27-Sep-2024: Cyber Breaches Hit UK Rail, Kia, NVIDIA & US Sanctions Crypto for Russian Links
Welcome to Hacked dAily, the FIRST AI-Driven Cybersecurity Podcast by Cytadel Cyber, where we unravel the latest in digital security every day. In today's episode, we delve into pressing cybersecurity stories shaping our world. First, we explore a significant breach in the UK's rail network as cybercriminals target the Wi-Fi service, revealing gaps in digital defenses. The incident hasn't interfered with operations, but it has fast-tracked a security review to bolster passenger trust. Next, researchers spotlight vulnerabilities in Kia’s dealer portal, enabling hackers to tamper with vehicles post-2013 using just the license plate number. Although Kia swiftly patched these flaws, this discovery underscores critical risks to privacy and safety. Then, we examine the newly uncovered vulnerability within the NVIDIA Container Toolkit. This flaw, tagged CVE-2023-1234, poses a severe threat, potentially allowing attackers to seize control of host systems in environments using NVIDIA GPUs. Users should urgently update to the latest security patches issued by NVIDIA. In other news, a Senate deepfake incident exposed a Ukrainian official impersonation, bypassing Zoom’s security and showing the need for real-time identity verification in government communications. Finally, we highlight U.S. sanctions on cryptocurrency exchanges tied to Russian cybercriminals, aiming to sever financial support channels threatening national and allied security. Stay tuned to Hacked dAily for more insights as we continue to navigate the fast-evolving world of cybersecurity.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.
27 Sep 20243min
25-Sep-2024 Cybersecurity Turmoil: CrowdStrike Apology, Disney Ditches Slack, MoneyGram Attacked
Welcome to Hacked dAily, the first AI-driven cybersecurity podcast brought to you by Cytadel Cyber. Get your quick daily dose of the most significant cyber events shaping the globe. Today, CrowdStrike has come under scrutiny after a "perfect storm" of technical mishaps led to a massive global IT outage. Their apology to Congress marks the beginning of a deeper investigation into securing vulnerable global IT infrastructures. In another corporate shake-up, Walt Disney has decided to drop Slack after a major data breach, sparking a reevaluation of cybersecurity protocols across large enterprises. This reinforces the call for stringent protection of digital communication avenues. Also in the spotlight is MoneyGram, grappling with a worldwide service disruption following a cyber attack. They're working diligently with cybersecurity experts to restore operations while advising customers to stay tuned for ongoing updates. Meanwhile, a new infostealer malware quickly circumvented Chrome's recent cookie-theft defenses, raising alarms about potential privacy breaches. The cybersecurity community is on high alert as Google has yet to address this exploit. Rounding off today's stories is the rise of Octo2, an upgraded Android banking trojan terrorizing European banks. This malware's advanced tactics in device control highlight the evolving threat landscape, urging enhanced security protocols in mobile banking. Join us daily for your essential briefing on these stories and more, keeping you informed and one step ahead in the realm of cybersecurity. Stay safe, stay informed with Hacked dAily!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.
25 Sep 20243min
24-Sep-2024: Star Health Breach, MoneyGram Outage, and Twilio Leak Stir Major Security Concerns
Welcome to Hacked dAily, the first AI-driven cybersecurity podcast created by Cytadel Cyber, where we bring you the latest updates in the cybersecurity landscape daily. In today's episode, we delve into a significant data breach at Star Health and Allied Insurance, India's largest health insurer. Sensitive customer information, including medical reports, has been sold on Telegram and other platforms, exposing severe gaps in their security measures. Next, we address the growing challenge of ransomware attacks bypassing multi-factor authentication (MFA). Cybercriminals are advancing their tactics, urging organizations to fortify their security defenses to prevent unauthorized access. We move on to Twilio, which faces a substantial breach with hackers reportedly leaking 12,000 call records and audio recordings. This breach raises numerous privacy concerns as authorities investigate and Twilio intensifies their security efforts. In the world of gaming, a troubling incident involving ‘Honkai: Star Rail’ has emerged. Hackers manipulated the game executable to launch ransomware attacks, encrypting user data and demanding crypto payments. This incident spotlights vulnerabilities within the gaming industry that need addressing. Lastly, we cover the ongoing cybersecurity woes of MoneyGram, which has seen its services crippled for over three days. The outage has affected global customers, prompting urgent action from cybersecurity experts and authorities to resolve the issue. Stay tuned for the latest in cybersecurity news and insights on Hacked dAily.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.
