The end of a cybercrime empire. - CyberWire Daily

Summary7 min read

Podcast Summary: CyberWire Daily – "The End of a Cybercrime Empire"

Release Date: January 31, 2025
Host: Dave Buettner, CyberWire Network powered by N2K Networks

1. Dismantling a Pakistan-Based Cybercrime Network

US and Dutch authorities successfully dismantled a significant cybercrime network based in Pakistan, known as Operation Heart Blocker. The operation targeted Sim Raja, aka Heartsender, who operated 39 domains since 2020. Raja sold phishing toolkits, scam pages, and email extractors that were marketed as undetectable by security solutions. These tools facilitated business email compromise scams, resulting in over $3 million in losses.

Notable Quote:
“At heart, Raja’s operations have led to significant financial losses for businesses worldwide, highlighting the persistent threat of cybercrime networks,” – Dave Buettner [02:45].

Authorities also uncovered millions of stolen data records, prompting Dutch police to launch a website for users to check if their credentials were compromised. Affected individuals are urged to change passwords and remain vigilant against phishing attempts.

2. Feasibility of Establishing a US Cyber Force as a Standalone Military Branch

A bipartisan group of lawmakers is urging the National Academy of Sciences, Engineering, and Medicine to evaluate the feasibility of creating a US Cyber Force independent of existing military structures. Representatives Morgan Luttrell and Pat Fallon, alongside Senator Kirsten Gillibrand, emphasized the need to determine whether a standalone cyber force is the best approach to address ongoing cybersecurity challenges.

Notable Quote:
“We must explore all options to ensure our cyber defenses are robust and adaptable to emerging threats,” – Senator Kirsten Gillibrand [05:20].

The lawmakers have set a deadline of November 30th and requested bi-monthly updates to inform the fiscal year 2027 defense strategies. The debate centers on whether US Cyber Command should remain integrated within existing commands like Special Operations or operate independently.

3. DOJ Sues to Block HPE's Acquisition of Juniper Networks

The U.S. Department of Justice has filed a lawsuit to block Hewlett Packard Enterprise’s (HPE) $14 billion acquisition of Juniper Networks, citing antitrust concerns. The DOJ argues that the merger would significantly reduce competition in the US networking market, leaving HPE and Cisco with over 70% market control.

Notable Quote:
“This acquisition would create an unfair monopoly, stifling competition and innovation in the networking sector,” – DOJ Representative [07:15].

HPE and Juniper dispute the claims, asserting that the merger would enhance competition. The case marks the first antitrust challenge under President Trump’s administration and will undergo an eight-month legal process before the October deadline.

4. Tangerine Turkey Deploys Crypto Mining Malware

Tangerine Turkey is a newly identified VBS worm that spreads via USB drives, deploying crypto mining malware. First detected by Red Canary in November 2024, it was ranked eighth in IT’s January 2025 threat report. The malware hijacks the PrintUI DLL to execute mining software and is linked to the Universal Mining operation, which infected over 270,000 computers across 135 countries.

Notable Quote:
“The sophistication of Tangerine Turkey underscores the evolving tactics of cybercriminals in leveraging widespread malware for crypto mining,” – Dave Buettner [09:50].

Researchers noted overlaps with other crypto mining campaigns and identified multiple execution methods, including BAT, PowerShell, and EXE-based approaches. Efforts to mitigate the threat include taking down related GitHub profiles and configuration domains.

5. Major Healthcare Providers Send Breach Notifications

Two significant data breaches have impacted major healthcare providers:

Community Health Center (CHC) in Connecticut notified over 1 million patients of a breach that exposed personal and health information, including Social Security numbers and medical diagnoses. The breach occurred in October 2024 but was only discovered in January 2025. While no systems were encrypted, a skilled hacker was apprehended shortly after the attack.
North Bay Health informed 569,000 individuals of a separate breach in early 2024, potentially involving ransomware. Although there's no evidence of identity theft, the attack disrupted hospital operations for weeks. North Bay is offering free identity protection services to those affected.

