After Cyberattack, Patients to See Improved Wait Times 02:13 Central Securities Corporation Faces Cyberattack Claims By Underground Team Ransomware Group 02:43 TellYouThePass Ransomware Exploits Recent PHP RCE Flaw to Breach Servers 03:36 New Warmcookie Windows Backdo...
Jun 12, 2024•9 min•Ep. 68
This CISO Daily Update covers: 00:00 Introduction 00:06 LendingTree Confirms That Cloud Services Attack Potentially Affected Subsidiary 00:50 Christie’s Data Breach Impacted 45,798 Individuals 01:36 BlackBerry Disputes Cylance Hack Claims, New York Times Confirms Code Breach 02:20 Ticketmaster Attacker Vanishes, Pundits Speculating Arrest 03:00 More_eggs Malware Disguised as Resumes Targets Recruiters in Phishing Attack 03:28 Unencrypting VPN Traffic Through a New TunnelVision Attack 04:12 Azure...
Jun 11, 2024•10 min•Ep. 67
This CISO Daily Update covers: 00:00 Introduction 00:06 New York Times Source Code Stolen Using Exposed GitHub Token 00:54 Frontier Says 750,000 Social Security Numbers Accessed During April Cyberattack 01:45 Texas Attorney General Investigating Several Connected Car Manufacturers Over Data Sharing 02:31 Nearly 400,000 Affected by Data Breach at Eye Care Management Services Company 03:00 Beware of Fake Google Chrome Update Pop-Ups that Installs Malware 03:36 LightSpy Spyware's macOS Variant Foun...
Jun 10, 2024•10 min•Ep. 66
This CISO Daily Update covers: 00:00 Introduction 00:06 Advance Auto Parts: Alleged Data Breach Exposes Millions After Snowflake Cyberattack 00:46 Financial Data Swiped From US Eye Clinics, Over 300k People Affected 01:35 FBI Obtained 7,000 Lockbit Decryption Keys, Victims Should Contact the Feds to Get Support 02:19 SecurityScorecard Files Complaint against Safe Security for Allegedly Misappropriating Trade Secrets 03:14 RansomHub Operation Is a Rebranded Version of the Knight RaaS 03:57 Muhsti...
Jun 07, 2024•11 min•Ep. 65
This CISO Daily Update covers: 00:00 Introduction 00:06 FBI Warns of Rise in Work-From-Home Scams 00:42 Microsoft Paid Tenable a Bug Bounty for an Azure Flaw It Says Doesn’t Need a Fix, Just Better Documentation 01:29 Celebrity TikTok Accounts Compromised Using Zero-Click Attack via DMs 02:14 Nationwide Call Disruptions Trigger FCC Investigation into Major U.S. Wireless Carriers 03:05 Accidental or Not, Another Google Leak Exposes Multiple Privacy Breaches 03:52 Linux Version of TargetCompany Ra...
Jun 06, 2024•9 min•Ep. 64
This CISO Daily Update covers: 00:00 Introduction 00:06 Clevo Gaming Laptop-Maker Claimed by RansomHub Ransomware Gang 00:52 361 Million Account Credentials Leaked on Telegram: Are Yours Among Them? 01:37 Cyberattack on Telecom Giant Frontier Claimed by RansomHub 02:14 Kickstarter Star Leaks Over Half a Million Records With Clients’ Data 02:57 Christie’s Stolen Data Sold to Highest Bidder Rather Than Leaked, RansomHub Claims 03:43 Dessky Snippets WordPress Plugin Exploited For Card Skimming Atta...
Jun 05, 2024•11 min•Ep. 63
This CISO Daily Update covers: 00:00 Introduction 00:06 Dark Web Actor Claims to Pilfer 2TB of Compressed Data from QuoteWizard 00:50 Collection Agency FBCS Ups Data Breach Tally to 3.2 Million People 01:37 Alleged Heineken Data Breach Potentially Impacts Over 8,000 Employees 02:11 Spoofing Shein for Credential Harvesting 02:45 Utah Student Gives Hackers False Information to Thwart Phishing 03:28 Authorities Ramp Up Efforts to Capture the Mastermind Behind Emotet 04:25 Beware: Fake Browser Updat...
