DeepSeek, the Chinese AI startup dominating news feeds, has experienced exponential growth while wiping almost $1 trillion off the U.S. stock market. However, the model's rise has now been overshadowed by a surge of malicious attacks.

On this special episode of State of Cybercrime, Matt and David explore the rise of this innovative AI tool, the subsequent attacks, and the potential vulnerabilities of the AI model. DeepSeek won’t be the last shadow AI app you have to worry about.

So what steps can you take to ensure you can discover and stop shadow AI apps from inhaling your corporate secrets? Read our latest blog for more insights and immediate actions you can take to protect your organization from shadow AI.

📌 DeepSeek Discovery: How to Find and Stop Shadow AI: https://www.varonis.com/blog/deepseek

On this episode of State of Cybercrime, Matt and David cover the most recent Chinese state-sponsored APT attack by Silk Typhoon on the U.S. Treasury Department. They discuss how the attackers used a remote support tool to enable unauthorized access to Treasury workstations and unclassified documents. They also dive into some of the most pressing cybersecurity news and recent breaches you should know about.

In this episode, Matt and David delve into the evolving story of Salt Typhoon, a Chinese state-sponsored group, and their use of the innovative 'GhostSpider' backdoor to infiltrate telecommunication service providers. This sophisticated and far-reaching cyberattack, which is much larger than previously understood, has compromised sensitive cellular logs and data from government entities, telecom providers, and millions of Americans. Don’t miss this opportunity to stay informed and keep your organization safe!

Russia's APT29, a.k.a "Midnight Blizzard," is arguably one of the world's most notorious threat actors. You might recall their involvement in the 2019 SolarWinds attack where they operated under the alias "Cozy Bear."

The group is back with more relentless attacks—breaching cloud credentials and targeting over 100 organizations worldwide.

In this episode of State of Cybercrime, Matt and David dive into some of the hottest cybersecurity news and recent breaches, including Midnight Blizzard. Discover how these sophisticated attacks are happening and what you can do to stay a step ahead.

Hosts Matt Radolec and David Gibson explain how cybercriminals are manipulating AI models like ChatGPT to plant false memories and steal data, along with other cybercrime-related stories like Salt Typhoon.

Salt Typhoon is a Chinese hacking group that has reportedly breached multiple key U.S. broadband providers, raising significant concerns about the security of sensitive communications data.

The hackers may have had access to these networks for months, raising significant concerns about the security of sensitive communications data.

More from Varonis ⬇️

Visit our website: https://www.varonis.com

LinkedIn: https://www.linkedin.com/company/varonis

X/Twitter: https://twitter.com/varonis

Instagram: https://www.instagram.com/varonislife/

#Cybercrime #DataSecurity

The North Korean Lazarus group is running multiple high-risk campaigns: one exploiting Windows and another installing malware through fraudulent blockchain job offers.

State of Cybercrime hosts Matt Radolec and David Gibson discuss the various APT groups, including a prolific ransomware-as-a-service operation and a Chinese cyber espionage gang known as Volt Typhoon, and other vulnerable vulnerabilities in this episode, including:

+ Lazarus FudModule rootkit attacks and the concurrent Eager Crypto Beavers campaign

+ RansomHub attacks on Halliburton, Change Healthcare, and hundreds more

+ Large-scale extortion of AWS environments through exposed ENV files

+ Hundreds of exposed servers from Volt Typhoon’s ISP targeting

+ Payment gateway breach of over 1.7 million credit card owners

Matt Radolec and David Gibson discuss how an unknown attacker recently exploited a vulnerability in Proofpoint’s email routing system, allowing them to bypass security measures and send millions of spoofed emails on behalf of major companies.

The co-hosts also cover:

+ The North Korean threat actor hired using AI

+ The biggest ransomware payment ever made

+ How X is training its Grok AI LLM with your posts

+ The EU’s groundbreaking AI act

+ How anyone can access deleted and private repositories on GitHub

+ Updates on AMD's silicon-level "SinkClose" processor flaw

In this episode of State of Cybercrime, co-hosts Matthew Radolec and David Gibson dive into the details around LockBit, and cover other news including:

+ The MOVEit authentication bypass flaw

+ Developments in the Polyfill supply chain attack affecting millions of websites

+ Updates on the targeted campaign against Snowflake

+A massive insider breach of a Pennsylvania healthcare system

+ Two new attack methods threat actors are adopting

+ The new OpenSSH unauthenticated RCE vuln that gives root privileges to + Linux systems