Notable Quote:
“These breaches highlight the critical vulnerability of healthcare systems to cyberattacks, emphasizing the need for robust security measures,” – Dave Buettner [10:30].

The incidents reflect a growing trend of cybercriminals targeting healthcare providers for data theft and extortion.

6. Norwegian Police Seize Russian Crewed Ships Suspected of Cable Damage

Norwegian authorities have seized the Silver Danje, a Norwegian-registered ship suspected of being crewed by Russians and involved in damaging a communications cable between Sweden and Latvia. This marks the third vessel detained in recent weeks amid rising concerns over subsea infrastructure sabotage in the Baltic Sea.

Notable Quote:
“The intentional damage to critical communication infrastructure poses a significant threat to regional security and stability,” – Dave Buettner [11:15].

Latvian and Swedish authorities are investigating similar incidents, with Finland also seizing the Eagle S, suspected of severing multiple cables by dragging its anchor. NATO allies have launched the Baltic Century initiative to protect critical infrastructure, warning of potential actions against Russian vessels if threats persist.

7. Critical Vulnerabilities in GitHub Copilot and D-Link Routers

GitHub Copilot, Microsoft’s AI-powered coding assistant, was found to have two critical vulnerabilities:

Affirmation Jailbreak Trick: Allows users to bypass Copilot’s ethical safeguards by adding affirmations like “sure” to prompts, enabling the generation of malicious code such as SQL injection scripts.
Proxy Hijack Exploit: Enables attackers to reroute Copilot’s API traffic, capturing authentication tokens and gaining unrestricted access to OpenAI’s models. This could lead to financial risks and leakage of proprietary code.

With 83% of Fortune 500 companies utilizing Copilot, these vulnerabilities pose widespread risks. Researchers recommend implementing better AI security controls, including adversarial training and stricter API token policies.

Additionally, a critical unauthenticated remote execution vulnerability was discovered in D-Link DSL3788 routers by Max Belia of BVTech. This flaw allows attackers to gain full remote control, potentially leading to network compromise and malware deployment. D-Link has released a patched firmware and urges users to update immediately.

Notable Quote:
“The vulnerabilities in GitHub Copilot and D-Link routers expose significant risks, necessitating immediate action to safeguard enterprise security,” – Dave Buettner [11:50].

8. CISA and FDA Warn U.S. Healthcare Organizations of Vulnerable Patient Monitors

The Cybersecurity and Infrastructure Security Agency (CISA) and the Food and Drug Administration (FDA) have issued warnings to U.S. healthcare organizations regarding severe security vulnerabilities in Contec CMS 8000 patient monitors. These Chinese-made devices contain firmware backdoors that allow attackers to:

Overwrite files
Execute arbitrary code
Exfiltrate patient data

Key vulnerabilities include unauthorized remote control and the transmission of unencrypted patient data to hard-coded IP addresses. No patches are available, and CISA advises the immediate removal of these devices from networks.

Notable Quote:
“These vulnerabilities in patient monitors represent a dire threat to both patient safety and data integrity,” – Dave Buettner [12:10].

Past vulnerabilities in the same devices have also posed serious security risks, though no known attacks exploiting these specific flaws have been reported yet.

9. General Services Administration (GSA) Pauses Federal Contract Awards

The General Services Administration (GSA) has temporarily paused new federal contract awards, citing the need for new leadership to review acquisition strategies. This pause has generated confusion among federal cybersecurity vendors and concerns about potential long-term impacts on the cybersecurity sector.

Notable Quote:
“The uncertainty surrounding GSA’s contract pause could deter small vendors and disrupt crucial cybersecurity services,” – Dave Buettner [12:45].

Exceptions are allowed for emergency obligations and IT spending, and the Department of Defense clarified that its contracts remain unaffected to ensure continuity in national security missions. Industry groups are calling for clearer guidance to mitigate disruptions in cybersecurity and other federal services.

10. The Disappearing Government Data: A Threat to Transparency

In a concerning development, Harvard archivist Jack Cushman discovered that over 2,000 datasets had vanished from data.gov the day after Donald Trump’s inauguration. These datasets, related to climate research, environmental monitoring, and diversity initiatives, were confirmed missing through the Wayback Machine.

