NYC Inauguration bans Flipper Zero, UK taxes crypto, Finland seizes ship

Cyber Security Headlines

Episode: NYC Inauguration bans Flipper Zero, UK taxes crypto, Finland seizes ship
Host: Steve Prentiss (CISO Series)
Date: January 2, 2026

Episode Overview

This episode delivers rapid-fire updates on major developments in cybersecurity from around the globe. Key stories include new security measures at the NYC mayoral inauguration, increased crypto regulation in the UK, cable sabotage in the Baltic Sea, ongoing fallout from ransomware attacks, next-gen phishing tactics, a massive compensation plan after a South Korean data breach, femtocell vulnerabilities in Korea, and a pioneering orbital manufacturing project.

Main Discussion Points & Insights

1. NYC Mayoral Inauguration Bans Flipper Zero and Raspberry Pi

Content:
The inauguration of NYC's new mayor Zoran Mandani introduces an updated security checklist. In addition to standard prohibited items, Flipper Zero penetration testing devices and Raspberry Pi computers have been specifically banned.
Notable Insight:
Event organizers did not explain “why these were singled out specifically, rather than a generic mention of portable technologies.”
- (Steve Prentiss, 00:23)

2. UK Requires Crypto Platforms to Share User Account Details

Content:
UK crypto buyers must now share account details with HMRC. The law, which took force on January 1, empowers the tax agency to collect info from crypto exchanges, aiming to recover unpaid capital gains tax.
Notable Insight:
HMRC will “begin automatically collecting information on all users of cryptocurrency exchanges, which are effectively the industry's banks, in a bid to start collecting tens of millions in unreal unpaid tax.”
- (Steve Prentiss, 01:03)

3. Finland Seizes Ship Suspected of Cable Sabotage

Content:
Finnish authorities detained a ship suspected of damaging a subsea Baltic telecommunications cable. The incident occurred December 31 in Estonia’s economic zone. The ship, found with its anchor chain down, was ordered to safe Finnish anchorage.
Notable Quotes:
“Finland's border guard found the ship with its anchor chain lowered into the sea and so instructed the vessel to move to safe anchorage within Finland's territorial waters.”
- (Steve Prentiss, 01:46)

4. More US Banks Exposed by Marquee Software Ransomware Attack

Content:
Following a significant attack on Marquee Software in August, two more banks—Artisans Bank and Vera Bank—report compromised customer data. Stolen info includes product updates and service analysis, but not direct customer accounts.
Notable Clarifications:
Both banks “stressed the hackers never breached their own systems and only stole information maintained by Marquee Software.”
- (Steve Prentiss, 02:23)

5. Air Traffic Service Enables Exploitative ClickFix Attacks

Content:
“Air Traffic,” a platform flagged by Hudson Rock researchers, allows attackers to simulate browser glitches and trick users into running malware with up to a “60% conversion rate.” Attackers must first compromise or inject code into websites.
Technical Details:
“The platform promises conversion rates as high as 60% and can determine the target system to deliver compatible payloads.”
- (Steve Prentiss, 03:50)

6. Coupang Announces $1.17 Billion Breach Compensation

Content:
Coupang, dubbed Korea’s Amazon, will provide $1.17B in purchase vouchers to roughly 34 million users affected by a mass data breach. Notifications will be sequentially sent via text.

7. Korea Telecom Criticized for Femtocell Security Failures

Content:
South Korea’s Ministry of Science and ICT found thousands of insecure femtocells deployed by Korea Telecom, facilitating long-term attacks, fraud, and surveillance. All devices shared credentials, had no root password, and stored keys plaintext.
Notable Details:
“Attackers could extract a certificate, clone femtocells and have them accepted as legitimate by Korea Telecom's network for up to 10 years.”
“Compromised devices allowed attackers to intercept texts, learn subscriber IDs and track calls.”
- (Steve Prentiss, 05:15–05:55)

8. Space Forge Sends Microwave-Sized Furnace into Orbit

Content:
Wales-based Space Forge launched a small orbital factory, demonstrating it could heat up to 1800°F. The project aims to manufacture ultra-pure semiconductors in space for use in electronics and telecommunication.
Scientific Insight:
“When they are being manufactured in a weightless environment, these atoms line up absolutely perfectly. The vacuum of space also means that contaminants can't sneak in, and the purer and more ordered that a semiconductor is, the better it works.”
- (Steve Prentiss, 06:43)

