Now Playing
Cisco SD-WAN Zero-Day Exploited, FBI Breach & Iran Hits Water Utilities
Audio is available on Spreaker — see link below.
A critical Cisco SD-WAN vulnerability is being actively exploited with no patch in sight, while Chinese actors breach FBI surveillance data and Iran-linked hackers target U.S. water utilities. Today's briefing covers six major stories spanning zero-days, nation-state attacks, supply chain compromises, and the infostealer-to-ransomware pipeline.
Audio is available on Spreaker — see link below.
A critical vulnerability in Cisco's Catalyst SD-WAN Manager is being actively exploited in the wild, and there is no patch available. That's the lead today, and it deserves to stay there for a moment before we move on.
Shifting to the federal level. The FBI has confirmed a major cyber incident from April.
On the infrastructure front, the picture this week is consistent with a pattern that's been building all year. Iran-linked actors are now actively targeting U.S. water utilities.
On the domestic data breach front, DOGE-led access to the Social Security Administration's database is still under investigation. The full scope of what was accessed remains unclear.
Open source supply chain compromises are running at a weekly cadence now. Trivy, Bitwarden, and Checkmarx have all been hit this year.
The malware ecosystem is converging around a clear pattern. Infostealers are now the primary entry point for ransomware operations.
Chapter summary auto-generated from the verified script. Listen to the full episode for the complete content.