Episodes
Friday Jun 24, 2022
Voices from the dead, CISA gets serious, and much more!
Friday Jun 24, 2022
Friday Jun 24, 2022
In this episode, Javvad and Erich chat about Alexa bringing voices from the dead, CISA getting serious about Log4Shell, AI being alive and much, much more.
Stories from the show:
CISA: Log4Shell exploits still being used to hack VMware servers
https://www.bleepingcomputer.com/news/security/cisa-log4shell-exploits-still-being-used-to-hack-vmware-servers/
Conti ransomware hacking spree breaches over 40 orgs in a month
https://www.bleepingcomputer.com/news/security/conti-ransomware-hacking-spree-breaches-over-40-orgs-in-a-month/
Google engineer put on leave after saying AI chatbot has become sentient
https://www.theguardian.com/technology/2022/jun/12/google-engineer-ai-bot-sentient-blake-lemoine
Alexa could soon speak in a dead relative's voice
https://www.npr.org/2022/06/23/1107079194/amazon-alexa-dead-relatives-voice
Friday Jun 17, 2022
Burnout, False Hope, and Bad Practices Spell Trouble
Friday Jun 17, 2022
Friday Jun 17, 2022
Today James McQuiggan (who is in for Javvad) discuss burnout in security folks, reliance on endpoint protection, and how an Elasticsearch server with no password or encryption lost 1 million records.
All this and more on today's show
Stories from the show:
New research reveals overreliance on endpoint protection could be putting organizations at higher risk of exposure to ransomware
https://www.securityinfowatch.com/cybersecurity/information-security/breach-detection/press-release/21271323/gigamon-new-research-reveals-overreliance-on-endpoint-protection-could-be-putting-organizations-at-higher-risk-of-exposure-to-ransomware
Elasticsearch server with no password or encryption leaks a million records
https://www.theregister.com/2022/06/16/storehub_data_leak/
The unrelenting threat of ransomware is pushing cybersecurity workers to quit
https://www.zdnet.com/article/the-unrelenting-threat-of-ransomware-is-driving-cybersecurity-workers-to-quit/
45% of cybersecurity pros are considering quitting the industry due to stress
https://www.helpnetsecurity.com/2022/06/13/cybersecurity-professionals-stress-levels/
Friday Jun 10, 2022
Friday Jun 10, 2022
In this episode, Erich and Javvad discuss ransomware demanding payment through ROBLOX, a cybercriminal that stole over 1 million Facebook accounts in 4 months, a data breach exposes 2 million people's info, and they offer no help.
Stories from the show:
Bizarre ransomware sells decryptor on Roblox Game Pass store
https://www.bleepingcomputer.com/news/security/bizarre-ransomware-sells-decryptor-on-roblox-game-pass-store/
A cybercriminal stole 1 million Facebook account credentials over 4 months
https://www.techrepublic.com/article/a-cybercriminal-stole-1-million-facebook-account-credentials-over-4-months/
Emotet malware detections surge 27-fold in first quarter
https://siliconangle.com/2022/06/09/emotet-malware-detections-surge-first-quarter/
Data breach at health care organization may affect 2 million
https://abcnews.go.com/Health/wireStory/data-breach-health-care-organization-affect-million-85262287
Friday May 27, 2022
The Jerichshow Episode 88 - Twitter Fined, CFOs Mushroomed, and More!
Friday May 27, 2022
Friday May 27, 2022
In this episode, Erich and Javvad talk about the arrest of a phishing kingpin, in Nigeria surprisingly, the $150m fine Twitter just got, and a study showing that CFO's aren’t being included in ransomware talks.
All this and more in this episode.
Stories from the show:
FTC fines Twitter $150M for using 2FA info for targeted advertising:
https://www.bleepingcomputer.com/news/technology/ftc-fines-twitter-150m-for-using-2fa-info-for-targeted-advertising/
Multi-Continental Operation Leads to Arrest of Cybercrime Gang Leader:
https://www.infosecurity-magazine.com/news/operation-arrest-cybercrime-gange/
Most CFOs being left out of ransomware conversations:
https://www.computerweekly.com/news/252520714/Most-CFOs-being-left-out-of-ransomware-conversations
New virus forces people to donate to the poor if they want their data recovered:
https://metro.co.uk/2022/05/24/new-ransomware-demands-victims-donate-to-the-poor-to-unlock-their-data-16698304/
NCSC Report Reveals Phishing Lures Increasingly Disguised as Vaccine Appointments:
https://www.infosecurity-magazine.com/news/phishing-lures-disguised-as/
Friday May 27, 2022
Friday May 27, 2022
Friday Apr 29, 2022
The Jerich Show Episode 85 - Coke Hacked, Recruitment SNAFU and Much More!
