Today's podcast reports on a range of significant cybersecurity incidents in 2024, including data breaches at major companies like Cisco and AlphaSense, a lawsuit against Change Healthcare over a massive medical data breach, and the resurgence of several advanced persistent threat (APT) groups. This episode also highlights vulnerabilities in widely used software like Apache Struts 2, BeyondTrust products, and GStreamer, along with the increasing sophistication of phishing campaigns and the government's response to these threats. The sources also discusses the impact of data breaches on consumer trust and the importance of strong cybersecurity practices for organizations and individuals. Government initiatives to improve cloud security within federal agencies are also featured.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This update reports on several significant cybersecurity events. Major data breaches affected Texas Tech University and Virtavo security camera users, exposing millions of records. Criminal convictions highlight the consequences of cybercrime, while vulnerabilities in Chrome/Edge, Microsoft Teams, Google Calendar, and various other software are detailed. Today's episode also covers emerging threats like the use of GenAI in cybersecurity and newly released national cyber incident response plans. This podcast also discusses the increasing challenges in healthcare cybersecurity and the rapid exploitation of newly deployed APIs.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This podcast is a cybersecurity news update detailing several recent data breaches and vulnerabilities. Specific incidents include attacks on a Bitcoin ATM operator, a school system, and a water treatment subsidiary, resulting in the compromise of sensitive customer and employee data. The update also highlights newly discovered vulnerabilities in various software and applications, like the Prometheus server and a WordPress plugin. Today's episode reports on industry-wide security concerns, such as poor cybersecurity ratings among Fortune 500 companies and significant gaps in hardware knowledge among IT security leaders.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This podcast is a cybersecurity news update detailing several recent data breaches and vulnerabilities. Specific incidents include attacks on a Bitcoin ATM operator, a school system, and a water treatment subsidiary, resulting in the compromise of sensitive customer and employee data. The update also highlights newly discovered vulnerabilities in various software and applications, like the Prometheus server and a WordPress plugin. Today's episode reports on industry-wide security concerns, such as poor cybersecurity ratings among Fortune 500 companies and significant gaps in hardware knowledge among IT security leaders.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's update reports on several significant cybersecurity events. These include a major data breach at the Center for Vein Restoration, a cyber incident affecting Krispy Kreme's online ordering system, and the resurgence of the ZLoader malware. This episode also covers the takedown of DDoS-for-hire platforms, multiple newly discovered vulnerabilities in software and systems (including Microsoft Azure MFA), and a concerning rise in open-source malware. This podcast mentions a global phishing campaign and a survey highlighting public apathy toward data breaches despite their frequency.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This update reports on several significant cybersecurity events. These include large-scale data breaches affecting Sabre, AWS customers, and US subsidiaries of Japanese companies; the spread of new malware like AppLite; government sanctions against a Chinese firm for critical infrastructure attacks; and the discovery of multiple vulnerabilities in software from Microsoft, AMD, Cisco, Ivanti, SAP, and others, including a critical flaw in a widely used WordPress plugin. Today's podcast also highlights a Cloudflare analysis showing a high percentage of malicious online traffic and emails, and a sharp increase in ransomware attacks targeting utility companies. This episode reports notes ongoing unpatched vulnerabilities in certain products.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This update reports on several significant cybersecurity events. One story highlights a phishing attack exposing children's data, while others detail ransomware attacks on a medical device manufacturer and a school district. This episode also covers the expansion of the Socks5Systemz botnet, the evolution of Black Basta ransomware tactics, and newly patched vulnerabilities in QNAP, Synology, and Qlik Sense software. This podcast includes analyses of the rise in malicious emails targeting businesses and the surge in API attacks, alongside a discussion on the energy and security challenges posed by generative AI.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This podcast reports on several significant cybersecurity incidents, including ransomware attacks on Anna Jaques Hospital and Blue Yonder, impacting hundreds of thousands of individuals. It also highlights data breaches at Atrium Health and through fake video conferencing apps targeting Web3 professionals. Today's update covers newly discovered vulnerabilities in various software and open-source frameworks, and discusses the increasing sophistication of phishing attacks fueled by generative AI and a new wave of teenage cybercriminals. This episode also analyzes industry trends, with the finance, manufacturing, and healthcare sectors being primary targets.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's podcast reports on several significant cybersecurity events. These include a four-month cyberattack on a U.S. firm linked to Chinese hackers, the arrest of a teenager suspected of belonging to the Scattered Spider hacking group, and the FBI's warnings about AI-powered fraud schemes. The update also highlights vulnerabilities in various software libraries and systems, such as a backdoor in a Solana code library and zero-day flaws in Mitel MiCollab and Cisco switches. This episode also discusses the increasing use of generative AI in phishing attacks and the activities of the 764 child sextortion group.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's update reports on several significant cybersecurity events. Major breaches affected Chemonics International and Stoli Group, highlighting the vulnerability of large organizations and the devastating impact of ransomware. Data privacy concerns are raised by the FTC's action against data brokers illegally selling location information. This podcast also covers new attack vectors, including corrupted files evading security software, and warnings about several actively exploited vulnerabilities in various systems, including Zyxel firewalls, Cisco ASA software, SolarWinds, and MobSF. This episode discusses the rising risks stemming from employee cybersecurity practices and the exploitation of Cloudflare domains for malicious purposes, as well as the substantial costs of ransomware attacks on the manufacturing sector and the poor maintenance of open-source components.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's update reports on multiple significant cybersecurity incidents. Data breaches affected numerous major corporations, exposing millions of employee and customer records, stemming from both direct attacks and vulnerabilities in third-party services. The FTC banned a data broker from selling sensitive location data, and new regulations are proposed to restrict the sale of other sensitive personal information. Today's podcast also highlights several newly discovered software vulnerabilities and provides advice on mitigation strategies.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's update reports on numerous cybersecurity incidents. These include ransomware attacks targeting Costa Rican energy companies and major retailers, data breaches exposing sensitive customer information at AI startup WotNot and the Veterans Health Administration, and a large-scale Interpol operation targeting cyber fraud. Furthermore, the update highlights several newly discovered vulnerabilities affecting various software and hardware, including Apple's Safari browser, Microsoft's Windows Server, and MediaTek processors. Today's podcast also discusses the impact of generative AI on cybercrime and the updated NIST password guidelines.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's update reports on several significant cybersecurity events. Millions of dollars were stolen from EBT accounts via skimming and third-party vulnerabilities. A new phishing platform, Rockstar 2FA, targets Microsoft 365 accounts, bypassing multi-factor authentication. A data breach at Smart IT Partner leaked an undisclosed amount of data, and malicious Android apps, SpyLoan, harvested data from over 8 million users. Furthermore, a U.S. citizen was sentenced for spying for China, and new phishing campaigns exploit corrupted Word documents and Microsoft's file recovery feature. This episode also highlights critical vulnerabilities in various systems including Microsoft products, Schneider Electric, mySCADA, and Automated Logic products, and the increasing use of AI-powered tools by cybercriminals.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This episode details various data breaches and cyberattacks. These incidents include compromises at GoodSmile Company, Propertyrec, OnePoint Patient Care, and the city of Hoboken. The update also highlights successful intrusion attempts blocked by T-Mobile, the ongoing investigation of the Snowflake hacker, and the expanding reach of the Salt Typhoon cyber-espionage group. This podcast also reporst on several newly discovered vulnerabilities in various software and hardware systems and discusses the rising impact of deepfakes and weak VPN security. The overall focus is on recent cybersecurity threats and vulnerabilities affecting businesses and individuals.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's episode reports on several significant cybersecurity events. These include ransomware attacks targeting Texas and Minneapolis, a school network shutdown, and the exposure of sensitive data by a data broker. The update also highlights critical vulnerabilities in ProjectSend, Microsoft services, NVIDIA software, and a recent Firefox release addressing multiple security flaws. A survey reveals that supply chain managers underestimate cybersecurity risks in warehouses.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's update details several significant events, including ransomware attacks on Starbucks and OfficeZilla, data breaches affecting Arizona's state database and Black Friday shoppers, and ongoing legal action against Meta. This episode highlights several newly discovered vulnerabilities in software like Firefox, Windows, VPN clients, and WordPress plugins, urging users to apply patches promptly. This podcast also discusses the rising challenges of shadow AI and insider threats, emphasizing the need for improved security measures and employee training. The overall focus is on current cybersecurity threats and vulnerabilities impacting both businesses and consumers.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This update reports on several significant cybersecurity incidents. Multiple data breaches affected various organizations, including government agencies (DDOT), insurance companies (GEICO and Travelers), and a financial institution (resulting in a massive credit card leak). Vulnerabilities in software (Microsoft 365, Zyxel firewalls, Veritas Enterprise Vault, and QNAP QuRouter) and ransomware attacks (affecting Microlise) are also highlighted. This podcast further discusses a man indicted for hacking to promote his cybersecurity services and presents predictions for advanced cyber threats in 2025. Finally, it notes a significant increase in IoT device traffic and associated malware attacks.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's update details various significant cyberattacks and vulnerabilities. These include breaches affecting Andrew Tate's online platform, gambling technology provider IGT, and the PyPI repository. This episode also covers legal actions against Google's search monopoly, the removal of millions of scam accounts by Meta, and numerous software vulnerabilities exploited by malicious actors. Today's podcast also reports on the rise of deepfake attacks and the use of penetration testers by ransomware groups. Overall, the article highlights the current threat landscape and the importance of robust cybersecurity measures.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's episode details several significant cyber events. Major incidents include a dark web leak of 140 million login credentials, the takedown of the PopeyeTools cybercriminal marketplace, and indictments against individuals operating illegal streaming services. This podcast also highlights newly discovered vulnerabilities in Palo Alto Networks firewalls, Citrix Session Recording, AnyDesk, and macOS WorkflowKit, as well as a critical Kubernetes flaw. This episode features special reports on MITRE's updated list of the top 25 software vulnerabilities and a concerning number of exposed industrial control systems.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This episode summarizes recent cybersecurity news, including incidents like data breaches at Finastra and Equinox, vulnerabilities in Apple products and Ubuntu software, and warnings about the use of generative AI in software development and the increasing frequency of deepfake attacks. Today's podcast also highlights reports about the rise of phishing attacks using QR codes and the exploitation of a vulnerability in Kemp LoadMaster, a widely used load balancing solution.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This episode reports on recent cybersecurity threats and vulnerabilities. Ransomware gangs like Akira are expanding their operations and releasing unprecedented amounts of stolen data, while others, like Helldown, exploit VPN flaws to breach networks. Threat actors are also exploiting IoT devices as proxies and abusing platforms like Spotify to spread malicious content. Vulnerabilities affecting VMware, Windows Kerberos, and D-Link routers are being actively exploited, while attackers are targeting misconfigured Jupyter servers for sports piracy. Today's podcast highlights reports on the increasing sophistication of ransomware attacks, the long recovery times for cyber incidents, and the importance of adapting to evolving security threats.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's episode provides a digest of recent cybersecurity news. This podcast highlights various data breaches affecting organizations like AnnieMac Home Mortgage, Ford Motor Company, and Maxar Technologies, often involving sensitive personal information. It also reports on vulnerabilities in software like Apache HertzBeat, ManageEngine ADAudit Plus, and Citrix Virtual Apps & Desktops, which could allow attackers to access and compromise systems. This episode also details emerging social engineering tactics such as DocuSign phishing scams and "ClickFix" cyberattacks that use fake error messages to trick users into executing malicious code.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's episode highlights several recent cyberattacks, including a breach of T-Mobile, a data leak at Colicom, and the sentencing of the Bitfinex hacker Ilya Lichtenstein. This podcast also details numerous vulnerabilities, such as a zero-day vulnerability exploited in Palo Alto Networks products, a security flaw in a popular WordPress plugin, and vulnerabilities in Google's Vertex AI platform. This episode also discusses the prevalence of cybersecurity threats in the finance and insurance industries, the use of cloud services for data exfiltration by ransomware groups, and a NIST report outlining hardware security risks.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's episode provides a digest of recent cybersecurity news. The content highlights various data breaches, including those affecting recruitment firms, demand generation platforms, and even social media giants like LinkedIn. This podcast also reports on vulnerabilities discovered in widely used software like Microsoft Power Pages and GitLab, urging organizations to implement security patches promptly. This episode concludes with special reports on cybersecurity failures' financial impact and the call for unified security regulations to enhance U.S. cybersecurity resilience.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's episode reports the latest cybersecurity news, covering a range of topics including significant data breaches, new hacking groups, vulnerability disclosures, and emerging threats. This podcast provides detailed information on recent cyberattacks, the actors involved, affected organizations, and the data compromised. It also discusses security updates and patches released by major technology companies and government agencies, highlighting vulnerabilities and urging users to apply updates to mitigate potential risks. This episode explores broader trends in the cybersecurity landscape, such as the growing prevalence of social engineering scams and the increasing sophistication of infostealer malware.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's update contains reports of recent cyberattacks and data breaches affecting various companies and organizations. It highlights the compromise of sensitive customer information, such as personal details, financial records, and even employee data, across numerous sectors. This podcast also covers new vulnerabilities discovered in popular software and applications, emphasizing the importance of promptly patching systems to prevent exploitation. In addition, it discusses the rising trend of CISOs seeking indemnity insurance due to increasing pressure and potential liability associated with cyberattacks.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This episode provides a digest of recent cybersecurity news. The podcast highlights various data breaches, including those impacting debt relief services, healthcare providers, and municipal agencies, as well as a breach of Amazon employee data linked to the MOVEit attacks. It also features updates on vulnerabilities affecting industrial control systems, D-Link NAS devices, and popular machine learning toolkits. Today's episode emphasizes the increasing reliance on AI in cyberattacks and the importance of integrating human expertise with automated security tools to address these emerging threats.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's CISO Daily Update features articles covering various cybersecurity threats and vulnerabilities. The articles highlight recent ransomware attacks, data breaches, and malicious software techniques, including new methods used to evade detection. This podcast also addresses the impact of these threats on critical infrastructure and the efforts of government agencies and private companies to mitigate them. Additionally, it discusses the use of AI in cyberattacks and the implications of evolving regulatory landscapes for cybersecurity.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

