The Security Insights Show!

The days are longer and it seems like I am racing time.

Hello Podcast Family. I won’t lie, I am having withdrawal symptoms from not producing the show, but I can tell you for sure, that having the time off is allowing us to come with some good ideas when we return. We also get time to listen to some of our favorite podcasts. Being on the other side of the MIC is a good thing.

In the meantime, we will occasionally (randomly) post tips, tricks, news and some of our favorite words of wisdom aka “Ed’s Edibles”, Rod Rant’s, Frank’s Fumble’s and Brodie’s Babble’s until our return.

Ed’s Edibles:

For a great payoff be especially curious about the things you are NOT interested in.

Rod Rants:

You see only 2% of another person and they see only 2% of you. Attune yourself to the hidden 98%.

Brodie Babbles:

When negotiating, don’t aim for bigger piece of the pie; aim to create a bigger pie.

Frank’s Fumbles:

Copying others is a good way to start. Copying yourself is a disappointing way to end.

Security Notes and News:

⁠Sean Cairncross confirmed as national cyber director⁠ (The Record)

⁠Panel to create roadmap for establishing US Cyber Force⁠ (The Record)

⁠Microsoft 365: Attackers Weaponize Proofpoint and Intermedia Link Wrapping to Steal Logins⁠ (WinBuzzer)

⁠When Public Prompts Turn Into Local Shells: ‘CurXecute’ – RCE in Cursor via MCP Auto‑Start⁠ (Aim Security)

⁠LegalPwn Attack Tricks GenAI Tools Into Misclassifying Malware as Safe Code⁠ (Hackread)

⁠Bitdefender Warns Users to Update Dahua Cameras Over Critical Flaws⁠ (Hackread)

⁠Mozilla warns of phishing attacks targeting add-on developers⁠ (Bleeping Computer)

⁠Gene Sequencing Giant Illumina Settles for $9.8M Over Product Vulnerabilities⁠ (SecurityWeek)

⁠Flo settles class action lawsuit alleging improper data sharing⁠ (The Record)

⁠ChatGPT users shocked to learn their chats were in Google search results⁠ (Ars Technica)

MSFT Security Happenings:

• https://www.microsoft.com/en-us/security/security-insider/threat-landscape/microsoft-digital-defense-report-2024?rtc=1?rtc=1

• https://techcommunity.microsoft.com/category/microsoftintune/blog/intunecustomersuccess

• https://techcommunity.microsoft.com/category/microsoft-defender-for-endpoint/blog/microsoftdefenderatpblog

• https://techcommunity.microsoft.com/category/microsoft-defender-for-cloud/blog/microsoftdefendercloudblog

• https://techcommunity.microsoft.com/category/microsoft-sentinel/blog/microsoftsentinelb

• https://techcommunity.microsoft.com/category/microsoft-defender-for-office-365/blog/microsoftdefenderforoffice365blog

• https://techcommunity.microsoft.com/category/cis/blog/coreinfrastructureandsecurityblog