Afleveringen
-
Card data theft remains top concern for U.S. consumers
OMB chief to oversee spy agency budgets
Fortibleed leads to ransomware attacks and 430,000 Fortinet firewalls exposed
Get the show notes here: https://cisoseries.com/cybersecurity-news-consumer-security-worries-vought-supervises-spy-budgets-fortibleed-exposes-fortinet/
Huge thanks to our sponsor, Silent Push
Most cybersecurity approaches are completely reactive. Victim organizations are hit with an attack and the chase ensues.
Silent Push closes this gap with its Preemptive Cyber Defense platform. Silent Push tracks adversary infrastructure and infrastructure changes across the Internet during the attack preparation phase - while attackers are still staging domains, IPs, and hosting and Silent Push turns that into Indicators of Future AttackĀ® to defend with confidence.
For a CISO, that turns invisible risk into early warning, an average of 140 days before a campaign shows up in your environment. Time to act, and a smaller window of exposure, before a threat ever reaches your environment. Learn more at silentpush.com
-
Hide My Email bug shows real addresses
Fable 5 gets the greenlight
DHS confirms hackers breached HSIN
Get the show notes here: https://cisoseries.com/cybersecurity-news-hide-my-email-shows-real-addresses-fable-5-gets-greenlight-microsoft-teams-hits-back-on-bots/
Huge thanks to our sponsor, Silent Push
Most cybersecurity approaches are completely reactive. Victim organizations are hit with an attack and the chase ensues.
Silent Push closes this gap with its Preemptive Cyber Defense platform. Silent Push tracks adversary infrastructure and infrastructure changes across the Internet during the attack preparation phase - while attackers are still staging domains, IPs, and hosting and Silent Push turns that into Indicators of Future AttackĀ® to defend with confidence.
For a CISO, that turns invisible risk into early warning, an average of 140 days before a campaign shows up in your environment. Time to act, and a smaller window of exposure, before a threat ever reaches your environment. Learn more at silentpush.com
-
Zijn er afleveringen die ontbreken?
-
Bash can spell trouble GNU for AI agents
DHS to unveil critical infrastructure council
Aikido buys Root
Get the show notes here: https://cisoseries.com/cybersecurity-news-bash-hits-ai-dhs-announces-anchor-ci-aikido-buys-root/
Huge thanks to our sponsor, Silent Push
Most cybersecurity approaches are completely reactive. Victim organizations are hit with an attack and the chase ensues.
Silent Push closes this gap with its Preemptive Cyber Defense platform. Silent Push tracks adversary infrastructure and infrastructure changes across the Internet during the attack preparation phase - while attackers are still staging domains, IPs, and hosting and Silent Push turns that into Indicators of Future AttackĀ® to defend with confidence.
For a CISO, that turns invisible risk into early warning, an average of 140 days before a campaign shows up in your environment. Time to act, and a smaller window of exposure, before a threat ever reaches your environment. Learn more at silentpush.com
-
US seizes illegal World Cup domains
WhatsApp offers usernames for phone number privacy
$10M reward for Russia-based cyber campaign
Get the show notes here: https://cisoseries.com/cybersecurity-news-us-seizes-illegal-world-cup-domains-whatsapp-offers-usernames-for-phone-privacy-10m-reward-for-cyber-campaign/
Huge thanks to our sponsor, Silent Push
Most cybersecurity approaches are completely reactive. Victim organizations are hit with an attack and the chase ensues.
Silent Push closes this gap with its Preemptive Cyber Defense platform. Silent Push tracks adversary infrastructure and infrastructure changes across the Internet during the attack preparation phase - while attackers are still staging domains, IPs, and hosting and Silent Push turns that into Indicators of Future AttackĀ® to defend with confidence.
