Keyboards, 3 am, TikTok, LummaC2, Cityworks, Honeypots, Fancy Bear, Aaran Leyland, and More, on this edition of the Security Weekly News.

Visit https://www.securityweekly.com/swn for all the latest episodes!

Show Notes: https://securityweekly.com/swn-479

This week in the security news:

• Malware-laced printer drivers
• Unicode steganography
• Rhode Island may sue Deloitte for breach. They may even win.
• Japan's active cyber defense law
• Stop with the ping
• LLMs replace Stack Overflow - ya don't say?
• Aggravated identity theft is aggravating
• Ivanti DSM and why you shouldn't use it
• EDR is still playing cat and mouse with malware
• There's a cellular modem in your solar gear
• Don't slack on securing Slack
• XSS in your mail
• SIM swapping and the SEC
• Ivanti and libraries
• Supercomputers in space!

Visit https://www.securityweekly.com/psw for all the latest episodes!

Show Notes: https://securityweekly.com/psw-875

In the leadership and communications section, Why Every CISO Should Be Gunning For A Seat At The Board Table, The Innovation We Need is Strategic, Not Technical , The Best Leaders Ask the Right Questions, and more!

This segment is sponsored by Fortra. Visit https://securityweekly.com/fortrarsac to learn more about them!

Fortra is successfully reducing the unauthorized use of Cobalt Strike among cybercriminals through partnerships with Microsoft, Operation MORPHEUS, and the Pall Mall Process, among others. Since 2023 specifically, Fortra’s collaborations have resulted in an 80% drop in Cobalt Strike misuse in the wild. Additionally, the time between detecting cracked copies and mitigation has been reduced to less than one week in the United States and less than two weeks worldwide.

Segment Resources: https://www.cobaltstrike.com/blog/update-stopping-cybercriminals-from-abusing-cobalt-strike

This segment is sponsored by LevelBlue. Visit https://securityweekly.com/levelbluersac to learn more about them!

Uncover how organizations are building business confidence through cyber resilience, how alignment of cybersecurity and business goals impacts business, how collaboration creates a proactive culture, and how emerging attacks are evolving.

Visit https://www.securityweekly.com/bsw for all the latest episodes!

Show Notes: https://securityweekly.com/bsw-396

WSL, Defendnot, Clippy, Crawlomatic, Take It Down, Pwn2Own, Aaran Leyland, and more on the Security Weekly News.

Visit https://www.securityweekly.com/swn for all the latest episodes!

Show Notes: https://securityweekly.com/swn-478

In the news, Coinbase deals with bribes and insider threat, the NCSC notes the cross-cutting problem of incentivizing secure design, we cover some research that notes the multitude of definitions for secure design, and discuss the new Cybersecurity Skills Framework from the OpenSSF and Linux Foundation. Then we share two more sponsored interviews from this year's RSAC Conference.

With more types of identities, machines, and agents trying to access increasingly critical data and resources, across larger numbers of devices, organizations will be faced with managing this added complexity and identity sprawl. Now more than ever, organizations need to make sure security is not an afterthought, implementing comprehensive solutions for securing, managing, and governing both non-human and human identities across ecosystems at scale.

This segment is sponsored by Okta. Visit https://securityweekly.com/oktarsac to learn more about them!

At Mend.io, we believe that securing AI-powered applications requires more than just scanning for vulnerabilities in AI-generated code—it demands a comprehensive, enterprise-level strategy. While many AppSec vendors offer limited, point-in-time solutions focused solely on AI code, Mend.io takes a broader and more integrated approach.

Our platform is designed to secure not just the code, but the full spectrum of AI components embedded within modern applications. By leveraging existing risk management strategies, processes, and tools, we uncover the unique risks that AI introduces—without forcing organizations to reinvent their workflows. Mend.io’s solution ensures that AI security is embedded into the software development lifecycle, enabling teams to assess and mitigate risks proactively and at scale.

