The episode of the "Cyber Hub Podcast" for December 6, 2023, hosted live from Atlanta, provided an insightful overview of current cybersecurity threats and incidents. The podcast covered various topics, emphasizing the dynamic landscape of cyber threats.
1. HTC Global Services Cyber Attack: HTC Global Services, a managed service provider, confirmed a cyber attack after the Alpha 5 ransomware gang began leaking data online. The attack likely exploited vulnerabilities in Citrix NetScaler devices, potentially causing significant internal damage.
2. Sierra Wireless Router Vulnerabilities: The podcast highlighted 21 vulnerabilities in Sierra wireless cellular routers, posing threats to various industries. The vulnerabilities range from critical to high severity and include risks like remote code execution and unauthorized access.
3. Tipalti's Alleged Breach by Black Cat: Tipalti, a payment system used by Roblox, was reportedly breached by the Black Cat group. However, Tipalti denied any evidence of the breach in their environment, continuing their investigation.
4. 23andMe Data Breach: The podcast discussed the recent breach at 23andMe, where attackers accessed personal information of around 6.9 million members, directly affecting 14,000 accounts. The incident raised questions about the standardization of multi-factor authentication in sensitive data handling.
5. CISA's Warning on Adobe ColdFusion Vulnerability: CISA added the Adobe ColdFusion vulnerability CVE-2023-26360 to its must-patch list. Despite being patched in March, it remains a target for attacks.
6. Pegasus Spyware Trial in Mexico: The trial focuses on the use of Pegasus spyware during Enrique Peña Nieto's presidency to surveil journalists and other notable figures. The trial's outcome could have significant implications for governmental accountability in spyware use.
7. Russian-Linked Influence Operation 'Doppelganger': The operation targeted Ukrainian, U.S., and German audiences, spreading anti-Ukraine propaganda and other divisive content. Despite its limited reach, the campaign highlights the ongoing threat of state-sponsored misinformation.
The episode concluded with a reflection on the broader implications of these cyber threats, emphasizing the need for informed decision-making and enhanced cybersecurity measures. The host urged listeners to stay updated and cyber-safe, highlighting the importance of vigilance in the face of these evolving challenges.
Story Links:
https://www.darkreading.com/application-security/payments-giant-tipalti-no-ransomware-breach-roblox
https://www.securityweek.com/23andme-says-hackers-saw-data-from-millions-of-users/
https://therecord.media/mexico-pegasus-spyware-trial-kicks-off
https://thehackernews.com/2023/12/russias-ai-powered-disinformation.html
Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!
Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact
******
Listen here: https://linktr.ee/cyberhubpodcast
SubStack:
******
Website: https://www.cyberhubpodcast.com
Youtube: https://www.youtube.com/c/TheCyberHubPodcast
Rumble: https://rumble.com/c/c-1353861
Facebook: https://www.facebook.com/CyberHubpodcast/
Linkedin: https://www.linkedin.com/company/cyberhubpodcast/
Twitter: https://twitter.com/cyberhubpodcast
Instagram: https://www.instagram.com/cyberhubpodcast
The Hub of the Infosec Community.
Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.
Share this post