The invisible force fueling cyber chaos.

CyberWire Daily

N2K Networks, Inc.

Daily News, Tech News, News, Technology

4.6 • 1K Ratings

🗓️ 3 April 2025

⏱️ 26 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

A joint advisory labels Fast Flux a national security threat. Europol shuts down a major international CSAM platform. Oracle verifies a data breach. A new attack targets Apache Tomcat servers. The Hunters International group pivots away from ransomware. Hackers target Juniper routers using default credentials. A controversy erupts over a critical CrushFTP vulnerability. Johannes Ullrich, Dean of Research at SANS Technology Institute unpacks Next.js. Abracadabra, alakazam — poof! Your credentials are gone. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Johannes Ullrich, Dean of Research at SANS Technology Institute, is discussing Next.js and how similar problems have led to vulnerabilities recently. Selected Reading Fast Flux: A National Security Threat (CISA) Don’t cut CISA personnel, House panel leaders say, as they plan legislation giving the agency more to do (CyberScoop) CSAM platform Kidflix shut down by international operation (The Record) AI Image Site GenNomis Exposed 47GB of Underage Deepfakes (Hackread) Oracle tells clients of second recent hack, log-in data stolen, Bloomberg News reports (Reuters) Hackers Exploiting Apache Tomcat Vulnerability to Steal SSH Credentials & Gain Server Control (Cyber Security News) Hunters International Ransomware Gang Rebranding, Shifting Focus (SecurityWeek) Hackers Actively Scanning for Juniper’s Smart Router With Default Password (Cyber Security News) Details Emerge on CVE Controversy Around Exploited CrushFTP Vulnerability (SecurityWeek) New Malware Attacking Magic Enthusiasts to Steal Login Credentials (Cyber Security News) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show. Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at [email protected] to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Transcript

Click on a timestamp to play from that location

0:00.0	You're listening to the Cyberwire Network, powered by N2K.
0:11.4	Looking for a career where innovation meets impact, Vanguard's technology team is shaping the future of financial services by solving complex challenges with cutting-edge solutions.
0:22.6	Whether you're passionate about AI, cybersecurity, or cloud computing,
0:27.6	Vanguard offers a dynamic and collaborative environment where your ideas drive change.
0:32.6	With career growth opportunities and a focus on work-life balance,
0:36.6	you'll have the flexibility to thrive both professionally and personally.
0:41.8	Explore open cybersecurity and technology roles today at vanguardjobs.com. A joint advisory labels fast flux a national security threat.
1:05.2	Europol shuts down a major international CSAM platform.
1:09.1	Oracle verifies a data breach.
1:11.2	A new attack targets Apache Tomcat servers.
1:14.0	The Hunter's international group pivots away from ransomware.
1:17.3	Hackers target juniper routers using default credentials.
1:20.7	A controversy erupts over a critical crush FTP vulnerability.
1:24.9	Our guest is Johannes Ulrich, Dean of Research at the Sands Technology Institute. He unpacks next.js.
1:31.7	And abracadabra al-a-cazam, your credentials are gone.
1:54.8	Music It's Thursday, April 3rd, 2025.
1:58.4	I'm Dave Bittner, and this is your Cyberwire Intel briefing.
2:15.6	Thanks for joining us here today. It is great to have you with us.
2:19.6	Fast Flux is a technique used by cybercriminals and nation-state actors to evade detection by rapidly rotating DNS records and IP addresses linked to
2:26.7	malicious domains. This tactic supports resilient command and control infrastructure and enables
2:32.9	persistent malicious activity, such as ransomware,
2:36.0	fishing, and botnets. Variants include single flux, rotating IPs, and double flux, changing DNS servers
	...

Transcript will be available on the free plan in 2 days. Upgrade to see the full transcript now.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from N2K Networks, Inc., and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of N2K Networks, Inc. and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.