Risky Business Podcast
December 18, 2024
Risky Business #775 -- Cl0p is back, SEC hack disclosures disappoint
Presented by
Technology Editor
CEO and Publisher
On this week’s show, Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:
- The SEC’s cyber incident reporting isn’t very exciting after all
- China Telecom on the way to being thrown out of the US
- The NSA/Cybercom might get two separate hats
- The Cl0p ransomware crew are back and taking responsibility for the Cleo hacks
- (Yet another) File upload bug in Struts makes Java admins weep
- And much, much more.
This episode is sponsored by SpecterOps, who run a pretty top notch offsec/pentest team when they’re not busy making the Bloodhound Enterprise identity attack path enumeration software. SpecterOps’ Robby Winchester joins to talk about how pentest has changed, and how their customers get value from their testing.
This episode is also available Youtube.
Brought to you by SpecterOps
Know Your Adversary
Show notes
SEC cyber incident reporting rule generates 71 filings in 11 months | Cybersecurity Dive
US senators, green groups call for accountability over hacking of Exxon critics | Reuters
Biden Administration Takes First Step to Retaliate Against China Over Hack - The New York Times
EU opens investigation into TikTok and the Romanian election – POLITICO
Clop ransomware claims responsibility for Cleo data theft attacks
Apache issues patches for critical Struts 2 RCE bug • The Register
Israeli spyware firm Paragon acquired by US investment group, report says | Reuters
How Cryptocurrency Turns to Cash in Russian Banks – Krebs on Security
Arizona man arrested for alleged involvement in violent online terror networks | CyberScoop