The video features James Azar, the host of the CyberHub Podcast, discussing various cybersecurity topics. Here's a brief summary:
1. Introduction: James Azar introduces the episode, mentioning that it's being broadcasted live on multiple platforms, including YouTube, LinkedIn, Facebook, Twitch, Twitter, and Rumble.
2. BHI Energy Incident: BHI Energy, a part of the Westinghouse Electric Company, was a victim of the Akira ransomware operation. The attack began with threat actors using stolen VPN credentials from a third-party contractor. Over several days, the attackers performed reconnaissance, stole 767,000 files (690 gigabytes of data), and finally deployed the ransomware. BHI was able to recover from cloud backups and did not pay the ransom. They've since implemented additional security measures.
3. CISA's National Cyber Incident Response Plan: The Cybersecurity and Infrastructure Security Agency (CISA) is working on updating the national cyber incident response plan. The new version aims to provide an agile, actionable framework for organizations involved in cyber incident response.
4. OAuth Misconfiguration: Several online companies, including Grammarly and Bukalapak, faced risks due to misconfigurations of critical APIs related to OAuth. This could lead to financial fraud and credential theft if not properly implemented.
5. OnePassword & Okta Incident: OnePassword detected suspicious activity in their Okta instance but concluded that no user data was accessed. This was linked to the recent Okta breach.
6. City of Philadelphia Breach: The city disclosed a cyber breach that occurred between May and July, affecting various types of personal, medical, and financial information.
7. Citrix Vulnerability: Citrix urged administrators to patch a critical vulnerability (CVE-2023-4466) in their NetScaler ADC and Gateway appliances due to ongoing attacks exploiting this flaw.
8. Ransomware Report: September 2023 saw a record 5,114 ransomware attacks, surpassing the previous year's activity. The KLO ransomware gang, which was very active in 2022, showed almost no activity in September 2023.
James Azar concludes the episode by urging viewers to stay cyber safe and provides a call to action for feedback and engagement.
Note: The video also contains promotional content about subscribing to their substack for a CyberHub Podcast espresso travel mug.
Story Links:
https://therecord.media/cisa-working-on-national-incident-response-plan
https://www.darkreading.com/remote-workforce/oauth-log-in-full-account-takeover-millions
https://www.darkreading.com/attacks-breaches/city-of-philadelphia-releases-cyber-breach-notice
Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!
Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact
Share this post