23-Jan-2025 UN Tackles Spyware, $54B Company Hit by Cyberattack, Cisco Urges Urgent Patch
Welcome to Hacked dAily, the first AI-driven cybersecurity podcast from Cytadel Cyber. Every day, we bring you the latest in cybersecurity news, keeping you informed and ahead of threats in the digital landscape. In our top story, the UN Security Council is taking steps to tackle the growing global threat posed by commercial spyware. This marks the first time the council has discussed the issue, aiming to develop regulatory frameworks that balance human rights and national security. Meanwhile, a $54 billion company is reeling after a ransomware attack. Quick action was taken to mitigate the damage, and authorities are investigating to prevent future breaches. This incident highlights the critical importance of robust cybersecurity protocols. Cisco users, be aware! The company has released a vital patch for a high-severity vulnerability in its Meeting Management software. With a CVSS score of 9.9, this flaw allows attackers privileged access. Users should apply the update immediately to secure their systems. In other news, TRIPLESTRENGTH is the latest security threat attacking cloud environments for cryptojacking and on-premises systems for ransomware. It's essential for organizations to enhance defenses to counteract these sophisticated attacks. Lastly, a new vulnerability in AI systems, invisible prompt injection, has been discovered. This threat could allow malicious actors to manipulate AI outputs unexpectedly. Addressing this vulnerability is crucial as AI continues to integrate into daily applications. Tune in tomorrow for more updates on Hacked dAily!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.
23 Jan 3min
22-Jan-2025: T-Mobile Strengthens Security, Mitiga Secures Funding, Bitbucket Outage & Cyber Threats
Welcome to Hacked dAily, the first AI-Driven Cybersecurity Podcast brought to you by Cytadel Cyber. In today's episode, we dive into the latest in cybersecurity news, innovations, and incidents from around the globe. Our top story features T-Mobile’s strategic move to fortify its system security by acquiring over 200,000 YubiKeys. This initiative enhances protection against unauthorized access, reflecting the industry’s shift towards physical authentication and minimizing reliance on traditional passwords. In investment news, Mitiga has raised an impressive $30 million in its Series B funding round. Led by ClearSky Security with investments from Samsung Next and Blackstone, this funding will help expand Mitiga's cloud and SaaS security solutions. We also cover the unexpected global outage impacting Bitbucket, a key platform for source code management. This service disruption has left users seeking alternatives amidst the downtime, which has yet to receive a clear resolution. In other news, Sophos researchers expose a new ransomware strategy. Cybercriminals are using fake tech support tactics on Microsoft Teams, targeting smaller businesses to gain unauthorized access and deploy malware. Finally, Tenex.AI steps into the spotlight with its AI-powered Managed Detection and Response service for Google Cloud. This service aims to revolutionize cybersecurity with real-time threat detection and response. Stay tuned for more breaking developments in the world of cybersecurity on Hacked dAily.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.
22 Jan 3min
21-Jan-2025 Cybersecurity Threats: DONOT APT, Phishing Scams, Trend Micro Insights, and More
Welcome to Hacked dAily, the FIRST AI-Driven Cybersecurity Podcast by Cytadel Cyber, where we bring you the latest in cyber threats, security breaches, and digital innovations. In today’s episode, we spotlight a concerning trend from the Indian APT group known as DONOT, which is abusing legitimate apps for espionage against entities in China and Pakistan. This highlights the inventive tactics of cyber threat actors who exploit everyday applications for malicious purposes. Next, we delve into the alarming rise of phishing attacks dominating smartphone security. A recent survey shows that over 80% of mobile security incidents originate from phishing scams. As mobile usage skyrockets, protecting against these deceptive tactics has never been more critical. We also explore Trend Micro's latest findings on the rise of infections from fake software installers and illegal software cracks. This report underscores the necessity of using legitimate software and strong security measures to fend off these growing cybersecurity threats. In other news, Blacon High School faces ransomware disruptions that led to closures, highlighting the urgent need for robust defenses in educational institutions. Finally, we discuss how banks are under pressure to effectively integrate AI into their operations for enhanced efficiency and cybersecurity, while also navigating ethical and regulatory hurdles. Join us daily for your essential update on the cyber landscape, ensuring you're informed and prepared in this digital age.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.
21 Jan 3min
20-Jan-2025 TikTok Stays, HPE Breach, Sage AI Fix, and OpenAI Security Concerns
Welcome to Hacked dAily, the first AI-driven cybersecurity podcast developed by Cytadel Cyber, delivering essential cyber news every day. Today's episode kicks off with an update on TikTok's status in the United States. Former President Donald Trump has granted an extension, allowing the app more time amidst privacy and national security concerns, while negotiations for compliance with US regulations continue. Next, we delve into a concerning breach at Hewlett Packard Enterprise. Hackers claim to have accessed sensitive data, now up for sale, prompting HPE to investigate and enhance security measures to mitigate potential risks for themselves and their clients. We also discuss the temporary grounding of Sage's AI tool, Copilot, due to detected misbehavior. This pause ensured the system's integrity was restored, with services resuming shortly to support uninterrupted business operations. In our "In Other News" segment, we reflect on the inception of ransomware, tracing back 35 years to the "AIDS Information" attack, highlighting the early days of digital extortion and its evolution into today's formidable ransomware threats. Finally, we explore concerns over OpenAI's ChatGPT crawler, designed for AI training, now potentially exploitable for DDoS attacks. This discovery underscores the urgent need for enhanced security strategies to safeguard against AI misuse. Tune in to stay ahead in the ever-evolving world of cybersecurity.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.