Jun 04, 2024•10 min•Ep. 62
This CISO Daily Update covers: 00:00 Introduction 00:06 Snowflake Denies Breach, Blames Data Theft on Poorly Secured Customer Accounts 00:50 Ticketmaster Confirms Data Breach Impacting 560 Million Customers 01:47 Data Leak Exposes Business Leaders and Top Celebrity Data 02:28 AI Company Hugging Face Detects Unauthorized Access to Its Spaces Platform 03:07 Microsoft Warns of Surge in Cyber Attacks Targeting Internet-Exposed OT Devices 03:55 More Than 600,000 Routers Knocked Out in October by Chal...
Jun 03, 2024•9 min•Ep. 61
This CISO Daily Update covers: 00:00 Introduction 00:06 Nurses at Ascension Hospital in Michigan Raise Alarms About Safety Following Ransomware Attack 00:55 Johnson & Johnson Reports Data Breach Potentially Linked to Massive Cencora Breach 01:39 Everbridge Warns of Corporate Systems Breach Exposing Business Data 02:23 Okta Warns of Credential Stuffing Attacks Targeting Customer Identity Cloud 03:12 Police Seize Over 100 Malware Loader Servers, Arrest Four Cybercriminals 04:12 Shady 'Merry-Go...
May 31, 2024•12 min•Ep. 60
This CISO Daily Update covers: 00:00 Introduction 00:06 Massive Google Leak Exposes Search Algorithm Secrets 00:44 First American December Data Breach Impacts 44,000 People 01:27 Toshiba Email Compromise Reveals Social Security Numbers 02:04 Internet Archive Disrupted by Sustained and “Mean” DDoS Attack 02:50 Ransomware Attack on Seattle Public Library Knocks Out Online Systems 03:36 U.S. Treasury Sanctions Chinese Nationals Behind Billion-Dollar 911 S5 Botnet Fraud 04:18 U.S. Sentences 31-Year-...
May 30, 2024•12 min•Ep. 59
This CISO Daily Update covers: 00:00 Introduction 00:06 Christie’s Confirms Breach After RansomHub Threatens to Leak Data 01:04 Hacker Claims Ticketmaster Data Breach: 560M User Details and Card Info at Risk 01:45 Check Point VPN Targeted for Initial Access in Enterprise Attacks 02:24 WordPress Plugin Abused to Install E-Skimmers in E-Commerce Sites 03:03 Alleged Cyberattack Strikes Allied Telesis: LockBit Ransomware Suspected 03:37 Breach Forums Return to Clearnet and Dark Web Despite FBI Seizu...
May 29, 2024•9 min•Ep. 58
This CISO Daily Update covers: 00:00 Introduction 00:06 Sav-Rx Discloses Data Breach Impacting 2.8 Million Americans 01:02 Google Shares Details on Accidental File Deletion that Impacts Pension Fund’s Accounts 01:42 The U.S. Moves a Step Closer to a Cyber Force 02:33 New ATM Malware Family Emerged in the Threat Landscape 03:18 Ransomware Attack Hits Medical Device Manufacturer 03:55 A High-Severity Vulnerability Affects Cisco Firepower Management Center 04:51 SingCERT Warns Critical Vulnerabilit...
May 28, 2024•11 min•Ep. 57
This CISO Daily Update covers: 00:00 Introduction 00:06 Cencora Data Breach Exposes US Patient Info From 11 Drug Companies 00:57 MITRE December 2023 Attack: Threat Actors Created Rogue VMs to Evade Detection 01:42 Fake AV Websites Used to Distribute Info-Stealer Malware 02:18 Arc Browser’s Windows Launch Targeted by Google Ads Malvertising 03:09 Hackers Phish Finance Orgs Using Trojanized Minesweeper Clone 03:59 Newly Discovered Ransomware Uses BitLocker to Encrypt Victim Data 04:41 Experts Find...
