CTRL + ALT + SEC

Category: In the News

What’s New in Cybersecurity This Week: Projects, Videos, Articles & Podcasts I’m Following – 4/21/25
Welcome to my weekly cybersecurity roundup! Here, I share updates on the projects I’m currently working on, along with the most insightful cybersecurity videos I watched, articles I found valuable, and podcasts I tuned into this week.

Featured Analysis

Featured article analysis: Former Disney employee who hacked Disney World restaurant menus in revenge sentenced to 3 years in federal prison

This case highlights a serious insider threat incident with significant potential consequences. Michael Scheuer, a former Disney World employee, conducted a series of cyberattacks against his former employer, demonstrating a disturbing level of knowledge about the company’s systems. His actions went beyond mere vandalism, as he manipulated allergen information on restaurant menus, creating a dangerous situation that could have resulted in severe harm or even death for customers with allergies. This element of the attack underscores the malicious intent and the potential for real-world harm that can arise from disgruntled employees with system access.

The incident also reveals the complexity and scope of modern cyberattacks. Scheuer’s actions included manipulating menu information, altering wine region details to reference mass shooting locations, and launching denial-of-service attacks. This multi-faceted approach demonstrates the potential for a single individual to disrupt operations, spread misinformation, and target individuals within an organization. The FBI’s involvement and the subsequent prosecution emphasize the severity of these crimes and the importance of robust cybersecurity measures to protect against both external and internal threats.

Ultimately, this case serves as a stark reminder of the importance of robust cybersecurity practices, including access control, monitoring, and incident response. The fact that Scheuer had the knowledge and access to carry out these attacks highlights the need for organizations to carefully manage employee access to sensitive systems, especially during and after termination. The potential for significant financial damage (as indicated by the restitution order) and the severe criminal penalties underscore the legal and financial ramifications of such cybercrimes.

Projects
- TryHackMe – Networking Secure Protocols – Complete
- TryHackMe – Tcpdump: The Basics – In Progress
Whitepapers
- 2025 Verizon DBIR – Read my breakdown here.
- The Sophos Annual Threat Report: Cybercrime on Main Street 2025
Videos

Articles
- China Names and Shames US Hackers, Calls Out 3 Alleged NSA Agents – Police in the Chinese city of Harbin say three NSA operatives disrupted the 2025 Asian Winter Games and hacked Huawei.
- Crosswalks hacked to play fake audio of Musk, Zuck, and Jeff Bezos – “Stop, look, and listen” is the standard advice we should allow follow when crossing the road – but pedestrians in some parts are finding that they cannot believe their ears – after a hacker compromised crosswalks to play deepfake audio mocking tech bosses Elon Musk, Mark Zuckerberg, and Jeff Bezos.
- DeepSeek Breach Opens Floodgates to Dark Web – The incident should serve as a critical wake-up call. The stakes are simply too high to treat AI security as an afterthought — especially when the Dark Web stands ready to capitalize on every vulnerability.
- Blue Shield of California leaked health data of 4.7 million members to Google – Blue Shield of California disclosed it suffered a data breach after exposing protected health information of 4.7 million members to Google’s analytics and advertisement platforms.
- FBI: US lost record $16.6 billion to cybercrime in 2024 – The FBI says cybercriminals have stolen a record $16,6 billion in 2024, marking an increase in losses of over 33% compared to the previous year.
- Cyberattack Knocks Texas City’s Systems Offline – The city of Abilene, Texas, is scrambling to restore systems that have been taken offline in response to a cyberattack.
- SK Telecom reveals cyberattack, customer USIM data stolen could be used in attacks – Scope and scale of SK Telecom attack still being investigated
- Verizon discovers spike in ransomware and exploited vulnerabilities – Verizon’s 2025 Data Breach Investigations Report noted a 37% increase in ransomware attacks and a 34% increase in exploited vulnerabilities.
- Former Disney employee who hacked Disney World restaurant menus in revenge sentenced to 3 years in federal prison – When a former Disney World employee was accused of changing the menus at Disney World restaurants, it made headlines. And in January, when he admitted to changing the menus — including information about allergy information that could have created serious health risks for diners — that also made headlines. Now Michael Scheuer, who faced 10 years in prison for fraud and an additional subsequent two years in prison for aggravated identity theft, has been sentenced.
Podcasts
April 28, 2025
What’s New in Cybersecurity This Week: Projects, Videos, Articles & Podcasts I’m Following – 4/14/25
Welcome to my weekly cybersecurity roundup! Here, I share updates on the projects I’m currently working on, along with the most insightful cybersecurity videos I watched, articles I found valuable, and podcasts I tuned into this week.

