PSW #740 – Fleming Shi
Full Audio
View Show IndexSegments
1. Destructive Malware & Other Threats to Watch – Fleming Shi – PSW #740
In-depth look at destructive malware and other threats the Barracuda team has been monitoring that you need to be aware of.
This segment is sponsored by Barracuda Networks.
Visit https://securityweekly.com/barracuda to learn more about them!
Announcements
Don't forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.
Don't miss any of your favorite Security Weekly content! Visit https://securityweekly.com/subscribe to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!
Guest
Fleming joined Barracuda in 2004 as the founding engineer for the company’s web security product offerings, helping to create the first version of Barracuda’s message archiving product and paving the way for expansion into new content security product areas. As Chief Technology Officer, Fleming leads the company’s threat research and innovation engineering teams in building future technology platforms to deliver continued success in our security and data protection products. He has more than 20 patents granted or pending in network and content security.
Hosts
2. Public Entities & Ransomware, Colonial Pipeline Fine, Nvidia’s LHR Limiter, & BIG-IP – PSW #740
In the Security News for this week: Colonial Pipeline facing $1,000,000 fine, cybercrime tracking bill signed into law, Lincoln College Set to Close After Crippling Cyberattack, Nvidia’s LHR limiter bypassed, & North Carolina Becomes the First State to Prohibit Public Entities from Paying Ransoms!
Announcements
Security Weekly listeners, save $100 on your RSA Conference 2022 Full Conference Pass! RSA Conference will be live in San Francisco June 6th-9th, 2022. Security Weekly will be there in full force, delivering real-time, live coverage and interviewing some of the event’s top speakers and sponsors. To register using our discount code, please visit https://securityweekly.com/rsac2022 and use the code 52UCYBER. We hope to see you there!
We're always looking for great guests for all of the Security Weekly shows! Submit your suggestions by visiting https://securityweekly.com/guests and completing the form!
Hosts
- 1. U.S. Government Attributes Cyberattacks on SATCOM Networks to Russian State-Sponsored Malicious Cyber Actors
- 2. F5 BIG-IP confirmationsCan confirm. Real world devices are being erased this evening, lots on Shodan have stopped responding. twitter.com/BleepinCompute…
- 3. Critical F5 BIG-IP vulnerability exploited to wipe devices
- 4. Flight Aborted After Eerie Pictures Mysteriously Sent To Passengers’ Phones
- 5. Russia’s RuTube knocked out for second day by Victory Day cyber attack
- 1. F5 warns of critical BIG-IP RCE bug allowing device takeoverF5 has released a security advisory warning users of a critical vulnerability (CVE-2022-1388) affecting its iControl REST component, which could be exploited by unauthenticated attackers to take complete control of targeted systems.
- 2. North Carolina Becomes First State to Prohibit Public Entities from Paying RansomsNorth Carolina passed a new law that prohibits government entities from paying ransom to attackers who have infiltrated and encrypted their IT systems, making it the first U.S. state to formally prohibit ransom payments.
- 3. Google addresses actively exploited Android flaw in the kernelGoogle released the May security bulletin for Android, 2022-05-05 security patch level, which fixed an actively exploited Linux kernel flaw. Google has released a patch to address a privilege escalation vulnerability (CVE-2021-22600) identified in January that affects the Linux Kernel and is being actively exploited in the wild.
- 4. Thousands of Borrowers’ Data Exposed from ENCollect Debt Collection ServiceAn ElasticSearch data-storage server exposed on the internet in February 2022 belonging to Bangalore, India-based debt collection platform ENCollect that contains sensitive financial information related to loans from financial services firms in Africa and India. According to the UpGuard researchers who found the exposed server, the server contains 5.8GB of data and more than 1.6 million records.
- 5. Seeing hack attacks on the rise, Israel orders telecoms to erect ‘cyber Iron Dome’Israel's National Cyber Directorate has instructed communications firms operating in Israel to increase their cyber security posture in an effort to create a defensive cyber "umbrella" that authorities hope will be as effective as the country's Iron Dome missile defense system.
- 6. Distributor of Agricultural Equipment Hit by Ransomware AttackDuluth, Georgia-based agricultural equipment manufacturer and distributer AGCO has revealed that it suffered a ransomware attack on May 5 that forced it to shut down parts of its IT system in order to stop the attack from spreading throughout its network.
- 7. FBI: Losses From BEC Scams Surpass $43 BillionThe FBI says BEC and EAC losses reported between June 2018 and December 2021 have surpassed $43 billion globally.
- 8. Data breach Discovered at IKEA Canada impacts 95,000 CustomersIKEA says it has notified the Office of the Privacy Commissioner of Canada that it experienced a data breach during which hackers managed to gain access to personally identifiable information (PII) belonging to some 95,000 Canadian customers.