May 27, 2024•8 min•Ep. 56
This CISO Daily Update covers: 00:00 Introduction 00:06 A Consumer-Grade Spyware App Found in Check-in Systems of 3 US Hotels 00:49 Cybercriminals Exploit Cloud Storage For SMS Phishing Scams 01:34 Threat Actor Claiming Access to AWS, Azure, MongoDB & Github API Keys 02:10 Compromised Recording Software Was Served From Vendor’s Official Site, Threat Researchers Say 03:06 Ransomware Attacks Exploit VMware ESXi Vulnerabilities in Alarming Pattern 03:57 Moroccan Cybercrime Group Impersonates No...
May 24, 2024•10 min•Ep. 55
This CISO Daily Update covers: 00:00 Introduction 00:06 Threat Actors Exploited Bitbucket Artifacts to Expose AWS Secrets in Plaintext 00:57 CentroMed Data Breach Exposed 400,000 Patient Records 01:40 Laundering Cash From Healthcare, Romance Scams Lands US Man in Prison for a Decade 02:21 Hackers Sell Fake Pegasus Spyware on Clearnet and Dark Web 03:04 Intercontinental Exchange to Pay $10M SEC Penalty Over VPN Breach 04:01 Critical Veeam Backup Enterprise Manager Flaw Allows Authentication Bypas...
May 23, 2024•11 min•Ep. 54
This CISO Daily Update covers: 00:00 Introduction 00:06 Blackbasta Group Claims to Have Hacked Atlas, One of the Largest US Oil Distributors 00:51 GhostEngine Mining Attacks Kill EDR Security Using Vulnerable Drivers 01:43 EPA Issues Alert After Finding Critical Vulnerabilities in Drinking Water Systems 02:35 Malware Delivery via Cloud Services Exploits Unicode Trick to Deceive Users 03:24 23-Year-Old Arrested for Running 100M Incognito Dark Web Market 04:05 Kansas City Cyberattack Disrupts KC S...
May 23, 2024•12 min•Ep. 53
This CISO Daily Update covers: 00:00 Introduction 00:06 OmniVision Discloses Data Breach After 2023 Ransomware Attack 00:50 Threat Actors USDoD and SXUL Claim 70 Million Rows of Sensitive Data in Alleged Prison Data Breach 01:28 American Radio Relay League Cyberattack Takes Logbook of the World Offline 02:08 Threat Actor Chucky, Owner of LeakBase Claims Knowmad Mood Data Breach 02:52 GitCaught Campaign Relies on GitHub and Filezilla to Deliver Multiple Malware 03:40 New BiBi Wiper Version Also D...
May 21, 2024•8 min•Ep. 52
This CISO Daily Update covers: 00:00 Introduction 00:06 Company That Assists Health Care Insurers Discloses 2023 Data Breach 00:55 Grandoreiro Banking Trojan Resurfaces, Targeting Over 1,500 Banks Worldwide 01:47 Chinese Nationals Arrested for Laundering $73 Million in Pig Butchering Crypto Scam 02:30 Ransomware Gang Targets Windows Admins via PuTTy, WinSCP Malvertising 03:13 North Korea-Linked IT Workers Infiltrated Hundreds of US Firms 04:10 Rumors of BreachForums Reboot 3.0 Already Brewing on...
May 20, 2024•9 min•Ep. 51
This CISO Daily Update covers: 00:06 Cybercriminals Exploiting Microsoft's Quick Assist Feature in Ransomware Attacks 01:07 Law Enforcement Data Stolen in Wichita Ransomware Attack 01:46 Scammers Fake Docusign Templates to Blackmail & Steal From Companies 02:32 Crook Brags About US Army and $75B Defense Biz Pwnage 03:06 Rockford Public Schools Ransomware Attack Encrypted and Stole Student Data 03:48 US Offers $5 Million for Info on North Korean IT Workers Involved in Job Fraud 04:33 SugarGh0...
May 17, 2024•11 min•Ep. 50
This CISO Daily Update covers: 00:06 Ransomware Attack on Singing River Health System Impacted 895,000 People 00:48 FBI Seize BreachForums Hacking Forum Used to Leak Stolen Data 01:25 PDF Exploitation Targets Foxit Reader Users 02:05 As the FBI Closes In, Scattered Spider Attacks Finance, Insurance Orgs 02:52 MITM Attacks Can Still Bypass FIDO2 Security, Researchers Warn 03:39 Nissan Attack Exposes Sensitive Data of Thousands 04:22 Ebury Botnet Malware Compromises 400,000 Linux Servers Over Past...
