This week we talk about [00:36] We talk about a new Remote Access Trojan (RAT) that uses Telegram as it's command and control server, then [07:56] we talk about how DigiCert made a mistake and needed to revoke certificates and the chaos that causes, but why it's needed, then [16:21] we talk about how criminals once again are utilizing CloudFlare's free tunnel service to once again get around security controls and compromise systems and finally [22:44] how the rise of fake profiles on LinkedIN are being used to gain information that could be used again you.

[00:36] Telegram-Controlled tRat Attacking Linux Systems
[07:56] DigiCert Revoke 83,000 customer certificates
[16:21] Criminals Abusing Cloudflare Tunnels (again)
[22:44] LinkedIn Profiles Target Workers for Information Leakage

This week we talk about [00:36] how Citrix is warning its customers to be aware of this integrated third party tool, then [07:55] we finally learn the identity of the main member of LockBit, Then we talk about [14:04] Dell had one of their sites scraped and all it cost them was 49 million customers records and we round up this weeks discussion on [23:09] a wordpress plugin that is being actively exploited by hackers and how even if you don't use this plugin, you can protect yourself.

This week we talk about [00:36] how a major player in the website protection game, get's hacked, [09:13] A Russian hacker group is using vulnerabilites from December to gain access to your account, [16:20] Mastadon has a critical vulnerability, can the admins patch their servers in time and finally [22:50] A popular remote access tool had their systems breach, and you should reset your account anyway.

[00:36] Cloudflare Hacked
[09:13] Russian Hackers using NTLM Relay Attacks
[16:20] Critical vulnerability in Mastodon
[22:50] AnyDesk breached, reset passwords

This week we talk about [00:36] an Outlook vulnebility that leaks a hashed password to places it shouldn't, then [06:32] The US government doesn't need warrants for your information they just pay data brokers, [13:58] The NoName Ransomware group take target at industries around the work, and finally [20:31] the Trello data breach that wasn't really a data breach and why that doesn't make us feel any better.

On my return for 2024, we talk about [00:36] how a Russia backed group hacked Microsoft's top leaders email account, [09:25] VMWare sounds the alarm about their latest critical vCenter vulnerability that's currently being used in attacks, [16:00] How a popular IT remote access tool is being exploited back hackers and what not to do, and finally [23:11] a long dormant group wakes back up and using email to create havoc.

This week we talk about [00:36] ownCloud let's it users know it's found 3 critical vulnerabilites in some of it's software, [06:57] A school app based in India was leaking personal student data due to misconfiguration, [12:15] Microsoft takes a sucessful attack again it's Windows Hello service to break into computers and [18:49] BlackCat is back at it again, by claiming to hack a fortune 500 company.

This week we talk about [00:36] We talk about how some security researchers were able to extract a RSA key from signing errors, [07:27] How a now defunt shadowy hack-for-hire group was behind a bunch of attacks, [15:11] Vulnerabilities in some AL and ML tools should they give you something to think about, [22:59] and an old tactic being used to extract money from those who care and reminder how it's the season for social engineering.

This week we talk about [00:36] The Lace Tempest group seen exploiting a vulnerability in a popular IT Support Software, [06:46] Then we talk about how a company suffered a compromise, paid the attacker and the data was still leaked, [13:38] We talk about the new vulnerability that CISA is warning about, and finally [17:34] Sumo Logic urges it's users to change their credentials.