Notable Quote:
“The quiet deletion of government data undermines transparency and accountability, erasing critical information that shapes our understanding of the world,” – Jack Cushman [28:29].

Archivists and researchers are scrambling to preserve what remains, recognizing that unlike printed documents, digital data is vulnerable to centralization and deletion. The incident raises questions about whether this was a routine cleanup or a targeted purge, highlighting the need for robust digital data preservation policies to protect democratic integrity.

Conclusion

This episode of CyberWire Daily delved into significant cybersecurity developments, from the takedown of a major cybercrime network to critical vulnerabilities in widely-used technologies. The discussions underscored the evolving nature of cyber threats and the imperative for robust defenses and strategic oversight.

Final Quote:
“Safeguarding our digital infrastructure is not just about technology; it’s about defending the very fabric of our society,” – Dave Buettner [28:29].

Stay informed and protected by tuning into future episodes of CyberWire Daily.

Notable Mentions:

N2K Networks is a leading provider in cybersecurity solutions, emphasizing practical and adaptable AI-driven data platforms.
Domo offers AI and data products that enhance business operations through secure AI agents and automated workflows.

Note: This summary excludes advertisements, sponsor messages, and farewell segments to focus solely on the critical cybersecurity content discussed in the episode.

Loading summary

Transcript39 lines

[00:02]
Dave Buettner
You're listening to the Cyberwire Network, powered by N2K. Your business needs AI solutions that are not only ambitious, but also practical and adaptable. That's where Domo's AI and data products platform comes in. With Domo, you can channel AI and data into innovative uses that deliver measurable impact. Secure AI agents connect Prepare and automate your data workflows, helping you gain insights, receive alerts, and act with ease through guided apps tailored to your role. Data is hard. Domo is easy. Learn more@AI.domo.com that's AI.domo.com Authorities dismantle a Pakistan based cybercrime network Lawmakers question the feasibility of establishing a US Cyber force as a standalone military branch. The DOJ sues to block HPE's acquisition of Juniper Networks Tangerine Turkey deploys crypto mining malware Major healthcare providers send breach notifications Norwegian police seize a Russian crewed ship suspected of damaging a communications cable Researchers discover Critical vulnerabilities in GitHub CoPilot D link patches, a critical router vulnerability CISA and the FDA have warned U.S. health care organizations of severe security vulnerabilities in Chinese made patient monitors. Pauses in funding create confusion for federal cybersecurity vendors we bid a fond farewell to a pair of N2K colleagues and the case of the disappearing government data. It's Friday, January 31st, 2020. I'm Dave Buettner and this is your Cyberwire Intel Briefing. Happy Friday and thanks for joining us here. It's great to have you with us. US and Dutch authorities have dismantled a Pakistan based cybercrime network that sold hacking and fraud tools online. Dubbed Operation Heart Blocker, the crackdown led to the seizure of 39 domains operated by Sim Raja, also known as Heartsender, who had been selling phishing toolkits, scam pages and email extractors since 2020. His tools, marketed as undetectable by security solutions, were widely used in business email compromise scams, leading to over $3 million in losses. Thousands of cybercriminals purchased these tools to steal credentials and conduct fraud. Authorities also uncovered millions of stolen data records, prompting Dutch police to launch a website where users can check if their credentials were compromised. Those affected are urged to change their passwords and stay vigilant against phishing attempt. A bipartisan group of lawmakers is urging the National Academy of Sciences, Engineering and Medicine to fully evaluate the feasibility of establishing a US cyber force as a standalone military branch. In a January 29 letter, Representatives Morgan Luttrell, Republican from Texas Pat Fallon, Republican from Texas, and Senator Kirsten Gillibrand, Democrat from New York, stressed that while the defense policy bill altered the study's focus to broader cyber force models, it must still answer whether a cyber force is the best option. Lawmakers also suggested a deadline of November 30th and requested updates every two months to ensure timely input for the fiscal year 2027 defense discussions. The debate continues over whether US Cyber Command should remain under its current structure, akin to Special Operations Command, or if an independent cyber force is