Chris Camacho is the Chief Revenue Officer at Flashpoint, a risk intelligence platform. With over 15 years of cybersecurity leadership experience, including several years of security operations for financial institutions such as The World Bank and Bank of America, we spoke to Chris and his colleague Jason Rivera about how cybersecurity is affected by recent developments in the financial sector, highlights from the RSA Security Conference, new technologies fundamentally changing how the security industry operates, and much more.
RSA Recap (02:26)
Chris Camacho, Jason Rivera, and Chris Wilder share highlights from the RSA Security Conference.
Threat Landscape (05:58)
Darien and Chris break down this week’s Threat Landscape, broadly examining the threats that emerged, started to trend, and became mainstream, as well as the threats that haven’t seen any activity in the past month.
Update now: Critical flaw in VMWare Fusion and VMWare Workstation (07:36)
A new round of virtualization breakout vulnerabilities was discovered within the VMWare platform, specifically targeting VMWare Workstation and Fusion. Attackers with guest-level access inside of VMWare can break out into the host environment.
Chinese APT Uses New ‘Stack Rumbling’ Technique to Disable Security Software (09:15)
APT41 is a China-based nation-state threat group that is using a new technique called ‘stack rumbling’. This technique allows attackers who have gained access to internet servers to disable security software, which is not uncommon. However, the technique has an added layer of difficulty as it can prevent the software from starting up again.
Microsoft: Cl0p Ransomware Exploited PaperCut Vulnerabilities Since April 13 (12:21)
The Cl0p Ransomware group is exploiting a set of zero-day vulnerabilities affecting PaperCut, a common piece of software used by small businesses to manage centralized printing. This exploit enables the group to load cryptocurrency mining operations onto PaperCut servers.
New ‘Lobshot’ hVNC Malware Used by Russian Cybercriminals (15:31)
Lobshot malware is a new type of HVNC (Hidden Virtual Network Computing) malware used by Russian nation-state groups. It allows attackers to take full control of a victim’s computer remotely and make transactions while avoiding detection by security software.
