The TWiET crew delves into botnets, securing hybrid work environments, the future of DNS architecture, and more. News Blips: Researchers uncover sophisticated IoT botnet named "K- Botnet" targeting US entities; linked to Chinese state-aligned hackers AI startup Vanta (a TWiT.tv Sponsor) launches AI suite to automate repetitive security and compliance tasks DARPA funds revolutionary laser-based aerial energy delivery system for military operations Networking company Cradlepoint acquires...

Proxy trojan targets macOS users for traffic redirection Indoor navigation has had a slow start Krasue RAT uses cross-kernel Linux rootkit to attack telecoms U.S. approves first gene-editing treatment, Casgevy, for sickle cell disease The DNS Deep-Drive continues with guests Josh Kuo, DNS expert, and Ross Gibson, Principal Solutions Architect of Infoblox, to talk about external authoritative DNS - whether enterprises should fully manage their own external DNS or use managed services,...

Hackers Can Easily Extract ChatGPT Training Data Cheebert's prediction about VDI just came true Big Tech jobs are not as immune to layoffs as we thought Siemens PLCs are Still Vulnerable to Stuxnet-like Cyberattacks Josh Kuo, DNS Expert and Ross Gibson, Principal Solutions Architect of Infoblox join Brian Chee and Curt Franklin for part 1 of a 3 part in-depth primer on enterprise DNS, from the basics of DNS lookup, key considerations like security and encryption, and why run your own DNS...

Ransomware group reports a victim company to the SEC for failing to promptly disclose a breach. Shadowy hack-for-hire group behind sprawling web of global cyberattacks Electrical arc detection devices that can prevent dangerous home fires caused by faulty wiring. The worst passwords of 2023 The NIS2 Directive: The first piece of EU-wide legislation on cybersecurity Jenna Bilotta of LaunchDarkly joins to discuss transforming DevOps tools with better user experiences. Hosts: Louis...

CISA Alerts: High-Severity SLP Vulnerability currently being exploited. ChatGPT outages attributed to DDoS activity. Gen Z and Millennial employees are a bigger cybersecurity risk than older employees. Security firm finds highly invasive malware hidden in software developer tools. Strategies for bridging the cybersecurity skills gap. Mike Star, CEO and founder of trackd talks about managing patches and how the community can help preventing disruption from bad updates. Hosts: Louis...

Okta customer data exposed in support breach impacting 134 companies. Biden requests $3.1B more for FCC's "rip-and-replace" program to remove insecure equipment from federal networks, targeting Huawei and ZTE equipment. Kaspersky finds Android spyware targeting WhatsApp users, reusing malware from Telegram cyber attacks. U.S. Immigration and Customs Enforcement agency is using AI to scan social media for derogatory content before approving visas. Brian warns about oversharing online....

iLeakage gives hackers access passwords and sensitive data on iOS and macOS browsers. 0ktapus is "one of the world's most dangerous financial criminal groups" says Microsoft. Apple backs national right-to-repair bill. Pro-Russia hackers exploiting 0-day in Roundcube webmail software. 9 innovative ways to boost security hygiene for Cyber Awareness Month Josh Kuo, Senior Educator and SME in Cyber Security of Infoblox talks about why we need Punycode and how DNS can be a security solution...

This info-packed episode of TWiET dives into the hidden dangers of Google hosted ads with malware. Guest Adam Jacob shares his vision for a "second wave" of DevOps to achieve better collaboration and outcomes. Patch Winrar right now The most used IT Admin passwords Cisco reports 10,000 network devices backdoored with unpatched 0-day The global chip talent shortage and partnerships addressing it The risks of malicious Google ads using punycode to disguise fake URLs Adam Jacob, CEO of...

On This Week in Enterprise Tech, Lou, Curt, and Brian dive into how remote console devices are empowering IT pros, the future of digital trust and content authenticity, and the evolving landscape of endpoint management security. Jeff Marraccini from Altair explains how air console devices allow him to remotely access noisy server racks to diagnose issues, avoiding dangerous sound levels. This saves time and prevents disruptions. This week's news blips: Comcast announces DOCSIS 4.0 in...

This episode of This Week In Enterprise Tech discusses the major cybersecurity recruitment challenges organizations face today and dives into the world of enterprise edge computing and the future of hyperscale cloud services with Scott Evers of Involta. News Blips: The hosts discuss a severe vulnerability in Atlassian's Confluence Server that allows attackers admin-level access, how over 100,000 industrial control systems are exposed on the public internet, using fiber optic cables on the...

This episode of This Week in Enterprise Tech covers the convergence of networking and security with the emergence of SASE (secure access service edge), tips for navigating the document and file management landscape, and more enterprise tech stories. A new Chrome 0-day is sending the Internet into a new chapter of Groundhog Day DHS Calls Into Question Physical Security in Johnson Controls Cyberattack Hikvision Intercoms Allow Snooping on Neighbors Backdoored firmware lets China state...

This episode of This Week in Enterprise Tech packs in analysis on Cisco's shocking $25 billion acquisition of Splunk and what it means for the cybersecurity ecosystem. Plus, Intel VP of Sales & Marketing Jason Kimrey joins to decode the company's groundbreaking new neural processors and innovations in chip design, and accelerating AI processing at the edge. * Major vulnerabilities uncovered in Apple and Google image libraries - despite patches, blindspots remain   * Surge of...

