B (5:49)

Large language models may never be fully protected from prompt injection, a cyber threat that tricks AI systems into following malicious instructions. That's according to new warnings from the UK's National Cybersecurity Center. Because LLMs treat all text as tokens to predict, they can confuse user input for commands, enabling attackers to reveal hidden system prompts, extract sensitive data, or manipulate automated decisions. NCSC researchers argue that prompt injection is fundamentally unlike SQL injection, making traditional defenses ineffective. Attempts to distinguish instructions from data remain limited because LLMs inherently do not separate the two. The NCSC concludes that prompt injection will remain a persistent risk and that widespread embedding of generative AI could trigger significant global security breaches unless systems are designed with strong limitations and careful risk management.

B (6:52)

A report from Infoblox reveals that at least 18 US universities were hit by a months long phishing campaign From April through November of this year, attackers used the evil jinx adversary in the middle toolkit to bypass multi factor authentication by stealing session cookies after victims clicked tiny URL phishing links disguised as campus SSO pages. Infoblox trace nearly 70 shifting attacker domains used to target schools, including UC Santa Cruz, UC Santa Barbara, the University of San Diego, VCU and Michigan, the firm warns. Universities remain prime high impact targets for cybercriminals.

B (7:36)

Russian authorities have restricted Apple's FaceTime service, accusing it of being used to support terrorism, recruitment, fraud and other criminal activity. Regulators also disclosed that Snapchat was blocked on October 10 for the same stated reasons. The moves reflect Russia's broader effort to tighten control over online communication under President Vladimir Putin, including restrictive laws, bans on non compliant platforms and advanced systems for monitoring and shaping Internet traffic. Apple did not comment on the accusations or restrictions.

B (8:13)

A bipartisan group of senators is reviving the Healthcare Cybersecurity and Resiliency act to strengthen protections across the health sector. The bill, originally introduced in late 2024 but never advanced, would modernize regulations, clarify federal roles, offer training and authorize grants to improve cybersecurity readiness. Lawmakers say healthcare remains highly vulnerable with cyberattacks exposing sensitive medical data and disrupting patient, especially in rural areas with limited resources. The legislation aims to boost coordination between the Department of Health and Human Services and the Cybersecurity and Infrastructure Security Agency, requiring HHS to update HIPAA rules with modern security practices, develop an incident response plan and provide breach prevention guidance. It also establishes a five year grant program for select healthcare entities. Senators argue patients deserve confidence that their data is protected from ransomware and other threats.

B (9:19)

Portugal has amended its cybersecurity law to create a legal safe harbor for good faith security researchers, exempting certain hacking activities from punishment under strict conditions. The new article protects researchers who probe only existing vulnerabilities, avoid financial gain report flaws, immediately limit their actions to what's necessary, avoid harmful techniques and delete any collected data once fixed consent based testing is also covered. The change aligns Portugal with similar moves in Germany and the United States. To support responsible vulnerability disclosure and safer cybersecurity research.

B (10:01)

A large scale campaign has targeted Palo Alto Global Protect portals and later SonicWall Sonic OS API endpoints. According to Graynoise, beginning December 2, attackers launched credential stuffing and scanning activity for more than 7,000 IP addresses tied to German hosting provider 3xk GmbH. Initial waves focused on brute forcing globalprotect VPN logins across multiple profiles using client fingerprints previously seen in millions of scan sessions dating back to September. By mid November, the infrastructure generated another 2.3 million global protect scans, mostly from Germany. On December 3, the same fingerprints appeared, probing SonicWall API endpoints, activity typically used to identify exposed systems or future exploitation targets. Gray noise attributes both clusters to the same actor. Palo Alto networks confirmed increased credential based attacks and urged customers to enforce MFA.