For a CISO, that turns invisible risk into early warning, an average of 140 days before a campaign shows up in your environment. Time to act, and a smaller window of exposure, before a threat ever reaches your environment. Learn more at silentpush.com
-
CISA sets urgent deadline to fix exploited Cisco flaw
Chinese cybersecurity company claims it has a better-than-Mythos bug finder
Amazon Q flaw enables cloud credential theft
Get the show notes here: https://cisoseries.com/cybersecurity-news-cisas-cisco-deadline-chinas-mythos-competitor-amazon-q-flaw/
Huge thanks to our sponsor, Silent Push
Most cybersecurity approaches are completely reactive. Victim organizations are hit with an attack and the chase ensues.
Silent Push closes this gap with its Preemptive Cyber Defense platform. Silent Push tracks adversary infrastructure and infrastructure changes across the Internet during the attack preparation phase - while attackers are still staging domains, IPs, and hosting and Silent Push turns that into Indicators of Future AttackĀ® to defend with confidence.
For a CISO, that turns invisible risk into early warning, an average of 140 days before a campaign shows up in your environment. Time to act, and a smaller window of exposure, before a threat ever reaches your environment. Learn more at silentpush.com
-
ShinyHunters hits Madison Square Garden
Cal Water finds no evidence of OT activity
New CISA guide helps agencies adopt SASE for Zero Trust
Get the show notes here: https://cisoseries.com/cybersecurity-news-shinyhunters-hits-msg-cal-water-confirms-no-damage-cisa-sase-guide/
Huge thanks to our episode sponsor, Guardsquare
Attackers are treating your mobile app like an open book. Sixty-three percent of security leaders recently detected app tampering, cloning, or unauthorized modifications. When your code runs in an untrusted environment, you need runtime self-protection and code hardening to keep attackers out. Address tampering before it starts. Learn more at Guardsquare.com.
-
Copilot AI knocks down cybercrime tools
Hackers exploit Cisco zero-day
China's 360 says it matches Anthropic's Mythos
Get the show notes here: https://cisoseries.com/cybersecurity-news-copilot-ai-attacks-cybercrime-tools-hackers-exploit-cisco-zero-day-chinas-360-vs-mythos/
Huge thanks to our episode sponsor, Guardsquare
AI is speeding up development, but at what cost? While ninety-six percent of teams now use AI tools, eighty-one percent report that AI-generated code has introduced new vulnerabilities into their mobile apps. In a world with automated threats, you need multi-layered, polymorphic security to stay ahead of the curve. Learn more at Guardsquare.com.
-
Feds seize alleged cyber-scam infrastructure
Dragos unveils AI for OT security
Scattered Spider hackers plead guilty
Get the show notes here: https://cisoseries.com/cybersecurity-news-feds-seize-scam-infrastructure-dragos-unveils-ai-for-ot-security-scattered-spider-hackers-plead-guilty/
Huge thanks to our episode sponsor, Guardsquare
Is your mobile app truly protected? Relying on the OS isn't enough. A global study of thirteen-hundred security and developer leaders found that ninety-six percent of teams using layered protection reported significantly fewer security incidents. Don't wait for a breach to harden your defenses. Get the protection needed for modern secuirty risks. Learn more at Guardsquare.com.
-
OpenAI takes on Anthropic's Mythos
Klue hack hits security shops
Five Eyes has eyes on AI models
Get the show notes here: https://cisoseries.com/cybersecurity-news-openai-takes-on-mythos-klue-hits-security-shops-five-eyes-has-eyes-on-ai/
Huge thanks to our episode sponsor, Guardsquare
Your backend is only as secure as your frontend. Research shows that client-side compromise is now a primary driver of API risk. With sixty-three percent of leaders detecting mobile app tampering or cloning last year, don't leave your mobile app security to chance. Get multilayered protection for your entire mobile app ecosystem from the outside in. Learn more at Guardsquare.com.
-
Hackers suspected in Brazil cell phone alert
Prinz Eugen ransomware prioritizes recent files for encryption
Congress presents bill to protect people from AI-generated deepfakes
Get the show notes here: https://cisoseries.com/cybersecurity-news-brazil-phone-alert-hack-prinz-eugen-ransomware-congress-deepfake-bill/
Huge thanks to our episode sponsor, Guardsquare
Mobile app security isn't just a tech issue; it's a revenue issue. A recent global study found that seventy-two percent of organizations experienced a mobile app security incident last year. Even worse? Sixty-five percent saw customer churn or uninstalls as a result. Protect your brand and your bottom line with layered mobile app protection. Learn more at Guardsquare.com.
