🚨 Cyber News: China Aims at US Critical Infrastructure, Bitlocker encryption Broken, Cisco Bug, Toothbrush DDoS

CyberHub Podcast

1×

0:00

Current time: 0:00 / Total time: -17:08

-17:08

🚨 Cyber News: China Aims at US Critical Infrastructure, Bitlocker encryption Broken, Cisco Bug, Toothbrush DDoS

Today’s top cybersecurity news and the latest from Practicing CISO James Azar, tune in to hear how practitioners read, view and work after hearing the latest headlines

James Azar

Feb 08, 2024

Transcript

Critical Infrastructure Under Threat: Vault Typhoon APT Targets US

The CyberHub Podcast episode on February 8th, 2024, kicked off with discussions on critical infrastructure vulnerabilities, highlighting the Department of Energy's Energy Transition Summit in Washington, D.C. The focus was on the Chinese-backed Vault Typhoon Advanced Persistent Threat (APT) group, which has been actively targeting sensitive US critical infrastructure. The report from CISA underscored the group's pivot to Operational Technology (OT) networks, increasing risks to essential services like energy and water systems.

FBI's Crackdown on Vault Typhoon's Botnet

The episode further revealed the FBI's successful takedown of Vault Typhoon's botnet infrastructure, which had previously facilitated the group's malicious activities through compromised devices across the US. This action has significantly hindered the group's operations, though efforts to revive the infrastructure are suspected.

Iran's Cyber Operations Intensify Against US Infrastructure

The podcast also discussed the escalation of Iranian-linked cyber operations targeting US critical infrastructure and the upcoming 2024 elections. These operations, according to Microsoft researchers, have shown increased collaboration and sophistication, expanding their targets beyond governmental entities to include support systems for Israel amidst the Israel-Hamas conflict.

BitLocker Encryption Bypass Discovered

A notable security flaw in BitLocker encryption was highlighted, where a YouTuber demonstrated a method to bypass BitLocker's security in under a minute using a Raspberry Pi Pico. This discovery raises concerns about the reliability of commonly used encryption solutions.

Cisco Patches Critical Vulnerabilities

Cisco addressed critical vulnerabilities in its Expressway series collaboration gateways, which exposed devices to cross-site request forgery attacks. These patches are crucial for maintaining the security integrity of Cisco's collaboration ecosystem.

Linux Bootloader Vulnerability Exposed

A significant security flaw in the Linux bootloader, used by many major Linux distributions, was uncovered. The vulnerability allows for remote code execution, posing a threat to the secure boot process and potentially leading to complete system compromise.

---

AnyDesk Confirms Cyber Attack Behind Outage

The episode also covered AnyDesk's confirmation of a cyber attack causing a four-day outage, affecting its production systems primarily in Spain and Portugal. AnyDesk assured users of the platform's safety post-attack, though the incident raises questions about cybersecurity preparedness.

Debunking the Electric Toothbrushes DDoS Attack Myth

Lastly, the podcast addressed a sensational claim about 3 million electric toothbrushes being hacked for a DDoS attack, which was later clarified as an illustrative example by Fortinet, not an actual event. This segment emphasized the importance of understanding cybersecurity beyond catchy headlines.

The CyberHub Podcast episode provided a comprehensive overview of current cybersecurity threats and vulnerabilities, emphasizing the need for robust cyber defenses and the importance of accurate information in the cybersecurity community.

Discussion about this podcast

CyberHub Podcast

Today’s top cybersecurity news and the latest from Practicing CISO James Azar, tune in to hear how practitioners read, view and work after hearing the latest headlines and how these stories help keep practitioners sharp and ready.

Listen on