Risky Business #756 -- Move fast and break everything

Crowdstrike is apparently not a big believer in testing…

24 Jul 2024 » Risky Business

The Risky Biz main show returns from a break to the traditional internet-melting mess that happens whenever Patrick Gray takes a holiday. Pat and Adam Boileau talk through the week’s security news, including:

Oh Crowdstrike, no, oh no, honey, no
AT&T stored call records on Snowflake and you’ll never guess what happened next
Squarespace buys Google Domains and makes a hash of it
Some but not all of the SECs case against Solarwinds gets thrown out
Pity the incident responders digging through a terabyte of Disney Slack dumps
Internet Explorer rises from the grave, and it wants SHELLS RAAAAARGH SSHHEEELLLS
And much, much more.

This week’s show is brought to you by Sublime Security, a flexible and modern email security platform. If you’re sick of using a black box email security solution, Sublime is a terrific option for you.

Download mp3

Show notes

Risky Biz News: CrowdStrike faulty update affects 8.5 million Windows systems
Low-level cybercriminals are pouncing on CrowdStrike-connected outage | CyberScoop
CrowdStrike says flawed update was live for 78 minutes | Cybersecurity Dive
Crooks Steal Phone, SMS Records for Nearly All AT&T Customers – Krebs on Security
Researchers: Weak Security Defaults Enabled Squarespace Domains Hijacks – Krebs on Security
Teenage suspect in MGM Resorts hack arrested in Britain
Majority of SEC civil fraud case against SolarWinds dismissed, but core remains | Cybersecurity Dive
How Russia-Linked Malware Cut Heat to 600 Ukrainian Buildings in Deep Winter | WIRED
Kaspersky Lab Closing U.S. Division; Laying Off Workers
Hackers Claim to Have Leaked 1.1 TB of Disney Slack Messages | WIRED
Wallets tied to CDK ransom group received $25 million two days after attack | CyberScoop
UnitedHealth’s cyberattack response costs to surpass $2.3B this year | Cybersecurity Dive
Ransomware ecosystem fragmenting under law enforcement pressure and distrust
Threat actors exploited Windows 0-day for more than a year before Microsoft fixed it | Ars Technica

Related Posts

Snake Oilers: Authentik, Dropzone and SlashID (Categories: Risky Business )
Risky Business #762 -- Brazil nukes X, Iranian APTs deploy ransomware (Categories: Risky Business )
Risky Business #761 – Telegram v frogs. Fight! (Categories: Risky Business )
Feature interview: ASIO Director General Mike Burgess on encryption and access (Categories: Risky Business )
Risky Business #760 – Microsoft to make MFA mandatory (Categories: Risky Business )
Wide World of Cyber: 2024 election interference, the media and Iran's hack and leak (Categories: Risky Business )

« Risky Biz News: New Russian ICS malware cuts heat to 600 Ukrainian apartment buildings Srsly Risky Biz: Chinese Illegal Gambling's Worldwide Tentacles »

Home

Home

Home

SUBSCRIBE NOW:

Risky Business main podcast feed:

Listen on Apple Podcasts

Listen on Overcast

Listen on Pocket Casts

Listen on Spotify

Our extra podcasts feed:

Listen on Apple Podcasts

Listen on Overcast

Listen on Pocket Casts

Listen on Spotify

Subscribe to our newsletters:

Navigation
» Home
» Newsletters
» About
» Contact
» Sponsorship

Search