BROADCASTS.com

Dutch military intelligence warns of the Chinese Coathanger RAT. Pure Storage joins the growing list of Snowflake victims. JetBrains patches a GitHub IDE vulnerability. A data broker hits the brakes on selling driver location data. Flaws in VLC Media player allow remote code execution. Patch Tuesday updates. On our Learning Layer segment, host Sam Meisenberg and Joe Carrigan continue their discussion of Joe's ISC2 CISSP certification journey, taking on Domain 8, Software Development Security. Farewell, computer engineering legend Lynn Conway.\xa0\nOur 2024 N2K CyberWire Audience Survey is underway, make your voice heard and get in the running for a $100 Amazon gift card. Remember to leave us a 5-star rating and review in your favorite podcast app.\nMiss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you\u2019ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.\n\nLearning Layer\nOn our Learning Layer segment, host Sam Meisenberg and Joe Carrigan continue their discussion of Joe's ISC2 CISSP certification journey using N2K\u2019s comprehensive CISSP training course, CISSP practice test, and CISSP practice labs. Sam and Joe take on Domain 8, Software Development Security, and tackle the following question:\nAt which step of the SDLC should security considerations be first integrated?\n\nFunctional requirements defining\n\nProject initiation and planning\n\nTesting and evaluation control\n\nSystem design specification\n\n\nSelected Reading\nDutch intelligence says Chinese hacking campaign \u2018more extensive\u2019 than previously known (The Record)\nPure Storage confirms data breach after Snowflake account hack (Bleeping Computer)\nUsers of JetBrains IDEs at risk of GitHub access token compromise (CVE-2024-37051) (Help Net Security)\nGitHub phishing campaign wipes repos, extorts victims (SC Magazine)\nData broker shuts down product related to driver behavior patterns (The Record)\nVLC Media Player Vulnerabilities Allow Remote Code Execution (Cyber Security News)\nMicrosoft June 2024 Patch Tuesday fixes 51 flaws, 18 RCEs (Bleeping Computer)\nICS Patch Tuesday: Advisories Published by Siemens, Schneider Electric, Aveva, CISA (SecurityWeek)\nColumn: Lynn Conway, leading computer scientist and transgender pioneer, dies at 85 (LA Times)\n\nShare your feedback.\nWe want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.\xa0\n\nWant to hear your company in the show?\nYou too can reach the most influential leaders and operators in the industry. Here\u2019s our media kit. Contact us at cyberwire@n2k.com to request more info.\nThe CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. \xa9 N2K Networks, Inc.\nLearn more about your ad choices. Visit megaphone.fm/adchoices