CISO Talk by James Azar
CyberHub Podcast
China Hacks US Wiretap systems in ISP Attack, Star Blizzard Dismantled, Comcast & Truist Bank Breach
0:00
Current time: 0:00 / Total time: -21:22
-21:22

China Hacks US Wiretap systems in ISP Attack, Star Blizzard Dismantled, Comcast & Truist Bank Breach

Today’s top cybersecurity news and the latest threats from Practicing CISO James Azar, tune in to hear how practitioner’s breakdown the latest to bolster their cybersecurity programs

In this episode of the CyberHub Podcast, host James Azar opened by reflecting on the significance of October 7th, a date marked by tragedy due to personal and national experiences. He shared plans to post more detailed thoughts on his Substack and social media accounts. Azar also touched on the recent observance of Rosh Hashanah and the upcoming Yom Kippur, mentioning the personal introspection the holidays encourage.

CISO Talk by James Azar is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.

The podcast also highlighted other cybersecurity developments:

Salt Typhoon Cyber Attack

A Chinese hacking group called Salt Typhoon targeted U.S. telecommunications giants like Verizon, AT&T, and Lumen Technologies. The breach is potentially catastrophic, with concerns about compromised critical infrastructure, including the federal wiretap system, raising national security alarms.

Azar emphasized that such incidents showcase the recurring failure of leadership to defend against external threats, referencing previous major breaches like the Office of Personnel Management (OPM) hack and the Equifax breach. He linked these attacks to larger geopolitical stakes, particularly China's interest in Taiwan, a hub for semiconductor production, which gives China significant leverage in global diplomacy and technology.

Star Blizzard Takedown

The U.S. DOJ and Microsoft successfully dismantled over 100 domains linked to the Russian-sponsored APT group Star Blizzard, active since 2017. This group has been targeting journalists, NGOs, and experts, particularly in support of Ukraine.

FBCS Data Breach

Debt collection agency FBCS suffered a breach earlier this year, impacting Comcast and Truist Bank customers. The breach exposed sensitive personal information, including social security numbers, driver’s licenses, and financial data, affecting millions of individuals.

Critical Infrastructure Attacks

A report by Clarity highlighted that cyber-attacks on cyber-physical systems in sectors like energy, manufacturing, and chemicals are causing financial losses of up to $1 million, with many organizations struggling to recover from these incidents.

Ransomware Payments

Ann Neuberger, U.S. Deputy National Security Advisor for Cyber, criticized insurance companies for covering ransomware payments, arguing that this practice encourages cybercriminals and worsens the ransomware epidemic.

Reflecting on October 7th, Azar shared personal and national impacts of the ongoing conflict, noting a rise in anti-Semitism and urging listeners to explore the complex historical background of Israel and the Jewish people’s connection to the land.

Azar wrapped up the show by returning to the emotional toll of October 7th, discussing the broader rise of anti-Semitism and the complexities surrounding the Israeli-Palestinian conflict. He shared personal family experiences and urged listeners to study the historical roots of the conflict.

Action Item for Cybersecurity and IT Professionals:

Strengthen defenses against nation-state cyber attacks by focusing on securing critical infrastructure and telecommunications networks. Given the increasing frequency and sophistication of attacks, it’s crucial to monitor and patch vulnerabilities in real-time, work closely with government agencies, and implement strong incident response protocols for breaches related to national security.

Thanks for reading CISO Talk by James Azar! This post is public so feel free to share it.

Share

✅ Story Links: 

https://www.wsj.com/tech/cybersecurity/u-s-wiretap-systems-targeted-in-china-linked-hack-327fc63b?mod=cybersecurity_news_article_pos1

https://www.darkreading.com/threat-intelligence/microsoft-doj-dismantle-russian-hacker-group-star-blizzard

https://www.bleepingcomputer.com/news/security/comcast-and-truist-bank-customers-caught-up-in-fbcs-data-breach/

https://www.securityweek.com/personal-information-compromised-in-universal-music-data-breach/

https://www.securityweek.com/ransomware-hits-critical-infrastructure-hard-costs-adding-up/

https://www.securityweek.com/okta-tells-users-to-check-for-potential-exploitation-of-newly-patched-vulnerability/

https://www.bankinfosecurity.com/russia-arrests-100-in-cryptex-crypto-exchange-crackdown-a-26460

https://www.cybersecuritydive.com/news/healthcare-ransomware-attacks-spike/728689/

https://therecord.media/cyber-insurance-ransomware-payments-anne-neuberger-op-ed

🔔 Subscribe now for the latest insights from industry leaders, in-depth analyses, and real-world strategies to secure your digital world. https://www.youtube.com/@TheCyberHubPodcast/?sub_confirmation=1  

✅ Important Links to Follow: 

👉Substack:

👉Listen here: https://linktr.ee/cyberhubpodcast   

Stay Connected With Us.

👉Facebook: https://www.facebook.com/CyberHubpodcast/ 

👉LinkedIn: https://www.linkedin.com/company/cyberhubpodcast/ 

👉Twitter (X): https://twitter.com/cyberhubpodcast 

👉Instagram: https://www.instagram.com/cyberhubpodcast 

✅ For Business Inquiries:  info@cyberhubpodcast.com

=============================

About The CyberHub Podcast.

The Hub of the Infosec Community. 

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure. 

Tune in to our podcast Monday through Thursday at 9AM EST for the latest news.

Discussion about this podcast

CISO Talk by James Azar
CyberHub Podcast
Today’s top cybersecurity news and the latest from Practicing CISO James Azar, tune in to hear how practitioners read, view and work after hearing the latest headlines and how these stories help keep practitioners sharp and ready.