- www.scmagazine.com: As US takes sweeping action against Russia for years of hacking, industry skeptical of impact - www.darkreading.com: FBI Operation Remotely Removes Web Shells From Exchange Servers - www.bleepingcomputer.com: CISA gives federal agencies until Friday to patch Exchange servers - www.zdnet.com: Google Project Zero testing 30-day grace period on bug details to boost user patching - www.cyberscoop.com: Hundreds of electric utilities downloaded SolarWinds backdoor, regulator says...
Apr 18, 2021•20 min•Ep 40•Transcript available on Metacast This past week had a bunch of large scale hits with potentially 700 million people being hacked (not all this week, some as early as 2019). - thehill.com : Major DC insurance provider hacked by 'foreign cybercriminals' - www.bleepingcomputer.com : North Korean hackers use new Vyveva malware to attack freighters - www.darkreading.com : LinkedIn Phishing Ramps Up With More-Targeted Attacks - www.scmagazine.com : Conti ransomware gang hits Broward County Schools with $40M demand - www.bleepingcompu...
Apr 11, 2021•21 min•Ep 39•Transcript available on Metacast Lots happening this week, as I welcome in my new students to this term. Solarwinds fall out still happening, along with changes at the company, multi university hacks reported, North Korea is still being tricky, another water treatment plan was hacked (although in the past), Ubiquity has a whistle blower, and Space X encrypted their data streams. - thehill.com : Hackers accessed emails of top DHS officials as part of SolarWinds breach: report - www.cyberscoop.com : US to publish details on suspe...
Apr 04, 2021•19 min•Ep 38•Transcript available on Metacast Taking a break from the reoccuing nightmare that is cybersecurity, and doing a quick high level overview of teaching cybersecurity, specifically my class. Which happens to start back up on 6 April 2021.
Mar 28, 2021•21 min•Ep 37•Transcript available on Metacast - www.zdnet.com : Mimecast reveals source code theft in SolarWinds hack - www.bleepingcomputer.com : CISA releases new SolarWinds malicious activity detection tool - www.zdnet.com : Microsoft investigates potential ties between partner security firm, Exchange Server attack code lea - arstechnica.com : Exchange servers first compromised by Chinese hackers hit with ransomware - www.bleepingcomputer.com : FBI: Over $4.2 billion officially lost to cybercrime in 2020 - www.cyberscoop.com : Cypriot se...
Mar 21, 2021•19 min•Ep 36•Transcript available on Metacast This week focused heavily on the hack of 2021, at least 10 APTs are exploiting Microsoft Exchange Server vulnerabilities across the globe, oh and 150,000 security cameras were also breached... - www.cyberscoop.com: At least 10 APT hacking groups have exploited Exchange Server bugs, ESET warns - www.cyberscoop.com: Amid widespread Exchange Server attacks, Microsoft issues patch for older versions - arstechnica.com: Critical 0-day that targeted security researchers gets a patch from Microsoft - ww...
Mar 14, 2021•16 min•Ep 35•Transcript available on Metacast - www.scmagazine.com : China’s new cyber tactic: targeting critical infrastructure - www.forbes.com : Hackers Break Into ‘Biochemical Systems’ At Oxford University Lab Studying Covid-19 - arstechnica.com : Hard-coded key vulnerability in Logix PLCs has severity score of 10 out of 10 - www.theregister.com : Chinese businessman plotted with GE insider to steal transistor secrets, say Feds - www.darkreading.com : Microsoft Fixes Exchange Server Zero-Days Exploited in Active Attacks - www.zdnet.com ...
Mar 07, 2021•18 min•Ep 34•Transcript available on Metacast - www.bleepingcomputer.com: Federal Reserve nationwide outage impacts US banking system - www.bleepingcomputer.com: TD Bank suffered systemwide banking outage, services now recovered - www.scmagazine.com: ThreatNeedle malware tied to year-long North Korean espionage campaign against global defense industry - www.cyberscoop.com: Plane-maker Bombardier discloses breach after stolen data surfaces - threatpost.com: Mysterious Silver Sparrow Malware Found Nesting on 30K Macs - www.bleepingcomputer.co...
