Today on the show we get into three zero-day vulnerabilities that the government is using to get into iPhones. We talk about Chinese hackers in the US networks for five years targeting communications, energy, transportation, and water systems. China's ICBC was hit with a ransomware attack but was saved by Novell Netware. Plus this week's listener feedback and was your toothbrush part of a DDoS attack.

We Talk New of The Week

• Critical Vulnerability Affecting Most Linux Distros
• Microsoft bringing Linux sudo command to Windows Server 2025
• Denmark orders schools to stop sending student data to Google
• Clorox says cyberattack caused $49 million in expenses
• Mastodon vulnerability allows attackers to take over accounts
• Mozilla Monitor Plus Scrubs Your Leaked Personal Information
• Apple just launched a new open-source programming language
• JetBrains warns of new TeamCity auth bypass vulnerability
• Apple iTunes Going Away For New Apps
• Verizon insider data breach hits over 63,000 employees

The Security Assessment Podcast is Brought To You By Lipani Security LLC.

Send Questions To – brandon@lipanisecurity.com

(Full Show Transcript)

Today on the show we talk about Ransomware Attacks and using an Albert Sensor. The CISA has a ransomware pilot program to help fight attacks across all sectors at StopRansomware.gov. Microsoft releases preview of Windows Server 2025 with includes hotpatch which is a feature that allows you to patch servers without a reboot. Plus a batch of listener feedback and questions. 

We Talk News of The Week

• Samsung extends Android updates from 5 to 7 years
• Kansas City public transportation authority hit by ransomware
• US Department HHS gets 7.5 Million Stolen
• Cloudflare Has A Security Breach
• Mercedes-Benz Leaves Private Key In Public Repository
• HP class action lawsuit over printer bricking

The Security Assessment Podcast is Brought To You By Lipani Security LLC.

Send Questions To – brandon@lipanisecurity.com

(Full Show Transcript)

We start the show off with a bunch of Apple news talking about them having a backdoor in their phones for the last four years or more. Apple adds a new feature in iOS 17.3 called Stolen Device Protection and in iOS 17.4 Apple will allow side loading. Microsoft CoPilot and Outlook email are possibly tracking you and we get into .onion domain.

We Talk New of The Week

• Chrome Updates Incognito Warning
• Data Breach of 1M Cancer Center Patients
• HP Does Not Want Third Party Ink Used
• MavenGate Attack 
• Microsoft Teams Outage
• Plus Much More.

The Security Assessment Podcast is Brought To You By Lipani Security LLC.

Send Questions To - brandon@lipanisecurity.com

Full Show Transcript