Ransomware prevention, ransomware stats, SSH vulns, and $1 Chevy Tahoes! – ESW #344
This week, in the security market, we talk about next NEXT gen anti-virus, how Okta can (apparently) do no wrong, and a VC firm imploding.
Then we discuss how smartphones and speakers are allegedly being used to spy on us, and the future of privacy and consumer tech products.
The latest SSH vuln is much less concerning than media outlets and academic researchers would have you believe. The Citrixbleed vuln, however is about as bad as vulns can get, and has led to one of the biggest US consumer breaches in a while, with Comcast/XFinity losing all customer records.
The SEC backpedals (again!) on requiring breached companies to provide details about how they got breached.
And finally, we have some fun with some squirrel stories that you should absolutely check out by going to our show notes, here: https://securityweekly.com/esw344
Hosts
- 1. FUNDING: Halcyon Closes $40M Series B to Scale Mission of Defeating Ransomware
- 2. ACQUISITIONS: Okta acquiring cybersecurity startup Spera for over $100 million
- 3. SHUTDOWNS: VC firm OpenView Venture Partners winds down
- 4. ANALYSIS: Lets Open(Dir) Some Presents: An Analysis of a Persistent Actor’s Activity – The DFIR Report
- 5. ESSAYS: AI Security by Design?
- 6. ESSAY: Marketing Company Claims That It Actually Is Listening to Your Phone and Smart Speakers to Target Ads
- 7. BREACHES: Fred Hutch Cancer Center attack claimed by Hunters International
Just another ransomware target. You know - hospitals, cancer centers...
This kind of attack is so prolific these days, there were 115 organizations hit in the second week of December alone: https://twitter.com/ido_cohen2/status/1734612507309023306
It's officially out of hand.
- 8. BREACHES: Xfinity hack affects nearly 36 million customers. Here’s what to know.
- 9. VULNERABILITIES: SSH protects the world’s most sensitive networks. It just got a lot weaker
But did it really though? Or is this just another academic vuln that will never be used IRL?
- 10. VULNERABILITIES: This Google OAuth vulnerability allows former employees to retain SaaS access. Here’s what you need to know.
- 11. LAW ENFORCEMENT: Justice Department Disrupts Prolific ALPHV/Blackcat Ransomware Variant
- 12. LAW ENFORCEMENT: Blackcat Search Warrant
- 13. REGULATIONS: Under pressure, SEC backpedals on 4-day breach disclosure rule at 11th hour of mandate
FFS: "the industry has responded positively to a last-minute change that does not require companies to file the technical details of a breach"
SIGH
- 14. REGULATIONS: Digital Operational Resilience Act (DORA), (EU) 2022/2554, Articles
- 15. SQUIRREL: Tweet from Paul Fairie: A List of Predictions Made in 1923 About 2023
- 16. SQUIRREL: GM Dealer Chat Bot Agrees To Sell 2024 Chevy Tahoe For $1
- 17. SQUIRREL: Mike Privette uses GenAI to imagine an industry analyst losing their mind
