In this episode of 'Cybersecurity Today: Our Month in Review,' host Jim welcomes a panel including Tammy Harper from Flair, Laura Payne from White Tuque, and David Shipley, CEO of Beauceron Securities. The discussion kicks off with an overview of their plans for Cybersecurity Month, including reviving the MapleSEC show and the CIO of the Year awards. David shares his experiences at SECTOR, Canada's largest cybersecurity conference, discussing the importance of security awareness training and the risks of irresponsible tech journalism on public perception. The panel also delves into the resurgence of the Clop ransomware group, their shift to data extortion, and their exploitation of vulnerabilities in Oracle EBS applications. Laura highlights a concerning case of insider threats at RBC, emphasizing the importance of process-driven controls. The episode also touches on the human side of cybersecurity, particularly the impact of romance scams and the growing violence in cybercrime. The panelists underscore the need for improved security awareness and the role of AI in identifying scams. Tammy, Laura, and David conclude by discussing the role of insider threats and the ethical boundaries in cybercrime, sharing insights from recent real-world cases.

00:00 Introduction and Panelist Introductions
00:43 Cybersecurity Month Initiatives
02:46 Security Awareness and Phishing Training
04:03 Impact of Irresponsible Tech Journalism
08:27 AI and Cybersecurity: Hype vs. Reality
10:43 Conference Experiences and Networking
18:33 Clop Ransomware and Data Extortion
23:45 Tammy's Insights on Clop's Tactics
24:58 Scattered Lasus and Cyber Warfare
26:32 Media Savvy Cybercriminals
31:36 Human Impact of Cyber Scams
37:17 Insider Threats and Security Awareness
43:21 Physical Security and Cyber Threats
48:33 Cybercrime Targeting Children
50:58 Conclusion and Upcoming Topics

Cybersecurity Today: Red Hat Breach, CLOP Targets Oracle, and CISA Cuts Critical Support

In this episode of Cybersecurity Today, host Jim Love covers a recent breach of Red Hat's consulting GitLab server, highlighting concerns over exposed network maps and tokens. The CLOP extortion gang targets Oracle E-Business Suite clients, demanding ransom for sensitive data. Surveys show Canadian businesses are overconfident in their cyber defenses despite frequent attacks. Finally, CISA has ended a crucial cybersecurity support agreement, impacting state and local governments amidst a federal shutdown. Tune in for detailed analysis and urgent action items.

00:00 Red Hat GitLab Server Breach
02:21 CLOP Gang Targets Oracle E-Business Suite
04:29 Canadian Firms' Overconfidence in Cybersecurity
06:31 CISA Ends Critical Support Amid Shutdown
08:38 Conclusion and Upcoming Month in Review

Critical Vulnerabilities and AI Voice Cloning Risks in Cybersecurity

In this episode of Cybersecurity Today, host Jim Love discusses key cybersecurity threats, including critical vulnerabilities in Sudo and Cisco firewalls, and a remote command flaw in Western Digital MyCloud devices. The show highlights efforts by national security agencies in the US, Canada, France, Netherlands, and the UK to address these risks, urging immediate patching and system updates. Additionally, the episode covers the emerging threat of real-time AI voice cloning, stressing the need for stricter security measures to prevent social engineering attacks. Listeners are encouraged to implement robust verification processes to secure their organizations and personal communications.

00:00 Critical Sudo Flaw Warning
00:21 Cisco Firewalls Vulnerabilities
02:34 Western Digital MyCloud Devices at Risk
03:48 AI Voice Cloning Threat
05:16 Conclusion and Contact Information