Cyber Coast to Coast Podcast

Scott and Craig discuss Lumos System Can Find Hidden Cameras and IoT Devices in Your Airbnb or Hotel Room, Attackers can control touchscreens remotely using GhostTouch, and Oil and gas companies take cyber resilience pledge
https://thehackernews.com/2022/05/lumos-system-can-find-hidden-cameras.html
https://thehackernews.com/2022/05/attackers-can-use-electromagnetic.html
https://www.itsecurityguru.org/2022/05/27/oil-and-gas-companies-take-cyber-resilience-pledge/

This week Scott and Craig open the show (apologies for sound issues at the top of the episode) by discuss and new book release of Hacker's Movie Guide: The Complete List of Hacker and Cybersecurity Movies (2022-23 Edition). They also discuss 3 stories involving researchers finding three vulnerabilities in Qualcomm and MediaTek mobile chips, 3 flaws present in Lenovo laptops that can give attackers a way to drop highly persistent malware and the FBI has stated that the Black Cat ransomware gang, also known as ALPHV, has breached the networks of at least 60 organizations worldwide. This episode is sponsored by www.DarkCryptonite.com
https://www.amazon.com/Hackers-Movie-Guide-Complete-Cybersecurity/dp/173301571X
https://thehackernews.com/2022/04/critical-chipset-bug-opens-millions-of.html
https://www.darkreading.com/threat-intelligence/millions-of-lenovo-laptops-contain-firmware-level-vulnerabilities
https://www.bleepingcomputer.com/news/security/fbi-blackcat-ransomware-breached-at-least-60-entities-worldwide/
 

Scott and Craig discuss joint cybersecurity advisory issued by CISA, NSA, FBI, and the Department of Energy, Wind turbine company Nordex is still trying to recover from a cyberattack, evidence of LockBit ransomware found in the network of a regional U.S. government agency. This episode is sponsored by www.DarkCryptonite.com
https://www.bleepingcomputer.com/news/security/us-warns-of-govt-hackers-targeting-industrial-control-systems/
https://www.securityweek.com/wind-turbine-giant-nordex-scrambling-recover-cyberattack
https://www.bleepingcomputer.com/news/security/lockbit-ransomware-gang-lurked-in-a-us-gov-network-for-months/
 

Scott and Craig discuss criminal hackers harvesting sensitive customer data from Apple, Facebook, Discord and possibly Snap using fake subpoena requests, Wyze knew hackers could remotely access cameras for three years and said nothing, Verizon blames ‘bad actors’ for the spam text you got from your own number and the cyber tip of the week on security updates of firmware, software, operating systems, etc. Scott and Craig also introduce their new sponsor, www.DarkCryptonite.com
https://krebsonsecurity.com/2022/03/hackers-gaining-power-of-subpoena-via-fake-emergency-data-requests/
https://www.theverge.com/23003418/wyze-cam-v1-vulnerability-no-patch-bitdefender-responsible-disclosure
https://www.theverge.com/2022/3/29/23001528/verizon-spam-texts-own-number-confirms-statement

This week, Scott and Craig discuss Hacking group Lapsus$ claims to have leaked the source code for Bing, Cortana, and other Microsoft products, Android password-stealing malware infects 100,000 Google Play users and Anonymous hacking Russian printers to print "the people of Russia must find horror in Putin's actions." over 100,000 times. Scott and Craig also discuss the pros and cons or Apple's App Store compared to Google Play App store as the cyber tip of the week. This episode is sponsored by www.Cyberlitica.com
https://www.bleepingcomputer.com/news/microsoft/lapsus-hackers-leak-37gb-of-microsofts-alleged-source-code/
https://www.bleepingcomputer.com/news/security/android-password-stealing-malware-infects-100-000-google-play-users/
https://www.ladbible.com/news/anonymous-says-its-hacked-printers-all-across-russia-20220322

Scott and Craig discuss Russian hackers exploiting MFA vulnerability to attack different companies, Germany's Federal Office for Information Security, BSI, has warned companies against using Kaspersky antivirus products, Netflix is starting to crack down on password sharing and our CYBER TIP of the WEEK on password reuse. This episode is sponsored by www.Cyberlitica.com.

Scott and Craig discuss Lapsus$ hacking group attack on Samsung, Anonymous claims on hacking Russian TV and how cybersecurity companies Cloudflare, Clidstrike and Ping Identity offering free services to critical U.S. infrastructure. They also discuss the attempted social engineering attack through email spoofs of their own company as the cyber tip of the week. This episode is sponsored by www.Cyberlitica.com
https://techcrunch.com/2022/03/07/samsung-breach-source-code/?guccounter=1
https://fortune.com/2022/03/07/anonymous-claims-hack-of-russian-tvs-showing-putins-ukraine-invasion/
https://www.washingtonpost.com/technology/2022/03/07/cyber-security-russia-ukraine/?utm_source=reddit.com
 

Scott and Craig discuss Hacker group Anonymous alleged breach of Vladimir Putin's yacht, Ukrainian WordPress websites seeing a 10x increase in cyber attacks, researchers demonstrate new side-channel attack on homomorphic encryption and cyber tip of the week: MFA. This episode is sponsored by www.Cyberlitica.com.
https://www.insider.com/hackers-change-call-sign-of-putin-linked-superyacht-to-fckptn-2022-3
https://www.bleepingcomputer.com/news/security/ukrainian-sites-saw-a-10x-increase-in-attacks-when-invasion-started/
https://thehackernews.com/2022/03/researchers-demonstrate-new-side.html
Sophisticated bank scam ID spoof can even fool cybersecurity experts (Scott's appearance on ABC27 News)
https://youtu.be/rPGOvvVZyi8
 

Scott and Craig discuss 3 stories related  to Russian attacks against Ukraine including a mass text message cyber operation against Ukranian soldiers and citizens, Russian cyberattack against Ukrainian banks and government websites and Biden's cyberwarfare tactical options against Russia. This episode is sponsored by www.Cyberlitica.com
https://www.msn.com/en-us/news/world/disturbing-mass-text-operation-terrorizes-ukraine-as-russian-troops-move-in/ar-AAUdejJ
https://www.cnbc.com/2022/02/23/cyberattack-hits-ukrainian-banks-and-government-websites.html
https://www.nbcnews.com/politics/national-security/biden-presented-options-massive-cyberattacks-russia-rcna17558
 

Scott and Craig discuss Honorlock's new attempt to lure in students cheating remotely, a married couple that allegedly laundered $3.6 in Bitcoin before producing an awful rap video and a new software tool that can actually Unredact pixelated text making it readable. They also discuss Paypal, Twitter and Ebay related scams and offer some tips to stay safe. This episode is sponsored by Cyber Coast to Coast.
https://www.theverge.com/2022/2/16/22937125/honorlock-remote-proctor-cheating-honeypot-fake-test-answers
https://www.nytimes.com/2022/02/08/us/politics/ilya-lichtenstein-heather-morgan-bitcoin-laundering.html
https://www.youtube.com/watch?v=6Y1ujFhhADU
https://thehackernews.com/2022/02/this-new-tool-can-retrieve-pixelated.html