Transcript
A (0:00)
From the CISO series, it's Cybersecurity Headlines
B (0:06)
these are the cybersecurity headlines for Friday, March 6, 2026. I'm Steve Prentiss. Apple blocks ByteDance Chinese apps these technical restrictions will stop iOS users in the US from downloading other apps from TikTok parent company ByteDance. This procedure actually started in January in which US based iPhone users with Chinese App Store accounts began reporting obstacles when trying to download apps developed by ByteDance. Wired has confirmed that even with a valid Chinese App Store account, downloading or updating a ByteDance owned Chinese app is blocked on Apple devices located in the United States. Neither Apple nor ByteDance nor the new entity controlling TikTok's US operations, TikTok USDS Joint Vent, responded to WIRED's request for comment. Google says 900 days were exploited in attacks last year A report from the Google Threat Intelligence Group says that it tracked these 90 zero day exploited vulnerabilities throughout 2025 and almost half of them were in enterprise software and appliances. This is 15% more than 2024, but lower than the record 1000 days tracked in 2023. 47 of the vulnerabilities targeted end user platforms and 43 targeted enterprise products, the report says. The most targeted enterprise systems were security appliances, network infrastructure, VPNs and virtualization platforms, as these provide privileged network access and often lack EDR monitoring. Iran intelligence backdoored US bank, airport and software outfit networks According to threat hunting teams from Symantec and Carbon Black, an Iranian cybercrew believed to be part of the Iranian Ministry of Intelligence and Security has been embedded in the networks of multiple US Companies, including a bank, a software firm, an airport and non governmental organizations in the US And Canada since the beginning of February. The activity, which has ramped up in recent days, is connected to muddy water which has been carrying out cyber campaigns on behalf of the Iranian Intel Agency cycling since approximately 2018. CISA nominee Planky exits Coast Guard position Following up on a story we covered last July, Sean Planky, the Department of Homeland Security senior advisor and presidential nominee to lead SISA, was, quote, escorted out of the U.S. coast Guard headquarters late Monday and has had his access badge removed, according to sources familiar with the matter. End quote. He has apparently left his role at the dhs, though circumstances behind the sudden move remain unclear. This follows a hold that was placed on his nomination for sisa's leadership late last year. But despite this, a White House official has reaffirmed that Planky is the nominee to lead SISA despite his removal and referred questions about his removal from the Coast Guard position to the dhs. Huge thanks to our sponsor, Adaptive Security. This episode is brought to you by Adaptive Security, the first security awareness platform built to stop AI powered social engineering security training fails when it's generic. Adaptive's platform personalizes training and runs deep fake simulations across email, sms, voice and video. And with Adaptive's AI content creator, you can drop in a breaking threat or compliance doc and instantly turn it into interactive multilingual training. No designers and no delays. Learn more@adaptivesecurity.com those are the two words adaptivesecuritytogether.com Check Point announces Secure AI Advisory Service for Enterprise Adoption this new advisory service aims to address the challenges of regulatory scrutiny and operational risks as AI systems expand across hybrid networks, cloud environments and digital workspaces. End quote Named the Secure AI Advisory Service, it is delivered through Check Point's Cyber Resilience and Response unit, known as CPR Act. Check Point says the new service quote integrates governance into the broader security lifecycle, linking intelligence readiness, detection and response capabilities. End quote in alignment with frameworks such as the EU AI Act, GDPR, ISO 42001 and the NIST AI Risk Management framework. Hundreds of Iranian hacking attempts hit surveillance cameras Another story from Checkpoint According to researchers from that company, multiple Iranian hacking crews have been targeting Internet connected surveillance cameras across Israel and other Middle Eastern countries since the start of the war there on February 28. These have been described as attempts to exploit a handful of bugs in IP cameras made by two manufacturer Hikvision and Dawa. The countries targeted include Israel, Qatar, Bahrain, Kuwait, the United Arab Emirates, Cyprus and Lebanon. HHS updates free Risk tool to help hospitals assess cybersecurity exposure the Department of Health and Human Services unveiled the tool yesterday. It is intended to help healthcare facilities assess their cybersecurity risks, elevating the emphasis on those threats to the kind produced by weather conditions and other dangers. Developed through the Administration for Strategic Preparedness and Response, the solution comes in the form of an update to the Risk Identification and site criticality toolkit that is risk 2.0 to include a specific focus on cybersecurity. The model walks users through a series of questions and measures them against the influential nist Cybersecurity Framework 2.0 as well as the HHS own Voluntary Cybersecurity Performance Goals. Phobos Operator pleads guilty following up on a story we covered mid February, 43 year old Russian national Evgeny Pititskin has pleaded guilty in a US Court to charges stemming from his role in the Phobos ransomware operation. He was arrested in South Korea in June 2024 and now faces up to 20 years in prison. Sentencing is scheduled for July 15. Ptitsin appears to have been part of the administration team, which offered malware and infrastructure that affiliates could use to target victims and obtain ransom payments. Remember to subscribe to the CISO Series YouTube channel. We have original shorts posted every day, plus demos, interviews, previews of upcoming events, and clips from our favourite conversations. Just search for ciso series on YouTube. And if you have some thoughts on the news from today or about this show in general, please be sure to reach out to us@feedbackisoseries.com we would love to hear from you. I'm Steve Prentiss reporting for the CISO Series.