24 Sep 20243min
23-Sep-2024: Cybersecurity Breaches Hit GeoServer, GameVN, Dell, and Telegram
Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber. Stay updated with the latest in cybersecurity every day as we delve into new challenges and emerging threats. In today's episode, we cover Chinese hackers exploiting a critical vulnerability in GeoServer to deploy EAGLEDOOR malware, wreaking havoc on governmental and infrastructural operations across Asia-Pacific. Authorities are urging immediate updates and heightened security measures. Meanwhile, GameVN, a popular online gaming platform, experiences a massive data breach affecting over 1.3 million users. Personal data including usernames and encrypted passwords have been compromised, pushing for an urgent call to enhance data privacy practices. Dell faces scrutiny after a second breach within a week, indicating serious lapses in its cyber defenses. Despite initiating a security review, questions remain about the effectiveness of Dell's response. In other news, German authorities seize control of 47 cryptocurrency exchanges for aiding cybercriminals in laundering money anonymously, bypassing "Know Your Customer" regulations. Finally, a breach in Telegram's chatbot feature exposes vulnerabilities, leading to a leak of sensitive data. Users are advised to strengthen their security settings to mitigate risks from third-party applications. Tune in daily for the latest updates on cybersecurity landscapes, threats, and best practices to keep your digital world secure. Stay safe and informed with Hacked dAily.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.
23 Sep 20243min
22-Sep-2024 Cyber Breaches Plague Dell, GitLab, and Microsoft Services in Latest Security Alerts
Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber. In today's episode, we dive into the freshest reports and updates from the cyber world to keep you ahead of the curve. First up, we're examining potential breaches at Dell, where hackers may have compromised the employee database, putting sensitive personal info at risk. As the investigation unfolds, Dell collaborates with cybersecurity experts to bolster its defenses. Next, GitLab has issued a crucial advisory urging users to update their software immediately. A critical vulnerability allowing unauthorized access to private projects has been identified, threatening data integrity. Stay secure by ensuring your systems have the latest patches installed. Shifting focus to cloud threats, researchers warn of a spike in ransomware attacks leveraging Microsoft’s Azure Storage Explorer. By exploiting Azure blobs, cybercriminals can bypass traditional defenses, highlighting the urgent need for robust cloud security strategies. We also cover rising cases of social engineering, where hackers use psychological tactics to trick victims into sharing login credentials. Cyber resilience and vigilance are key as authorities stress the importance of enhanced security measures. Finally, we close with developments on the Raptor Train botnet, which has infected over 60,000 IoT devices globally. Experts are working tirelessly to dismantle this threat, reinforcing IoT security to combat coordinated cyber-attacks. Stay tuned for daily updates with Hacked dAily, where we secure your world one byte at a time.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.