B (11:09)

A Maryland man Min Fong Gok Vong has been sentenced to 15 months in prison for allowing North Korean IT workers to use his identity to obtain software development jobs at 13 U.S. companies, including work contracted to federal agencies such as the FAA. Prosecutors say that from 2021 to 2024, Vong collected over $970,000 in salary and while North Korean nationals performed the work overseas. Using his credentials to access US Systems at one Virginia Tech firm, Vong lied about his background, verified his identity with US Documents and was assigned to FAA systems handling sensitive national defense information. He installed remote access tools that enabled workers in China to operate under his name. The case is part of broader DPRK IT worker schemes that US Officials say fund sanctioned North Korean government operations. Turning to our Monday business brief, cybersecurity funding and acquisition activity remained strong, with multiple firms announcing sizable investments. Israel based Zafran Security raised $60 million in Series C financing to accelerate product innovation and expand globally. Microsoft 365 security provider Augment secured $18 million to advance its Roadmap and Deepen MSP partnerships software supply chain Firm Codenotary raised $16.5 million to grow engineering, AI research and international go to market efforts. Zero Trust Networking Company net Foundry added Cisco Investments to its Series A, bringing the round above $15 million. Cloud security startup Blast Security emerged from stealth with a $10 million seed round, while Swiss identity security firm Sapporo raised 7 million euros to scale R and D and expand across Europe. M and a activity included ServiceNow's planned acquisition of identity service company Veza for a reported $1 billion McAfee's purchase of consumer privacy app Saymine, Eluradi's acquisition of OT security firm MSF Partners and Wallix's acquisition of French cybersecurity analytics company Malazan to accelerate its AI roadmap. Be sure to check out our complete business briefing on our website. That's part of Cyberwire.

B (13:56)

Coming up after the break. Tim Starks from cyberscoop unpacks the president's pending cybersecurity strategy release and an AI image sends UK train schedules off the rails. Stick around.

B (14:16)

Foreign.

B (14:21)

Most environments trust far more than they should, and attackers know it. Threat Locker solves that by enforcing default deny at the point of execution. With Threat Locker allow listing, you stop unknown executables cold. With ring fencing, you control how trusted applications behave. And with Threat Locker DAC defense against configurations, you get real assurance that your environment is free of misconfigurations and clear visibility into whether you meet compliance standards. ThreatLocker is the simplest way to enforce zero trust principles without the operational pain. It's powerful protection that gives CISOs real visibility, real control, and real peace of mind. ThreatLocker makes zero trust attainable even for small security teams. See why thousands of organizations choose ThreatLocker to minimize alert fatigue, stop ransomware at the source, and regain control over their environments. Schedule your demo@threatlocker.com N2K today.

B (15:30)

AI is transforming every industry, but it's also creating new risks that traditional frameworks can't keep up with. Assessments today are fragmented, overlapping, and often specific to industries, geographies or regulations. That's why Black kite created the BK GA3AI assessment framework to give cybersecurity and risk teams a unified, evolving standard for measuring AI risk across their own organizations and their vendors. AI use. It's global, research driven, built to evolve with the threat landscape and free to use because Black Kite is committed to strengthening the entire cybersecurity community. Learn more@blackkite.com.

B (16:26)

It's always my pleasure to welcome back to the show Tim Starks. He is a senior reporter at cyberscoop. Tim, welcome back. Hi Dave, really interested in your reporting here about this draft from the Trump administration about their cyber strategy. What is going on here? Tim?

A (16:45)

Well, there's some substance and some style questions to address here.

B (16:48)

Okay, fair enough.

A (16:49)

The style questions have actually gotten a little bit more of the attention in terms of how people have been responding to the story. This is a five page document that is a really short strategy. The Biden administration cyber strategy was 35 pages.

B (17:05)

Okay?

A (17:06)

And here's the thing, there are six pillars to this strategy, which means less, less than one page per pillar.

