In this episode, the host Jim Love discusses the increasing sophistication of supply chain attacks, starting with an account of a blockchain developer who lost $500,000 due to a malicious extension in a popular AI-powered coding tool. The episode also covers a significant cyber emergency in St. Paul, Minnesota, which required National Guard support, and the City’s struggle to comprehend the full scope of the hack. Additionally, the US Cybersecurity and Infrastructure Security Agency (CISA) has released a new eviction strategies tool to help cybersecurity teams remove persistent threats. The episode concludes with an update on the Ingram Micro breach, where the Safe Pay ransomware gang has threatened to leak 35 terabytes of stolen data. Listeners are encouraged to focus on preventative measures even when ransomware attacks do not involve encryption.
00:00 Introduction and Headlines
00:25 The $500,000 Crypto Heist
01:26 Supply Chain Attack on Open VSX
04:50 Lessons from the Attack
06:16 Oyster Backdoor Threat
07:54 Cyber Attack on St. Paul
09:09 CISA’s New Eviction Strategies Tool
10:43 Ingram Micro Data Breach Update
12:18 Conclusion and Contact Information