-
This week's Department of Know is hosted by Rich Stroffolino, with guests Arif Hameed, CISO, C&R Software; Adam Palmer, CISO, First Hawaiian Bank; Jon Collins, Field CTO, GigaOm; and Jack Leidecker, EVP, CSO, Gainsight.
Huge thanks to our sponsor, ThreatLocker
Every security leader is being asked the same question right now: How do we enable innovation without creating unnecessary risk? That's the challenge behind cloud adoption. Behind AI. Behind automation. And behind every major technology decision. ThreatLocker helps organizations take a Zero Trust approach to that challengeāgiving them greater control over what can execute, what can access their environment, and what users and applications are allowed to do. That's why ThreatLocker is proud to support Cyber Security Headlines. Because security works best when innovation and control move together. -
Police clean ups SocGholish-infected sites tied to Evil Corp
Klue OAuth breach linked to Icarus Salesforce data theft attacks
Warner warns of CISA cuts, staffing gaps in letter to acting chief
Get the show notes here: https://cisoseries.com/cybersecurity-news-police-clean-wordpress-sites-klue-oauth-breach-warners-cisa-warnings/
Huge thanks to our sponsor, ThreatLocker
Every security leader is being asked the same question right now:
How do we enable innovation without creating unnecessary risk?
That's the challenge behind cloud adoption. Behind AI. Behind automation. And behind every major technology decision.
ThreatLocker helps organizations take a Zero Trust approach to that challengeāgiving them greater control over what can execute, what can access their environment, and what users and applications are allowed to do.
That's why ThreatLocker is proud to support Cyber Security Headlines.
Because security works best when innovation and control move together.
-
Anthropic tells G7 to cooperate
Fortinet VPN leak exposes credentials
Crypto Clipper abuses reviews, narrators, and comments
Get the show notes here: https://cisoseries.com/cybersecurity-news-anthropic-tells-g7-to-cooperate-fortinet-vpn-leak-exposes-credentials-crypto-clipper-abuses-reviews/
Huge thanks to our sponsor, ThreatLocker
Every security leader is being asked the same question right now:
How do we enable innovation without creating unnecessary risk?
That's the challenge behind cloud adoption. Behind AI. Behind automation. And behind every major technology decision.
ThreatLocker helps organizations take a Zero Trust approach to that challengeāgiving them greater control over what can execute, what can access their environment, and what users and applications are allowed to do.
That's why ThreatLocker is proud to support Cyber Security Headlines.
Because security works best when innovation and control move together.
-
Athena coalition looks to secure open source
Estonia to quarantine Russian email domains
Malicious package wave hits Arch Linux
Get the show notes here: https://cisoseries.com/cybersecurity-news-athena-coalition-estonias-quarantine-arch-hit-with-malware/
Huge thanks to our sponsor, ThreatLocker
Every security leader is being asked the same question right now:
How do we enable innovation without creating unnecessary risk?
That's the challenge behind cloud adoption. Behind AI. Behind automation. And behind every major technology decision.
ThreatLocker helps organizations take a Zero Trust approach to that challengeāgiving them greater control over what can execute, what can access their environment, and what users and applications are allowed to do.
That's why ThreatLocker is proud to support Cyber Security Headlines.
Because security works best when innovation and control move together.
-
Cyber leaders defend Anthropic's banned models
FBI disrupts massive phishing service
1Password acquires Apono
Get the show notes here: https://cisoseries.com/cybersecurity-news-anthropic-models-defended-massive-phishing-service-shuttered-1password-acquires-apono/
Huge thanks to our sponsor, ThreatLocker
Every security leader is being asked the same question right now:
How do we enable innovation without creating unnecessary risk?