Feb 28, 2021•18 min•Ep 33•Transcript available on Metacast - www.bleepingcomputer.com : Microsoft: SolarWinds hackers downloaded Azure, Exchange source code - www.cyberscoop.com : White House warns SolarWinds breach cleanup will take time - threatpost.com : Florida Water Plant Hack: Leaked Credentials Found in Breach Database - www.zdnet.com : Singtel hit by third-party vendor's security breach, customer data may be leaked - statescoop.com : Washington state looks to consolidate cybersecurity after data breach - www.bleepingcomputer.com : Cyberattack on...
Feb 21, 2021•25 min•Ep 32•Transcript available on Metacast This week we go after Critical Infrastructure hacks, the majority of windows computers have likely had a vulnerability for over a decade, and 60 million in bitcoin may be locked away forever - www.vice.com : Hacker Tried to Poison Florida City's Water Supply, Police Say - www.wired.com : A Hacker Tried to Poison a Florida City's Water Supply, Officials Say - www.bleepingcomputer.com : Eletrobras, Copel energy companies hit by ransomware attacks - www.bleepingcomputer.com : 12-year-old Win...
Feb 14, 2021•18 min•Ep 31•Transcript available on Metacast - thehill.com : Hackers had access to SolarWinds email system for months - apnews.com : Russian hack brings changes, uncertainty to US court system - www.bleepingcomputer.com : Hackers steal StormShield firewall source code in data breach - arstechnica.com : High-performance computers are under siege by a newly discovered backdoor - threatpost.com : Lazarus Affiliate ‘ZINC’ Blamed for Campaign Against Security Researcher - www.bleepingcomputer.com : Fonix ransomware shuts down and releases maste...
Feb 07, 2021•23 min•Ep 30•Transcript available on Metacast Links to the Stories - www.wired.com : North Korea Targets—and Dupes—a Slew of Cybersecurity Pros - www.darkreading.com : Intl. Law Enforcement Operation Disrupts Emotet Botnet - www.govinfosecurity.com : Another Takedown: NetWalker Ransomware Gang Disrupted - threatpost.com : Mimecast Confirms SolarWinds Hack as List of Security Vendor Victims Snowball - www.darkreading.com : Ransomware Disrupts Operations at Packaging Giant WestRock - arstechnica.com : Home alarm tech backdoored security camer...
Jan 31, 2021•21 min•Ep 29•Transcript available on Metacast Fireeye tries to help, Solarwinds has another trick up it’s sleeve, students infected with malware from government laptops, and the FBI warns of vishing, all this week. Fireeye Release a tool to help: https://www.zdnet.com/article/fireeye-releases-tool-for-auditing-networks-for-techniques-used-by-solarwinds-hackers/ SolarWinds has a fourth vector: https://www.zdnet.com/article/fourth-malware-strain-discovered-in-solarwinds-incident/ Malwarebytes hit with SW: https://threatpost.com/malwarebytes-s...
Jan 24, 2021•18 min•Ep 28•Transcript available on Metacast This week we are taking a high level look at decentralized social media alternatives, that can replace the other platforms you use. https://www.minds.com https://getaether.net https://joinmastodon.org https://lbry.tv/ https://diasporafoundation.org https://d.tube https://www.signal.org https://www.voice.com/faq/ https://mewe.com/faq https://sopa.tulane.edu/blog/decentralized-social-networks https://www.coindesk.com/now-is-the-time-to-advance-the-decentralized-web https://bravenewcoin.com/insight...
Jan 17, 2021•14 min•Ep 27•Transcript available on Metacast Sites for the News References - krebsonsecurity.com: Sealed U.S. Court Records Exposed in SolarWinds Breach - www.fedscoop.com: CISA updates guidance on SolarWinds compromise - www.zdnet.com: SolarWinds: The more we learn, the worse it looks - www.theverge.com: SolarWinds hack may be much worse than originally feared - duo.com: SolarWinds Attackers Accessed, But Did Not Modify, Microsoft Source Code - www.zdnet.com: CISA updates SolarWinds guidance, tells US govt agencies to update right awa - t...