necessary to address ongoing readiness challenges. The letter signals Congress commitment to reassessing military cyber capabilities. The U.S. department of justice has sued to block Hewlett Packard Enterprise's $14 billion acquisition of Juniper Networks, arguing it would stifle competition by leaving only HPE and Cisco controlling over 70% of the US networking market. The companies dispute the claim, saying the deal would enhance competition. The lawsuit marks the first antitrust case under President Trump's new term, despite approvals from the UK and eu. HPE and Juniper face an eight month legal battle before the October deadline. Tangerine Turkey is a VBS worm that spreads via USB drives to deploy crypto mining malware. First observed by Red Canary in November of last year, IT ranked number eight in their January 2025 threat report. The malware hijacks PrintUI DLL to execute mining software and has been linked to a global cryptojacking campaign. Azerbaijan's CERT found strong overlaps between Tangerine Turkey and a massive crypto mining operation called Universal Mining, which had infected over 270,000 computers in 135 countries. VirusTotal samples indicated sometimes drops XMRig, though configuration files are often pulled from remote servers and GitHub repositories. Several related GitHub profiles and domains used for configuration were taken down. Reports from QuickHeal and Azerbaijan SERT suggest Tangerine Turkey is part of a larger, evolving crypto mining campaign, possibly with new variants beyond VBS, including BAT, PowerShell and EXE based execution methods. Community Health Center, a major Connecticut healthcare provider, is notifying over 1 million patients of a data breach, exposing their personal and health information. Attackers accessed CHC's network in October 2024, but the breach was only discovered in January of this year. The stolen data includes names, Social Security numbers, medical diagnoses and insurance details, but CHC states that no systems were encrypted and operations remain unaffected. Investigators found that a skilled criminal hacker was behind the attack but was stopped within hours. Meanwhile, North Bay health is notifying 569,000 individuals of a separate data breach in early 2024, which may have involved ransomware. Although North Bay says there's no evidence of identity theft, it is offering free identity protection. The attack disrupted hospital operations for weeks. These incidents highlight the growing trend of cybercriminals targeting healthcare providers for data theft and extortion. Norwegian police have seized the Silver Danje, a Norwegian registered Russian crewed ship suspected of damaging a communications cable between Sweden and Latvia. This marks the third vessel detained in recent weeks amid rising concerns over subsea infrastructure sabotage in the Baltic Sea. The ship was detained at Norway's request after sailing from St. Petersburg to Murmansk. Latvian authorities are investigating three ships over the cable cut, with Sweden having already detained a ship. Meanwhile, Finland has seized the Eagle S, suspected of intentionally dragging its anchor for 60 miles, severing multiple cables with heightened NATO concerns Baltic Century A new military initiative has been launched to protect critical infrastructure. NATO allies have warned of potential actions against Russian vessels if subsea threats persist. Researchers have discovered two critical vulnerabilities in GitHub Copilot, Microsoft's AI powered coding assistant, exposing major security flaws in enterprise AI tools. The affirmation jailbreak trick allows users to bypass CoPilot's ethical safeguards by simply adding affirmations like sure to prompts, enabling it to generate malicious code such as SQL injection scripts or deauthentication attacks. The proxy hijack exploit is even more secure, allowing attackers to reroute CoPilot's API traffic capture authentication tokens and gain unrestricted access to OpenAI's models. This could lead to enterprise wide financial risks by generating high cost AI queries or leaking sensitive proprietary code. With 83% of Fortune 500 companies using Copilot, the risks are widespread. Researchers urge better AI security controls, including adversarial training, certificate pinning and stricter API token policies. As AI coding tools advance security frameworks like NIST's AI risk management are needed to prevent exploitation. A critical, unauthenticated remote execution vulnerability in D link DSL3788 routers allows attackers to gain full control remotely. The flaw was discovered by Max Belia of secure network BVTech. Potential risks include complete router takeover, network compromise and malware deployment. D Link has released a patched firmware version and urges users to update immediately to protect against exploitation. CISA