The CISO Daily Update for today, summarizes several important cybersecurity events. The newsletter features articles detailing data breaches affecting SelectBlinds, Microchip Technology, and Nokia, along with a ransomware attack on Washington State courts. It also highlights new ransomware campaigns like Interlock and Rhadamanthys. This podcast also discusses vulnerabilities in HPE Aruba Networking Access Points, Cisco Identity Services Engine, and Palo Alto Networks Expedition, along with the growing use of AI in cybersecurity. Today's episode reports on Google Cloud's upcoming implementation of mandatory multi-factor authentication for all users by the end of 2025.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This episode highlights recent cybersecurity news, including a cyberattack on telematics provider Microlise that disrupted tracking services for DHL and Serco, the arrest of a suspect in multiple data theft attacks involving Snowflake accounts, and INTERPOL's dismantling of over 22,000 malicious servers in a global crackdown on cybercrime. Today's podcast also covers vulnerabilities in Azure API Management and Chrome, a bug in Cisco's Unified Industrial Wireless Software, and recent reports on the rising trend of cyberattacks targeting industrial control systems and the higher cost of identity-related data breaches.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This podcast delves into the escalating threat landscape of cyberattacks, from high-profile data breaches impacting companies like ORBCOMM and Schneider Electric to ransomware that cripples hospitals and disrupts court systems. It examines evolving tactics, such as phishing schemes disguised as error messages and criminals posing as government officials to gather sensitive data. With small businesses becoming more vulnerable and concerns rising over AI misuse for code leaks, the podcast also addresses software vulnerabilities in systems like Android, IBM Security Verify Access, and Rockwell ThinManager, urging regular updates to mitigate exploitation risks.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This episode details a range of cyberattacks and vulnerabilities affecting various organizations, individuals, and technologies. These include breaches at Saint Xavier University, Belle Tire, True World Group, and Van Wagner, all resulting in the exposure of sensitive personal information. Additionally, the sources highlight vulnerabilities in Nokia's systems, Cisco's DevHub portal, DocuSign's APIs, and Windows systems exploited through phishing campaigns. They also address vulnerabilities in Ollama AI framework, SQLite database engine, and Synology NAS devices, emphasizing the need for prompt patching and security updates. This podcast concludes with a report by Gartner, highlighting the rising concern among enterprise executives about AI-assisted attacks as a top emerging business risk, underlining the need for proactive measures and adaptation of risk management strategies.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This podcast covers a variety of cyberattacks and security vulnerabilities. Some stories highlight specific attacks targeting organizations such as the Housing Authority of the City of Los Angeles and the San Joaquin County Superior Court. Others warn of broader vulnerabilities in technology, like the Microsoft SharePoint RCE bug, critical vulnerabilities in factory automation software, and flaws in Okta's authentication system. Today's episode also reports on trends, including the growing threat of social media attacks, the prevalence of security flaws in financial applications, and the challenges of maintaining aging IT systems.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

