Pentagon welcomes Chinese engineers into its environment

HazyBeacon: It’s not a beer, but it leaves a bitter aftertaste

What the world needs now is another framework

Huge thanks to our sponsor, ThreatLocker

ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect businesses from zero-day attacks and ransomware. ThreatLocker operates with a default deny approach to reduce the attack surface and mitigate potential cyber vulnerabilities. To learn more and start your free trial, visit ThreatLocker.com/CISO.

EU states to test age verification app 

(Reuters)

AAR pledges to start fixing 20-year old vulnerability next year

(Security Week)

Grok-4 jailbroken in two days

(Infosecurity Magazine)

DoD awards contracts for agentic AI

(Reuters)

eSIM vulnerability exposes billions of IoT devices

(Infosecurity Magazine)

UK launches Vulnerability Research Initiative

(Bleeping Computer)

Interlock ransomware using FileFix for malware

(Bleeping Computer)

Disinformation groups spoofs European journalists

(The Record)

Elmo gets hacked

(AP News)

Huge thanks to our sponsor, ThreatLocker

ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect businesses from zero-day attacks and ransomware. ThreatLocker operates with a default deny approach to reduce the attack surface and mitigate potential cyber vulnerabilities. To learn more and start your free trial, visit ThreatLocker.com/CISO.

CISA gives one day for Citrix Bleed 2 fix

Google Gemini flaw hijacks email summaries for phishing

Louis Vuitton says UK customer data stolen in cyber-attack

Huge thanks to our sponsor, ThreatLocker

ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect businesses from zero-day attacks and ransomware. ThreatLocker operates with a default deny approach to reduce the attack surface and mitigate potential cyber vulnerabilities. To learn more and start your free trial, visit ThreatLocker.com/CISO.

Find the stories behind the headlines at CISOseries.com.

Link to episode page

This week’s Cyber Security Headlines – Week in Review is hosted by Rich Stroffolino with guest Jim Bowie, vp, CISO, Tampa General Hospital

Thanks to our show sponsor, Vanta

Do you know the status of your compliance controls right now? Like…right now? We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks. But more than 9,000 companies have continuous visibility into their controls with Vanta. Vanta brings automation to evidence collection across over 35 frameworks, like SOC 2 and ISO 27001. They also centralize key workflows like policies, access reviews, and reporting, and helps you get security questionnaires done 5 times faster with AI. Now that’s…a new way to GRC. Get started at Vanta.com/headlines

All links and the video of this episode can be found on CISO Series.com

 

Look Out! Another Outlook Outage

Iranian APTs increased activity against U.S. industries in late spring

Russian basketball player arrested in France over alleged ransomware ties

Huge thanks to our sponsor, Vanta

Do you know the status of your compliance controls right now? Like...right now?

We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks.

But more than 9,000 companies have continuous visibility into their controls with Vanta. Vanta brings automation to evidence collection across over 35 frameworks, like SOC 2 and ISO 27001.

They also centralize key workflows like policies, access reviews, and reporting, and helps you get security questionnaires done 5 times faster with AI. Now that’s…a new way to GRC.

Get started at Vanta.com/headlines

Find the stories behind the headlines at CISOseries.com.

AMD warns of new Meltdown, Spectre-like bugs affecting CPUs

Multiple vulnerabilities in Mozilla Thunderbird could allow for arbitrary code execution

Bitcoin Depot breach exposes data of nearly 27,000 crypto users, More than $40 million stolen from GMX crypto platform

Huge thanks to our sponsor, Vanta

Do you know the status of your compliance controls right now? Like...right now?

We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks.

But more than 9,000 companies have continuous visibility into their controls with Vanta. Vanta brings automation to evidence collection across over 35 frameworks, like SOC 2 and ISO 27001.

They also centralize key workflows like policies, access reviews, and reporting, and helps you get security questionnaires done 5 times faster with AI. Now that’s…a new way to GRC.

Get started at Vanta.com/headlines

 

Four members of President Trump's cabinet impersonated

Is this some kind of a game?

Batavia attacks Russian industrial companies

Huge thanks to our sponsor, Vanta

Do you know the status of your compliance controls right now? Like...right now?

We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks.

But more than 9,000 companies have continuous visibility into their controls with Vanta. Vanta brings automation to evidence collection across over 35 frameworks, like SOC 2 and ISO 27001.

They also centralize key workflows like policies, access reviews, and reporting, and helps you get security questionnaires done 5 times faster with AI. Now that’s…a new way to GRC.

Get started at Vanta.com/headlines

 

Call of Duty game pulled from PC store after reported exploit

U.S. military gets cybersecurity boost

Bank employee helped hackers steal $100M

Huge thanks to our sponsor, Vanta

Do you know the status of your compliance controls right now? Like...right now?

We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks.

But more than 9,000 companies have continuous visibility into their controls with Vanta. Vanta brings automation to evidence collection across over 35 frameworks, like SOC 2 and ISO 27001.

They also centralize key workflows like policies, access reviews, and reporting, and helps you get security questionnaires done 5 times faster with AI. Now that’s…a new way to GRC.

Get started at Vanta.com/headlines

 

Ingram Micro suffers ransomware attack

Hacker leaks Telefónica data allegedly from new breach

ChatGPT prone to recommending wrong URLs, creating a new phishing opportunity

Huge thanks to our sponsor, Vanta

Do you know the status of your compliance controls right now? Like...right now?

We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks.

But more than 9,000 companies have continuous visibility into their controls with Vanta. Vanta brings automation to evidence collection across over 35 frameworks, like SOC 2 and ISO 27001.

They also centralize key workflows like policies, access reviews, and reporting, and helps you get security questionnaires done 5 times faster with AI. Now that’s…a new way to GRC.

Get started at Vanta.com/headlines

Find the stories behind the headlines at CISOseries.com.

 

 

Undetectable Android spyware leaks user logins

Hunters ransomware group shuts doors

Medical device company Surmodics reports cyberattack

Huge thanks to our sponsor, Palo Alto Networks

You’re moving fast in the cloud and so are attackers. But while SecOps and cloud security teams are working in silos, attackers are exploiting the gaps between them. Cortex Cloud by Palo Alto Networks bridges this divide, unifying teams and stopping attacks with real-time cloud security that includes AI-powered protection, detection and automated response capabilities. Threats are stopped in minutes instead of days, and teams can finally protect cloud environments at the speed and scale of modern attacks. To learn more about how Cortex Cloud stops cloud attacks before they become breaches, visit: paloaltonetworks.com/cortex/cloud-detection-and-response

Find the stories behind the headlines at CISOseries.com.

Student data lost in Columbia University hack

German hunger relief charity hit by ransomware

Qantas contact center breached

Huge thanks to our sponsor, Palo Alto Networks

You’re moving fast in the cloud and so are attackers. But while SecOps and cloud security teams are working in silos, attackers are exploiting the gaps between them.

Cortex Cloud by Palo Alto Networks bridges this divide, unifying teams and stopping attacks with real-time cloud security that includes AI-powered protection, detection and automated response capabilities.

Threats are stopped in minutes instead of days, and teams can finally protect cloud environments at the speed and scale of modern attacks. To learn more about how Cortex Cloud stops cloud attacks before they become breaches, visit: paloaltonetworks.com/cortex/cloud-detection-and-response