20 Jan 3min
19-Jan-2025: TikTok Banned in the US, FTC Orders GM, FBI Security Concerns, PMUSA Ransom Breach
Welcome to Hacked dAily, the first AI-Driven Cybersecurity Podcast by Cytadel Cyber, where we bring you up-to-date news on cybersecurity threats and developments. In today's episode, we delve into the latest and most pressing cyber news worldwide. First, the United States is planning a federal ban on TikTok set for January 2025, following security concerns over data privacy and potential ties to the Chinese government, impacting millions of users and creators. Next, the Federal Trade Commission has ordered General Motors to halt the collection and sale of drivers' personal data. This move aims to bolster consumer privacy protections amid worrying trends in digital data misuse. The FBI has faced a security breach suspected to involve hacked phone logs, underscoring vulnerabilities in its communication systems and pushing for enhanced cybersecurity measures to safeguard sensitive information. In other news, Medusa ransomware has targeted PMUSA, demanding a $1.2 million ransom to avoid leaking sensitive data, highlighting the pressing need for robust security solutions against escalating ransomware threats. Lastly, the 2024 ISC2 Cybersecurity Workforce Study reveals AI has surged as a critical security skill even amidst a shortage of AI expertise. Despite this, layoffs and budget cuts challenge the industry, stressing the importance of problem-solving and communication skills as AI reshapes cybersecurity demands. Stay tuned for daily insights on the ever-evolving cybersecurity landscape with Hacked dAily.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.
19 Jan 3min
18-Jan-2025 Otelier Data Breach, PHP Bot Attacks, Trojanized Image Campaigns, and AI Privacy Risks
Welcome to Hacked dAily, the first AI-Driven Cybersecurity Podcast by Cytadel Cyber, where we bring you the most pressing cybersecurity news every day. In today's episode, we start with a massive data breach at Otelier, a travel tech company, exposing the personal details and hotel reservations of potentially millions. The root cause? A simple misconfiguration of their database. Next, we dive into the realm of automated cyber attacks, as Python-based bots exploit vulnerabilities in PHP servers to proliferate illegal online gambling platforms. This highlights a concerning trend of using automation for malicious endeavors. We then explore a novel technique used by cybercriminals: trojanized images. These seemingly harmless images carry hidden malware, showcasing the innovative tactics being deployed to bypass traditional security defenses. In other news, the ransomware gang Inc has taken responsibility for a cyberattack on Taylor Regional Hospital, impacting healthcare operations and illustrating an alarming increase in ransomware assaults on U.S. medical facilities in 2024. Lastly, we address rising cybersecurity threats related to employees inputting sensitive data into generative AI without proper measures, risking data breaches and privacy concerns. Companies are urged to enforce stricter guidelines to safeguard information. Tune in to stay informed and ahead of potential cyber threats. Join us tomorrow for more insights on navigating the ever-evolving digital landscape!This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.
18 Jan 3min
17-Jan-2025 TikTok & AliExpress Face Legal Heat, Gmail Users Under Cyber Attack, AI Security Concerns Unveiled
Welcome to Hacked dAily, the first AI-driven cybersecurity podcast brought to you by Cytadel Cyber. Every day, we delve into the latest developments in the world of cybersecurity to keep you informed and prepared. Today's top story focuses on a major legal battle as a European privacy advocacy group takes on TikTok and AliExpress. These platforms are accused of violating EU privacy laws by allegedly transferring user data to China, raising serious privacy concerns. Next, we cover a sophisticated cyber attack affecting Gmail users. Hackers have found a way to compromise encryption keys, allowing them to access sensitive information. We discuss the implications and urge users to bolster their account security. In another alarming development, 4.2 million internet hosts are vulnerable to hijacking due to bugs in tunneling protocols. This flaw could lead to massive data breaches and disrupted communications, highlighting the urgent need for patches. On a different note, a biotech company agrees to a $7.5 million settlement over a ransomware attack that exposed sensitive data. This settlement aims to compensate those affected by this breach. Lastly, Microsoft researchers reveal that AI technology cannot be entirely secure. Tests on their own AI systems showed inherent vulnerabilities, underscoring the complex security challenges posed by AI advancements. Stay tuned to Hacked dAily for your essential cybersecurity updates.This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.
17 Jan 3min
16-Jan-2025 Quantum Espionage and FortiGate Leaks Dominate Cybersecurity Headlines
Welcome to Hacked dAily, the first AI-driven cybersecurity podcast powered by Cytadel Cyber. Each day, we bring you the latest in cybersecurity news and insights to keep you informed and secure in a rapidly changing digital world. In today's episode, we dive into the shadowy world of quantum espionage, where Russian spies are targeting U.S. university labs to steal cutting-edge quantum computing research. This high-stakes "shadow war" has prompted the CIA and NSA to ramp up cybersecurity efforts to safeguard sensitive breakthroughs from falling into the wrong hands. Next, we discuss the FortiGate device leak, where hackers have exposed configuration files and VPN credentials for 15,000 devices. This incident underscores the critical need for organizations to secure VPN configurations and regularly update hardware to prevent unauthorized access. Then, we cover Salt Typhoon attacks—Chinese cyber campaigns targeting U.S. telecommunications. CISA’s coordinated response highlights the ongoing challenges of securing critical infrastructure against advanced foreign threats, especially in the face of outdated technology vulnerabilities. In other news, the Cl0p ransomware group has exploited a critical flaw in Cleo’s managed file transfer software, affecting at least 66 organizations. Despite an available patch, delayed updates leave many companies at risk, emphasizing the importance of timely patch management. Lastly, we explore AI-focused cybersecurity efforts with a new playbook released by CISA, the FBI, and NSA. This initiative encourages collaboration and information sharing to counter AI-related threats and aligns with recent executive orders on AI security. Stay tuned for tomorrow's episode for more on your daily cybersecurity updates. This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Visit cytadel.co.uk for more information.
16 Jan 3min
