On this week’s Risky Business cybersecurity podcast, Patrick Gray and Adam Boileau discuss the weeks security news, including:

Hezbollah’s attempts to avoid SIGINT with pagers ends in explosions The US shines many bright lights on RT’s disinfo role Australia counters Chinese bullying in the Pacific Valid accounts are the most prevalent entry point, says CISA’s data Ivanti and Fortinet vie for worst vendor of the week Krebs writes up the shift towards charging The Com with terrorism And much, much more…

This week’s episode is sponsored by Push Security, who bring security visibility to where it needs to be these days – the browser. Luke Jennings joins this week’s show to discuss how phish-kit crews are driving the arms race forward, and how detection has to adapt and go where the users are.

Show notes:

Israel planted explosives in Hezbollah’s Taiwan-made pagers, sources say | Reuters https://www.reuters.com/world/middle-east/israel-planted-explosives-hezbollahs-taiwan-made-pagers-sources-say-2024-09-18/

How Hezbollah used pagers and couriers to counter Israel’s high tech surveillance | Reuters https://www.reuters.com/world/middle-east/pagers-drones-how-hezbollah-aims-counter-israels-high-tech-surveillance-2024-07-09/

Biden administration unveils new evidence of RT’s key role in Russian intelligence operations globally | CNN Politics https://edition.cnn.com/2024/09/13/politics/biden-administration-rt-russian-intelligence/index.html

Meta bans RT days after U.S. accused Russian outlet of disinformation https://www.nbcnews.com/news/us-news/meta-bans-rt-russian-disinformation-rcna171402

U.S. to file charges in Trump campaign hacking case, officials say https://www.nbcnews.com/tech/security/us-file-charges-trump-campaign-hacking-case-officials-say-rcna170996

China suspected of hacking diplomatic body for Pacific islands region https://therecord.media/pacific-islands-forum-cyberattack-fiji-australia-china

Chinese-made port cranes in US included ‘backdoor’ modems, House report says https://therecord.media/port-cranes-china-modems-republican-house-report

Stolen account info still chief risk for federal agencies, annual CISA audit finds https://therecord.media/stolen-account-info-federal-agencies-cisa

Notice of Recent Security Incident | Fortinet Blog https://www.fortinet.com/blog/business-and-technology/notice-of-recent-security-incident

WordPress.org to require two-factor authentication for plugin developers | CyberScoop https://cyberscoop.com/wordpress-two-factor-authentication-supply-chain/

Multiple attacks force CISA to order agencies to upgrade or remove end-of-life Ivanti appliance https://therecord.media/cisa-urges-federal-agencies-remove-ivanti-product

Ivanti Endpoint Manager and Ivanti Endpoint Manager Security Suite and Ivanti Cloud Service Application (CSA) - End Of Life (EOL) https://forums.ivanti.com/s/article/Ivanti-Endpoint-Manager-and-Ivanti-Endpoint-Manager-Security-Suite-EOL?language=en_US

The Dark Nexus Between Harm Groups and ‘The Com’ – Krebs on Security https://krebsonsecurity.com/2024/09/the-dark-nexus-between-harm-groups-and-the-com/

Feds sentence 12 crypto thieves behind SIM swaps, home invasions https://therecord.media/feds-sentence-12-crypto-theives-home-invasion

Ex-CrowdStrike employees detail rising technical errors before July outage | Semafor https://www.semafor.com/article/09/12/2024/ex-crowdstrike-employees-detail-rising-technical-errors-before-july-outage

Post-CrowdStrike Fallout: Microsoft Redesigning EDR Vendor Access to Windows Kernel - SecurityWeek https://www.securityweek.com/post-crowdstrike-fallout-microsoft-redesigning-edr-vendor-access-to-windows-kernel/

Apple seeks dismissal of its NSO Group lawsuit, citing risk of exposing ‘vital security information’ https://therecord.media/apple-seeks-dismissal-of-nso-lawsuit-pegasus-spyware

US hits Intellexa spyware maker with more sanctions https://therecord.media/us-hits-intellexa-sanctions-treasury

BolivarCucuta on X: “Encuentran muerto al ciudadano israelí Yariv Bokor en Medellín En un apartamento de El Poblado, Medellín, fue encontrado sin vida el ciudadano israelí Yariv Bokor, con aparentes signos de violencia. Bokor estaba vinculado a la empresa Sandvine, la cual tiene relación con NSO https://t.co/EeY1os1omW” / X https://x.com/bolivarcucuta/status/1835686199983219043

Instagram to bolster privacy and safety features for millions of teen users https://therecord.media/instagram-bolster-privacy-security-teens-children-social-media

Mastercard buys Recorded Future for $2.65 billion | CyberScoop https://cyberscoop.com/mastercard-buys-recorded-future/