Risk & Repeat: Attacks ramp up on Cleo MFT software

Risk & Repeat: Salt Typhoon hasn't stopped hacking

This Risk & Repeat podcast episode discusses the Chinese nation-state threat group Salt Typhoon and its ongoing activities against telecommunications providers. Although the Salt Typhoon telecom breaches from last year appear to have been remediated, the threat group continues to target critical organizations.

Risk & Repeat: DeepSeek security issues emerge

The introduction of DeepSeek's new generative AI models have been met with fervor, but security issues have created apparent challenges for the Chinese startup. This Risk & Repeat podcast episode looks at DeepSeek's increasingly popular AI offering and the concerns surrounding its security.

Risk & Repeat: What is the future of CISA?

South Dakota Gov. Kristi Noem, who is President Trump's nominee for head of DHS, said during a recent confirmation hearing that CISA should be "smaller." This Risk & Repeat episode looks at the future of CISA and its prospects following President Donald Trump's inauguration.

Risk & Repeat: The state of ransomware in 2024

This Risk & Repeat episode looks back on ransomware-related events in 2024, including the attacks and trends that defined the year. Ransomware made major headlines in 2024, from the massive Change Healthcare attack to the creative takedown of the notorious LockBit ransomware-as-a-service gang.

Risk & Repeat: Attacks ramp up on Cleo MFT software

This Risk & Repeat episode discusses how threat actors are targeting Cleo managed file transfer (MFT) products Harmony, VLTrader and LexiCom through two flaws. Earlier this week attackers began exploiting a zero-day vulnerability related to an older flaw tracked CVE-2024-50623, but the details of the exploitation remain unclear