The daily cybersecurity news and analysis industry leaders depend on. Published each weekday, the program also includes interviews with a wide spectrum of experts from industry, academia, and research organizations all over the world.
https://thecyberwire.com/podcasts/daily-podcast
Gesamtlänge aller Episoden: 44 days 5 hours 14 minutes
episode 18: CISA Alert AA22-138B – Threat actors chaining unpatched VMware vulnerabilities for full system control. [CISA Cybersecurity Alerts
CISA is releasing this cybersecurity advisory to warn organizations that malicious cyber actors are exploiting CVE-2022-22954 and CVE-2022-22960. These vulnerabilities affect versions of VMware products. Successful exploitation permits malicious actors to trigger a server-side template injection that may result in remote code execution or escalation of privileges to root level access...
episode 19: Geoff White: Suddenly all of the pieces start to line up. [Career Notes]
Investigative Journalist and Author Geoff White talks about connecting the dots of his career covering technology.
episode 19: Why it’s time for cybersecurity to go mainstream. [CyberWire-X]
The commonly held, idealized picture of technology is that tech makes our lives easier, safer, and better in just about every respect. But an unintended consequence of that picture is an unjustified assumption that companies will sell more products if they serve the public interest, and that may not be so. On the consumer side, personal technology investments are often a race to the price bottom, with little attention paid to the security of the products we buy...
episode 19: CISA Alert AA22-152A – Karakurt data extortion group. [CISA Cybersecurity Alerts]
The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the Department of the Treasury (Treasury), and the Financial Crimes Enforcement Network (FinCEN) are releasing this joint Cybersecurity Advisory to provide information about the Karakurt data extortion group, also known as the Karakurt Team and Karakurt Lair. Karakurt actors have employed a variety of TTPs, creating significant challenges for defense and mitigation...
episode 20: Rosa Smothers: Secure the planet. [Career Notes]
Senior VP of Cyber Operations Rosa Smothers describes her career as an early cybersecurity professional (aka the Wild, Wild West) to government intelligence work.
episode 20: Cloud configuration security: Breaking the endless cycle. [CyberWire-X]
Moving to the cloud creates a tremendous opportunity to get security right and reduce the risk of data breach. But most cloud security initiatives get underway after services are deployed in the cloud. It’s frustrating when major breaches resulting from basic mistakes, like S3 buckets left unsecured or secrets exposed. Continually checking for risky configurations and unusual behavior in cloud logs is a requirement, but there is an opportunity to be proactive...
episode 21: Sal Aurigemma: How things work. [Education] [Career Notes]
Associate Professor of Computer Information Systems at the University of Tulsa Sal Aurigemma on how his interest in how things work shaped his career path.