Cyber Security Headlines

CISO Series

  • 8 minutes 6 seconds
    Chinese engineers at Pentagon, HazyBeacon malware, MITRE framework: AADAPT

    Pentagon welcomes Chinese engineers into its environment

    HazyBeacon: It’s not a beer, but it leaves a bitter aftertaste

    What the world needs now is another framework

    Huge thanks to our sponsor, ThreatLocker

    ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect businesses from zero-day attacks and ransomware. ThreatLocker operates with a default deny approach to reduce the attack surface and mitigate potential cyber vulnerabilities. To learn more and start your free trial, visit ThreatLocker.com/CISO.

    16 July 2025, 7:00 am
  • 8 minutes 26 seconds
    EU age verification, train brakes vulnerability, Grok-4 jailbroken
    EU states to test age verification app 

    (Reuters)

    AAR pledges to start fixing 20-year old vulnerability next year

    (Security Week)

    Grok-4 jailbroken in two days

    (Infosecurity Magazine)

    DoD awards contracts for agentic AI

    (Reuters)

    eSIM vulnerability exposes billions of IoT devices

    (Infosecurity Magazine)

    UK launches Vulnerability Research Initiative

    (Bleeping Computer)

    Interlock ransomware using FileFix for malware

    (Bleeping Computer)

    Disinformation groups spoofs European journalists

    (The Record)

    Elmo gets hacked

    (AP News)

    Huge thanks to our sponsor, ThreatLocker

    ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect businesses from zero-day attacks and ransomware. ThreatLocker operates with a default deny approach to reduce the attack surface and mitigate potential cyber vulnerabilities. To learn more and start your free trial, visit ThreatLocker.com/CISO.

    15 July 2025, 7:00 am
  • 8 minutes 47 seconds
    CitrixBleed2 urgent fix, Gemini email flaw, Louis Vuitton cyberattack

    CISA gives one day for Citrix Bleed 2 fix

    Google Gemini flaw hijacks email summaries for phishing

    Louis Vuitton says UK customer data stolen in cyber-attack

    Huge thanks to our sponsor, ThreatLocker

    ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect businesses from zero-day attacks and ransomware. ThreatLocker operates with a default deny approach to reduce the attack surface and mitigate potential cyber vulnerabilities. To learn more and start your free trial, visit ThreatLocker.com/CISO.

    Find the stories behind the headlines at CISOseries.com.

    14 July 2025, 7:00 am
  • 25 minutes 21 seconds
    Week in Review: ChatGPT URL vulnerability, McDonald’s password problem, Perfekt Bluetooth blunder

    Link to episode page

    This week’s Cyber Security Headlines – Week in Review is hosted by Rich Stroffolino with guest Jim Bowie, vp, CISO, Tampa General Hospital

    Thanks to our show sponsor, Vanta

    Do you know the status of your compliance controls right now? Like…right now? We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks. But more than 9,000 companies have continuous visibility into their controls with Vanta. Vanta brings automation to evidence collection across over 35 frameworks, like SOC 2 and ISO 27001. They also centralize key workflows like policies, access reviews, and reporting, and helps you get security questionnaires done 5 times faster with AI. Now that’s…a new way to GRC. Get started at Vanta.com/headlines

    All links and the video of this episode can be found on CISO Series.com

     

    11 July 2025, 9:36 pm
  • 9 minutes 47 seconds
    Outlook outage continues, Iranian APT activity, Russian ransomware arrest

    Look Out! Another Outlook Outage

    Iranian APTs increased activity against U.S. industries in late spring

    Russian basketball player arrested in France over alleged ransomware ties

    Huge thanks to our sponsor, Vanta

    Do you know the status of your compliance controls right now? Like...right now?

    We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks.

    But more than 9,000 companies have continuous visibility into their controls with Vanta. Vanta brings automation to evidence collection across over 35 frameworks, like SOC 2 and ISO 27001.

    They also centralize key workflows like policies, access reviews, and reporting, and helps you get security questionnaires done 5 times faster with AI. Now that’s…a new way to GRC.

    Get started at Vanta.com/headlines

    Find the stories behind the headlines at CISOseries.com.

    11 July 2025, 7:00 am
  • 7 minutes 46 seconds
    AMD has CPU meltdown, Mozilla Thunderbird has vulnerabilities, Indian defense sector attacked

    AMD warns of new Meltdown, Spectre-like bugs affecting CPUs

    Multiple vulnerabilities in Mozilla Thunderbird could allow for arbitrary code execution

    Bitcoin Depot breach exposes data of nearly 27,000 crypto users, More than $40 million stolen from GMX crypto platform

    Huge thanks to our sponsor, Vanta

    Do you know the status of your compliance controls right now? Like...right now?

    We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks.