The news sources highlight several recent cybersecurity incidents, including data breaches affecting individuals and businesses, successful phishing campaigns, supply chain attacks targeting cryptocurrency, and attempts by ex-employees to disrupt companies. These incidents illustrate a range of cyber threats and underscore the importance of cybersecurity measures to protect sensitive data and critical infrastructure. Furthermore, the sources shed light on the increasing prevalence of ransomware attacks, the vulnerability of government systems to malware, and the ongoing threat of phishing, while also exploring the potential implications of artificial intelligence and quantum computing for future cybersecurity challenges.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's podcast explores recent cyber threats and vulnerabilities, highlighting how malicious actors are targeting individuals and organizations alike. Several examples showcase new tactics like fake CAPTCHAs and hijacked bank calls, demonstrating how criminals are constantly adapting their techniques. Other sources discuss vulnerabilities found in widely used software like Google Chrome, WordPress plugins, and QNAP NAS devices, underscoring the importance of prompt patching and security updates. This episode focuses on the need for improved cybersecurity practices at both individual and organizational levels, particularly in crucial areas like election security and critical infrastructure protection.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's episode covers a wide range of cybersecurity threats and vulnerabilities. Multiple data breaches are reported, including those impacting Wichita County, Texas, MoneyGram, and Marysville Schools. Ransomware attacks continue to target local governments and businesses, as seen in the cases of Wichita County and SonicWall. ATM scams involving fraudulent deposits are being investigated by JPMorgan Chase. Fitness apps like Strava are unknowingly exposing sensitive location data of world leaders, posing a security risk. Vulnerabilities in software, including Windows Themes, Apple products, and Spring WebFlux, are actively exploited by attackers. New research reveals that the latest Intel and AMD processors remain susceptible to Spectre attacks, highlighting the ongoing challenges in safeguarding against these vulnerabilities. This podcast also highlights the growing reliance on AI, with its potential security risks, and CISA's efforts to secure the 2024 U.S. elections from cyber threats.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

The news sources highlight several cybersecurity threats, including a lawsuit filed by Delta Air Lines against CrowdStrike for a tech outage, Chinese state-sponsored hacking targeting U.S. telecom providers, a mysterious cryptocurrency hack against the U.S. government, and the dismantling of the Redline and Meta infostealers by international law enforcement. This podcast explores emerging vulnerabilities in Philips smart bulbs, Realtek SD card readers, and VMware vCenter Server, as well as a rise in online job scams targeting financially vulnerable individuals. Additionally, the sources discuss the growing use of Webflow for phishing pages, TeamTNT’s large-scale malware attack on Docker clusters, and the increasing prevalence of AI-powered BEC scams in the manufacturing sector. One source explores the importance of Identity and Access Management (IAM) in securing long supply chains and mitigating third-party risks.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

The provided sources detail a range of cybersecurity threats and vulnerabilities. These include ransomware attacks targeting healthcare providers, retail companies, and even critical infrastructure like water utilities. Additionally, there are reports of data breaches exposing millions of customer records, highlighting the importance of strong security measures. The sources also discuss vulnerabilities in common software like Windows and various network equipment, emphasizing the need for proactive patch management and security practices to prevent successful exploitation. Finally, the information highlights the escalating severity and frequency of distributed denial of service (DDoS) attacks, emphasizing the need for robust defenses against such threats.
 