Featured Analysis

Featured article analysis: CVE, global source of cybersecurity info, was hours from being cut by DHS

This near-miss scenario involving the potential defunding of the CVE program by the DHS serves as a stark reminder of the precarious nature of critical cybersecurity infrastructure. The article highlights the indispensable role the CVE repository plays as the bedrock of vulnerability management. The cascading effects described by Brian Martin – the fragmentation of vulnerability data, the rise of incomplete databases, and the increased exposure of organizations – underscore the global reliance on this standardized system for identifying, tracking, and addressing security flaws. The fact that even this foundational element was at risk of disruption due to governmental budgetary shifts and political headwinds should galvanize the community to recognize the need for more resilient and independent stewardship of such vital resources.

The swift action by CVE board members to establish the CVE Foundation as a nonprofit represents a proactive and commendable step towards ensuring the long-term stability of the program. This move acknowledges the inherent vulnerabilities of relying solely on government funding and demonstrates a commitment to the cybersecurity ecosystem’s well-being. The involvement of major tech players and international organizations as CNAs further emphasizes the collaborative and global nature of vulnerability disclosure and management that the CVE program facilitates.

Projects
- TryHackMe – Networking Secure Protocols – In Progress
Videos

Articles
- Don’t delete that mystery empty folder. Windows put it there as a security fix – Copilot vibe coding for OS development? Why not
- Hertz confirms customer info, drivers’ licenses stolen in data breach – Car rental giant Hertz Corporation warns it suffered a data breach after customer data for its Hertz, Thrifty, and Dollar brands was stolen in the Cleo zero-day data theft attacks.
- China admitted its role in Volt Typhoon cyberattacks on U.S. infrastructure – China admitted in a secret meeting with U.S. officials that it conducted Volt Typhoon cyberattacks on U.S. infrastructure, WSJ reports.
- 1.6 Million People Impacted by Data Breach at Laboratory Services Cooperative – Laboratory Services Cooperative says the personal and medical information of 1.6 million was stolen in an October 2024 data breach.
- National Social Security Fund of Morocco Suffers Data Breach – Threat actor ‘Jabaroot’ claims breach of National Social Security Fund of Morocco, aiming to steal large volumes of sensitive citizen data.
- AI hallucinations lead to a new cyber threat: Slopsquatting – Attackers can weaponize and distribute a large number of packages recommended by AI models that don’t really exist.
- Notorious image board 4chan hacked and internal data leaked – Notorious internet forum 4chan was hacked on Tuesday.
- CVE, global source of cybersecurity info, was hours from being cut by DHS – The Common Vulnerability and Exposures, or CVE, repository holds the answers to some of information security’s most vital questions. Namely, which security issue are we talking about, exactly, and how does it work?
- Cisco Webex bug lets hackers gain code execution via meeting links – Cisco has released security updates for a high-severity Webex vulnerability that allows unauthenticated attackers to gain client-side remote code execution using malicious meeting invite links.
- The Shadow AI Surge: Study Finds 50% of Workers Use Unapproved AI Tools – With unapproved AI tools entrenched in daily workflows, experts say it’s time to shift from monitoring to managing Shadow AI use across the enterprise.
- Chinese Smishing Kit Powers Widespread Toll Fraud Campaign Targeting U.S. Users in 8 States – Cybersecurity researchers are warning of a “widespread and ongoing” SMS phishing campaign that’s been targeting toll road users in the United States for financial theft since mid-October 2024.
Podcasts
April 21, 2025
What is Mastodon?

What is Mastodon in 180 Seconds

I’m loving mastodon and I’m huge fan. With everyone comparing it to Twitter it makes describing it more challenging. You have to forget the idea of Twitter to really understand it. This video does a great job of quickly describing it.

February 3, 2023
ChatGPT Learning Possibilities

…and ways people can take advantage of this new artificial intelligence.

