Podcasts News Tech News CyberWire Daily Apple's clickless exploit.

Apple's clickless exploit.

Published: Jan. 2, 2024, 9:10 p.m.

A zero-click exploit affects iPhones belonging to Kaspersky employees. A GRU cyber campaign incorporates novel malware. The Indian government targets Apple over hacking attempts. Microsoft disables App Installer. Australian courts\u2019 AV is compromised. A BlackBasta decryptor is released. Cyber Toufan claims attacks against Israeli targets. Patients in Oklahoma face online extortion. LoanCare customers\u2019 data is at risk. Google settles a private browsing lawsuit. Barracuda patches a zero-day. That Chinese spy balloon was making a local call. And then Caleb Barlow, a friend of our show, shares password security tips you should know.\xa0\nRemember to leave us a 5-star rating and review in your favorite podcast app.\nMiss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you\u2019ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.\n\nCyberWire Guest\nCaleb Barlow, CEO of Cyberbit, joins us today to share helpful tips to remember those passwords.\xa0\n\nSelected Reading\n4-year campaign backdoored iPhones using possibly the most advanced exploit ever (Ars Technica)\xa0\nNew malware found in analysis of Russian hacks on Ukraine, Poland (The Record)\nRussian Military Intelligence Blamed for Blitzkrieg Hacks (GovInfo Security)\nIndia targets Apple over its phone hacking notifications (Washington Post)\nMicrosoft disables App Installer after observing financially motivated threat actor activity (Cybernews)\xa0\nMicrosoft disables App Installer after observing financially motivated threat actor activity (Cybernews)\xa0\nCyber attack on Victoria's court system may have exposed recordings of sensitive cases (ABC News)\xa0\nNew Black Basta decryptor exploits ransomware flaw to recover files (Bleeping Computer)\nPro-Palestinian operation claims dozens of data breaches against Israeli firms (The Record)\nIntegris Health patients get extortion emails after cyberattack (Bleeping Computer)\xa0\nAG: Corewell Health reports another data breach; affects 1 million patients (The Oakland Press)\nLoanCare Notifying 1.3 Million of Data Breach Following Cyberattack on Parent Company (Security Week)\nGoogle settles $5 billion consumer privacy lawsuit (Reuters)\nBarracuda fixed a new ESG zero-day exploited by Chinese group UNC4841 (Security Affairs)\nU.S. intelligence officials determined the Chinese spy balloon used a U.S. internet provider to communicate (NBC News)\n\nShare your feedback.\nWe want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.\xa0\n\nWant to hear your company in the show?\nYou too can reach the most influential leaders and operators in the industry. Here\u2019s our media kit. Contact us at cyberwire@n2k.com to request more info.\nThe CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. \xa9 2023 N2K Networks, Inc.\nLearn more about your ad choices. Visit megaphone.fm/adchoices