Jan 10, 2021•14 min•Ep 26•Transcript available on Metacast This week, just a small update on SolarWinds, and a look back at the top 10 hacks that occurred in 2020. www.cyberscoop.com : Grid regulator warns utilities of risk of SolarWinds backdoor, asks how exposed they are www.govinfosecurity.com : CISA Warns SolarWinds Incident Response May Be Substantial - www.bleepingcomputer.com : SolarWinds releases updated advisory for new SUPERNOVA malware www.wired.com : The Worst Hacks of 2020, a Surreal Pandemic Year arstechnica.com : 2020 had its share of mem...
Jan 03, 2021•17 min•Ep 25•Transcript available on Metacast Since its the holidays, we are skipping the news this week, and doing a tweaked version of A Christmas Carol. I hope you enjoy it Special Thanks to my family for lending their voices.
Dec 27, 2020•34 min•Ep 24•Transcript available on Metacast FireEye's intrusion was just the tip of the iceberg. Solarwinds is the real nightmare. This week we dig a bit deeper than normal, and talk about Solarwinds, but wait...more than that happened this past week too! - arstechnica.com: ~18,000 organizations downloaded backdoor planted by Cozy Bear hackers - www.govtech.com: Federal Agencies, Think Tank Targeted in Russian Hacking Spree - www.cyberscoop.com: White House activates cyber emergency response under Obama-era directive - www.bleepingc...
Dec 21, 2020•19 min•Ep 23•Transcript available on Metacast The hack that has shaken the cybersecurity industry, COVID vaccine information stolen, Congress brings national cyber back, all happened this past week - www.fireeye.com : FireEye Shares Details of Recent Cyber Attack, Actions to Protect Community - www.darkreading.com : Nation-State Hackers Breached FireEye, Stole Its Red Team Tools - www.zdnet.com : Hackers leak data from Embraer, world's third-largest airplane maker - arstechnica.com : COVID-19 vaccine data has been unlawfully accessed in hac...
Dec 13, 2020•20 min•Ep 22•Transcript available on Metacast CISA and the FBI Issue warnings to Think Tanks, The Cold Chain is being attacked, and MacOS vulnerabilities are being attacked buy APTs all this week Articles: - www.bleepingcomputer.com : FBI and Homeland Security warn of APT attacks on US think tanks - www.securityweek.com : FBI Warns of Auto-Forwarding Email Rules Abused for BEC Scams - www.politico.com : Justices express qualms about sweeping computer crime law - www.bleepingcomputer.com : Pennsylvania county pays 500K ransom to DoppelPaymer...
Dec 06, 2020•17 min•Ep 21•Transcript available on Metacast The Managed.com hack impacts local governments, Google adding E2EE to RCS, and Manchester United was hacked, all this week Links to the Stories - www.securityweek.com : Attack on Vendor Affects Website of Arizona Court System - arstechnica.com : Google is testing end-to-end encryption in Android Messages - www.europol.europa.eu : Over 2 000 Participants from 132 Countries Logged on for the 4th Global Conference on Criminal Finances and Cryptocurrencies - www.bleepingcomputer.com : Tesla Model X ...
Nov 29, 2020•16 min•Ep 20•Transcript available on Metacast Capcom did lose customer data, Russia and North Korea going after COVID-19 research, and 28 million had information stolen in Texas. - www.bleepingcomputer.com : Capcom confirms data breach after gamers' data stolen in cyberattack - arstechnica.com : Hackers sponsored by Russia and North Korea are targeting COVID-19 researchers - threatpost.com : Food-Supply Giant Americold Admits Cyberattack - thehill.com : Software vendor says data breach exposed nearly 28 million Texas driver's license record...
Nov 22, 2020•17 min•Ep 19•Transcript available on Metacast So much Health Care news its astounding - healthitsecurity.com : ‘Security Threat’ Forces Hendrick Health to EHR Downtime Procedures - www.zdnet.com : Australian government warns of possible ransomware attacks on health sector - www.securityweek.com : Encryption Vulnerabilities Allow Hackers to Take Control of Schneider Electric PLCs - threatpost.com : Millions of Hotel Guests Worldwide Caught Up in Mass Data Leak - www.bleepingcomputer.com : Laptop maker Compal hit by ransomware, $17 million de...