    But more than 9,000 companies have continuous visibility into their controls with Vanta. Vanta brings automation to evidence collection across over 35 frameworks, like SOC 2 and ISO 27001.

    They also centralize key workflows like policies, access reviews, and reporting, and helps you get security questionnaires done 5 times faster with AI. Now that’s…a new way to GRC.

    Get started at Vanta.com/headlines

     

    10 July 2025, 7:00 am
  • 8 minutes 43 seconds
    Rubio Spoofed, RondoDox Botnet, Batavia Spyware

    Four members of President Trump's cabinet impersonated

    Is this some kind of a game?

    Batavia attacks Russian industrial companies

    Huge thanks to our sponsor, Vanta

    Do you know the status of your compliance controls right now? Like...right now?

    We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks.

    But more than 9,000 companies have continuous visibility into their controls with Vanta. Vanta brings automation to evidence collection across over 35 frameworks, like SOC 2 and ISO 27001.

    They also centralize key workflows like policies, access reviews, and reporting, and helps you get security questionnaires done 5 times faster with AI. Now that’s…a new way to GRC.

    Get started at Vanta.com/headlines

     

    9 July 2025, 7:00 am
  • 8 minutes 33 seconds
    Call of Duty game pulled, U.S. military gets cybersecurity boost, Bank employee helped hackers

    Call of Duty game pulled from PC store after reported exploit

    U.S. military gets cybersecurity boost

    Bank employee helped hackers steal $100M

    Huge thanks to our sponsor, Vanta

    Do you know the status of your compliance controls right now? Like...right now?

    We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks.

    But more than 9,000 companies have continuous visibility into their controls with Vanta. Vanta brings automation to evidence collection across over 35 frameworks, like SOC 2 and ISO 27001.

    They also centralize key workflows like policies, access reviews, and reporting, and helps you get security questionnaires done 5 times faster with AI. Now that’s…a new way to GRC.

    Get started at Vanta.com/headlines

     

    8 July 2025, 7:00 am
  • 8 minutes 8 seconds
    Ingram Micro cyberattack, Telefonica possible breach, LLM URL recommendation problem

    Ingram Micro suffers ransomware attack

    Hacker leaks Telefónica data allegedly from new breach

    ChatGPT prone to recommending wrong URLs, creating a new phishing opportunity

    Huge thanks to our sponsor, Vanta

    Do you know the status of your compliance controls right now? Like...right now?

    We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks.

    But more than 9,000 companies have continuous visibility into their controls with Vanta. Vanta brings automation to evidence collection across over 35 frameworks, like SOC 2 and ISO 27001.

    They also centralize key workflows like policies, access reviews, and reporting, and helps you get security questionnaires done 5 times faster with AI. Now that’s…a new way to GRC.

    Get started at Vanta.com/headlines

    Find the stories behind the headlines at CISOseries.com.

     

     

    7 July 2025, 7:00 am
  • 9 minutes 9 seconds
    Undetectable Android spyware is detectable, Hunters ransomware quits, Salt Typhoon dormant

    Undetectable Android spyware leaks user logins

    Hunters ransomware group shuts doors

    Medical device company Surmodics reports cyberattack

    Huge thanks to our sponsor, Palo Alto Networks

    You’re moving fast in the cloud and so are attackers. But while SecOps and cloud security teams are working in silos, attackers are exploiting the gaps between them. Cortex Cloud by Palo Alto Networks bridges this divide, unifying teams and stopping attacks with real-time cloud security that includes AI-powered protection, detection and automated response capabilities. Threats are stopped in minutes instead of days, and teams can finally protect cloud environments at the speed and scale of modern attacks. To learn more about how Cortex Cloud stops cloud attacks before they become breaches, visit: paloaltonetworks.com/cortex/cloud-detection-and-response

    Find the stories behind the headlines at CISOseries.com.

    4 July 2025, 7:01 am
  • 7 minutes 27 seconds
    Columbia hack, hunger relief ransomware, Qantas breach

    Student data lost in Columbia University hack

    German hunger relief charity hit by ransomware

    Qantas contact center breached

    Huge thanks to our sponsor, Palo Alto Networks

    You’re moving fast in the cloud and so are attackers. But while SecOps and cloud security teams are working in silos, attackers are exploiting the gaps between them.

    Cortex Cloud by Palo Alto Networks bridges this divide, unifying teams and stopping attacks with real-time cloud security that includes AI-powered protection, detection and automated response capabilities.

    Threats are stopped in minutes instead of days, and teams can finally protect cloud environments at the speed and scale of modern attacks. To learn more about how Cortex Cloud stops cloud attacks before they become breaches, visit: paloaltonetworks.com/cortex/cloud-detection-and-response

    3 July 2025, 7:00 am
  • More Episodes? Get the App