Major breach at the US Treasury’s OCC.

CyberWire Daily

N2K Networks, Inc.

Daily News, Tech News, News, Technology

4.6 • 1K Ratings

🗓️ 9 April 2025

⏱️ 24 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

Treasury’s OCC reports a major email breach. Patch Tuesday updates. A critical vulnerability in AWS Systems Manager (SSM) Agent allowed attackers to execute arbitrary code with root privileges. Experts urge Congress to keep strict export controls to help slow China’s progress in AI. A critical bug in WhatsApp for Windows allows malicious code execution.CISA adds multiple advisories on actively exploited vulnerabilities. Insider threat allegations rock a major Maryland medical center. Microsoft’s Ann Johnson from Afternoon Cyber Tea is joined by Jack Rhysider, the creator and host of the acclaimed podcast Darknet Diaries. Feds Aim to Rewrite Social Security Code in Record Time. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest In this episode of Afternoon Cyber Tea, Ann Johnson is joined by Jack Rhysider, the creator and host of the acclaimed podcast Darknet Diaries. You can hear the full conversation here. Be sure to catch new episodes of Afternoon Cyber Tea every other Tuesday on N2K CyberWIre and your favorite podcast app. Selected Reading Treasury's OCC Says Hackers Had Access to 150,000 Emails (SecurityWeek) Microsoft Fixes Over 130 CVEs in April Patch Tuesday (Infosecurity Magazine) Vulnerabilities Patched by Ivanti, VMware, Zoom (SecurityWeek) Fortinet Patches Critical FortiSwitch Vulnerability (SecurityWeek) ICS Patch Tuesday: Vulnerabilities Addressed by Rockwell, ABB, Siemens, Schneider (SecurityWeek) AWS Systems Manager Plugin Vulnerability Let Attackers Execute Arbitrary Code (Cyber Security News) Tech experts recommend full steam ahead on US export controls for AI (CyberScoop) Don't open that file in WhatsApp for Windows just yet (The Register) CISA Warns of Microsoft Windows CLFS Vulnerability Exploited in Wild (Cyber Security News) CISA Urges Urgent Patching for Exploited CentreStack, Windows Zero-Days (SecurityWeek) Pharmacist accused of spying on women using work, home cams (The Register) DOGE Plans to Rebuild SSA Code Base in Months, Risking Benefits and System Collapse (WIRED) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show. Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at [email protected] to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Transcript

Click on a timestamp to play from that location

0:00.0	You're listening to the Cyberwire Network, powered by N2K.
0:09.7	Secure access is crucial for U.S. public sector missions, ensuring that only authorized users can access certain systems,
0:22.1	networks, or data. Are your defenses ready?
0:25.2	Cisco's security service edge delivers comprehensive protection for your network and users.
0:31.1	Experience the power of zero trust and secure your workforce wherever they are.
0:36.1	Elevate your security strategy by visiting
0:38.3	Cisco.com slash go.s.
0:42.1	That's C-I-S-C-O-com
0:45.1	slash geo-slash-S-E.
0:48.1	Thank you. Treasury's OCC reports a major email breach.
1:07.2	We got some patch Tuesday updates.
1:09.3	A critical vulnerability in AWS systems manager agent
1:12.7	allowed attackers to execute arbitrary code with root privileges. Experts urged Congress to keep strict
1:18.9	export controls to help slow China's progress in AI. A critical bug in WhatsApp for Windows allows
1:25.2	malicious code execution. SISA adds multiple advisories on actively exploited vulnerabilities.
1:31.6	Insider threat allegations rock a major Maryland medical center.
1:35.7	Microsoft's Ann Johnson from Afternoon CyberT is joined by Jack Recider, the creator and host of the acclaimed podcast Darknet Diaries.
1:44.5	And Fed's aim to rewrite social security code in record time.
2:04.7	It's Wednesday, April 9th, 2025.
2:25.6	I'm Dave Bittner, and this is your Cyberwire Intel briefing. Thanks for joining us here. It's great to have you with us, as always.
2:35.9	The U.S. Treasury's Office of the Comptroller of the Currency, the OCC, reported a major email breach discovered on February 12th.
2:42.5	The incident involved unauthorized access to 103 email accounts, including those of OCC executives and staff. Hackers accessed around 150,000 emails dating back to May of 2023.
	...

Transcript will be available on the free plan in 8 days. Upgrade to see the full transcript now.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from N2K Networks, Inc., and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of N2K Networks, Inc. and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.