Cyber Attacks, Scams, and New Security Defenses: SonicWall, Steam, CyberArk, and More

The latest episode of this cybersecurity-focused podcast covers a wide range of emerging digital threats, from online scams to advanced cyberattacks. Topics include scammers exploiting Tunnel of Love cruises to deceive romantics, a critical security vulnerability in SonicWall firewalls being actively exploited, and the Lazarus Group’s use of a new JavaScript implant targeting software developers. The episode also discusses the infiltration of Steam by the PirateFi game distributing malware, a new phishing kit bypassing two-factor authentication, and concerns over the misuse of open-source AI models by cybercriminals. Additionally, it highlights a significant zero-day vulnerability in PostgreSQL linked to a cyberattack on the US Treasury, Grip Security's launch of a new SaaS security solution, and CyberArk’s acquisition of identity security firm Zilla. The podcast concludes with Microsoft’s warnings about Russian hackers using "device code phishing" to compromise accounts. https://healsecurity.com/