Episode Details

Poland says weak security left parts of its power grid exposed. A Russian-linked hacker alliance threatens Denmark with a promised cyber offensive. Fancy Bear moves fast on a new Microsoft Office flaw, hitting Ukrainian and EU targets. Researchers find a sprawling supply chain attack buried in the ClawdBot AI ecosystem. A new report looks at how threats are shaping the work of journalists and security researchers. A stealthy Windows malware campaign blends Pulsar RAT with Stealerv37. A former Google engineer is convicted of stealing AI trade secrets for China. The latest cybersecurity funding and deal news. On our Afternoon Cyber Tea segment, Microsoft’s Ann Johnson chats with Dr. Lorrie Cranor from Carnegie Mellon about security design. The AI dinosaur that knew too much. 

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

Afternoon Cyber Tea

Dr. Lorrie Cranor⁠, Director of the CyLab Security and Privacy Institute at Carnegie Mellon University joins Ann Johnson, Corporate Vice President, Microsoft, on this month's segment of Afternoon Cyber Tea to discuss the critical gap between security design and real-world usability. They explore why security tools often fail users, the ongoing challenges with passwords and password less authentication, and how privacy expectations have evolved in an era of constant data collection. You can listen to Ann and Lorrie's full conversation here, and catch new episodes Afternoon Cyber Tea every other Tuesday on your favorite podcast app.

Selected Reading

Russian hackers breached Polish power grid thanks to bad security, report says (TechCrunch)

Newly Established Russian Hacker Alliance Threatens Denmark (Truesec)

Fancy Bear Exploits Microsoft Office Flaw in Ukraine, EU Cyber-Attacks (Infosecurity Magazine)

Notepad++ Hijacked by State-Sponsored Hackers (Notepad++)

ClawdBot Skills Just Ganked Your Crypto (OpenSource Malware Blog)

Under Pressure: Exploring the effect of legal and criminal threats on security researchers and journalists (DataBreaches.Net)

Windows Malware Uses Pulsar RAT for Live Chats While Stealing Data (Hackread)

U.S. convicts ex-Google engineer for sending AI tech data to China (Bleeping Computer)

Upwind secures $250 million in a Series B round. (N2K Pro Business Briefing) 

Listen Now