Unlike isolated AI security startups, Mend.io delivers a single, unified platform that secures an organization’s entire codebase—including its AI-driven elements. This approach maximizes efficiency, minimizes disruption, and empowers enterprises to embrace AI innovation with confidence and control.

This segment is sponsored by Mend.io. Visit https://securityweekly.com/mendrsac to book a live demo!

Visit https://www.securityweekly.com/asw for all the latest episodes!

Show Notes: https://securityweekly.com/asw-331

In this week's interview segment, we talk to Marshall Erwin about the state of cybersecurity, particularly when it comes to third party risk management, and whether we're ready for the next big SolarWinds or Crowdstrike incident. These big incidents have inspired executive orders, the Secure by Design initiative, and even a memo from JPMorgan Chase's CISO.

We will discuss where Marshall feels like we should be pushing harder, where we've made some progress, and what to do about incentives. How do you convince a software supplier or service provider to prioritize security over features?

This segment is sponsored by Fastly. Visit https://securityweekly.com/fastly to learn more about them!

In this week's enterprise security news,

1. Agents replacing analysis is highly misunderstood
2. only one funding round
3. Orca acquires Opus to automate remediation
4. OneDrive is updating to make BYOD worse?
5. Companies are starting to regret replacing workers with AI
6. Is venture capital hanging on by a thread (made of AI)?
7. Potential disruption in the traditional vuln mgmt space!
8. MCP is already looking like a dumpster fire from a security perspective
9. malicious NPM packages
10. and, IS ALCHEMY REAL?

Interview 1: Pluralsight

Emerging technologies like AI and deepfakes have significantly complicated the threat landscape of today. As AI becomes more integrated into our lives, everyone - not just cybersecurity professionals - needs to develop security literacy skills to keep themselves, their organizations, and their loved ones safe. Luckily, there are countermeasures to spot and identify AI and deepfake-related threats in the wild. In this segment, Pluralsight's Director of Security and IT Ops Curriculum, Bri Frost, discusses how AI has changed the cybersecurity industry, how to spot AI and deepfakes in the wild, and the skills you should know to defend against these emerging threats.

Pluralsight's AI Skills Report

This segment is sponsored by Pluralsight. Visit https://securityweekly.com/pluralsightrsac to learn the skills you need to defend against the latest cyber threats!

Interview 2: Radware

Adversaries are rewriting the cybersecurity rules. Shifts in the threat landscape are being fueled by attackers with political and ideological agendas, more sophisticated attack tools, new coalitions of hacktivists, and the democratization of AI. Radware CTO David Aviv will discuss how companies must adapt their cyber defenses and lead in an evolving era of asymmetric warfare and AI-driven attacks.

This segment is sponsored by Radware. Visit https://securityweekly.com/radwarersac to learn more about them!

Visit https://www.securityweekly.com/esw for all the latest episodes!

Show Notes: https://securityweekly.com/esw-407

Steganography, RICO, CMMC, End of 10, AI is coming for you, Aaran Leyland and More, on this edition of the Security Weekly News.

Visit https://www.securityweekly.com/swn for all the latest episodes!

Show Notes: https://securityweekly.com/swn-477

This week in the security news:

• Android catches up to iOS with its own lockdown mode
• Just in case, there is a new CVE foundation
• Branch privilege injection attacks
• My screen is vulnerable
• The return of embedded devices to take over the world - 15 years later
• Attackers are going after MagicINFO
• Hacking Starlink
• Mitel SIP phones can be hacked
• Reversing with Hopper
• Supercharge your Ghidra with AI
• Pretending to be an anti-virus to bypass anti-virus
• macOS RCE - perfect colors
• End of life routers are a hackers dream, and how info sharing sucks
• Ransomware in your CPU
• Disable ASUS DriverHub
• Age verification and privacy concerns

Visit https://www.securityweekly.com/psw for all the latest episodes!

Show Notes: https://securityweekly.com/psw-874