Welcome to The Threat Show, powered by Fletch! In this special year-end episode, Darien and Chris get down to the brass tacks of what went down in cybersecurity this year.
From the tactics that made practitioners lose sleep, to the most targeted industries in 2023, to looking towards technology that will drastically alter cybersecurity in 2024 and beyond. This episode’s discussion is the perfect way to close out the wild ride that was cybersecurity in 2023.
We also discuss three trending threats that you need to know about.
Looking back at major threats in 2023 (01:35)
Darien and Chris discuss the roller coaster ride that was 2023.
Threat Landscape (03:10)
Darien and Chris break down this week’s Threat Landscape, broadly examining the threats that emerged, started to trend, and became mainstream, as well as the threats that haven’t seen any activity in the past month.
Atlassian security advisory reveals four fresh critical flaws (04:01)
Atlassian has released software fixes to address four critical flaws in its software that could result in remote code execution. All four flaws have a CVSS score higher than 9.
Qualcomm Releases Details on Chip Vulnerabilities Exploited in Targeted Attacks (05:52)
Qualcomm recently disclosed and patched over two dozen security vulnerabilities in components of their products. Three of these flaws were zero-day vulnerabilities that were exploited in limited targeted attacks. The majority of the vulnerabilities were rated as either critical or high severity and could allow attackers to corrupt memory, disclose sensitive information or bypass authentication checks.
Apple and some Linux distros are open to Bluetooth attack (08:08)
A critical Bluetooth vulnerability has been identified that allows attackers to impersonate a keyboard and remotely take over various systems. This flaw affects multiple platforms, including Android, Linux, macOS, and iOS, and allows unauthenticated Bluetooth keystroke injection.