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's episode details a range of cybersecurity threats and vulnerabilities. These include ransomware attacks targeting healthcare providers, retail companies, and even critical infrastructure like water utilities. Additionally, there are reports of data breaches exposing millions of customer records, highlighting the importance of strong security measures. This podcast also discusses vulnerabilities in common software like Windows and various network equipment, emphasizing the need for proactive patch management and security practices to prevent successful exploitation. Finally, the information highlights the escalating severity and frequency of distributed denial of service (DDoS) attacks, emphasizing the need for robust defenses against such threats.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Today's episode covers various cybersecurity threats and vulnerabilities that have recently been discovered or exploited. These threats range from malicious actors targeting critical U.S. infrastructure and exploiting vulnerabilities in popular software and services to data leaks and ransomware attacks on macOS devices. This episode also discusses the growing impact of AI on the workforce and how AI is contributing to both new cybersecurity risks and potential solutions.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This episode covers various aspects of cybersecurity and data breaches, including incidents affecting individuals and companies. Several headlines detail recent data breaches, such as the compromise of over 92,000 Transak users' personal information through phishing and the breach of Johnson & Johnson’s insurance operations. Other highlights vulnerabilities in software and systems, like the critical RCE flaw in vCenter Server and the NTLM hash exposure in Styra's OPA. The SEC's charges against tech firms for misleading SolarWinds hack disclosures and the ongoing threat of ransomware attacks targeting government agencies and critical infrastructure underscore the growing challenge of cybersecurity. Also in today's podcast: the lack of DMARC protection on US Senate campaign websites and the ongoing debate surrounding software liability highlight the need for stronger cybersecurity measures and policy changes to protect sensitive data and national security.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This podcast focuses on cyberattacks, covering a range of incidents from ransomware attacks on businesses and government agencies to malware infections affecting individuals and corporations, highlighting emerging threats like the return of Bumblebee malware and the exploitation of vulnerabilities in software like Chrome and FortiManager. Other articles focus on cybersecurity measures, including the increasing influence of CISOs in corporate leadership and the need to patch vulnerabilities promptly. This episode also addresses the growing prevalence of data-stealing malware and the need for individuals and organizations to take proactive steps to protect their systems and sensitive information.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This podcast details numerous cybersecurity threats and vulnerabilities across various sectors, including healthcare, technology, and government, highlighting a rise in data breaches, stolen access tokens, ransomware attacks, and exploited vulnerabilities in software. These events point to a challenging security landscape where attackers are increasingly sophisticated and utilize diverse tactics to compromise systems and steal sensitive information. Several companies, including Microsoft, Cisco, and 23andMe, have been targeted, and organizations are urged to strengthen their defenses and adopt proactive strategies to mitigate risks.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This podcast highlights the escalating threat of cyberattacks. Several ransomware groups are actively targeting organizations and individuals, demanding ransom payments in exchange for releasing stolen data. Hackers are also employing increasingly sophisticated tactics, such as SIM-swap attacks and quishing to steal credentials. Vulnerabilities in software applications like Kubernetes Image Builder, F5 BIG-IP, and Cisco ATA 190 series pose significant security risks, requiring immediate patching. Researchers are raising concerns about security flaws in WeChat's modified TLS protocol, while Symantec's report reveals the rise of RansomHub as the most prolific ransomware group. This episode underscores the importance of robust cybersecurity measures, prompt patching, and increased vigilance in the face of evolving threats.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This episode explores recent cybersecurity incidents and trends, including ransomware attacks on organizations like food banks and sports apparel companies, data breaches caused by malicious insiders, and DDoS attacks on the Wayback Machine. Today's podcast also discuss the growing use of AI by both hackers and security professionals, the patching of vulnerabilities in software like Oracle and GitHub, and the ongoing threat of ransomware attacks on critical infrastructure, particularly in the healthcare sector.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This episode highlights a variety of recent cyber threats and security vulnerabilities, discussing recent data breaches affecting major companies like Cisco and Volkswagen, government accusations of U.S. cyber espionage, and new attack methods targeting AI systems. Today's podcast also examines critical vulnerabilities in popular software like Jetpack and Splunk Enterprise, as well as the evolving threat of ransomware attacks, and addressing the growing importance of privacy regulations and the need for organizations to prepare for post-quantum threats.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This episode discusses various cybersecurity incidents and vulnerabilities, ranging from individual hacker exploits to nation-state attacks. The sources highlight a growing trend of data breaches, ransomware attacks, and zero-day vulnerabilities targeting businesses, government agencies, and individuals. The podcast examines the impact of these incidents on data security, business operations, and national security while also emphasizing the importance of strong cybersecurity practices, such as patching vulnerabilities, implementing multi-factor authentication, and investing in comprehensive security solutions to mitigate future threats.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This episode highlights various cybersecurity threats and vulnerabilities impacting individuals, businesses, and government agencies—including ransomware attacks on healthcare systems, critical vulnerabilities in software like Microsoft Windows and Veeam Backup & Replication, and the exploitation of personal data through applications like the CBP One app. Today's podcast discusses the use of AI by cybercriminals to enhance malware development, the increased severity of ransomware attacks, and the surge in malicious packages within open-source software. Today's episode addresses challenges faced by security teams, including alert overload and a lack of expertise.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This episode details a variety of recent cybersecurity threats and breaches--highlighting a number of high-profile data breaches, including those affecting Fidelity Investments, Volkswagen, Hyundai, Marriott, and AT&T. The podcast also discusses several critical vulnerabilities in software products from companies like Fortinet, Palo Alto Networks, Cisco, and VMware, emphasizing the importance of prompt patching. Today's headlines examine the increasing prevalence of cyberattacks targeting education institutions and the growing consumer concerns surrounding AI-driven data collection practices.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This episode explores a range of cyber threats and vulnerabilities. The podcast covers breaches affecting major organizations like the Internet Archive and Corporate Job Bank, malicious attacks targeting hurricane victims and employees, and security flaws in software like Firefox and GitLab, examining emerging threats, including the weaponization of Visual Studio Code and the use of QR code phishing, along with vulnerabilities in industrial systems and API security. Today highlights the importance of security updates and the need for organizations to adopt comprehensive security measures to mitigate these threats.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This episode highlights recent cybersecurity threats and vulnerabilities across various sectors. Several organizations, including Casio, ADT, and the Superior Court of California, have been victims of cyberattacks, resulting in data breaches and disruptions. The text also discusses the exploitation of vulnerabilities in software and hardware, such as those found in Ivanti's CSA and Qualcomm's DSP service. The increasing prevalence of ransomware attacks is addressed, with 31 new groups joining the cybercrime ecosystem in the past year. Today's podcast concludes by emphasizing the need for organizations to prioritize cloud security, given that 38% of companies face critical security exposures in their cloud environments.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This episode highlights a range of cyberattacks and vulnerabilities affecting various sectors. One source focuses on the cyberattack against American Water, the largest U.S. water utility, which disrupted online services but did not affect water supply. The podcast details a reported hack against U.S. broadband providers, potentially compromising systems used for government wiretapping. Other sources discuss data breaches at Universal Music Group and the EigenLayer Ethereum restaking protocol, along with vulnerabilities in various software applications and systems, including Apache Avro, Okta, and Visual Studio. This episode explores the growing threat of botnet attacks, emphasizing the financial impact of insecure APIs and bot attacks on businesses. Today's episode examines the challenges faced by security operations center (SOC) teams in navigating overwhelming alert volumes and the increasing reliance on AI-powered security tools.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This episode explores various recent cyberattacks and vulnerabilities, highlighting the rising threat to businesses, individuals, and critical infrastructure. Covering incidents targeting specific companies like Comcast and Truist Bank, as well as widespread attacks affecting healthcare institutions, online retailers, and cryptocurrency exchanges. The podcast discusses vulnerabilities in software like WordPress plugins and iOS, and the growing use of ransomware and phishing scams. The episode emphasizes the importance of robust cybersecurity measures to prevent future attacks and protect sensitive information.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

The episode details various cybersecurity incidents, vulnerabilities, and trends. One source reports a ransomware attack affecting Wayne County, Michigan, while another describes Microsoft disrupting a Russian cyber group's activities. Several points focus on vulnerabilities and exploits targeting software and hardware, including Ivanti Endpoint Manager, Chrome, Firefox, and Cisco products. The news also covers fraudulent activities like fake trading apps and iPhone scams. In addition, the articles discuss growing cybersecurity spending and concerns about the increasing attack surface due to AI and cloud technologies. The podcast also highlights security risks associated with the use of unsanctioned GenAI tools and inadequate router security measures. CISA emphasizes the robust security measures implemented to protect the upcoming U.S. election from foreign interference.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