and the FDA have warned US healthcare organizations to remove Contec CMS 8000 patient monitors due to severe security vulnerabilities that risk remote code execution and patient data leaks. The Chinese made device used in the US and EU contains a firmware backdoor that allows attackers to overwrite files, execute arbitrary code, and exfiltrate patient data. One of the flaws enables unauthorized remote control. A second exposes patient data by transmitting unencrypted information to a hard coded IP address. A third flaw allows out of bounds writes leading to remote code execution. These issues affect multiple firmware versions, including rebranded models like the EPSMED MN120. No patches exist, and CISA advises immediate removal from networks. Past vulnerabilities in the same device have also exposed serious security risks, but no known attacks have been reported yet. The General Services Administration has paused new federal contract awards, creating confusion among vendors and raising concerns about broader impacts. The Jan. 24 memo cites the need for new leadership to review acquisition strategies, but allows exceptions for emergency obligations and IT spending. The pause follows President Trump's freeze on federal funds, though some restrictions were lifted after state Medicaid websites went down. Despite concerns in the cybersecurity sector and experts believe the GSA pause won't cause long term harm. However, uncertainty about cybersecurity funding, especially given the administration's stance on agencies like cisa, could deter small vendors. Industry groups including the Professional Services Council have called for clearer guidance on contract spending. Meanwhile, the Department of Defense clarified that its contracts remain unaffected, ensuring that critical national security missions continue. Vendors are seeking clarity to avoid disruption in cybersecurity and other federal services. Coming up after the break, a fond farewell to a pair of N2K colleagues and the case of the disappearing government data. Stay with us.
[12:59]
Liz Stokes
This episode is brought to you by Nerds. Gummy Clusters the sweet treat that always elevates the vibe with a sweet gummy surrounded with tangy, crunchy nerds. Every bite of Nerds Gummy Clusters brings you a whole new world of flavor. Whether it's game night, on the way to a concert or kicking back with your crew, unleash your senses with nerds. Gummy Clusters.
[13:21]
Dave Buettner
And now a message from our sponsor, zscaler, the leader in cloud security. Enterprises have spent billions of dollars on firewalls and VPNs, yet breaches continue to rise by an 18% year over year increase in ransomware attacks and a $75 million record payout in 2024. These traditional security tools expand your attack surface with public facing IPs that are exploited by bad actors more easily than ever with AI tools, it's time to rethink your security. Zscaler Zero Trust AI stops attackers by hiding your attack surface, making apps and IPs invisible, eliminating lateral movement, connecting users only to specific apps, not the entire network. Continuously verifying every request based on identity and context. Simplifying security management with AI powered automation and detecting threats using AI to analyze over 500 billion daily transactions. Hackers can't attack what they can't see. Protect your organization with Zscaler Zero Trust and AI. Learn more@Zscaler.com Security Foreign Dave here. Have you ever wondered where your personal information is lurking online? Like many of you, I was concerned about my data being sold by data brokers. So I decided to try Delete me. I have to say, delete me is a game changer. Within days of signing up, they started removing my personal information from hundreds of data brokers. I finally have peace of mind knowing my data Privacy is protected. DeleteMe's team does all the work for you with detailed reports so you know exactly what's been done. Take control of your data and keep your private life private by signing up for Deleteme now at a special discount for our listeners today. Get 20% off your DeleteMe plan when you go to JoinDeleteMe.com n2k and use prompt promo code n2k at checkout. The only way to get 20 off is to go to JoinDeleteMe.com N2K and enter code N2K at checkout. That's JoinDeleteMe.com N2k code N2K we've got some very special heartfelt see you laters. In today's guest slot. We're going to miss N2K President Simone Petrella and executive editor Brandon Karp as they move on to new challenges. Join us in wishing them well.
[16:22]
Liz Stokes
Welcome to Fun Fact Friday. Your one stop shop for the quirkiest tidbits of wisdom. I'm your host, Liz Stokes. Here at NTKA Samurai, today's fun fact is a little different. It's all about saying goodbye to one of our own. Our amazing colleague Brandon is heading off to a new adventure. Fun fact about Brandon. He's been the go to person for solving problems, sharing laughs and keeping things running smoothly. He's truly been a team player and a fantastic colleague.
