19-May-2024: Ransom Attacks on PuTTy & WinSCP, Black Basta Exploits Microsoft Tool, GE Healthcare Flaws Exposed

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast created by Cytadel Cyber. Every day, we bring you the latest news and insights from the world of cyber threats and security innovations. Today, we delve into the evolving ransomware landscape where RansomHub has upstaged Lockbit, becoming the top threat worldwide. This shift demands robust cybersecurity strategies across industries to safeguard sensitive data and enhance overall security measures. In Columbus, approximately 500,000 residents are impacted as the city falls prey to a ransomware attack, affecting various systems. While officials collaborate with experts to resolve the breach, locals are urged to be vigilant of their digital accounts for any suspicious activity. As the festive season nears, the retail sector braces for a surge in cyber threats, including phishing and data breaches. Experts recommend bolstering IT security, increasing staff training, and investing in advanced technologies to protect businesses and consumer confidence. In a concerning trend, Embargo ransomware actors are exploiting Windows Safe Mode to launch attacks more effectively. This method reduces system defenses, showcasing escalating sophistication among cybercriminals against traditional security measures. Lastly, Memorial Hospital in Georgia faces a severe ransomware attack, crippling access to digital records and disrupting healthcare operations. This incident highlights the urgent need for fortified cybersecurity in healthcare systems to protect against emerging threats. Stay secured and informed with Hacked dAily.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

4 Marras 20243min

Welcome to Hacked dAily, the pioneering AI-driven cybersecurity podcast brought to you by Cytadel Cyber. Stay updated on the latest cyber news, breaches, and defenses from around the globe. In our top story, a massive data breach in Italy has left the personal information of 800,000 citizens exposed, raising alarms about the country's cybersecurity. Authorities are actively investigating while working to enhance security infrastructure to thwart future breaches. Next, China’s cyber warfare units are undergoing advanced training on virtual battlefields, focusing on both offensive and defensive maneuvers. These exercises prepare them for the ever-evolving landscape of cyber threats, from safeguarding critical infrastructure to thwarting foreign attacks. In another major incident, the PSAUX ransomware has targeted 22,000 CyberPanel instances. Exploiting a new vulnerability, attackers have encrypted files, with demands for ransom escalating the urgency for users to update systems and reinforce security measures. Also in today's news, studies reveal the lingering impact of the Spectre vulnerability on AMD and Intel processors, despite attempted mitigations. This persistent flaw underscores the ongoing challenges faced in securing modern processors. Finally, Sinclair Broadcast Group seeks $10 million in damages from insurers for losses during a 2021 ransomware attack, illuminating the complex interaction between corporate cyber incidents and insurance coverage. Stay tuned with Hacked dAily, your go-to source for critical cybersecurity updates.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

29 Loka 20243min

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast powered by Cytadel Cyber. Each day, we dive into the latest cyber threats and security news, bringing you concise updates to keep your digital workspace secure. Today's top stories include a $1.5 million settlement approval in Connecticut for a healthcare company following a data breach that exposed sensitive patient information. This case marks a crucial step in addressing privacy concerns and reinforcing the need for stringent security measures in healthcare. Next, we discuss a security flaw discovered in Microsoft Azure's AI Content Safety, which was bypassed by security experts, casting doubt on the effectiveness of AI-driven moderation systems. Microsoft is currently working to strengthen its Azure services in response to this incident. In another significant lawsuit, Delta Airlines is pursuing $500 million from cybersecurity firm CrowdStrike, accusing the firm of failing to prevent a major data breach. This legal battle underscores tensions in cybersecurity accountability, highlighting risks companies face in protecting customer data. In other news, a hacking tool has breached Google Chrome's latest cookie encryption, pressing the need for improved encryption standards to safeguard user data across the web. Lastly, a major data breach at a Denver-based law firm has led to a class action lawsuit, prompting a review of security practices within the legal sector as it grapples with compromised client information. Tune in to Hacked dAily tomorrow for more cybersecurity insights. Stay safe!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

29 Loka 20243min

Welcome to Hacked dAily, the world's first AI-driven cybersecurity podcast by Cytadel Cyber. Tune in for a concise rundown of today's top cyber news stories. First up, Chinese hackers have been identified as the culprits behind a breach of US telecommunications providers, sparking national security concerns. Authorities are investigating the full impact on sensitive communications and personal data exposure. Next, the ransomware group Interlock has launched a serious attack on Texas Tech University Health Sciences Center. The assault resulted in class cancellations and ongoing disruptions, with 3.2 TB of sensitive patient information and research reportedly stolen. In a major legal victory, a Russian court has handed down lengthy prison sentences to four members of the infamous REvil ransomware gang. Their conviction marks a significant advancement in the fight against global cybercrime, following a spate of lucrative cyberattacks. In other news, there’s a new ransomware variant on the block: Qilin.B. This iteration uses Rust programming language to evade traditional cybersecurity defenses and has significantly impacted the UK's NHS services. Analysts stress the need for advanced behavior-based detection systems to stay ahead. Finally, a landmark ruling in Japan sees Ryuki Hayashi sentenced for developing a crypto-extortion tool using generative AI. The case is Japan's first related to AI misuse, highlighting rising concerns over AI-driven cyber threats. Don't miss out on staying ahead of the cybersecurity curve with Hacked dAily!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

