Demo-lition derby: iVerify and Google clash over pixel app pitfalls.
Google and iVerify clash over the security implications of an Android app. CISA has issued a warning about a critical vulnerability in SolarWinds Web Help Desk. Ransomware attacks targeting industrial sectors surge. Microsoft is rolling out mandatory MFA for Azure. Banshee Stealer is a new macOS-targeted malware developed by Russian threat actors. A popular flight tracking website exposes users’ personal and professional information. San Francisco goes after websites generating deepfake nudes. Daniel Blackford, Director of Threat Research at Proofpoint, joins us to discuss emerging tactics used by threat actors and trends in e-crime tied to nation states. Scammers Use Google to Scam Google.
Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.
CyberWire Guest
Daniel Blackford, Director of Threat Research at Proofpoint, joined us while he was out at Black Hat to discuss emerging tactics used by threat actors and trends in e-crime tied to nation states.
Selected Reading
Google to remove app from Pixel devices following claims that it made phones vulnerable (The Record)
Nearly All Google Pixel Phones Exposed by Unpatched Flaw in Hidden Android App (WIRED)
SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day (SecurityWeek)
Microsoft Mandates MFA for All Azure Sign-Ins (Infosecurity Magazine)
New Banshee Stealer macOS Malware Priced at $3,000 Per Month (SecurityWeek)
Dragos reports resurgence of ransomware attacks on industrial sectors, raising likelihood of targeting OT networks (Industrial Cyber)
CISA Releases Eleven Industrial Control Systems Advisories (CISA)
FlightAware Exposed Pilots’ and Users’ Info (404 Media)
AI-powered ‘undressing’ websites are getting sued (The Verge)
Dozens of Google products targeted by scammers via malicious search ads (Malwarebytes)
Share your feedback.
We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.
Want to hear your company in the show?
You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at cyberwire@n2k.com to request more info.
The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc.
Learn more about your ad choices. Visit megaphone.fm/adchoices