[16:47]
Dave Buettner
Brandon, thank you for sharing your vision with us.
[16:50]
Liz Stokes
Thank you for always being the voice of expertise and leadership, the T minus wonk. And thank you for believing in me. Please don't be a stranger. Brandon, I am seriously gonna miss you. Brandon, I was really sad to hear you're leaving us, but I'm so happy for you. At the same time, I'm excited for the new work. You'll be contributing to the world with your company, and I can't wait to see all that you'll do next. I personally appreciated all your encouragement and support of my ideas here at N2K and Certbyte. Would have not launched had it not been for your support. So thank you for everything.
[17:24]
Dave Buettner
We will miss you.
[17:25]
Liz Stokes
Keep in touch. Brandon, good luck on all your future endeavors.
[17:30]
Dave Buettner
It was a joy to have you here at the company.
[17:33]
Liz Stokes
Best wishes to you and please keep in contact.
[17:37]
Dave Buettner
Good luck, man.
[17:38]
Liz Stokes
Brandon, you definitely left your mark on the company in the time that you were here. But remember that goodbyes are not forever. They're just a pause in our shared journey. Brandon, I will always remember that you set up your own recording booth in your own home so that you can have better audio quality on our shows. And if that isn't the way to an audio engineer's heart, then, I don't know, try lunch or something. Really gonna miss you, ma'am. Brandon, I have never worked with somebody who made me want to do so much more than I've ever wanted to do in such a short period of time. I appreciate all of your insight, your book recommendations and support from the last couple of months. I truly would not be where I am without it. Thank you. Hey, Brandon, it has been such a great experience working with you and learning from you these past few years. Thank you so much for your encouragement and mentorship. It really won't be the same without you, but I am so excited for you as you start your company. Please keep us all posted on your success. I can't begin to thank you for all the guidance and support you've given me. It's truly been an honor working for you. And while I give you grief about it, I'm genuinely thrilled for your next venture. I know you'll conquer this role just like you always do. Best of luck, Kathryn. Hey, Brandon, working with you over the past couple years has just been such an incredible and amazing experience, and I'm so excited to see all the things you go on to accomplish and achieve over the next several years. I'll be rooting for you the entire time. Brandon, working with you for a year.
[19:22]
Dave Buettner
Was not nearly enough time.
[19:25]
Liz Stokes
But since beggars can't be chooser, take what I got.
[19:30]
Dave Buettner
Thank you so much for everything.
[19:31]
Liz Stokes
Hope you have a great one.
[19:33]
Dave Buettner
Bye. Brandon, it has been an absolute pleasure to work with you. I wish you nothing but the best going forward in your new venture and hope that it is every bit the success that I know that you can make it.
[19:50]
Liz Stokes
Take care hey, Brandon, thank you so much for everything you've done for our team. You're such a great leader. We really, really appreciate it. I promise I won't break anything. And go Navy.
[20:04]
Dave Buettner
Hey, Brandon, it's Peter. I always knew the day would come when you take that big leap and start a new venture. I have no doubt it'll be a huge success. I'm so excited for you. Of course, I'm truly grateful for all the ways you've impacted our company and every single member of the team. You're part of our DNA now. That means you'll always be part of this team. Best of luck to you.
[20:26]
Liz Stokes
Well, Brandon, what can I say? It's been an epic adventure. Thank you for picking me up at Spacecom in 2022 and making me part of the T Miner Space team. I will forever be grateful for our time that we've worked together. Brandon, your dedication and energy have made a lasting impact and we're so grateful for everything you've done. While we're sad to see you go, we're also excited for what's next for you. From all of us here, thank you for being such a big part of our team. We'll miss you, but we know you'll be amazing in this next new chapter. See you soon. Welcome to Fun Fact Friday, your one stop shop for the quirkiest tidbits of wisdom. I'm your host, Liz. Folks, here at NTKA Sampwire, today's fun fact is a big one and it's all about celebrating Simone, our fearless leader who's moving up and starting a new exciting chapter. Fun Fact about she's not just a leader, she's the leader. The one who inspires, motivates, and somehow makes even the toughest challenges seem doable. Seriously, it's kind of like her superpower. Simone, I've only worked with you for my two years here at N2K, but you've been a role model to me in many ways. You've not only been a guiding force for our company, but you've brilliantly carved a path where women in the tech and cybersecurity fields can be seen, heard, and respected. You're an inspiration to us all, and although we'll miss you as part of our team, I'm so happy you'll still be part of our company to help.