22 Sep 20243min
20-Sep-2024 North Korean APTs, Star Health Data Breach, Ivanti Vulnerabilities, Disney Drops Slack
Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber! Join us for your daily dose of the latest in cybersecurity news and threats. On today's episode, we'll dive into our top stories where North Korean APT groups are bypassing DMARC policies, targeting South Korean entities in a concerning rise of cyber-espionage. This sophisticated infiltration raises questions about the effectiveness of current email security systems against state-sponsored attacks. In another alarming development, a hacker is selling 7 terabytes of customer data from Star Health Insurance on Telegram. This breach highlights significant privacy concerns and underscores the urgent need for stricter data security measures. Ivanti's latest warning sheds light on a newly identified vulnerability in its Cloud Services Appliance. This exploit, allowing unauthorized remote access, is a stark reminder for users to apply urgent patches and reinforce their cybersecurity strategies. Meanwhile, Disney is moving away from Slack after the hacktivist group "NullBulge" compromised their sensitive data. This breach, revealing confidential projects and employee details, underscores the risks of using third-party communication tools and the necessity for robust security protocols. Finally, we'll discuss the growing issue of deepfake videos featuring famous British TV doctors endorsing fake health products. Learn how to spot these deceiving videos amidst increasing digital manipulation. Stay tuned as we unravel these stories and more on Hacked dAily, keeping you ahead in the cybersecurity realm!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.
20 Sep 20243min
19-Sep-2024: Phishing Hits US-Taiwan Event, FBI Busts IoT Botnet, Seattle Port Cyber Ransom
Welcome to Hacked dAily, the first AI-driven cybersecurity podcast by Cytadel Cyber, your daily digest of top cybersecurity stories from around the globe. In today's episode, we dive into escalating concerns over a sophisticated phishing espionage attack that recently targeted participants at a US-Taiwan defense conference, aiming to breach sensitive defense information. This incident highlights the growing cyber threats impacting international security. Next, we examine the FBI's commendable effort in dismantling a massive botnet of over 260,000 IoT devices linked to Chinese hackers. The operation serves as a stark reminder of the urgent need to secure IoT devices against potential exploitation in large-scale cyberattacks. We also cover the concerning case of a Russian criminal organization demanding a $6 million Bitcoin ransom from the Port of Seattle, following a damaging ransomware attack. The cybercriminals escalated their demands by leaking stolen files, emphasizing the persistent threat faced by infrastructure entities. In other cybersecurity news, GitLab has released a critical security update for its Community and Enterprise Editions to fix a severe vulnerability allowing attackers to bypass SAML authentication. Users are urged to update to safeguard against unauthorized access. Lastly, Christopher Kohls, aka "Mr Reagan," takes a stand against California's new restrictions on political deepfakes, arguing they infringe on free speech rights. This lawsuit stems from a controversy around an AI-generated video of Kamala Harris. Stay tuned for more insights and updates on Hacked dAily!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.
19 Sep 20243min
18-Sep-2024 Cyber Conflict in Lebanon, AT&T's $13M Settlement, Meta's AI Training Controversy
Welcome to Hacked dAily, the first AI-driven cybersecurity podcast brought to you by Cytadel Cyber. In today's episode, we navigate through a landscape riddled with digital threats, regulatory consequences, and pressing ethical debates. Our top story unfolds in Lebanon, where a devastating cyber attack, allegedly executed by Israel's Mossad, has targeted telecommunications infrastructure, leading to catastrophic consequences including loss of life and mass injuries. This escalation highlights the perilous intersection of cyber and physical warfare amidst the ongoing conflict involving Hezbollah and Iran. Next, we spotlight AT&T's $13 million settlement over a data breach linked to its vendor, sparking widespread concern over cloud security and third-party data handling practices. This settlement aims to address these vulnerabilities and bolster future data protection efforts. In the realm of tech giants, Meta reveals its plan to enhance AI models using public posts from U.K. users. While aimed at improving user experience, this initiative raises significant privacy concerns and sparks a dialogue on the ethics of user data exploitation without explicit consent. Meanwhile, a ServiceNow platform misconfiguration has resulted in sensitive data exposure, urging businesses to re-evaluate their security settings and prevent similar breaches. Finally, we delve into the world of AI-generated images with Taylor Swift’s advocacy on their potential to sway election outcomes, adding a pivotal voice to the conversation on digital ethics and electoral integrity. Stay cyber safe and informed with Hacked dAily!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.
18 Sep 20243min