That's the challenge behind cloud adoption. Behind AI. Behind automation. And behind every major technology decision.
ThreatLocker helps organizations take a Zero Trust approach to that challengeāgiving them greater control over what can execute, what can access their environment, and what users and applications are allowed to do.
That's why ThreatLocker is proud to support Cyber Security Headlines.
Because security works best when innovation and control move together.
-
Feds require Anthropic to ban 'foreign national' access to Fable, Mythos
Maine disables data breach notification portal after fake disclosures
ShinyHunters extorts universities through exploiting an unpatched Oracle flaw
Get the show notes here:
Huge thanks to our sponsor, ThreatLocker
Every security leader is being asked the same question right now:
How do we enable innovation without creating unnecessary risk?
That's the challenge behind cloud adoption. Behind AI. Behind automation. And behind every major technology decision.
ThreatLocker helps organizations take a Zero Trust approach to that challengeāgiving them greater control over what can execute, what can access their environment, and what users and applications are allowed to do.
That's why ThreatLocker is proud to support Cyber Security Headlines.
Because security works best when innovation and control move together.
-
This week's Department of Know is hosted by Rich Stroffolino, with guests Brett Conlon, CISO, American Century Investments, and Jason Thomas, senior director, technology security, governance, and risk, Cystic Fibrosis Foundation.
Missed the live show? Check it out on YouTube.
The Department of Know is live every Friday at 4:00 p.m. ET. Join us each week by registering for the open discussion at CISOSeries.com.
Huge thanks to our episode sponsor, DoppelCybercriminals don't respect your security silos. They use one connected attack chain to hit your brand externally, infiltrate your inbox, and manipulate your team. Stop playing whack-a-mole with fragmented tools. Doppel unifies Digital Risk Protection, Human Risk Management, and Email Security into one unified platform. One attack chain. Three pillars of defense. Zero blind spots. Secure your enterprise relentlessly at doppel.com.
-
Fortinet patches a new critical FortiSandbox flaw
GitHub to disable npm install scripts by default to stop supply chain attacks
Nottingham University announces data breach
Get the show notes here: https://cisoseries.com/cybersecurity-news-fortinet-patches-fortisandbox-github-disables-npm-scripts-nottingham-university-breach/
Thanks to our episode sponsor, Doppel
Social engineering attacks look trustworthy ā a routine request, an internal email, a familiar face on a call. But Doppel sees through the disguise. Our AI-native platform detects and disrupts attacks across every channel, while training employees to recognize deepfakes and deception. We fight relentlessly to protect your business, brand, and people. Doppel. Outpacing what's next in social engineering. Learn more at doppel.com. -
Patch Tuesday for the books 'Nightmare Eclipse' drops Windows 0-day
Claude Fable restricted at Microsoft
Get the show notes here: https://cisoseries.com/cybersecurity-news-big-patch-tuesday-nightmare-eclipse-drops-windows-0-day-claude-fable-restricted-at-microsoft/
Thanks to our episode sponsor, Doppel
Social engineering attacks look trustworthy ā a routine request, an internal email, a familiar face on a call. But Doppel sees through the disguise. Our AI-native platform detects and disrupts attacks across every channel, while training employees to recognize deepfakes and deception. We fight relentlessly to protect your business, brand, and people. Doppel. Outpacing what's next in social engineering. Learn more at doppel.com. -
Anthropic releases Claude Fable 5
French government messaging service breached
CISA rethinking risk evaluations
Get the show notes here: https://cisoseries.com/cybersecurity-news-claude-fable-5-tchap-hacked-cisa-priorities/
Thanks to our episode sponsor, Doppel
Social engineering attacks look trustworthy ā a routine request, an internal email, a familiar face on a call. But Doppel sees through the disguise. Our AI-native platform detects and disrupts attacks across every channel, while training employees to recognize deepfakes and deception. We fight relentlessly to protect your business, brand, and people. Doppel. Outpacing what's next in social engineering. Learn more at doppel.com. - Laat meer zien