[21:59]
Dave Buettner
Guide and advise us along our journey.
[22:01]
Liz Stokes
Thank you for all you have done.
[22:02]
Dave Buettner
And all you do.
[22:04]
Liz Stokes
Simone has been a pleasure. Thank you for the knowledge and encouragement that you've shared and I look forward to Seeing what comes next. Hey, this is Bridget. I have had the pleasure of knowing Simone since I started with Cyber Vista in 2018. My favorite memory with her was in 2019 when we had a planking competition in the office, and Simone absolutely schooled everyone. I just remember thinking, I hope one day that I can reach that level of badassery. Simone, I know you will still be around as board member and advisor, but I just want to say that I have been so lucky to have such a brilliant leader to look up to. I want to be you when I grow up. Thank you so much for your leadership, Simone. We will miss you very, very much. And I will continue to admire your shoe collection from afar. Hey, Simone, working with you over the past couple years has just been such an incredible, amazing experience, and I'm so excited to see all the things you go on to accomplish and achieve over the next several years. I'll be rooting for you the entire time. Simone. If we were in the office, I would say what I'm going to miss.
[23:17]
Dave Buettner
Most are seeing all the fabulous shoes.
[23:21]
Liz Stokes
You wore every single day. But since we're not, I'll say what really matters. I'll just miss you. Hope you have a great one. Bye, Simone. Thank you for all your support and incredible contributions to me and the sales team. You'll definitely be missed, but don't think you're off the hook as we still need to play golf one day. Best of luck to you, Katherine. Simone, I wish you the best in your future endeavors.
[23:48]
Dave Buettner
And if you have any anything, please.
[23:49]
Liz Stokes
Don'T hesitate to reach out.
[23:51]
Dave Buettner
Hi, Simone. It has been one of the privileges of my career to have worked in the same space as you, let alone alongside you. Thank you for helping us become what we are today.
[24:07]
Liz Stokes
Good luck, Simone, in your future endeavors, and may your golf ball always find the fair way. Simone, it's been wonderful getting to know you these last couple years and getting to work closely with you. Thank you so much for inviting me to all of your interviews so that I could nitpick our guests audio and get everyone, including you, sounding as best as they could. Thank you for your patience and very excited to see what you do next. Also very happy that you'll still be on our board. Don't be a stranger, Simone. I can't believe the ease with which we began working together. I love how you always cut immediately to the most important thing, and that's such an amazing and awesome quality that I also aspire to. I am going to absolutely miss your presence at N2K. Hey, Simone, it's Bri. Wow, I can't believe it's been seven years. Such a bittersweet moment. What an adventure it has been. Cannot thank you enough for all of your wisdom, your insight, keeping all of us grounded, and most certainly all of the laughs. I don't think we would have made it through without them. All of this is going to certainly stick with me for years to come and I'm so grateful. This definitely isn't goodbye and I will see you for lunch soon.
[25:31]
Dave Buettner
Hey, Simone, Peter here. I couldn't have asked for a better partner in building this business. I've learned so much from you and I'm so grateful for all the ways you've made us a stronger company. You'll always be part of the N2K family and I'm excited for all the ways we'll work together going forward. You're going to do amazing things. I can't wait to hear what's next for you, Simone.
[25:52]
Liz Stokes
Your vision, dedication and ability to bring out the best in everyone have made such a difference here from all of us. Thank you for everything. Congratulations on your new role and you're absolutely going to crush it. Here's to Simone, the fearless leader who's moving onward and upward. See you soon.
[26:20]
Dave Buettner