Nov 15, 2020•22 min•Ep 17•Transcript available on Metacast - www.securityweek.com : U.S. Says Iranian Hackers Accessed Voter Information - www.securityweek.com : Guard Cyber Team to Help Respond to Hospitals Cyberattack - chathamjournal.com : Chatham County government experienced cybersecurity attack on October 28 - arstechnica.com : The feds just seized Silk Road’s $1 billion stash of bitcoin - www.securityweek.com : Private Prison Operator GEO Group Discloses Data Breach. - www.cbc.ca/news : STM says it refused hackers' $2.8n - www.bleepingcomputer.co...
Nov 08, 2020•20 min•Ep 17•Transcript available on Metacast Medical systems still underweight, COVID-19 Vaccine Manufacture Hacked, Elections hacked with Ransomeware, Louisiana calls in the National Guard for help, and an insider threat, all this week closing out Cybersecurity Awareness Month - threatpost.com : 2 More Hospitals Hit by Growing Wave of Ransomware Attacks, As Feds Issue Warning - www.bleepingcomputer.com : Montreal's STM public transport system hit by ransomware attack - www.scmagazine.com : Finnish psychotherapy center fires CEO for suppre...
Nov 01, 2020•20 min•Ep 16•Transcript available on Metacast The EU goes after the GRU, a plan for the supply chain, schools still under siege, phishing burn out, and our sweet, sweet coffee gets hacked, all this week. - www.scmagainze.com BN Cyber Attack calls into question business segmentation- www.darkreading.com Flurry of warnings highlight cyber threats to us elections - www.cyberscoop.com : EU slaps sanctions on GRU leader, Fancy Bear, FBI-wanted hacker over Bundestag attack - www.scmagazine.com : Cyber Solarium Commission lays out plan to secure s...
Oct 25, 2020•18 min•Ep 15•Transcript available on Metacast Carnival makes it official, Magento holes patched, Congress cares about the UHS hack, and International governments are looking for way around encryption, all this week - www.bleepingcomputer.com: Largest cruise line operator Carnival confirms ransomware data theft - threatpost.com: Critical Magento Holes Open Online Shops to Code Execution - www.scmagazine.com: Here are the questions Congress asks after a ransomware attack - www.cyberscoop.com: Foreign hackers are targeting federal, state and l...
Oct 18, 2020•14 min•Ep 14•Transcript available on Metacast Hospitals pay ransom in bitcoin, illegitimate news sites, clinical trials were hacked, so as the UN, and an ISP Apologies, all this week. - www.uhsinc.com: Statement from Universal Health Services: Updated Monday, October 5, 2020, 12:30 PM ET - www.zdnet.com: Microsoft's Azure AD authentication outage: What went wrong - www.bleepingcomputer.com: New Jersey hospital paid ransomware gang $670K to prevent data leak - www.bleepingcomputer.com: Massachusetts school district shut down by ransomware at...
Oct 11, 2020•25 min•Ep 13•Transcript available on Metacast A Microsoft Major outrage, 911 went down, the 2nd Largest HIPPA penalty ever, Russian Hacker goes to Jail, and a Teenager hacked a school all this week. - arstechnica.com: Paying ransomware demands could land you in hot water - home.treasury.gov: Advisory on Potential Sanctions Risks for Facilitating Ransomware Payments - www.reuters.com: Universal Health Services says its network is 'still down' - www.wired.com: A Ransomware Attack Has Struck a Major US Hospital Chain -...
Oct 04, 2020•21 min•Ep 12•Transcript available on Metacast Ransomeware attacks on federal contractors, Iranian Dissidents targeted, the Dark Overload pleads guilty..and an 10 out of 10 vulnerability in windows all this week. Links to all the Stories - www.zdnet.com : CISA says a hacker breached a federal agency - www.wired.com : 179 Arrested in Massive Global Dark Web Takedown - www.theregister.com : Contractor convicted of pinching supercomputer cycles to mine cryptocurrency - www.bleepingcomputer.com : Government software provider Tyler Technologies h...
Sep 27, 2020•16 min•Ep 11•Transcript available on Metacast 
