Risky Business #727 -- Mr Gray goes to Washington

Chris Krebs and Dmitri Alperovitch co-host this week's podcast...
01 Nov 2023 » Risky Business

On this week’s show Patrick Gray talks through the news with Chris Krebs and Dmitri Alperovitch. They discuss:

  • The SEC enforcement action against Solarwinds’ CISO
  • The White House AI Executive Order
  • CitrixBleed exploitation goes wide
  • How Kaspersky captured some (likely) Five Eyes iOS 0day
  • Elon Musk’s Gaza Strip adventures
  • Much, much more

This week’s show is brought to you by Greynoise. Andrew Morris, Greynoise’s founder and CEO, is this week’s sponsor guest. He talks about how Greynoise is using large language models to help them analyse massive quantities of malicious internet traffic.

Show notes

comp-pr2023-227.pdf
Biden signs executive order to oversee and invest in AI tech
Risky Biz News: CitrixBleed vulnerability goes from bad to disastrous
Andrew Morris on X: "Confluence bug is popping off. VAST majority of it is blasting thru Tor, similar to the first wave of Log4J exploitation two years ago. If you haven't patched, it's probably popped. https://t.co/4JC0uiTaqc https://t.co/wLDgQpq7r0" / X
Andrew Morris on X: "Confluence bug is popping off. VAST majority of it is blasting thru Tor, similar to the first wave of Log4J exploitation two years ago. If you haven't patched, it's probably popped. https://t.co/4JC0uiTaqc https://t.co/wLDgQpq7r0" / X
How Kaspersky obtained all stages of Operation Triangulation | Securelist
Kaspersky reveals 'elegant' malware resembling NSA code | CyberScoop
Sophisticated StripedFly Spy Platform Masqueraded for Years as Crypto Miner
A cascade of compromise: unveiling Lazarus' new campaign | Securelist
Near-total internet and cellular blackout hits Gaza as Israel ramps up strikes
Amichai Stein on X: "Israel's Communications Minister @shlomo_karhi in response to Elon Musk: Israel will use all the means at its disposal to fight this. Hamas will use this for terrorist activity. There is no doubt about it. We know it, and Musk knows it. Hamas is ISIS." / X
Shashank Joshi on X: "Wonder what encryption, if any, they use? Vulnerable to tapping. "Hamas has maintained operational security by going “stone age” and using hard-wired phone lines while eschewing devices that are hackable or emit an electronic signature." https://t.co/ALVSXb55Zn" / X
Hackers that breached Las Vegas casinos rely on violent threats, research shows | CyberScoop
Octo Tempest crosses boundaries to facilitate extortion, encryption, and destruction | Microsoft Security Blog
GitHub - cloudflare/har-sanitizer
Russia to launch its own version of VirusTotal due to US snooping fears
iPhones have been exposing your unique MAC despite Apple’s promises otherwise | Ars Technica
VMware warns of critical vulnerability affecting vCenter Server product
Judge tosses Khashoggi widow’s lawsuit against NSO Group
SUBSCRIBE NOW:
Risky Business main podcast feed:
Listen on Apple Podcasts Listen on Overcast Listen on Pocket Casts Listen on Spotify Subscribe with RSS
Our extra podcasts feed:
Listen on Apple Podcasts Listen on Overcast Listen on Pocket Casts Listen on Spotify Subscribe with RSS
Subscribe to our newsletters: