The CyberHub Podcast episode hosted by James Azar starts with a casual greeting. The podcast is broadcast live across multiple social media platforms, including Facebook, LinkedIn, YouTube, Twitter, Twitch, and Rumble.
James discusses a cyber attack on Mr. Cooper, a major mortgage servicing company, which occurred on Halloween. Despite the attack, Mr. Cooper has provided alternative payment options for its customers, such as phone, mail, Western Union, MoneyGram, and a one-time web payment. James praises Mr. Cooper's business continuity planning, emphasizing the importance of maintaining revenue generation during a cyber incident.
He then mentions the Allied Pilots Association, which represents American Airlines pilots, and its progress in recovering from a ransomware attack. The focus of their recovery efforts is on restoring systems critical for pilots, highlighting the importance of prioritizing business-critical functions during incident response.
The podcast also covers a novel Google Cloud-based Remote Access Trojan (RAT) that uses Google Calendar events for command and control, which, while not yet observed in the wild, has been discussed on cybercriminal forums.
James then talks about a new variant of the GOOT loader malware, called GOOTBOT, which is designed for lateral movement and evasion of detection, marking a shift in tactics and tools used by cybercriminals.
The episode continues with security updates, including Google's patching of 37 vulnerabilities in the Android security update and additional fixes for Pixel devices. Cisco has also released patches for various products, and CISA has issued an alert urging administrators to apply these patches due to the risk of exploitation.
Lastly, James mentions a critical flaw in the Veeam One IT monitoring tool, with an urgent patch released to address several vulnerabilities that could be exploited by unauthorized users.
The episode concludes with James encouraging listeners to follow the podcast on social media, subscribe to their substack, and the offer of an espresso travel mug for yearly subscribers. He signs off by reminding everyone to stay cyber safe and announces the podcast's return the following day.
Today's Headlines and the latest #cybernews from the desk of the #CISO:
Mortgage giant Mr. Cooper using alternative payment options after cyberattack
American Airlines Pilot Union Recovering After Ransomware Attack
Novel Google Cloud RAT Uses Calendar Events for C2
New GootLoader Malware Variant Evades Detection and Spreads Rapidly
37 Vulnerabilities Patched in Android With November 2023 Security Updates
Cisco patches serious flaws in Firepower and Identity Services Engine
Critical Flaws Discovered in Veeam ONE IT Monitoring Software
Story Links:
https://therecord.media/mortgage-giant-mr-cooper-cyberattack
https://www.securityweek.com/american-airlines-pilot-union-recovering-after-ransomware-attack/
https://www.darkreading.com/cloud/google-cloud-rat-calendar-events-command-and-control
https://thehackernews.com/2023/11/new-gootloader-malware-variant-evades.html
https://thehackernews.com/2023/11/critical-flaws-discovered-in-veeam-one.html
Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!
Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact
******
Listen here: https://linktr.ee/cyberhubpodcast
SubStack:
******
Website: https://www.cyberhubpodcast.com
Youtube: https://www.youtube.com/c/TheCyberHubPodcast
Rumble: https://rumble.com/c/c-1353861
Facebook: https://www.facebook.com/CyberHubpodcast/
Linkedin: https://www.linkedin.com/company/cyberhubpodcast/
Twitter: https://twitter.com/cyberhubpodcast
Instagram: https://www.instagram.com/cyberhubpodcast
The Hub of the Infosec Community.
Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.
#cybernews #infosec #cybersecurity #cyberhubpodcast #ciso #infosecnews #infosecurity #cybersecuritytips #podcast #technews #tinkertribe #securitygang #informationsecurity #cyberattack #databreach #exploit #zeroday
Share this post