May 16, 2024•9 min•Ep. 49
This CISO Daily Update covers: 00:06 Zscaler Confirms Only Isolated Test Server Was Hacked 00:43 Ongoing Campaign Bombards Enterprises with Spam Emails and Phone Calls 01:16 Phorpiex Botnet Sent Millions of Phishing Emails to Deliver LockBit Black Ransomware 02:03 Telegram CEO Calls Out Rival Signal, Claiming It Has Ties to US Government 02:41 NIST Confusion Continues as Cyber Pros Complain CVE Uploads Stalled 03:33 Hackers Use DNS Tunneling to Scan and Track Victims 04:06 Android Malware Poses ...
May 15, 2024•10 min•Ep. 48
This CISO Daily Update covers: 00:00 Introduction 00:06 AI Abused to Clone Voices, FBI Warns 00:52 Hacker Offers Data Allegedly Stolen from the City of New York 01:34 INC Ransomware Source Code Selling on Hacking Forums for $300,000 02:16 FCC Reveals Royal Tiger, Its First Tagged Robocall Threat Actor 03:03 Vermont Passes Data Privacy Law Allowing Consumers to Sue Companies 03:49 Malicious Python Package Hides Sliver C2 Framework in Fake Requests Library Logo 04:39 Severe Vulnerabilities in Cint...
May 14, 2024•10 min•Ep. 47
This CISO Daily Update covers: 00:06 The Post Millennial Hack Leaked Data Impacting 26 Million People 00:47 U.S. Law Enforcement Cracks Down on Over 3,000 Money Mules 01:41 New LLMjacking Attack Lets Hackers Hijack AI Models for Profit 02:17 Ohio Lottery Data Breach Impacted Over 538,000 Individuals 03:00 As White House Preps New Cyber Rules for Healthcare, Neuberger Says Backlash Is Unwarranted 03:46 FIN7 Hacker Group Leverages Malicious Google Ads to Deliver NetSupport RAT 04:32 Critical Next....
May 13, 2024•9 min•Ep. 46
This CISO Daily Update covers: 00:06 Dell Warns of Data Breach, 49 Million Customers Allegedly Affected 00:51 Boeing Confirms $200M Cyber Extortion Attempt of LockBit 01:25 Catholic Health System Ascension Warns of Disruptions Following Cyberattack 02:01 New 'LLMjacking' Attack Exploits Stolen Cloud Credentials 02:47 Zscaler Is Investigating Data Breach Claims 03:28 Monday[.]com Removes “Share Update” Feature Abused for Phishing Attacks 04:05 Vast Network of Fake Web Shops Defrauds 850,000 &...
May 10, 2024•9 min•Ep. 45
This CISO Daily Update covers: 00:06 Brandywine Realty Trust Confirms Data Breach After Ransomware Attack 00:48 One Year On, Universities Org Admits MOVEit Attack Hit Data of 800K People 01:27 Scattered Spider Group a Unique Challenge for Cyber Cops, FBI Leader Says 02:06 MediExcel Exposes 500K Patient Documents 02:36 FBI Warns of Gift Card Fraud Ring Targeting Retail Companies 03:17 Attackers Leverage TunnelVision Vulnerability to Expose User Data 03:46 Veeam Fixes RCE Flaw in Backup Management...
May 09, 2024•7 min•Ep. 44
This CISO Daily Update covers: 00:06 LockbitSupp Identified As Dmitry Khoroshev and Indicted for Ransomware Crimes 00:58 MITRE Hack: China-Linked Group Breached Systems in December 2023 01:41 Play Ransomware Group Claims Responsibility for Disrupting Kansas City Scout System 02:23 RSAC: Securing Foundational Tech Critical to Upholding Democratic Values, Says Blinken 03:20 BetterHelp to Pay $7.8 Million to 800,000 in Health Data Sharing Settlement 04:07 Citrix Addresses High-Severity Flaw in NetS...
May 08, 2024•8 min•Ep. 43
