This episode reports on the danger of using expired open-source packages, a tool used by a Russian hacking group and password advice

This episode reports on a new campaign to steal credentials from LastPass users, a warning to admits of Ivanti Avalanche mobile device management software, and more

On this episode Jen Ellis, co-chair of the Ransomware Task Force, talks about ways of fighting one of the biggest cyber threats to IT departments

This episode reports on a threat actor targeting governments in the Middle East with a novel way of hiding malware is going international, and more

This episode reports on security updates from Delinea and PuTTY, and reports on bad bots and threat actors going after Zoom meetings

This episode reports on a new anti-ransomware strategy, and more

This episode features a discussion on Microsoft's cybersecurity troubles, worries about open source, a warning about abusing IT help desks to launch attacks and more

This episode reports on a new way threat actors are planting malware on GitHub, why you should watch for the running of unexpected automated scripts on your network, and more

This episode reports on a warning to application developers using the Rust language, the need to unplug end of life D-Link NAS devices, and more

This episode reports on AI and Magento scams, and more

This episode features a discussion on a highly critical report on the hacking of Microsoft Exchange Online email accounts, a case study of a ransomware attack and the discovery of a years-long infiltration of an open source group to insert a backdoor into Linux

This episode reports on vulnerabilities in HTTP/2, RDP weaknesses a major cause of successful cyber attacks, and more

This episode reports on a data breach at OWASP, Google to delete data it collected in Incognito Mode, and more

This episode reports on a way threat actors can get around cloud-based email filtering systems, the latest information on an AT&T data theft, and more

This episode features a discussion on World Backup Day, a security awareness report and more

This episode reports on a US$10 million reward for a ransomware gang, a new Linux version of a backdoor, and more

This episode reports on a new network of 40,000 infected small and home office routers and other devices that are part of a criminal botnet, and more

This episode reports on a new campaign stealing email passwords, the latest data breaches, and more

This episode features discussion on lessons learned from the ransomware attack on the British Library, advice for managing expectations of IT/security teams, why firms are leaving Google Firebase unprotected and more

This episode reports on the discovery of a side-channel vulnerability in Apple M-series chips and more

This episode reports on new backdoors, a new paper giving advice to OT network operators and more

This episode reports on bugs, holes, data breaches, a coming cybersecurity trust mark for US wireless consumer products and more

Here's our week in review stories that David and guest host Jim Love will discuss: Cyber Pros flock to cybercrime side hustles. I covered this earlier this week. This story came out of the UK and a report that an ex-cop went undercover on the dark web and discovered that there were a lot of cybersecurity professionals who were moonlighting or offering their services the Dark Web. A second municipality fell victim to a ransomware attack.  First it was the city of Hamilton just outside of...

Google adds real time phishing protection to Chrome. A security bug is found in Kubernetes that allows attackers to remotely execute code on Windows nodes. The French government suffers an enormous cyber-attack and vulnerabilities in ChatGPT plug-ins.  Welcome to Cybersecurity Today for Friday March 15th, 2024. I’m your host Jim Love, filling in for Howard Solomon.