Extension Hijacks, Leaked Hacker Tools, Android Trojans, and Global Scam Networks
In today’s episode of the HEAL Security Dispatch, a malicious pull request infects thousands through a compromised Visual Studio Code extension, while a leaked copy of Shellter Elite enables widespread infostealer deployment. A trojanized Android app bypasses Google Play defenses to target North American banks, and a popular Chrome extension turns into spyware overnight. Meanwhile, Ingram Micro faces ransomware disruption, Qantas responds to an extortion attempt after a massive data breach, and over 17,000 fake news sites are uncovered in a global investment scam network.
Stay with us as we unpack these escalating threats and the tools driving modern cybercrime.
--------
5:46
--------
5:46
Airline Breaches, Insider Bank Heist, and Rising State-Level Threats
Airline Breaches, Insider Bank Heist, and Rising State-Level Threats by Cyber Security News - HEAL Security
--------
5:02
--------
5:02
WinRAR Flaw, Ransomware Sanctions, Executive Risk Shifts, and Major Breaches
In this episode, Edd Hall discusses some of the latest and most pressing developments in the cybersecurity world. Topics include a newly discovered remote code execution flaw in WinRAR, U.S. sanctions against the Russia-linked Aeza Group for supporting ransomware infrastructure, and shifting attitudes among global executives toward cyber risk. Edd also covers a sophisticated phishing campaign using spoofed PDFs, major data breaches at Qantas Airways and Surmodics, and a DOJ investigation into a former DigitalMint employee tied to ransomware payments. Stay tuned for insights on evolving threats, corporate responsibility, and enforcement actions shaping the cyber landscape.
--------
4:58
--------
4:58
Citrix Login Chaos, Qantas Breach, the Evolving FileFix Threat
In today’s episode of the HEAL Security Dispatch, we spotlight a wave of cyber incidents hitting key sectors worldwide. A critical flaw in Citrix NetScaler disrupts authentication for thousands of users, while Qantas investigates a third-party breach that exposed personal data of up to six million customers. A vulnerability in the Forminator WordPress plugin puts over 400,000 websites at risk of takeover, and 23andMe’s new owner pledges to protect genetic data amid regulatory scrutiny. Meanwhile, ransomware continues to plague U.S. government systems, and researcher mr.d0x reveals two evolving attack chains—FileFix and its browser-based variant—that bypass key Windows and browser safeguards.
Stay with us as we break down the latest threats, exploits, and defensive moves shaping the global cybersecurity landscape.
healsecurity.com
--------
5:11
--------
5:11
Microsoft Changes, CISA Alerts, Major Breaches, and Nation-State Attack
In this episode, Edd Hall discusses the latest developments in cybersecurity, including Microsoft's decision to remove the Edge browser's password manager in favor of the Microsoft Authenticator app. He examines new findings that show phishing training may have only short-term effectiveness, and highlights CISA's addition of two critical vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. Edd also covers U.S. sanctions against Aezagroup for supporting cybercriminal operations, major data breaches impacting Esse Health and Kelly Benefits, the ICC’s confirmation of a 2023 nation-state cyberattack, and new industrial control system vulnerabilities disclosed by CISA. Stay tuned for insights, expert commentary, and what these stories mean for your cybersecurity posture.
Acerca de HEAL Security - Cybersecurity Intelligence & News for Healthcare
The Daily HEAL Security Dispatch Podcast is a leading source for up-to-the-minute news and deep insights in the realm of healthcare cybersecurity and threat intelligence.
At the heart of HEAL Security's vision is the commitment to equipping organizations and individuals with rapid, contextually rich cybersecurity updates, establishing itself as a pivotal force in unifying practice and data against the ingenious tactics of criminal and malicious entities. HEAL Security is fervently devoted to constructing a robust resource and community that champions the defense of the healthcare sector against the growing cyber threats from organized crime groups and antagonistic nation-states. Our core focus encompasses the protection of vital IT infrastructures, the security of sensitive patient and clinical information, the safeguarding of critical healthcare systems, and the assurance of continuous, undisturbed patient care services.
Escucha HEAL Security - Cybersecurity Intelligence & News for Healthcare, Lex Fridman Podcast y muchos más podcasts de todo el mundo con la aplicación de radio.net