The podcast  highlights a series of cybersecurity threats and vulnerabilities impacting various organizations and industries. From individual hackers exploiting Office365 accounts to nation-state actors like APT45, the sources detail various methods employed by threat actors to gain unauthorized access and cause harm. Furthermore, the episode addresses vulnerabilities in commonly used software like Zimbra and Adobe Commerce, along with critical flaws in network infrastructure devices like DrayTek routers and Optigo Network switches. Additionally, today highlights the challenges faced by cybersecurity professionals, including increasing stress levels due to a complex threat landscape and understaffed teams. The podcast also covers the work of organizations like CISA and NIST in identifying and mitigating vulnerabilities, underscoring the importance of proactive security measures to combat evolving cyber threats.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This episode highlight various cyber security threats facing businesses and individuals, covering ransomware attacks, data breaches, phishing campaigns, and software vulnerabilities. Ransomware attacks targeted a major hospital and continue to plague businesses. Data breaches exposed private information on online forums and from mobile carriers, while phishing attacks leveraged free tools to steal user credentials. Exploited vulnerabilities in popular software and hardware products put users at risk, and the lack of threat sharing among organizations weakens cybersecurity efforts. Law enforcement agencies are actively targeting cybercrime gangs through arrests and sanctions.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

This podcast is a collection of news articles that highlight the growing threat of cyberattacks and data breaches across various industries. The articles cover a wide range of cyber security incidents, from ransomware attacks targeting credit unions and healthcare organizations to data leaks from facial DNA providers and vulnerabilities in common software systems like CUPS and PHP. The episode also examines the challenges faced by cybersecurity professionals, including inadequate funding for state CISOs and the continued reliance on less secure authentication methods like username and password logins.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

Explore various cyber threats and security vulnerabilities impacting individuals, businesses, and governments worldwide. One article discusses the increasing prevalence of ransomware attacks and the formation of new gangs targeting specific sectors. Another article highlights the growing capabilities of AI bots, now capable of bypassing CAPTCHA security measures, posing a challenge to human identification systems. Additionally, the text details efforts to combat cybercrime, including investigations into money laundering schemes and election interference attempts. The article also addresses emerging vulnerabilities in AI systems and software, emphasizing the need for proactive security measures to protect against potential threats. Finally, the article highlights the importance of strengthening security protocols for undersea cables, vital to global communications and data transmission, in an increasingly complex geopolitical landscape.

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 Hurricane Helene Prompts CISA Fraud Warning

00:35 Data Breach at MC2 Data Leaves 100 Million at Risk of Fraud

01:25 China-Linked Attackers Salt Typhoon Infiltrate US Internet Service Providers

02:06 Victims Lose $70K to One Single Wallet-Draining App on Google’s Play Store

02:50 Transport, Logistics Orgs Hit by Stealthy Phishing Gambit

03:35 Automattic Blocks WP Engine’s Access to WordPress Resources

04:15 Doomsday ‘9.9 RCE Bug’ Might Hit Every Linux System

04:52 Remote Code Execution, DoS Vulnerabilities Patched in OpenPLC

05:37 Critical Nvidia Container Flaw Exposes Cloud AI Systems to Host Takeover

06:16 HPE Aruba Networking Fixes Critical Flaws Impacting Access Points

07:03 Hackers Could Have Remotely Controlled Kia Cars Using Only License Plates

07:47 Hackers Allegedly Claim Sale of 1-Day Magento RCE Vulnerability

08:24 Over a Third of Employees Secretly Sharing Work Info with AI

09:13 NIST Scraps Passwords Complexity and Mandatory Changes in New Guidelines

09:51 Ransomware Incidents Hit 117 Countries in 2023, Task Force Says

10:30 Companies Mentioned on the Dark Web at Higher Risk for Cyber Attacks

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 Dell Hit by Third Data Leak in a Week Amid “grep” Cyberattacks

00:34 RansomHub Genius Tries to Put the Squeeze on Delaware Libraries

01:09 U.S. Govt Agency CMS Says Data Breach Impacted 3.1 Million People

01:49 Thousands of US Congress Emails Exposed to Takeover

02:23 Hackers Hiding Malware in Fake “Deleted Diddy Files”

02:57 CISA Flags Critical Ivanti vTM Vulnerability Amid Active Exploitation Concerns

03:39 ChatGPT macOS Flaw Could've Enabled Long-Term Spyware via Memory Function

04:22 PoC for Critical SolarWinds Web Help Desk Vulnerability Released (CVE-2024-28987)

04:54 TeamViewer for Windows Vulnerability Let Attackers Escalate Privileges

05:26 Google Sees 68% Drop in Android Memory Safety Flaws Over 5 Years

06:04 82% of Phishing Sites Now Target Mobile Devices

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 MoneyGram Says Cyber Incident Causing Network Outages

00:31 Ransomware Attack on Kansas County Exposed Sensitive Info of Nearly 30,000 Residents

01:06 Cybersecurity Incident Affects Arkansas City Water Treatment Facility

01:43 Twilio Purportedly Breached, Nearly 12K Call Records Compromised

02:13 Kaspersky Users Shocked by Automatic Antivirus Replacement Without Explicit Permission

02:54 AI-Generated Malware Found in the Wild

03:31 Telegram Will Provide User Data to Law Enforcement in Response to Legal Requests

04:08 Cyberthreats to Railroads Loom as Industry and TSA Grow an Uneasy Partnership

04:45 Apache Tomcat Vulnerability Lets Attackers Trigger Dos Attack

05:16 Critical Unauthenticated RCE Flaw Impacts all GNU/Linux systems

05:52 Researcher Details Cisco Smart Licensing that Lets Attacker Control Device

06:28 10 Nasty Software Bugs Put Thousands of Fuel Storage Tanks at Risk of Cyberattacks

07:10 MFA Bypass Becomes a Critical Security Issue as Ransomware Tactics Advance

07:53 65% of Websites Are Unprotected Against Simple Bot Attacks

08:35 14 Million Patients Impacted by US Healthcare Data Breaches in 2024

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 Hackers Posed as Google Support to Steal $243 Million in Crypto

00:41 Man Scams $4M From Mostly Elderly Victims

01:19 Android Malware ‘Necro’ Infects 11 Million Devices via Google Play

01:56 Fragmented Cybersecurity Standards Leave Ohio Cities Exposed

02:37 Critical Flaw in Microchip ASF Exposes IoT Devices to Remote Code Execution Risk

03:12 ESET Patches Privilege Escalation Vulnerabilities in Windows, macOS Products

03:59 Versa Networks Patches Vulnerability Exposing Authentication Tokens

04:41 Paid Open-Source Maintainers Spend More Time on Security

05:17 Microsoft Names Deputy CISOs, Flushes Dead Accounts as Part of Internal Security Overhaul

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 One-Third of the US Population’s Background Info Is Now Public

00:38 Dell Investigates Data Breach Claims After Hacker Leaks Employee Info

01:17 Disney Ditching Slack After Massive July Data Breach

01:52 Ascension’s Financial Comeback Stalled by Costly Cyberattack, Resulting in $1.8 Billion Loss

02:43 Threat Actor IntelBroker Allegedly Claims Leak of Deloitte Internal Communications

03:10 Hertz Car Rental Platform Leaks 60,000 Insurance Claim Reports

03:49 Walmart Customers Accused of Drug Trafficking in a Google Ads Scam

04:22 1 PoC Exploit for Critical RCE Flaw, but 2 Patches From Veeam

05:00 0-Click RCE Vulnerability in MediaTek Wi-Fi Chipsets Allows Remote Exploitation

05:41 CISA Releases Six Advisories for Industrial Control Systems

06:31 US Cyberspace Solarium Commission Outlines Ten New Cyber Policy Priorities

07:17 Cybersecurity Skills Gap Leaves Cloud Environments Vulnerable

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 U.S. Taxpayer Data at Risk? LockBit Ransomware Claims Attack on IRS-Authorized eFile

00:35 Hackers Demand $6 Million for Files Stolen From Seattle Airport Operator in Cyberattack

