Google OAuth abused in DKIM replay attack

Japan warns of sharp rise in unauthorized trading

North Koreans hijacking Zoom’s Remote Control

Huge thanks to our sponsor, Dropzone AI

Security threats don't clock out at 5 PM, but your analysts need to sleep sometime. Dropzone AI delivers around-the-clock alert investigations with the same attention to detail at midnight as at noon. Our AI SOC Analyst ensures no more morning backlogs and no more off-hours blind spots. Just reliable, continuous protection that ensures every alert gets the attention it deserves, regardless of when it arrives. See how SOC teams are achieving true 24/7 coverage with our AI SOC Analyst without the staffing challenges at Dropzone.ai.

Widespread Microsoft Entra lockouts cause by new security feature rollout

Malware delivered through diplomatic wine-tasting invites

British companies told to hold in-person interviews to thwart North Korea job scammers

Huge thanks to our sponsor, Dropzone AI

Growing your MSSP client roster while your alerts are multiplying? Dropzone AI works alongside your team, investigating alerts just like your best human analysts would. Our AI SOC Analyst cuts investigation time from an hour to minutes while handling five times more alerts per analyst. Unlike complex SOAR solutions, Dropzone deploys quickly and adapts to your environment without the need for playbooks or coding. Eliminate backlogs, reduce false positives, and deliver the detailed investigations your clients expect. Ready to scale your MSSP without scaling your team? Meet us at booth ESE-60 at RSA.

Find the stories behind the headlines at CISOseries.com.

Link to episode page

This week’s Cyber Security Headlines – Week in Review is hosted by David Spark with guest Trina Ford, CISO, iHeartMedia

Thanks to our show sponsor, Vanta

Do you know the status of your compliance controls right now? Like…right now?
We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks. But more than 9,000 companies have continuous visibility into their controls with Vanta.

Vanta brings automation to evidence collection across over 35 frameworks, like SOC 2 and ISO 27001. They also centralize key workflows like policies, access reviews, and reporting, and helps you get security questionnaires done 5 times faster with AI.

Now that’s…a new way to GRC. Get started at Vanta.com/headlines.

All links and the video of this episode can be found on CISO Series.com

Bipartisan push for renewal of cyberthreat information sharing law

ClickFix becoming a favorite amongst state-sponsored hackers

GoDaddy puts Zoom on mute for about 90 minutes

Thanks to this week's episode sponsor, Vanta

Do you know the status of your compliance controls right now? Like...right now?

We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks. But more than 9,000 companies have continuous visibility into their controls with Vanta.

Vanta brings automation to evidence collection across over 35 frameworks, like SOC 2 and ISO 27001. They also centralize key workflows like policies, access reviews, and reporting,

And helps you get security questionnaires done 5 times faster with AI.

Now that’s…a new way to GRC. Get started at Vanta.com/headlines.

Find the stories behind the headlines at CISOseries.com

MITRE gets last-minute bailout from CISA

Krebs exits SentinelOne after security clearance pulled

Apple fixes two zero-days exploited in targeted iPhone attacks

Thanks to this week's episode sponsor, Vanta

Do you know the status of your compliance controls right now? Like...right now?

We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks. But more than 9,000 companies have continuous visibility into their controls with Vanta.

For the stories behind the headlines, visit CISOseries.com.

Vanta brings automation to evidence collection across over 35 frameworks, like SOC 2 and ISO 27001. They also centralize key workflows like policies, access reviews, and reporting,

And helps you get security questionnaires done 5 times faster with AI.

Now that’s…a new way to GRC. Get started at Vanta.com/headlines.

CISA issued a statement that it execution an option on its contract with MITRE to continue funding the CVE program.

4chan, the internet's most infamous forum, is down following an alleged hack

Thanks to this week's episode sponsor, Vanta

Do you know the status of your compliance controls right now? Like...right now?

We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks. But more than 9,000 companies have continuous visibility into their controls with Vanta.

Vanta brings automation to evidence collection across over 35 frameworks, like SOC 2 and ISO 27001. They also centralize key workflows like policies, access reviews, and reporting,

And helps you get security questionnaires done 5 times faster with AI.

Now that’s…a new way to GRC. Get started at Vanta.com/headlines.

AI code dependencies are a supply chain risk

Morocco investigates social security leak

European Commission increases security measures for US-bound staff

Thanks to this week's episode sponsor, Vanta

Do you know the status of your compliance controls right now? Like...right now?

We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks. But more than 9,000 companies have continuous visibility into their controls with Vanta.

Vanta brings automation to evidence collection across over 35 frameworks, like SOC 2 and ISO 27001. They also centralize key workflows like policies, access reviews, and reporting,

And helps you get security questionnaires done 5 times faster with AI.

Now that’s…a new way to GRC. Get started at Vanta.com/headlines.