I’ve been hearing a lot about ChatGPT and I wanted to explore more of what it can do. I wanted to see how easy it was to use myself. I created a user account and typed in my prompt:

write an information article about software bill of materials in easy to understand terms

I published what I got as a post on this website. This strikes me as interesting initially in two ways. First, I can type in questions and have this AI produce short and easy to understand articles for me to learn more about whatever topic I want, probably cybersecurity for the moment.

Secondly, I could also have it write lots of content for this blog or any other along with google adwords or anything else. All I’m doing is posting content, and I don’t even have to write it anymore. ChatGPT comes up with the content about a subject I want it to write about and people visit the site to read the content. I mean it’s not horrible content after all. Nothing really wrong with it.

This could flood the internet with many useless sites that are written by the same AI. Yes, I’m well aware that the internet is already flooded with lots of useless content, but not all of it is generating revenue for the owners. Just an idea. This is pretty neat, but getting a little scary quickly too!

December 8, 2022
Software Bill of Materials (SBOM)

A software bill of materials (SBOM) is a comprehensive list of all the individual components that make up a piece of software. This list includes both the source code and any external libraries or other dependencies that are necessary for the software to function properly.

Having an SBOM is important for several reasons. First, it allows developers and other stakeholders to easily see exactly what is included in a piece of software, making it easier to identify any potential security vulnerabilities or other issues. It also makes it easier to track down and fix bugs, as well as to keep the software up to date with the latest versions of its components.

Additionally, an SBOM can help organizations comply with various regulations and industry standards that require them to disclose the components that make up their software. This is especially important in industries such as healthcare and finance, where the use of certain components may be restricted or prohibited due to security concerns.

Creating an SBOM can be a time-consuming process, as it requires developers to carefully review and document all of the individual components that make up their software. However, there are tools and frameworks available to help automate this process, making it easier to create and maintain an SBOM.

Overall, a software bill of materials is a valuable tool for any organization that develops or uses software. It allows developers to easily see and manage the components that make up their software, and helps organizations comply with regulations and industry standards.

*This article was written using ChatGPT.

December 8, 2022
Cybersecurity Articles | Week of October 24, 2022
- TechCrunch, Inside TheTruthSpy, the Stalkerware network spying on thousands by Zach Whittaker (Oct 26) | A database containing about 360,000 unique android devices exposed.
- TechCrunch, Hive Ransomware gang leaks data stolen during Tata Power cyberattack by Carly Page, Jagmeet Singh (Oct 25) | Tata Power, which serves more than 12 million customers through its distributors, confirmed on October 14 that it had been hit by a cyberattack.
- Bleeping Computer, Medibank now says hackers accessed all its customers’ personal data by Tom Toulas (Oct 26) | All customers’ personal data and significant amounts of health claims data downloaded.
- Bleeping Computer, Dutch police arrest hacker who breached healthcare software vendor by Tom Toulas (Oct 25) 19 year old hacker being held by police while they investigate him. 19!
- CSO Online, Iran’s nuclear energy agency confirms email server hacked by Apurva Venkat (Oct 24) | Iranian hacking group Black Reward has claimed responsibility for a breach at the email server of the country’s Bushehr nuclear power plant, in support of nationwide protests over the death of a young woman in police custody.
- Wall Street Journal, ‘Deepfakes’ of Celebrities Have Begun Appearing in Ads, With or Without Their Permission by Patrick Coffee (Oct 25) | Digital simulations of Elon Musk, Tom Cruise, Leo DiCaprio and others have shown up in ads, as the image-melding technology grows more popular and presents the marketing industry with new legal and ethical questions.
- Dark Reading, Stress Is Driving Cybersecurity Professionals to Rethink Roles by Staff (Oct 24) Burnout has led one-third of cybersecurity staffers to consider changing jobs over the next two years, potentially further deepening the talent shortage, research shows..
October 31, 2022
Great Recent Articles
- Nature: Why scientists are turning to Rust by Jeffrey M. Perkel (Dec 11, 2020)
  - Why this is interesting. RUST is seen as more secure than other older programming languages.
- The Trade Secrets Network: Struggles with Insider Risk Program Stakeholders by Stacey Champagne (Sep 9)
- Bleeping Computer: Web browser app mode can be abused to make desktop phishing pages by Bill Toulas (Oct 3)
- CSO Online: Lessons of the Sarah Palin e-mail hack by Roger A. Grimes (Sep 19, 2008)
  - Dated, but an excellent example of just how easy it is to hack an poorly secured email password.
October 27, 2022