Good morning, Security Gang!
Here are the latest updates and action items from the CyberHub Podcast.
Delta Airlines Outage due to CrowdStrike
Delta Airlines continues to suffer from an outage caused by a CrowdStrike update. The airline has canceled around 5,500 flights since Friday, and the crew scheduling program remains down. Transportation Secretary Pete Buttigieg expects Delta to provide hotels and meals for affected travelers.
CrowdStrike CEO to Testify
CrowdStrike CEO George Kurtz will testify about the company's role in the outage affecting multiple sectors, including airlines, banks, and hospitals. This incident is considered one of the largest IT outages in history.
Action Items:
1. Monitor the testimony for insights into preventing similar outages.
2. Review and update your incident response plans based on findings from this case.
DeFi Crypto Exchange dydx Compromised
The older v3 trading platform of the dydx crypto exchange was compromised. Users are warned not to interact with the platform until it's declared safe.
Action Items:
1. Avoid using the dydx v3 platform until further notice.
2. Strengthen security measures, particularly against DNS hijacking attacks.
North Korean Operative Infiltrates KnowBe4
A North Korean operative posing as a software engineer infiltrated KnowBe4 and attempted to plant malware within 25 minutes of starting. The attempt was flagged and contained immediately.
Action Items:
1. Enhance background checks and use advanced identity verification methods.
2. Implement robust endpoint security measures to detect and prevent such attacks.
BreachForums Data Leak
Private member information from Breach Forums version 1 has been leaked, exposing personal data of 212,414 members.
TracPhone $16 Million Settlement
Verizon-owned TracPhone will pay $16 million to settle an FCC investigation into three data breaches caused by malicious API usage.
Action Items:
1. Strengthen API security using NIST and OWASP standards.
2. Conduct regular third-party security assessments and employee training.
Evasive Panda Malware
The Chinese hacking group Evasive Panda is using new versions of the Macma backdoor and NightDoor Windows malware to target organizations in Taiwan and American NGOs in China.
Russia-Ukraine Cyber Warfare
Russian cyber units are shifting focus from civilian to military targets in Ukraine, aiming to provide tangible battlefield advantages.
That's it for today's episode. Join us tomorrow at 9 a.m. Eastern for a live broadcast from our new studio. Stay cyber safe!
Feedback and Subscription
Connect with us on social media, subscribe to our podcast, and leave your comments.
✅ Story Links:Â
https://therecord.media/tracfone-16-million-to-settle-fcc-investigation
🔔 Subscribe now for the latest insights from industry leaders, in-depth analyses, and real-world strategies to secure your digital world. https://www.youtube.com/@TheCyberHubPodcast/?sub_confirmation=1 Â
✅ Important Links to Follow:Â
👉Website:
https://www.cyberhubpodcast.com
👉Substack:
👉Listen here: https://linktr.ee/cyberhubpodcast  Â
✅ Stay Connected With Us.
👉Rumble: https://rumble.com/c/c-1353861Â
👉Facebook: https://www.facebook.com/CyberHubpodcast/Â
👉LinkedIn: https://www.linkedin.com/company/cyberhubpodcast/Â
👉Twitter (X): https://twitter.com/cyberhubpodcastÂ
👉Instagram: https://www.instagram.com/cyberhubpodcastÂ
✅ For Business Inquiries: info@cyberhubpodcast.com
=============================
✅ About The CyberHub Podcast.
The Hub of the Infosec Community.Â
Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.Â
🚨 CrowdStrike CEO to Testify to Congress, KnowBe4 Hires North Korean IT Worker, BreachForums Data Leak