I want to personally thank Simone Petrella and Brandon Karp for their inspiration and guidance in the time we've had working together. I'm going to miss them both, but I have no doubt they'll be extraordinarily successful in their coming endeavors. Take care, friends. Do you know the status of your compliance controls right now? Like right now? We know that real time visibility is critical for security, but when it comes to our GRC programs, we rely on point in time checks. More than 8,000 companies like Atlassian and Quora have continuous visibility into their controls with Vanta. Here's the Vanta brings automation to evidence collection across 30 frameworks like SoC2 and ISO 27001. They also centralize key workflows like policies, access reviews and reporting, and helps you get security questionnaires done five times faster with AI. Now that's a new way to GRC. Get $1,000 off Vanta when you go to vanta.com cyber. That's vanta.com cyber for $1,000 off. This episode is brought to you by Indeed, when your computer breaks, you don't.
[28:00]
Liz Stokes
Wait for it to magically start working again.
[28:02]
Dave Buettner
You fix the problem. So why wait to hire the people.
[28:05]
Liz Stokes
Your company desperately needs? Use indeed sponsored jobs to hire top talent fast and even better you only pay for results.
[28:13]
Dave Buettner
There's no need to wait. Speed up your hiring with a $75.
[28:17]
Liz Stokes
Sponsored job credit@ Indeed.com podcast. Terms and conditions apply.
[28:29]
Dave Buettner
And finally, when Harvard archivist Jack Cushman logged on to data.gov, the morning after Donald Trump's inauguration, something felt off. The numbers didn't quite add up. The day before, the government's largest public data repository listed 307,854 data sets. Now, more than 2,000 were gone. @ first he thought it might be a glitch. But as he dug deeper, snapshots from the Wayback Machine confirmed it. Datasets were disappearing, many tied to climate research, environmental monitoring and diversity initiatives. Kushman wasn't alone in his concern. Archivists, researchers and data hoarders across the Internet scrambled to preserve what they could, knowing all too well that government data is fragile in the digital age. Unlike the printed documents of the past, which found homes in libraries across the country, today's data lives on centralized servers, vulnerable to quiet deletions. Some missing data sets turned up on agency websites. Others were truly gone. The question remained Was this routine cleanup or a purge? No regulations mandate digital data preservation, leaving crucial information at risk. While some data sets remain accessible via agency websites or backups, determining the full impact will take time. The quiet deletion of government data is more than an administrative decision. It's a threat to transparency, accountability and historical record. When critical data sets disappear, so does public access to scientific research, policy, history, and information that shapes our understanding of the world. Without strong preservation policies, we risk losing more than just numbers on a website. We risk erasing knowledge itself. If we allow data to be quietly rewritten, reallocated, or erased without scrutiny, we open the door to a future where truth itself becomes malleable, dictated not by facts but by those in power. Safeguarding government records is not just about archiving. It's about defending the integrity of information in a democracy that depends on it. And that's the CyberWire. We'd love to know what you think of this podcast. Be sure to check out this weekend's Research Saturday and my conversation with Jaggs from Sentinel One. We're discussing their work Operation Digital I Chinese Apt compromises Critical digital infrastructure via Visual Studio Code Tunnels. That's Research Saturday. Check it out. Your feedback ensures we deliver the insights that keep you a step ahead in the rapidly changing world of cybersecurity. If you like our show, please share a rating and review in your podcast app. Please also fill out the survey in the show notes or send an email to cyberwire2k.com this episode was produced by Liz Stokes. Our mixer is Trey Hester, with original music and sound design by Elliot Peltzman. Our executive producer is Jennifer Ibin. Our executive editor is Brandon Carr Simone Petrella is our president, Peter Kilpe is our publisher, and I'm Dave Bittner. Thanks for listening. We'll see you back here next week. Foreign cyber threats are evolving every second, and staying ahead is more than just a challenge, it's a necessity. That's why we're thrilled to partner with Threat Locker, a cybersecurity solution trusted by businesses worldwide. ThreatLocker is a full suite of solutions designed to give you total control, stopping unauthorized applications, securing sensitive data, and ensuring your organization runs smoothly and securely. Visit threatlocker.com today to see how a default deny approach can keep your company safe and compliant.