Memorable Quotes

On Flipper Zero ban:
“No details explaining why these were singled out specifically, rather than a generic mention of portable technologies.”
(00:23)
On UK's crypto regulations:
“HMRC will begin automatically collecting information on all users of cryptocurrency exchanges, which are effectively the industry's banks…to start collecting tens of millions in unreal unpaid tax.”
(01:03)
On femtocell vulnerability:
“…devices use the same network authentication certificate, had no root password, stored keys in plain text and exposed remote SSH access.”
(Steve Prentiss, 05:24)
On the power of manufacturing in space:
“When manufactured in a weightless environment, these atoms line up absolutely perfectly.”
(Steve Prentiss, 06:43)

Key Timestamps

00:06 — Episode Headlines/Introduction
00:15 — NYC Inauguration device ban
01:00 — UK crypto tax enforcement
01:46 — Finland seizes cable sabotage ship
02:20 — Bank breach fallout from Marquee Software attack
03:40 — Air Traffic ‘ClickFix’ malware platform
04:30 — Coupang breach compensation announcement
05:15 — Korea Telecom’s femtocell security failure exposed
06:43 — Space Forge launches orbital factory

In Summary

This episode spotlights new vectors in cyber risk—physical, technical, legal, and geopolitical—with uncommonly concise, informative reporting. Standout insights include the specifics of the NYC device ban, the aggressive UK crypto reporting law, and the ‘ClickFix’ attack platform. The episode also draws attention to persistent infrastructure threats, such as those from cable sabotage and telecom supply chain vulnerabilities, as well as landmark compensation efforts after colossal data breaches.

For more details or to track these stories as they develop, visit cisoseries.com.

Cyber Security Headlines

Episode: NYC Inauguration bans Flipper Zero, UK taxes crypto, Finland seizes ship
Host: Steve Prentiss (CISO Series)
Date: January 2, 2026

Episode Overview

Main Discussion Points & Insights

1. NYC Mayoral Inauguration Bans Flipper Zero and Raspberry Pi

Content:
The inauguration of NYC's new mayor Zoran Mandani introduces an updated security checklist. In addition to standard prohibited items, Flipper Zero penetration testing devices and Raspberry Pi computers have been specifically banned.
Notable Insight:
Event organizers did not explain “why these were singled out specifically, rather than a generic mention of portable technologies.”
- (Steve Prentiss, 00:23)

2. UK Requires Crypto Platforms to Share User Account Details

Content:
UK crypto buyers must now share account details with HMRC. The law, which took force on January 1, empowers the tax agency to collect info from crypto exchanges, aiming to recover unpaid capital gains tax.
Notable Insight:
HMRC will “begin automatically collecting information on all users of cryptocurrency exchanges, which are effectively the industry's banks, in a bid to start collecting tens of millions in unreal unpaid tax.”
- (Steve Prentiss, 01:03)

3. Finland Seizes Ship Suspected of Cable Sabotage

Content:
Finnish authorities detained a ship suspected of damaging a subsea Baltic telecommunications cable. The incident occurred December 31 in Estonia’s economic zone. The ship, found with its anchor chain down, was ordered to safe Finnish anchorage.
Notable Quotes:
“Finland's border guard found the ship with its anchor chain lowered into the sea and so instructed the vessel to move to safe anchorage within Finland's territorial waters.”
- (Steve Prentiss, 01:46)

4. More US Banks Exposed by Marquee Software Ransomware Attack

Content:
Following a significant attack on Marquee Software in August, two more banks—Artisans Bank and Vera Bank—report compromised customer data. Stolen info includes product updates and service analysis, but not direct customer accounts.
Notable Clarifications:
Both banks “stressed the hackers never breached their own systems and only stole information maintained by Marquee Software.”
- (Steve Prentiss, 02:23)

5. Air Traffic Service Enables Exploitative ClickFix Attacks

Content:
“Air Traffic,” a platform flagged by Hudson Rock researchers, allows attackers to simulate browser glitches and trick users into running malware with up to a “60% conversion rate.” Attackers must first compromise or inject code into websites.
Technical Details:
“The platform promises conversion rates as high as 60% and can determine the target system to deliver compatible payloads.”
- (Steve Prentiss, 03:50)

6. Coupang Announces $1.17 Billion Breach Compensation

Content:
Coupang, dubbed Korea’s Amazon, will provide $1.17B in purchase vouchers to roughly 34 million users affected by a mass data breach. Notifications will be sequentially sent via text.

