Risky Business #764 -- Mossad expands into telecommunications services

On this week’s show, Patrick Gray and Adam Boileau discuss the weeks security news, including:

• Hezbollah’s attempts to avoid SIGINT with pagers ends in explosions
• The US shines many bright lights on RT’s disinfo role
• Australia counters Chinese bullying in the Pacific
• Valid accounts are the most prevalent entry point, says CISA’s data
• Ivanti and Fortinet vie for worst vendor of the week
• Krebs writes up the shift towards charging The Com with terrorism
• And much, much more…

This week’s episode is sponsored by Push Security, who bring security visibility to where it needs to be these days – the browser. Luke Jennings joins this week’s show to discuss how phish-kit crews are driving the arms race forward, and how detection has to adapt and go where the users are.

This episode is also available on Youtube.

Show notes

• Israel planted explosives in Hezbollah's Taiwan-made pagers, sources say | Reuters
• How Hezbollah used pagers and couriers to counter Israel's high tech surveillance | Reuters
• Biden administration unveils new evidence of RT’s key role in Russian intelligence operations globally | CNN Politics
• Meta bans RT days after U.S. accused Russian outlet of disinformation
• U.S. to file charges in Trump campaign hacking case, officials say
• China suspected of hacking diplomatic body for Pacific islands region
• Chinese-made port cranes in US included 'backdoor' modems, House report says
• Stolen account info still chief risk for federal agencies, annual CISA audit finds
• Notice of Recent Security Incident | Fortinet Blog
• WordPress.org to require two-factor authentication for plugin developers | CyberScoop
• Multiple attacks force CISA to order agencies to upgrade or remove end-of-life Ivanti appliance
• Ivanti Endpoint Manager and Ivanti Endpoint Manager Security Suite and Ivanti Cloud Service Application (CSA) - End Of Life (EOL)
• The Dark Nexus Between Harm Groups and ‘The Com’ – Krebs on Security
• Feds sentence 12 crypto thieves behind SIM swaps, home invasions
• Ex-CrowdStrike employees detail rising technical errors before July outage | Semafor
• Post-CrowdStrike Fallout: Microsoft Redesigning EDR Vendor Access to Windows Kernel - SecurityWeek
• Apple seeks dismissal of its NSO Group lawsuit, citing risk of exposing ‘vital security information’
• US hits Intellexa spyware maker with more sanctions
• (1) BolivarCucuta on X: "Encuentran muerto al ciudadano israelí Yariv Bokor en Medellín En un apartamento de El Poblado, Medellín, fue encontrado sin vida el ciudadano israelí Yariv Bokor, con aparentes signos de violencia. Bokor estaba vinculado a la empresa Sandvine, la cual tiene relación con NSO https://t.co/EeY1os1omW" / X
• Instagram to bolster privacy and safety features for millions of teen users
• Mastercard buys Recorded Future for $2.65 billion | CyberScoop