01:10 Attention Travelers! Beware of Booking.com Themed Phishing Attacks

01:50 Microsoft: Vanilla Tempest Hackers Hit Healthcare With INC Ransomware

02:24 Suspects Behind $230 Million Cryptocurrency Theft Arrested in Miami

03:00 Patch This Critical Auth Bypass Flaw (CVE-2024-45488)

03:42 GitLab Patches Critical SAML Authentication Bypass Flaw in CE and EE Editions

04:20 Atlassian Patches Vulnerabilities in Bamboo, Bitbucket, Confluence, Crowd

04:57 CISA Adds Microsoft Windows, Apache HugeGraph-Server, Oracle JDeveloper, Oracle WebLogic Server, and Microsoft SQL Server Bugs to Its Known Exploited Vulnerabilities Catalog

05:43 Ivanti Warns of Another Critical CSA Flaw Exploited in Attacks

06:24 Security Leaders Consider Banning AI Coding Due to Security Risks

06:57 DOJ, FBI Need Better Metrics for Tracking Ransomware Disruption Efforts, Audit Finds

07:47 Insecure APIs and Bot Attacks Cost Global Firms $186bn

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 Hackers Breaching Construction Firms via Specialized Accounting Software

00:59 New "Raptor Train" IoT Botnet Compromises Over 200,000 Devices Worldwide

01:33 Chrome Extension Hides Malware to Steal Crypto: New Operation Uncovered

02:06 Think Twice Before You Click: This Captcha Might Steal Your Money  

02:34 Google Street View Images Used For Extortion Scams

03:10 AT&T Reaches $13 Million FCC Settlement Over Massive 2023 Data Breach

03:46 California Enacts Laws Regulating Use of Deepfakes in Election Ads

04:24 Suffolk County Ransomware Attack Linked to Lack of Planning, Ignored Warnings

05:03 Patch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution

05:49 Chrome 129 Patches High-Severity Vulnerability in V8 Engine

06:23 Microsoft Warns Of Windows Kernel Vulnerability Exploitation

06:53 0.0.0.0 Day Vulnerability Puts Millions of Local Networks at Risk

07:30 Windows MiniFilter Hack: Easily Bypass EDR Security

08:07 The Proliferation of Non-Human Identities

08:41 Critical Infrastructure at Risk From Email Security Breaches

09:19 Infostealers: An Early Warning for Ransomware Attacks

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 Owner of Only US Platinum Mine Confirms Data Breach After Ransomware Claims

00:48 1,000+ ServiceNow Instances Leaking Corporate Data Via Knowledge Bases

01:26 Chinese Hacker Targeted NASA, U.S. Military to Steal Critical Software

02:01 Ransomware Gangs Now Abuse Microsoft Azure Tool for Data Theft

02:41 CISA Urges Software Devs to Weed Out XSS Vulnerabilities

03:21 Apple iOS 18 Released with Fixes for 32 Security Vulnerabilities

03:54 U.S. CISA Adds Microsoft Windows MSHTML Platform and Progress WhatsUp Gold to Its Known Exploited Vulnerabilities Catalog

04:46 PKfail Secure Boot Bypass Remains a Significant Risk Two Months Later

05:30 Hospitals Need “Tribal Approach” to Protect Against Hackers, Says Expert

06:10 CVE Backlog Update: The NVD Struggles as Attackers Change Tactics

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 88,000 Impacted by Access Sports Data Breach Resulting From Ransomware Attack

00:36 DeltaPrime Suffers $5.98M Loss as Hacker Exploits Admin Key on Arbitrum

01:13 Advanced Phishing Attacks Put X Accounts at Risk

01:49 US Cracks Down on Spyware Vendor Intellexa With More Sanctions

02:25 Prison Just Got Rougher as Band of Heinously Violent Cybercrims Sentenced to Lengthy Stints

03:07 Medusa Ransomware Exploiting Fortinet Flaw For Sophisticated Attacks

03:50 Azure API Management Vulnerability Let Users Escalate Privileges

04:27 Google Fixes GCP Composer Flaw That Could've Led to Remote Code Execution

05:04 Microsoft Confirms Second 0-Day Exploited by Void Banshee Apt (CVE-2024-43461)

05:45 SolarWinds Fixed Critical RCE CVE-2024-28991 in Access Rights Manager

06:22 D-Link Fixes Critical RCE, Hardcoded Password Flaws in WiFi 6 Routers

06:57 Trends and Dangers in Open-Source Software Dependencies

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 Tennessee School District Loses $3.4 Million to a Fake Curriculum Vendor

00:47 Port of Seattle Confirms August Cyberattack by Rhysida Ransomware

01:25 Microsoft Vows to Prevent Future CrowdStrike-Like Outages

02:02 FBI Tells Public to Ignore False Claims of Hacked Voter Data

02:39 23andMe Pledges $30 Million to the 6.4 Million People Affected by Data Breach

03:20 Apple Suddenly Drops NSO Group Spyware Lawsuit

03:58 Ivanti Cloud Service Appliance Flaw Is Being Actively Exploited in the Wild

04:37 Citrix Workspace App Vulnerabilities Allow Privilege Escalation Attacks

05:23 Apple Vision Pro Vulnerability Exposed Virtual Keyboard Inputs to Attackers

06:05 Progress WhatsUp Gold Exploited Just Hours After PoC Release for Critical Flaw

06:46 Stolen Account Info Still Chief Risk for Federal Agencies, Annual CISA Audit Finds

07:30 Organizations Still Don’t Know How to Handle Non-Human Identities

08:12 Cyber Insurance Set for Explosive Growth

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 Fortinet Confirms Data Breach After Hacker Claims to Steal 440GB of Files

00:46 Chinese-Made Port Cranes in US Included ‘Backdoor’ Modems, House Report Says

01:23 Beware: New Vo1d Malware Infects 1.3 Million Android TV Boxes Worldwide

02:01 Healthcare Giant to Pay $65M Settlement After Crooks Stole and Leaked Nude Patient Pics

02:43 Hacker Tricks ChatGPT Into Giving Out Detailed Instructions for Making Homemade Bombs

03:19 Feds Seize 350 Websites Trafficking Counterfeit Glock Silencers From China

04:01 GitLab Warns of Critical Pipeline Execution Vulnerability

04:47 Palo Alto Networks Patches Dozens of Vulnerabilities

05:28 Cisco Patches High-Severity Vulnerabilities in Network Operating System

06:12 Schools Face Million-Dollar Bills as Ransomware Rises

06:52 US Utilities Facing Escalating Cyberattacks

07:32 Open Source Updates Have 75% Chance of Breaking Apps

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 Columbus City Cyberattack: Feds Lead Probe as Council Vows Transparency

00:43 Data Breach at Golf Course Management Firm KemperSports Impacts 62,000

01:24 Developers Beware: Lazarus Group Uses Fake Coding Tests to Spread Malware

02:11 Hackers Use Fake Domains to Trick Trump Supporters in Trading Card Scam

02:52 Intel Informs Customers About Over a Dozen Processor Vulnerabilities

03:33 Chrome 128 Update Resolves High-Severity Vulnerabilities

04:16 ICS Patch Tuesday: Advisories Published by Siemens, Schneider, ABB, CISA

05:00 Researchers Hacked EV Car Chargers To Execute Arbitrary Code

05:45 Rogue WHOIS Server Gives Researcher Superpowers No One Should Ever Have

06:24 Cybernews Business Digital Index Reveals Major Shortcomings in Corporate Customer Data Security