Friday Apr 29, 2022
Friday Apr 29, 2022
In this episode Erich and Javvad talk about the Coke hack that may not have happened, the UK Army recruiting portal debacle, and Gloucester's choice not to have cyber insurance. All of this and more in this episode of the Jerich Show
Stories from the show:
Coca-Cola investigates hackers' claims of breach and data theft
https://www.bleepingcomputer.com/news/security/coca-cola-investigates-hackers-claims-of-breach-and-data-theft/
Gloucester council reveals more about why it was not insured against cyber attacks
https://www.gloucestershirelive.co.uk/news/gloucester-news/gloucester-council-reveals-more-not-6935231
Data Breach Disrupts UK Army Recruitment
https://www.infosecurity-magazine.com/news/data-breach-disrupts-uk-army/
North Korean hackers targeting journalists with novel malware
Friday Apr 15, 2022
The Jerich Show Episode 84 - Crypto Wallets Targeted, Arrests Made and more!
Friday Apr 15, 2022
Friday Apr 15, 2022
In this episode, Erich and Javvad cover stories about data breach emails being used to target crypto wallets, some arrests and charges filed against cyber criminals, WhatsApp voice message phishing emails, and much more!
Stories From the Show:
Fake Trezor data breach emails used to steal cryptocurrency wallets
https://www.bleepingcomputer.com/news/security/fake-trezor-data-breach-emails-used-to-steal-cryptocurrency-wallets/
UK charges two teenagers linked to the Lapsus$ hacking group
https://www.bleepingcomputer.com/news/security/uk-charges-two-teenagers-linked-to-the-lapsus-hacking-group/
GitHub can now auto-block commits containing API keys, auth tokens
https://www.bleepingcomputer.com/news/security/github-can-now-auto-block-commits-containing-api-keys-auth-tokens/
WhatsApp voice message phishing emails push info-stealing malware
https://www.bleepingcomputer.com/news/security/whatsapp-voice-message-phishing-emails-push-info-stealing-malware/
Hacking forum RaidForums shut down and founder arrested in global police operation
https://www.zdnet.com/article/hacking-forum-raidforums-shut-down-and-founder-arrested-in-global-police-operation/
Feds Uncover a ‘Swiss Army Knife’ for Hacking Industrial Control Systems
https://www.wired.com/story/pipedream-ics-malware/
Friday Apr 01, 2022
The Jerich Show Episode 83 - On the Road Again
Friday Apr 01, 2022
Friday Apr 01, 2022
In this episode, Erich joins Javvad from the airport in Nashville, Tennessee to discuss some of the top cybersecurity stories of the week.
Friday Mar 25, 2022
Friday Mar 25, 2022
In this Episode, Erich and Javvad cover the weekly hot stories related to the Lapsus$ group, ISACA says we need more staff, London voter info leaked and more.
Stories from the show:
ISACA: Two-Thirds of Cybersecurity Teams Are Understaffed
https://www.infosecurity-magazine.com/news/isaca-cybersecurity-understaffed/
Anonymous claims it has hacked the Central Bank of Russia
https://www.computerweekly.com/news/252515064/Anonymous-claims-it-has-hacked-the-Central-Bank-of-Russia
Over 40,000 London Voters Have Data Leaked to Strangers
https://www.infosecurity-magazine.com/news/over-40000-london-voters-data/
Microsoft confirms they were hacked by Lapsus$ extortion group
https://www.bleepingcomputer.com/news/microsoft/microsoft-confirms-they-were-hacked-by-lapsus-extortion-group/
Lapsus$: Oxford teen accused of being multi-millionaire cyber-criminal
https://www.bbc.com/news/technology-60864283?fbclid=IwAR3NCh_dI68zqoFiqgC1oGxCLGHqBtM14pCmwa6p4J7YDxKBOVP6ckqXnnI