Discover this podcast and so much more

Podcasts are free to enjoy without a subscription. We also offer ebooks, audiobooks, and so much more for just $11.99/month.

Risky Business #721 -- Why Storm-0558's Microsoft hack should have failed

Risky Business #721 -- Why Storm-0558's Microsoft hack should have failed

FromRisky Business


Risky Business #721 -- Why Storm-0558's Microsoft hack should have failed

FromRisky Business

ratings:
Length:
20 minutes
Released:
Sep 13, 2023
Format:
Podcast episode

Description

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news. They cover:


How Storm-0558 stole Microsoft’s signing key
Cisco 0day being used by ransomware crews
We were right about Elon stumbling into the Ukraine war
Someone’s amazing image library 0day just got crushed
Much, much more!


This week’s show is brought to you by Nucleus Security. Co-founder Scott Kuffer is this week’s sponsor guest.

Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that’s your thing.






Show notes




Results of Major Technical Investigations for Storm-0558 Key Acquisition | MSRC Blog | Microsoft Security Response Center
Microsoft reveals how hackers stole its email signing key… kind of | TechCrunch
Kevin Beaumont: "One extra thing to highlight -…" - Cyberplace
Preventing Authentication Bypass: A Tale of Two Researchers - YouTube
BEC phishing kit hits thousands of Microsoft 365 business accounts | Cybersecurity Dive
Microsoft Teams phishing attack pushes DarkGate malware
CISA warns of attacks using Microsoft Word, Adobe bugs
New Emergency Chrome Security Update After Critical iOS 16.6.1 Release
Mozilla patches Firefox, Thunderbird against zero-day exploited in attacks
Cisco security appliance 0-day is under attack by ransomware crooks | Ars Technica
Cisco BroadWorks vulnerability snags highest CVSS score | Cybersecurity Dive
High-profile CVEs turn up in vulnerability exploit sales | Cybersecurity Dive
MGM Resorts takes systems offline following cyberattack
Save the Children International hit with cyberattack, but says operations weren’t impacted
Sri Lankan government loses months of data following ransomware attack
(6) Risky Biz News: US and UK dox and sanction 11 more Trickbot/Conti members. Charges included too.
Opinion | The untold story of Elon Musk’s support for Ukraine - The Washington Post
Elon Musk on X:
SpaceX unveils Starshield, a military variation of Starlink satellites
China-Linked Hackers Breached a Power Grid—Again | WIRED
Just waiting for a mate - YouTube
North Korea-backed hackers target security researchers with 0-day | Ars Technica
Cars are collecting data on par with Big Tech, watchdog report finds
Crypto Town Hall on X: "Crypto Kingpin's Downfall: 11,196 Years Behind Bars!"https://t.co/1RCNJ8um4c" / X


Released:
Sep 13, 2023
Format:
Podcast episode

Titles in the series (46)

Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for information security pros. With a running time of approximately 50-60 minutes, Risky Business is pacy; a security podcast without the waffle.