07:07 So You Paid a Ransom Demand … and Now the Decryptor Doesn’t Work

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 Data Leak Exposes 14,000 US Medical Professionals: What We Know So Far

00:50 Threat Actors Allegedly Claiming Leak of Capgemini Data

01:17 DoJ Distributes $18.5m to Western Union Fraud Victims

01:56 New PIXHELL Attack Exploits Screen Noise to Exfiltrates Data from Air-Gapped Computers

02:38 NoName Ransomware Gang Deploying RansomHub Malware in Recent Attacks

03:18 Ivanti Fixes Maximum Severity RCE Bug in Endpoint Management Software

03:58 U.S. CISA Adds SonicWall SonicOS, ImageMagick and Linux Kernel Bugs to Its Known Exploited Vulnerabilities Catalog

04:41 Gallup Poll Bugs Open Door to Election Misinformation

05:24 SAP Releases 16 New Security Notes on September 2024 Patch Day

06:14 Adobe Patches Critical, Code Execution Flaws in Multiple Products

06:57 Microsoft September 2024 Patch Tuesday Fixes 79 Flaws, Including 4 Zero-Days

07:43 Massive Spike in Crypto Fraud: FBI Reports Over $5.6 Billion Losses in 2023

08:28 Study Finds Excessive Use of Remote Access Tools in OT Environments

09:14 2024 U.S. Election: CISA Releases Cyber and Physical Security Guidelines for Officials

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 Cyber-Attack on Payment Gateway Exposes 1.7 Million Credit Card Details

00:39 Highline Public Schools Hit by Cyberattack, Classes Canceled

01:13 Nearly 1 Million Wisconsin Medicare Users Had Information Leaked in MOVEit Breach

01:48 In Latest Check-In, Spy Agencies Describe ‘Ramp Up’ in Election Influence

02:30 Two Arrested by FBI for Credit Card Fraud Could Face 20 Years in Prison

03:07 U.S. Offers $10 Million for Info on Russian Cadet Blizzard Hackers Behind Major Attacks

03:44 Progress Software Fixed a Maximum Severity Flaw in LoadMaster

04:26 Critical Vulnerabilities Disclosed in IBM webMethods Integration Server

05:02 Kibana Vulnerabilities Let Attackers Execute Arbitrary Code

05:34 Akira Ransomware Actively Exploiting SonicWall Firewall RCE Vulnerability

06:19 End of an Era: Security Budget Growth Slows Down

06:58 DDoS Attacks Double With Governments Most Targeted

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 Car Rental Company Avis Discloses a Data Breach

00:43 Exposed: Russian Military Unit 29155 Does Digital Sabotage, Espionage

01:24 Lowe’s Home Warehouse Employees Targeted in Google Ad Phish

02:01 Sextortion Scam Now Use Your “Cheating” Spouse’s Name as a Lure

02:39 New Rambo Attack Steals Data Using RAM in Air-Gapped Computers

03:20 New Malware Shakes macOS Security Paradigm – Hackers Eying iPhones Next

03:57 West Virginia Law Enforcement Sues Data Broker for Publishing Personal Information Online

04:39 U.S. CISA Adds Draytek VigorConnect and Kingsoft WPS Office Bugs to Its Known Exploited Vulnerabilities Catalog

05:25 A Flaw in WordPress LiteSpeed Cache Plugin Allows Account Takeover

06:09 SonicWall Warns That SonicOS Bug Exploited in Attacks

06:48 CISA Flags ICS Bugs in Baxter, Mitsubishi Products

07:34 Apache OFBiz Team Patches Critical RCE Vulnerability (CVE-2024-45195)

08:16 Veeam Security Bulletin Fixes Critical Vulnerabilities for Backup & Replication, Veeam ONE and More

08:59 GeoServer Vulnerability Targeted by Hackers to Deliver Backdoors and Botnet Malware

09:44 83% of Organizations Experienced at Least One Ransomware Attack in the Last Year

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 Microchip Technology Confirms Theft of Employee Data

00:44 Planned Parenthood May Have Been Breached By RansomHub Group

01:14 North Carolina Man Swindles $10M in AI Music Scheme

01:48 Two Nigerians Sentenced to Prison in US for BEC Fraud

02:22 US Indicts Two RT Employees for Alleged Russian Disinformation Effort

03:09 US Targets Russian Election Influence Operation With Charges, Sanctions, Domain Seizures

03:50 Cisco Warns of Critical Vulnerabilities in Smart Licensing Utility

04:26 DrayTek Vulnerabilities Added to CISA KEV Catalog Exploited in Global Campaign

05:06 Cisco Systems Manager for Windows Vulnerability Let Attackers Escalate Privilege

05:45 Veeam Releases Security Updates to Fix 18 Flaws, Including 5 Critical Issues

06:26 LiteSpeed Cache Bug Exposes 6 Million WordPress Sites to Takeover Attacks

07:05 Security Budgets Come Under Pressure as “Hypergrowth” Ends

07:42 The AI Wild West: Unraveling the Security and Privacy Risks of GenAI Apps

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 FBI: North Korea Aggressively Hacking Cryptocurrency Firms

00:49 The Government Isn’t Ready for Cyber Chaos in the Food and Agriculture Sector

01:29 Indicted Pair of Foreign Nationals Were Behind Swatting Attack on CISA Director

01:58 CEO's Arrest Will Likely Not Dampen Cybercriminal Interest in Telegram

02:36 Spamouflage Trolls Pretend to Be American Patriots on X, TikTok Ahead of US Presidential Election

03:13 Revival Hijack Supply-Chain Attack Threatens 22,000 PyPI Packages

03:53 Cicada Ransomware May Be a BlackCat/ALPHV Rebrand and Upgrade

04:35 Vulnerability Allows Yubico Security Keys to Be Cloned

05:13 Android’s September 2024 Update Patches Exploited Vulnerability

05:53 PoC Exploit Released for 0-Day Windows Kernel Privilege Escalation Vulnerability

06:28 RomCom Hackers Exploit Microsoft Office Zero-Day to Spread Ransomware

07:04 Initial Access Brokers Target $2bn Revenue Companies

07:25 White House Addresses BGP Vulnerabilities in New Internet Routing Security Roadmap

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 Cyberattack Hits Shoshone-Bannock Tribes: Key Services Unaffected, Recovery in Progress

00:49 Leaked Docs Expose Media Giant’s Secret Listening Software

01:29 Oil Titan Halliburton Confirms Data Was Stolen in Cyberattack

02:04 Ex-Engineer Charged in Missouri for Failed $750,000 Bitcoin Extortion Attempt

02:49 New Cyberattack Targets Industrial Automation Sector with Malware

03:35 Beware of New Phishing Attack That Mimics ScreenConnect and Zoom  Chrome 128 Updates Patch High-Severity Vulnerabilities

04:15 Chrome 128 Updates Patch High-Severity Vulnerabilities

04:57 VMware Patches High-Severity Code Execution Flaw in Fusion

05:41 D-Link Says It Is Not Fixing Four RCE Flaws in DIR-846W Routers

06:20 Canonical Addresses Critical Linux Kernel AWS Vulnerabilities with New Patches

06:56 Vulnerabilities in Microsoft Apps for macOS Allow Stealing Permissions

07:44 A Third of Organizations Suffered a SaaS Data Breach This Year

08:16 Active Ransomware Groups Surge by 56% in 2024

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 Freight Forwarder JAS Worldwide Restores Operations After Cyberattack

