14-Jan-2025 Telefonica, ICAO, Nominet, AWS Ransomware & Microsoft's Human-Centric Security

Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber. Every day, we bring you the latest news, updates, and insights from the cybersecurity world, ensuring you're up-to-date in this fast-paced digital landscape. In today's episode, we unravel four major stories shaking the cyber world: 1. A significant breach has struck Telefonica’s ticketing system, following an attack by infostealer malware that exploited stolen credentials. This incident emphasizes the critical vulnerabilities organizations face and the necessity to fortify cybersecurity defenses. 2. The International Civil Aviation Organization (ICAO) faces a potential cybersecurity breach from a notorious cybercriminal group, with claims of up to 42,000 sensitive documents being compromised. This event adds to a streak of cyberattacks on UN agencies, urging a call for reinforced security practices. 3. UK Domain Registry Nominet has encountered a cyber threat via a zero-day vulnerability in Ivanti's VPN software, potentially involving Chinese state-sponsored hackers. While no data theft has been confirmed, Nominet is actively enhancing security and investigating the incident alongside experts. 4. In other news, a ransomware group dubbed "Codefinger" has innovated by exploiting Amazon Web Services' SSE-C to encrypt data in Amazon S3 buckets, presenting a novel threat to organizations using AWS. Lastly, Microsoft advocates the irreplaceable role of human ingenuity in red-teaming, crucial for detecting system vulnerabilities despite AI advancements. Tune in tomorrow for more essential updates on Hacked dAily!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.