CyberAttack Grab Bag - Episode 207

CyberAttack Grab Bag - Episode 207

On this episode, the CU Guys uncover the latest cyber threats, from AI-driven breaches to cloud misconfigurations, that put your data at risk. Learn about real-world examples of high-profile breaches and simple social engineering tricks that can compromise your security. Discover the role of AI and quantum computing in cyberattacks and get practical steps to enhance your defenses. Perfect for cybersecurity professionals and anyone serious about data protection, this episode offers essential insights to stay ahead of cybercriminals. Don't wait for a breach, arm yourself with knowledge and strategies today.


Episode Transcript:

So I wanted to go through some of the top breaches and whatnot that were happening and we're all of what, about 10 weeks or so into 2026. So I figure we'll give the folks a little bit of an update. We've got some AI-powered attacks, supply chain vulnerabilities, a little ransomware sprinkled into the mix. So yeah, it's been a lot of exciting stuff happening out there.


So I'll just kind of bebop around and we can talk about some of these. But one of the public sector breaches was a contractor and suffered a ransomware attack that exposed something along the lines of 25 million individuals, which was having some pretty substantive impacts on state benefit systems. So it's definitely interesting seeing that type of exposure, but it's just one of the things that folks don't realize is just how much all of this security and compliance, layers of controls all work together to help to protect you. But it's one of the areas that organizations don't focus heavily enough on is the security and compliance of the folks that are working for them, if you will.


Why do you think that is, Arut?


Well, a lot of people will go under the, you know, under the guiding assumption that, oh, you know, and especially based on, you know, the name of the company or, you know, whatever, and they just don't take that that threat as as seriously as they should or need to, you know, and nobody out there is perfect, right? But you do expect that, you know, larger scale organizations have their act together, but time after time, they end up kind of proving out that that's not necessarily the case.


And so, but, you know, in the grand scheme of things, we've got, shit, we even had the FBI had, you know, had an issue. This is another vendor driven, you know, another vendor driven, you know, incident where there was a vendor's internet service provider that was compromised so that they could access a federal digital collection system network. So, you know, you've got, you know, you got the bad guys out there, kind of indirectly, indirectly hitting critical FBI systems as well. So it's not just the corporate arena, you know, out there that, you know, that gets hit. But yeah, this one, this one was in like mid, mid February. They were.


There seems to be a rash of federal mishandlings in the information realm these days.


They're not immune, so apparently around the middle of February they were seeing some irregular network activity that was leading them straight to the digital collection system network and finding out that there's sensitive data with court-authorized wiretaps, FISA warrants and personal information on active FBI agents, etc. They claim that they've identified and addressed the suspicious activity, but they're not saying, go figure.


They're not saying a lot more than that, shall we say. The government is definitely not immune, shall we say.


That is a, uh, that is a very fair statement. Uh, one of the ones that really hurt my heart, because I like what they bring to the table, tell us what happened on the Cargoo roost front.

Denne episoden er hentet fra en åpen RSS-feed og er ikke publisert av Podme. Den kan derfor inneholde annonser.

Episoder(223)

Building AI Agents Securely - Episode 223

Building AI Agents Securely - Episode 223

AI agents are driving efficiency, but also introducing serious, often unseen security risks. As adoption accelerates, unvetted access, prompt injection, and poorly controlled environments can expose s...

2 Jul 24min

AI-Powered Attacks: Is Your Compliance Program Already Obsolete? - Episode 222

AI-Powered Attacks: Is Your Compliance Program Already Obsolete? - Episode 222

In an era of evolving AI-driven cyberattacks, traditional compliance programs are falling dangerously behind. Static controls create a false sense of security while attackers leverage AI to move faste...

25 Jun 18min

Compliance Theater: Are You Actually Secure or Just Checking Boxes? - Episode 221

Compliance Theater: Are You Actually Secure or Just Checking Boxes? - Episode 221

Most organizations are just performing compliance – ticking boxes, not building real security. What happens when the curtain is pulled back on these check-the-box programs? You might be under the illu...

18 Jun 20min

Audit Fatigue and How to Effectively Navigate It - Episode 220

Audit Fatigue and How to Effectively Navigate It - Episode 220

Caught in a cycle of audit requests, evidence chaos, and burnout? Discover a way out in this episode. Compliance Expert Adam Goslin joins Todd Coshow to reveal the hidden causes of audit fatigue and s...

11 Jun 21min

Identity is the New Perimeter (Zero Trust) - Episode 219

Identity is the New Perimeter (Zero Trust) - Episode 219

On this week's Compliance Unfiltered, discover why identity is the new perimeter in cybersecurity. This episode reveals how zero trust principles can protect your systems by continuously verifying use...

4 Jun 28min

Regulatory Explosion & Board-Level Accountability - Episode 218

Regulatory Explosion & Board-Level Accountability - Episode 218

Discover why compliance is now a boardroom priority, not just an IT task. In this episode, Todd Coshow and Adam Goslin reveal how outdated practices put organizations at risk. Learn about the shift to...

29 Mai 22min

Will Your Compliance Software Vendor Protect Your Data? - Episode 217

Will Your Compliance Software Vendor Protect Your Data? - Episode 217

Most companies overlook vendor vulnerabilities in compliance. On this episode, the CU Guys reveal hidden risks in vendor relationships, from breaches to vetting gaps. Discover tactics for evaluating v...

21 Mai 21min

Data Has Borders: The New Rules of Compliance - Episode 216

Data Has Borders: The New Rules of Compliance - Episode 216

Data compliance isn't just about protecting information anymore — it's about understanding where your data lives, how it moves, and how to stay compliant across borders. On this Episode of Compliance ...

14 Mai 20min

Populært innen Teknologi

lydartikler-fra-aftenposten
romkapsel
teknisk-sett
tomprat-med-gunnar-tjomlid
shifter
rss-kunstig-intelligens-med-elisabeth-maren-og-morten
rss-ki-praten
smart-forklart
teknologi-og-mennesker
rss-ai-forklart
elektropodden
energi-og-klima
kortslutning
rss-alt-som-gar-pa-strom
hans-petter-og-co
fornybaren
rss-praktisk-proptech
rss-protopia-en-podkast-fra-norsk-helsenett
rss-vippserne
rss-bitcoinpolitisk-institutt-norge