7. Korea Telecom Criticized for Femtocell Security Failures

Content:
South Korea’s Ministry of Science and ICT found thousands of insecure femtocells deployed by Korea Telecom, facilitating long-term attacks, fraud, and surveillance. All devices shared credentials, had no root password, and stored keys plaintext.
Notable Details:
“Attackers could extract a certificate, clone femtocells and have them accepted as legitimate by Korea Telecom's network for up to 10 years.”
“Compromised devices allowed attackers to intercept texts, learn subscriber IDs and track calls.”
- (Steve Prentiss, 05:15–05:55)

8. Space Forge Sends Microwave-Sized Furnace into Orbit

Content:
Wales-based Space Forge launched a small orbital factory, demonstrating it could heat up to 1800°F. The project aims to manufacture ultra-pure semiconductors in space for use in electronics and telecommunication.
Scientific Insight:
“When they are being manufactured in a weightless environment, these atoms line up absolutely perfectly. The vacuum of space also means that contaminants can't sneak in, and the purer and more ordered that a semiconductor is, the better it works.”
- (Steve Prentiss, 06:43)

Memorable Quotes

On Flipper Zero ban:
“No details explaining why these were singled out specifically, rather than a generic mention of portable technologies.”
(00:23)
On UK's crypto regulations:
“HMRC will begin automatically collecting information on all users of cryptocurrency exchanges, which are effectively the industry's banks…to start collecting tens of millions in unreal unpaid tax.”
(01:03)
On femtocell vulnerability:
“…devices use the same network authentication certificate, had no root password, stored keys in plain text and exposed remote SSH access.”
(Steve Prentiss, 05:24)
On the power of manufacturing in space:
“When manufactured in a weightless environment, these atoms line up absolutely perfectly.”
(Steve Prentiss, 06:43)

Key Timestamps

00:06 — Episode Headlines/Introduction
00:15 — NYC Inauguration device ban
01:00 — UK crypto tax enforcement
01:46 — Finland seizes cable sabotage ship
02:20 — Bank breach fallout from Marquee Software attack
03:40 — Air Traffic ‘ClickFix’ malware platform
04:30 — Coupang breach compensation announcement
05:15 — Korea Telecom’s femtocell security failure exposed
06:43 — Space Forge launches orbital factory

In Summary

For more details or to track these stories as they develop, visit cisoseries.com.

wavePod

Powered by Wave AI

Summary

Cyber Security Headlines

Episode Overview

Main Discussion Points & Insights

1. NYC Mayoral Inauguration Bans Flipper Zero and Raspberry Pi

2. UK Requires Crypto Platforms to Share User Account Details

3. Finland Seizes Ship Suspected of Cable Sabotage

4. More US Banks Exposed by Marquee Software Ransomware Attack

5. Air Traffic Service Enables Exploitative ClickFix Attacks

6. Coupang Announces $1.17 Billion Breach Compensation

7. Korea Telecom Criticized for Femtocell Security Failures

8. Space Forge Sends Microwave-Sized Furnace into Orbit

Memorable Quotes

Key Timestamps

In Summary

Summary

Cyber Security Headlines

Episode Overview

Main Discussion Points & Insights

1. NYC Mayoral Inauguration Bans Flipper Zero and Raspberry Pi

2. UK Requires Crypto Platforms to Share User Account Details

3. Finland Seizes Ship Suspected of Cable Sabotage

4. More US Banks Exposed by Marquee Software Ransomware Attack

5. Air Traffic Service Enables Exploitative ClickFix Attacks

6. Coupang Announces $1.17 Billion Breach Compensation

7. Korea Telecom Criticized for Femtocell Security Failures

8. Space Forge Sends Microwave-Sized Furnace into Orbit

Memorable Quotes

Key Timestamps

In Summary