A (17:15)

So that's something that people have talked about as sort of like focused on like, wow, this is a really short strategy. And some people have told me that it's not viewed so much as a traditional strategy document, more a messaging document, a statement of purpose, than a full fledged strategy, and that the most important work that will be done on it will be done on the implementation side. So that's the style side of things. The substance side of things is despite the fact that it's so short, they cover a lot of topics. The six pillars are cyber offensive, deterrence, that's first and foremost for this administration, imposing costs on adversaries, as they like to say. Then there's regulatory harmonization, just aligning these regulations to make them so they're a little more streamlined with each other, from sector to sector, agency to agency, bolstering the cyber workforce, which is an Interesting one from this administration because they've been cutting a lot of the cyber workforce, federal procurement. There's a thing that Sean Cairncross, the National Cyber Director, has been saying about thinking that we're not getting the best technology because we have a slow process for authorizing that for the federal government. So that's a focus critical infrastructure protection and emerging technologies. And you might think that some of these things will go line up. For instance, you might think AI goes right into that emerging technologies bucket. But AI is addressed apparently throughout the document. I've not seen it myself. I've just talked to people who are familiar with it and other, other topics are in there, post quantum cryptography, China, cybercrime, you name it. There's a lot in that, There's a lot in this five page document.

B (18:45)

Something that caught my eye in your reporting was this notion of a more muscular approach, which to me seems very on brand for this administration.

A (18:54)

Yeah, yeah. I think, you know, from what I've been told, the, the opening, there's an opening section that takes up a lot of the six pages. Now, I don't mean like, you know, it's, it takes up most of it or anything like that. I just mean that you would think with a, with a, with a five page document they wouldn't have a preamble, but, but as drafted, they do. And it talks about this, you know, sort of idea of America first and we need to sort of the kind of Trump, Trumpian rhetoric you hear from Trump himself and this administration on a pretty regular basis about, you know, in particular in cyberspace, going on the offense and, and making the enemies fear. America essentially is kind of the gist of the rhetoric.

B (19:34)

And given that your sense here is that this is going to be released probably in January, was this leak strategic or just folks who are familiar with the document deciding to sort of share what they know?

A (19:49)

That's an interesting question to answer on the air.

B (19:52)

Fair enough.

A (19:55)

I'll say that it was. I'm not trying to puff myself up. I've been trying to report on this document, so I don't want to say anything about where I got it from.

B (20:02)

But good old fashioned shoe leather on the ground. Right. From an experienced reporter.

A (20:09)

Yes. Dead drops putting messages under rocks so that I can find out about this strategy.

B (20:16)

All right, fair enough. Well, the other article that you wrote that caught my eye here is about Sean Planky, and evidently his nomination to lead CISA is in jeopardy here.

A (20:30)

Yeah, and it might be worse than that. And, but you know, both of these stories I'll, I'll, I'll, I'll brag slightly about, I don't think anybody else has reported on these to the extent that I have. John Planky has been the nominee for some time and he, he's got a, he got a committee vote and all sorts of things. But, but my sources seem to think that this is as close to dead as you can have as an, for a nomination without it actually being fully deceased for a variety of reasons. But one in particular, his nomination is probably not going forward. He had a good chance to move forward if he was part of this package of nominees that got moved on the Senate floor. You know, there's this procedural change that Republicans have put in place because they're trying to go around what they call Democratic obstruction to sort of do on, on blanc en banc, I believe this is the terminology. Yeah, Nominations. And just have one big vote on all of them. He was left out of that package and for at least two of the reasons that have held up his nomination. Nothing to do with cybersecurity.

B (21:31)

Well, so help me understand here is the fact that his nomination is falling apart. Does that have anything to do with him personally or is it just one of those administrative things that frustrate the process?