29 Loka 20243min

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast brought to you by Cytadel Cyber. We bring you cutting-edge stories straight from the digital frontlines. Today's episode highlights the persistence of data privacy and cybersecurity threats globally. In a groundbreaking move, Ireland's Data Protection Commission has slapped LinkedIn with a €310 million penalty for breaching GDPR, emphasizing the rising enforcement of data privacy regulations. Meanwhile, UnitedHealth Group disclosed a massive data breach affecting approximately 100 million people due to vulnerabilities at Change Healthcare, as investigations continue to manage its aftermath. We also delve into the unsettling rise of AI-powered "deepfake" scams, including a $25 million fraud incident in Hong Kong, with the FBI reporting a surge in online scam losses. Organizations are urged to reinforce their cybersecurity posture to mitigate these sophisticated threats. In other news, the White House has backed collaborations with cybersecurity experts to strengthen national defenses, targeting undiscovered vulnerabilities before they can be exploited. Finally, Cisco warns users about active exploitation of vulnerabilities in ASA and FTD software affecting VPN connections. Users are advised to apply urgent patches to protect their systems. Stay informed and vigilant with Hacked dAily, where tomorrow’s cybersecurity challenges are revealed today. Join us as we navigate the ever-evolving landscape of cyber threats.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

25 Loka 20243min

Welcome to Hacked dAily, the first AI-Driven Cybersecurity Podcast by Cytadel Cyber, where we bring you the latest in cybersecurity news and updates every day. In today's episode, we dive into the rising sophistication of cybercriminal tactics as ransomware attackers repeatedly target the same victims and leverage cloud platforms like Amazon Web Services. Trend Micro's latest findings shine a light on these complicating developments, with security firms racing to counteract these threats by offering free decryptors. Next, a recent Microsoft report alerts us to Cotton Sandstorm, an Iranian group affiliated with Iran’s Islamic Revolutionary Guard Corps, that is currently targeting U.S. election-related sites in the lead-up to the 2024 presidential elections. This forms part of a larger narrative, with foreign entities like Russia and China aiming to influence U.S. politics. We also explore the growing threat of deepfake technology. With AI advancement, deepfakes are now being used to enhance phishing scams, making them harder to detect and urging for stronger security measures. In other news, voice-enabled AI is now automating more complex tasks such as initiating phone scams. This alarming capability necessitates urgent calls for stricter consumer protections. And finally, a breach compromising 180,000 users' data from Esport North Africa ahead of a major tournament stirs up concerns about user privacy and safety. Stay tuned as we dissect these evolving threats and what they mean for the future of cybersecurity.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

24 Loka 20243min

Welcome to Hacked dAily, the AI-driven cybersecurity podcast by Cytadel Cyber, delivering you the latest in cyber news every day. Today's top story: A new "WinReg" NTLM Relay attack exploit has surfaced, affecting Windows Servers. This vulnerability enables unauthorized access and privilege escalation, prompting Microsoft to work swiftly on a patch to protect affected systems. In other news, a resurgence of the Bumblebee and Latrodectus malware strains is alarming cybersecurity experts. Enhanced phishing methods are being used to spread these threats via email attachments and compromised websites, reinforcing the importance of routine security updates and cautious online behavior. Our next story reveals a concerning new phishing campaign using the Gophish framework, enabling attackers to deploy Remote Access Trojans (RATs) for unauthorized access to sensitive information. This highlights the escalating sophistication of cyber threats. In addition, the SEC is taking action against several tech companies for downplaying the SolarWinds cyberattack's impact in their disclosures, potentially violating securities laws, and highlighting the need for transparency in cybersecurity reporting. Finally, Google's Threat Analysis Group reports a zero-day vulnerability in Samsung's mobile processors. Exploited for privilege escalation, a patch has been issued to combat this threat prevalent in models like Exynos 9820 and 990. Tune in tomorrow for more updates. Stay secure and informed with Hacked dAily!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

23 Loka 20243min

Welcome to Hacked dAily, the first AI-Driven Cybersecurity Podcast by Cytadel Cyber, where we delve into the most pressing cyber incidents shaping today’s digital landscape. In our top story, a major milestone in cybercrime enforcement was achieved with the arrest of the FBI's most wanted hacker at Malpensa Airport. This apprehension, involving international agencies, highlights the global effort in combating cybercriminals. Next, North Korea is allegedly behind a no-click attack exploiting a Microsoft zero-day vulnerability. Utilizing the Windows notification system, they can gain unauthorized access, underscoring the urgency for software security and timely updates. Meanwhile, the Crypt Ghouls are wreaking havoc by infiltrating supply chains. By targeting contractors and third-party providers with ransomware, they are causing significant disruptions, emphasizing the need for robust cybersecurity across all supply chain stakeholders. In other news, researchers have unearthed serious vulnerabilities in end-to-end encrypted cloud storage providers, jeopardizing user data. This discovery demands immediate action to secure these services and maintain user trust. Finally, Lumma Stealer ups its game with sophisticated techniques, including fake CAPTCHA pages and fileless malware. By leveraging genuine software updates, this threat bypasses traditional security, necessitating advanced detection systems. Join us daily for more insights and updates in the cybersecurity realm. Stay secure with Hacked dAily.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.

21 Loka 20243min