This week on TWiET, Lou Maresca, Brian Chee, and Curt Franklin talk with Dev Rishi, Co-Founder and CEO at Predibase, discussing the hurdles of moving large language models into production environments and how privacy concerns factor into that decision. Guest Dev Rishi of Predibase explains why many organizations say they can't use commercial LLMs, and shares best practices for getting started with privacy-focused ML. Other topics include: Microsoft, Oracle deliver direct access to Oracle...

On This Week in Enterprise Tech, Lou Maresca, Brian Chee, and Curtis Franklin dive into how the SEC's proposed cybersecurity rules could reshape how corporations handle disclosures and risk management. Guest Brian McDonald from Mutare also shares insights on securing voice communications against rising cyber threats. Plus Brian Chee explains out-of-band network management(OOBI). Brian Chee breaks down out-of-band management(OOBI) for remotely accessing devices separately from production...

UK's Online Safety Bill compromises end-to-end encryption and could result in systemic security risks Cybercriminal gangs are trafficing cybercrime workers Pros and Cons of JAVA programing AirBnb accounts hacked using stealers malware and stolen cookies Should Big Tech firms help pay for broadband contruction? Ketan Karkhanis, executive vice president and general manager of Sales Cloud at Salesforce talks about trust and challenges with AI, and how generative AI will change sales....

This week on This Week in Enterprise Tech, host Lou Maresca and co-hosts Curt Franklin and Brian Chee explore the key takeaways from the 2023 Black Hat and DEF CON cybersecurity conferences. They discuss the proliferation of AI, especially in relation to security. Guest Michael Amori, CEO of Virtualitics, talks about how AI is impacting data analytics and access. Curtis Franklin shares highlights from Black Hat and DEFCON 2023, noting generative AI was the dominant theme across both events....

This episode of This Week in Enterprise Tech discusses the latest issues around AI, including legal implications, security concerns, and practical applications. Lucid Software Chief Product Officer Dan Lawyer joins hosts Curt Franklin, Brian Chee, and Oliver Rist to explain how Lucid's visual collaboration tools aim to improve teamwork through integrating AI capabilities. Recent phishing campaign targeting Zimbra customers in over a dozen countries AI requiring changes to data center heat...

Facial Recognition Lawsuit, AI-generated Fake Books, SaaS Management with Zylo, and more. How fame-seeking teenagers hacked some of the world's biggest targets Innocent pregnant woman jailed amid faulty facial recognition trend XWorm, Remcos RAT evade EDRs to infect critical infrastructure Homage to Lahaina Author discovers AI-generated counterfeit books written in her name on Amazon Zylo co-founder and CSO Ben Pippenger sheds light on the importance of managing SaaS applications,...

Researchers strengthen defenses against denial-of-service attack Cult of the Dead Cow Hacktivists Give Life to 'Privacy-First' App Framework Photoshop can now use generative AI to expand images Text prompts for AI are also available in over 100 languages. US military battling cyber threats from within and without White House Cyber Workforce Strategy: No Quick Fix for Skills Shortage Michael "Hoff" Hoffman, Co-founder & CEO of IQXR, a Mesmerise Group Company, talks about extended...

Cloudflare Radar's new BGP origin hijack detection system TSA Updates Pipeline Cybersecurity Requirements AT&T and Verizon's ancient lead cables have US lawmakers demanding action EFF: FBI Seizure of Mastodon Server Data is a Wakeup Call to Fediverse Users and Hosts to Protect their Users Companies Must Have Corporate Cybersecurity Experts, SEC Says Ricardo Michel Reyes, Chief Science Officer and Co-founder of Erudit talks about how AI can be used to help organizations build...

Rootkit Attack Detections Increase at UAE Businesses White House, Big Tech Ink Commitments to Secure AI Firmware vulnerabilities in millions of computers could give hackers superuser status The Biden administration is tackling smart devices with a new cybersecurity label Adam Gavish, CEO and Co-Founder of DoControl talks about how you and your organization can control your data exposure. Hosts: Louis Maresca and Curtis Franklin Guest: Adam Gavish Download or subscribe to this show at...

AWS Lambda proactively warms things up WormGPT Cybercrime Tool Heralds an Era of AI Malware vs. AI Defenses DirectorStorage on Windows now works for consumers and games White House Fills in Details of National Cybersecurity Strategy Hackers Say Generative AI Unlikely to Replace Human Cybersecurity Skills According to Bugcrowd Survey    Alfonso Santos and Larry Longhurst of Veridas talk about digital identity and biometric security Hosts: Louis Maresca and Curtis Franklin Guests:...

336,000 servers remain unpatched against critical Fortigate vulnerability Patchless Cisco flaw breaks cloud encryption for ACI traffic Google changed its privacy policy to reflect Bard AI's data collecting Top 10 cybersecurity findings from Verizon's 2023 data breach report Ron Reiter, Co-Founder and CTO of Sentra talks data security and improving your Security Posture. Host: Louis Maresca Guest: Ron Reiter Download or subscribe to this show at...

TSMC confirms data breach after LockBit cyberattack on third-party supplier Red Hat Says "Bye Bye CentOS" Cybercriminals Hijacking Vulnerable SSH Servers in New Proxyjacking Campaign ChatGPT's Still a Baby and It's Already Getting Sued Minimizing Dark Data Risk Ranga Bodla, Vice President of Field Engagement and Marketing at Oracle NetSuite talks about simplifying tech stacks to minimize costs, and advantages to using advanced ERP systems. Host: Louis Maresca Co-Host: Oliver Rist ...