A (21:47)

I think it's a little bit of a mix. I mean, certainly on the cybersecurity front, he has, he has the credentials, he has the backing of people. You know, there are some Democrats who voted against him in committee, but I think temperament, expertise, I think a lot of people think he check all the boxes. So is it administrative? Partially. I mean, if they can't get him in this package, they'll have to resubmit paperwork. That puts us a hurdle. But what really, really seems to be the issue, and this is where it gets closer to personal, is that while he's been awaiting his nomination to go through the Senate, he has been serving as a special advisor on Coast Guard reform to Secretary Noem at the Department of Homeland Security. And one of the things that happened under the Coast Guard reform, I always hate using that term because I feel like it's loaded, but I'm using the terms they use is that they canceled a rather a significant part of a large contract for shipbuilding that was a multi billion dollar contract and that supplied some significant amount of jobs to a company in Florida. And the person who has the most resilient, hard to overcome hold on that nomination is Senator Rick Scott of Florida and he's a Republican. So there's some intrigue there, there are some other holds. But I think most people consider the other two rather not so hard to overcome. You know, in the sense that Senator Wyden has a hold related to wanting to get a telecommunications cybersecurity report out of cisa, one that CISA said in July they were willing to provide, but they have not done yet. The senators from North Carolina, both Republicans, Ted Budd and Thom Tillis, want some more disaster funding for North Carolina. I think that's theoretically easier to release. But the idea of undoing a contract that has been terminated or at least partially terminated, that's where things get a little harder. And that's even if that's even if the administration wanted to do that, if they wanted to reverse what they've done, you still would have some real difficulties with that. And by virtue of him being involved with the Coast Guard's reform effort, I think Senator Scott is saying this guy can't go.

B (23:57)

Yeah. All right. Intriguing, for sure.

A (24:00)

Quite.

B (24:01)

Yeah. Tim Starks is senior reporter at Cyber Scoop. Tim, thanks so much for joining us.

A (24:06)

Glad to be here.

A (24:19)

The Uniswap wallet makes crypto easier and safer to own and use. Discover new tokens, research confidently swap instantly, and manage it all securely in one place. The Uniswap trading protocol has powered over $3 trillion in volume, and it's trusted by millions worldwide. Buy your first crypto assets in a few taps and experience the freedom of decentralized finance with Uniswap. Tap the banner to get started.

B (24:49)

Ford BlueCruise Hands Free highway driving takes the work out of being behind the wheel, allowing you to relax and reconnect while also staying in control. Enjoy the drive in blue Cruise enabled vehicles like the F150 Explorer and Mustang Mach E. Available feature on equipped vehicles Terms apply. Does not replace safe driving. See Ford.com BlueCruise for more details.

B (25:24)

And finally, trains across northern England briefly ground to a halt after an AI generated photograph claimed that Lancaster's Carlisle Bridge had crumbled spectacularly following a late night earthquake. The image, which apparently showed enough rubble to make a stonemason weep, surfaced on social media. Network Rail, taking no chances, paused traffic while inspectors confirmed the bridge was as intact as ever. A BBC journalist asked an AI model to review the image, which obligingly pointed out its suspiciously artistic damage.

B (26:04)

The rail line reopened, though not before 32 trains, some all the way up into Scotland, were delayed by what amounted to a digital prank gone wrong. Network Rail gently reminded the public that manufacturing disaster for fun tends to inconvenience real humans and taxpayers. Experts noted few passengers were affected since the whole caper took place after hours, but the hoax still forced teams to scramble. As one rail specialist put it, what seems like a game can derail someone's very real plans.

B (26:56)

And that's the Cyber Wire. For links to all of today's stories, check out our daily briefing@thecyberwire.com don't forget to check out the Grumpy Old Geeks podcast, where I contribute to a regular segment on Jason and Brian's show. Every week you can find Grumpy Old Geeks, where all the fine podcasts are listed. We'd love to know what you think of this podcast. Your feedback ensures we deliver the insights that keep you a step ahead in the rapidly changing world of cybersecurity. If you like our show, please share a rating and review in your favorite podcast app. Please also fill out the survey in the show notes or send an email to cyberwire2k.com N2K's senior producer is Alice Carruth. Our Cyberwire producer is Liz Stokes. We're mixed by Trey Hester with original music by Elliot Peltzman. Our executive producer is Jennifer Ibin. Peter Kilpe is our publisher and I'm Dave Bittner. Thanks for listening. We'll see you back here tomorrow.