Cybersecurity in the News: DDoS Attacks, Public Library Breach, Phishing and More

Welcome to the latest episode of "The Audit," where we bring you the most pressing news, issues and insights in cybersecurity.

In this live episode, we cover the recent ransomware attack on the Seattle Public Library, the $37 million theft from Coinbase Pro users, and the sophisticated gift card fraud by the Moroccan cybercrime group, Storm 0539. We share our insights on how these attacks happened, their impacts, and practical advice on how to protect yourself and your organization. We also explore a theoretical DNS bomb DDoS attack and the intriguing use of Flipper Zero devices to control wristbands at large events.

In this episode we cover:
00:00 Intro
00:35 Seattle public library breach
02:49 Example library malware attack via USB
04:29 What exactly is a ransomware event?
05:54 What type of valuable data do public libraries offer malicious actors?
07:21 Using a library as a point of entry for hackers - small attacks can lead to a big score
09:10 Never re-use your password for different sites
11:42 $37 million stolen from Coinbase Pro users
12:19 Nick’s reaction to CoinBase Pro’s social engineering attack
14:44 Examples of successful phishing campaigns to test organizational security
16:44 Example of a well-designed USPS phishing attack
17:39 Balancing security health and phishing fatigue
18:04 Advice to avoid phishing scams
20:53 Shortcomings of Microsoft email filters
22:12 Moroccan cybercrime gift card fraud
22:52 Nick’s reaction to gift card cybercrime news
24:03 Gift cards used in cyber attacks
24:42 Bad actors use holidays and current events to their advantage
25:21 Awareness and education around fraud and threat actor tactics
26:43 How hard is it to get bad actors out of a system once they are in?
30:22 Educating your family and friends about phishing attacks
31:48 Does the Audit Crew use cash or credit?
33:27 HackerNews report: CatDDos Attack
38:25 What is a DDoS (denial-of-service) attack?
39:12 What motivates a DDoS attack?
39:45 The intersection of DDoS and hacktivism
41:23 John Graham-Cuming's Blog: Programmable LED wristbands
44:23 Josh’s experience meeting Taylor Swift
45:17 Flipper Zero able to disrupt concert wristbands
46:41 RFID wallet and large crowd security
47:15 Credit card skimmer awareness
48:07 Credit card tech for restaurants
50:02 Outro

// Full Audio Podcast //
🔗 Apple Podcasts: https://tinyurl.com/yaynubb7
🔗 Spotify: https://tinyurl.com/5n6fzfnm


// Learn More About IT Audit Labs //
🔗 IT Audit Labs on LinkedIn: /it-audit-labs
🔗 IT Audit Labs Official Website: https://www.itauditlabs.com/

Thanks for tuning in! Don't forget to like, subscribe, and share your thoughts in the comments.

#CybersecurityNews #Cybersecurity #Ransomware #Phishing #ITSecurity #TechNews