Cybersecurity Today: Credit Card Skimming, Valley Rat Malware, WhatsApp Exploit & AI Defenses

In this episode of Cybersecurity Today, hosted by Jim Love, we explore several critical cybersecurity threats and advancements. We cover a massive credit card skimming campaign active since early 2022, a severe bug in HPE OneView, the stealthy Valley Rat malware, and a potential zero-click exploit in WhatsApp. Additionally, we delve into AI-driven advancements in cybersecurity defense being developed at US National Laboratories. Stay informed and vigilant with the latest insights in cybersecurity.

00:00 Introduction and Sponsor Message
00:48 Credit Card Skimming Campaign Uncovered
02:49 Critical Vulnerability in HPE OneView
04:16 Valley Rat Malware Threat
06:22 Suspected Zero-Day Vulnerability in WhatsApp
08:29 AI-Powered Cyber Defenses in US National Labs
10:08 Conclusion and Sponsor Message

In this episode of Cybersecurity Today, host David Shipley covers the FBI's warning about North Korean state-sponsored QR code phishing campaigns targeting U.S. organizations. Additionally, he discusses Europol's arrest of 34 individuals in Spain tied to the infamous Black Acts crime syndicate and the uncertainty surrounding CISA's pre-ransomware notification initiative after the departure of its lead developer. Stay informed with the latest in cybersecurity news and learn how to protect yourself and your organization from emerging threats.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:20 FBI Warns of QR Code Phishing
04:44 Europol's Major Crackdown on Black Acts
07:11 Uncertainty Over Ransomware Alerts Program
09:41 US Withdraws from Cybersecurity Organizations
10:25 Conclusion and Final Thoughts

In this episode of Cybersecurity Today, brought to you by Meter, we review key events and stories from the past few weeks. Join host Jim along with experts Tammy Harper from Flair, Laura Payne from White Tuque, and David Shipley from Beauceron Security as they discuss major cybersecurity events that unfolded over the holidays, including the MongoDB vulnerability 'Mongo Bleed', the compromises at Rainbow Six Siege, and the ethical implications of hacktivism. The panel also explores the complexities of AI in cybersecurity, the vulnerability of critical infrastructure, and the dichotomy between ethical hacking and cybercrime in the industry. As always, we emphasize the intersection of cybersecurity with people, processes, and our daily lives.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:20 Panel Introduction and Holiday Recap
02:26 MongoDB Vulnerability: Mongo Bleed
05:15 AI and Responsible Disclosure
16:20 Gaming Security: Rainbow Six Siege Hack
20:13 Video Games and Malware Risks
24:54 Fake Video Propaganda and Infrastructure Attacks
25:48 The Dilemma of Cybersecurity Censorship
26:34 Deepfakes and Cognitive Warfare
27:37 Cyber Operations and Infrastructure Vulnerability
34:42 The Role of Private Companies in Cyber Conflicts
36:19 Internal Threats in Cybersecurity
43:20 Hacktivism: Ethics and Boundaries
49:03 Conclusion and Final Thoughts