00:34 Business Services Giant CBIZ Discloses Customer Data Breach

01:06 Tracelo Location Tracker Data Breach: 1.4 Million Users’ Data Dumped Online

01:36 Verkada Facing $3m Penalty After Hackers Viewed Sensitive Video Footage

02:28  Hackers Poison Google Search Results by Spreading Malware as Spoofed VPN Solution

03:06 CrowdStrike Faces Onslaught of Legal Action From Faulty Software Update

03:44 New ManticoraLoader Malware Targeting Citrix Users to Steal Data

04:25 Hacktivist Group Exploit WinRAR Vulnerability to Encrypt Windows & Linux

05:07 Godzilla Fileless Backdoor Exploits Atlassian Confluence Vulnerability CVE-2023-22527

05:51 Keeping Up With Automated Threats Is Becoming Harder

06:32 Ransomware Crisis Deepens as Attacks and Payouts Rise

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 US Agencies Warn Against Ransomware Group Behind Hundreds of Attacks in Recent Months

00:54 GitHub Comments Abused to Push Password Stealing Malware Masked as Fixes

01:34 Researcher Sued for Sharing Data With Media That Ransomware Stole

02:15 New Voldemort Malware Uses Google Sheets to Target Key Sectors Globally

02:48 Intel Claps Back at Report of SGX Key Theft

03:24 Chase Bank “Glitch” Leaves Customers with Negative Balances

04:02 North Korean Hackers Deploy FudModule Rootkit via Chrome Zero-Day Exploit

04:46 Critical Vulnerabilities in Progress Software’s WhatsUp Gold Expose Systems to Severe Risks

05:31 Fortra Patches Critical Vulnerability in FileCatalyst Workflow

06:14 An Air Transport Security System Flaw Allowed Bypass of Airport Security Screenings

06:59 Published Vulnerabilities Surge by 43%

07:35 Cyber Threats That Shaped the First Half of 2024

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 IT Engineer Charged For Attempting to Extort Former Employer

00:54 Hackers Calling Employees to Steal VPN Credentials from US Firms

01:34 Intel Officials Say They Anticipate More Hacking Attempts as US Election Nears

02:08 Telegram CEO Pavel Durov Charged in France for Facilitating Criminal Activities

03:05 California Passes Landmark Bill Requiring Easier Data Sharing Opt Outs for Consumers

03:48 Unpatched CCTV Cameras Exploited to Spread Mirai Variant

04:28 Russian Hackers Exploit Safari and Chrome Flaws in High-Profile Cyberattack

05:18 Proof-of-Concept Code Released for Zero-Click Critical Windows Vuln

05:58 Cisco NX-OS Software Vulnerability Let Attackers Trigger DoS Condition

06:45 Attackers Exploit Critical Atlassian Confluence Flaw for Cryptojacking

07:32 Surge in New Scams as Pig Butchering Dominates

08:10 Cybersecurity Spending to Surge by 15% to $212 Bn in 2025

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 DICK’s Sporting Goods Says Confidential Data Exposed in Cyberattack

00:45 Play Ransomware Hackers Claim Attack on US Manufacturer Microchip Technology

01:28 Almost a Million Affected by Young Consulting Breach, BlackSuit Ransomware Claims Responsibility

02:13 Seattle-Tacoma Intl Airport Cyberattack Triggers Handwritten Boarding Passes

02:47 Muted Applause: Leading Software Testing Firm Leaves Credentials Vulnerable

03:28 US Marshals Say Data Posted by Ransomware Gang Not From ‘New or Undisclosed Incident’

04:09 Woman Uses AirTags to Nab Alleged Parcel-Pinching Scum

04:43 US Offers $2.5M Reward for Belarusian Man Involved in Mass Malware Distribution

05:31 U.S. CISA Adds Apache OFBiz Bug to Its Known Exploited Vulnerabilities Catalog

06:15 Fortra Issues Patch for High-Risk FileCatalyst Workflow Security Vulnerability

07:05 BlackByte Ransomware Exploits VMware ESXi Flaw in Latest Attack Wave

07:46 Apple, TikTok, Google, and Facebook Give Your Data to Law Enforcement Up to 80% of the Time

08:32 Cybercriminals Capitalize on Travel Industry’s Peak Season

09:12 Old Methods, New Technologies Drive Fraud Losses

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 Illinois County Leaked Over 470K Critical Voter Documents

00:42 Microsoft Sway Abused in Massive QR Code Phishing Campaign

01:26 Chinese Government Hackers Targeted US Internet Providers With Zero-Day Exploit, Researchers Say

02:13 Cybercriminals Tap Greasy Opal to Create 750M Fake Microsoft Accounts

02:49 Identity of Notorious Hacker USDoD Revealed

03:34 Microsoft Fixes ASCII Smuggling Flaw That Enabled Data Theft from Microsoft 365 Copilot

04:08 Code Execution Vulnerability Found in WPML Plugin Installed on 1M WordPress Sites

04:48 Apache Vulnerability Let Attackers Steal Sensitive Data from Unix Systems

05:35 When Convenience Costs: CISOs Struggle With SaaS Security Oversight

06:20 Lateral Movement: Clearest Sign of Unfolding Ransomware Attack

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 Seattle-Tacoma Airport It Systems Down Due to a Cyberattack

00:40 2 TB of Sensitive “ServiceBridge” Records Exposed in Cloud Misconfiguration

01:22 Patelco Credit Union Says Breach Impacts 726k After Ransomware Gang Auctions Data

02:01 500k Impacted by Texas Dow Employees Credit Union Data Breach

02:37 AMD Internal Data Reportedly Offered for Sale

03:15 Researchers Warn of Text Scams That Send Drivers Fake Bills for Highway Tolls

03:59 SonicWall Warns of Critical Access Control Flaw in SonicOS

04:37 Hillstone WAF Flaw Allows Dangerous Command Injection Attacks

05:02 Critical Flaws in Traccar GPS System Expose Users to Remote Attack

05:50 Google Tags a Tenth Chrome Zero-Day as Exploited This Year

06:31 NSA Releases Guide to Combat Living Off the Land Attacks

07:13 Adversaries Love Bots, Short-Lived IP Addresses, Out-of-Band Domains

07:47 GenAI Buzz Fading Among Senior Executives

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter

00:00 Introduction

00:06 Halliburton Forced to Take Systems Offline to Contain Cyberattack

00:42 U.S. Department of Justice Alleges Cybersecurity Failings By Georgia Tech

01:13 Audit Finds Notable Security Gaps in FBI’s Storage Media Management

01:52 Qilin Ransomware Upgrades and Now Steals Google Chrome Credentials

02:21 Microsoft to Host Security Summit After CrowdStrike Disaster

03:01 American Radio Relay League Confirms $1 Million Ransom Payment

03:36 Telegram Founder Pavel Durov Arrested in France for Content Moderation Failures

04:03 U.S. CISA Adds Versa Director Bug to Its Known Exploited Vulnerabilities Catalog

04:43 Dell Power Manager Vulnerability Allow Attackers Gain Unauthorized Access – Patch Now!

05:21 Fraud Tactics and the Growing Prevalence of AI Scams

05:58 The Changing Dynamics of Ransomware as Law Enforcement Strikes

Additional Resources:

• Subscribe for daily updates
• Check out our daily newsletter at CISOHeadlines.com and subscribe to get notified!

LINKS

Be sure to check out and subscribe to our other channels to stay updated! 💡

Spotify

YouTube

Apple Podcasts

LinkedIn Newsletter