This episode covers significant cybersecurity topics, including Apache Tomcat’s CVE-2024-56337 vulnerability, allowing remote code execution, and North Korea's involvement in the $305M DMM exchange hack. We discuss the G-Door vulnerability bypassing Microsoft 365 security and Taiwan’s assistance to Guatemala on cybersecurity. Other stories include SentinelOne’s growth in cybersecurity and the National Science Foundation's investment in workforce training. Stay informed on the latest cybersecurity risks and solutions.

Reference:https://www.linkedin.com/newsletters/hacker-hacks-7126276864670670848/

Quantum computing poses a future threat to Bitcoin’s security by potentially breaking cryptographic encryption, allowing criminals to steal coins. Meanwhile, 2024 has seen a rise in crypto hacks, with $2.2 billion stolen, mostly from centralized exchanges. Saudi Arabia’s state-of-the-art equine hospital faces cybersecurity risks, while UK lawmakers push for reforms in the outdated Computer Misuse Act. The Cryptopia hack victims are finally receiving restitution after years of legal battles.

Reference:https://www.linkedin.com/newsletters/hacker-hacks-7126276864670670848/

This episode of Hacker Hacks examines key cybersecurity stories: US-China cyber espionage accusations, Fortinet and Next.js vulnerabilities, Krispy Kreme’s ransomware attack, WazirX's stalled investigation, and a $29M hack in Michigan. We also highlight CISO leadership skills and gamified learning initiatives by CrowdStrike. From public sector risks to empowering future defenders, this episode explores the challenges and opportunities in today’s cyber landscape.

Reference: https://www.linkedin.com/newsletters/hacker-hacks-7126276864670670848/

In 2023, over 23,000 cybersecurity incidents were reported by Indian banks, including phishing, hacking, and malware attacks. The LastPass breach continues to haunt users, with $12 million in cryptocurrency stolen in December 2024. Deutsche Bank is developing a blockchain solution using ZKsync to address compliance challenges. TP-Link routers are under investigation by the U.S. government for potential cyberattack risks, and BeyondTrust patches a critical vulnerability in its products.

Reference: https://www.linkedin.com/newsletters/hacker-hacks-7126276864670670848/

In this episode, we cover the aftermath of major cybersecurity incidents, including the Gigamax crypto scam causing RM7.2 million in losses, and a data breach from Byte Federal exposing 58,000 users. Telecom Namibia’s ransomware attack leaked 500,000 personal records, while LastPass users continue to suffer from crypto theft linked to the 2022 breach. We also look at new AI-driven cybersecurity tools from Trend Micro and how hackers are exploiting vulnerabilities like DarkGate malware

Reference:https://www.linkedin.com/newsletters/hacker-hacks-7126276864670670848/

In this episode, we cover key cybersecurity stories: the U.S. Commerce Department moves to ban China Telecom’s operations due to national security risks, while CISA faces uncertainty under a potential Trump re-election. Whistleblowers are earning big payouts for reporting cybersecurity violations. Meanwhile, a ransomware group exploits vulnerabilities in Cleo’s file transfer tools, and El Salvador’s new cybersecurity laws raise concerns about media freedom. Stay informed on the latest developments!

Reference: https://www.linkedin.com/newsletters/hacker-hacks-7126276864670670848/

Serbia’s authorities are using spyware to target journalists and activists, exploiting tools like NoviSpy and Cellebrite for unlawful surveillance. Meanwhile, banks in India are struggling to meet SEBI’s cybersecurity deadline. In the US, Ukraine strengthens cybersecurity ties, focusing on digital infrastructure and AI integration. Gamaredon malware is actively spying on targets using Android devices, while experts discuss AI’s challenges in cybersecurity defense. Stay updated on these critical cybersecurity developments.

Reference: https://www.linkedin.com/newsletters/hacker-hacks-7126276864670670848/

The episode covers recent cybersecurity vulnerabilities and attacks, including a critical flaw in a popular WordPress plugin, a symlink exploit in Apple’s systems, and a zero-day affecting Windows. It also explores security breaches involving North Korean and Chinese hackers, as well as the implications of Yahoo's cybersecurity layoffs. Lastly, we dive into SolarWinds ARM vulnerabilities that could lead to privilege escalation, urging timely updates for affected systems.

Reference: https://www.linkedin.com/newsletters/hacker-hacks-7126276864670670848/