NOTE: This is the news segment from this week’s podcast but the sponsor interview will only appear in the audio version due to a technical problem with that interview’s video recording. This is the same news segment though!

In this edition of the weekly Risky Business cybersecurity podcast Patrick Gray and Adam Boileau talk through:

• A Chinese APT wiretaps the Trump and Harris campaigns
• Operation Magnus snares infostealer operators and customers
• Crypto thieves return stolen funds to US government wallets
• Did Israel hack Iranian air defence?
• Delta finally sues CrowdStrike
• Much, much more

Show notes:

Chinese hackers collected audio of calls by U.S. political officials - The Washington Post https://www.washingtonpost.com/national-security/2024/10/27/chinese-hackers-cellphones-trump/

How a series of opsec failures led US authorities to the alleged developer of the Redline password-stealing malware | TechCrunch https://techcrunch.com/2024/10/29/how-a-series-of-opsec-failures-led-us-authorities-to-the-alleged-developer-of-the-redline-password-stealing-malware/

Operation Magnus https://www.operation-magnus.com/

Hacker Returns $19.3 Million to Drained US Government Crypto Wallet - Decrypt https://decrypt.co/288296/hacker-returns-millions-drained-us-government-crypto-wallet

Meet ZachXBT, the Masked Vigilante Tracking Down Billions in Crypto Scams and Thefts | WIRED https://www.wired.com/story/meet-zachxbt-243-million-crypto-theft/

Radar systems in Iran were breached prior to Israel’s Saturday strike - The Jerusalem Post https://m.jpost.com/breaking-news/article-826414

Delta, Crowdstrike sue each other over IT outage caused cancellations https://www.cnbc.com/2024/10/25/delta-suit-against-crowdstrike-after-it-outage-caused-cancellations.html

Tens of thousands of taxpayer accounts hacked as CRA repeatedly paid out millions in bogus refunds | CBC News https://www.cbc.ca/news/canada/canada-revenue-agency-taxpayer-accounts-hacked-1.7363440

Microsoft CEO asked board to cut pay in connection with security overhaul | Cybersecurity Dive https://www.cybersecuritydive.com/news/microsoft-ceo-nadella-cut-pay-security/731070/

Four REvil members sentenced to more than four years in prison https://therecord.media/four-revil-ransomware-gang-members-sentenced-prison-russia

Linux creator approves de-listing of several kernel maintainers associated with Russia https://therecord.media/linus-torvalds-russian-linux-kernel-maintainers-removed

Russia says it might build its own Linux community after removal of several kernel maintainers https://therecord.media/russia-separate-linux-community-kernel-maintainers-delisted

Nigerian court drops charges against detained Binance executive Tigran Gambaryan https://therecord.media/nigerian-court-drops-charges-tigran-gambaryan-binance-executive

Apple will pay security researchers up to $1 million to hack its private AI cloud | TechCrunch https://techcrunch.com/2024/10/24/apple-will-pay-security-researchers-up-to-1-million-to-hack-its-private-ai-cloud/

Blog - Security research on Private Cloud Compute - Apple Security Research https://security.apple.com/blog/pcc-security-research/

SonicWall firewalls the common access point in spreading ransomware campaign | Cybersecurity Dive https://www.cybersecuritydive.com/news/ransomware-sonicwall-firewalls/731036/

Fortinet zero-day attack spree hits at least 50 customers | Cybersecurity Dive https://www.cybersecuritydive.com/news/fortinet-zero-day-attack-spree/730894/

Cisco warns actively exploited CVE can lead to DoS attacks against VPN services | Cybersecurity Dive https://www.cybersecuritydive.com/news/cisco-exploited-cve-vpn/731216/

Chinese influence operation targets US down-ballot races, Microsoft says | Reuters https://www.reuters.com/world/us/chinese-influence-operation-targets-us-down-ballot-races-microsoft-says-2024-10-23/

Exclusive: Accused Iranian hackers successfully peddle stolen Trump emails | Reuters https://www.reuters.com/world/us/accused-iranian-hackers-successfully-peddle-stolen-trump-emails-2024-10-25/

Viral video of ripped-up Pennsylvania ballots is fake and Russian-made, intelligence agencies say https://www.nbcnews.com/politics/2024-election/viral-video-ripped-pennsylvania-ballots-fake-russian-made-intelligence-rcna177404

Material Security demo: https://www.youtube.com/watch?v=sOab1RSBq20