← Risky Bulletin
Loading summary
Transcript1 lines
- [00:04]
A
Denmark recruits hackers for offensive cyber operations CISA tells agencies to remove old edge devices Coinbase has another insider breach and Microsoft appoints a new security chief. This is the Risky bulletin prepared by Catalyn Kim Panu and read by me, Claire aird. Today is the 6th of February and this podcast episode is brought to you by Dropzone AI. In today's top story, Denmark's military intelligence service is recruiting offensive cyber operators. The recruits will complete a five month training course at the agency's Hacker Academy. The DDIS says it's only interested in aptitude and there are no special requirements for joining. In other news, CISA has told federal agencies to decommission unsupported edge devices within the next 12 months. Agencies will be responsible for building a device inventory and monitoring end of life dates. CISA will provide an initial list of unsupported devices. AT&T and Verizon are blocking the release of reports about their Salt Typhoon hacks. The company's invoked attorney client privilege to prevent Google Mandiant from sharing the reports with Congress. Senator Maria Cantwell has urged the Senate Committee on Commerce, Science and Transportation to force the companies to share the reports. The office of Committee Chairman Ted Cruz says it's new, not interested in further action. Russian hackers have launched cyber attacks against the Milano Winter Olympics. Italian officials said they prevented attacks at targeted websites for local hotels, the Foreign Ministry and the Olympics itself. Russia has been excluded from the Olympics due to repeated doping infractions and its invasion of Ukraine. Russian hackers previously targeted olympic events in 2024 and 2018. The US military says it used cyber to disrupt Iran's air defence systems. According to the record, the disruption took place last year during US strikes on Iran's nuclear program. The cyber attack allegedly prevented Iran from launching its Surface to Air missiles during the strikes. Cyber Command called it one of its most sophisticated actions against the country. A Coinbase contractor has sold user data to hackers. The company says the breach occurred in December and affected about 30 users. Contractor has been fired. The incident was discovered after the Scattered Lapsus Hunters group posted a screenshot on Telegram. This is Coinbase's second insider breach in the last year. Northern Ireland police officers will receive compensation over a 2023 breach that exposed their data. More than 9,400 staff had their data exposed online by a website misconfiguration. They'll receive £7,500 each. The day after compensation was announced, the names of dozens of officers were inadvertently published on a local court website Newsletter Platform Substack has exposed customer data in a security breach. In October, an intruder collected emails, phone numbers and metadata for some of the platform's users. The company discovered the hack this week and has notified affected individuals. One of Europe's largest universities has taken itself offline following a cyber attack. Rome's La Sapienza University said the shutdown was a precautionary measure. It expects to be back online next week. More than 120,000 students are enrolled at the university. A Romanian businesswoman has lost $2.5 million to scammers posing as the Crown Prince of Dubai. The victim believed she'd been recruited for a humanitarian investment. Authorities from the UK and Romania have traced the fake Dubai prince to a Nigerian scammer. A Taiwanese national has been sentenced to 30 years in a US prison for running the Incognito Dark Web Marketplace. The site was used to trade more than $105 million in illegal drugs and illicit services. Rui Siang Lin was arrested in May 2024 at a New York airport. He was detained two months after he shut down the site and absconded with users money A newly observed cybercrime group is targeting cloud environments in a hacking campaign. Team PCP began compromising cloud environments in November. The attacks targeted misconfigured cloud technologies like Docker Kubernetes, Ray dashboards and Redis databases. Some of the stolen data is now being ransomed on Telegram. A Russian cybercrime group has made more than $10 million through social media scams recorded. Future reported that the Rublevka team lures victims to fake crypt promotion sites through social media. It then uses a custom crypto drainer to empty the victims accounts. More than 40% of Android devices are running outdated versions of the operating system that don't receive security Updates. According to Google's data released in December, only 7.5% of devices run the latest version of Android. Android 16 was released in June last year. Microsoft has appointed Hyatt Galop as executive vice president for security. Galop will replace Charlie Bell, who's moving to a new role focused on engineering quality. Galop spent the last two years at Google Cloud as president for customer experience. Prior to that, she held multiple roles at Microsoft over 15 years. And finally, Pinterest has fired two engineers who coded a script to track who was getting laid off. The script monitored Slack usernames to identify those being deactiv. Pinterest claimed the script accessed confidential data. Last week, the company announced that 15% of its staff would be laid off as it refocuses on AI and that is all for this podcast edition. Today's show was brought to you by our sponsor, DropZone AI find them at DropZone AI thanks to your company.