Talkin’ About Infosec News – 11/10/2023

The post Talkin’ About Infosec News – 11/10/2023 appeared first on Black Hills Information Security. (00:00) - PreShow Banter™ — The Jerky Experience (03:40) - BHIS - Talkin' Bout [infosec] News 2023-11-06 (04:34) - Story # 1: Okta hit by third-party data breach exposing employee information (07:03) - Story # 1b: Okta Hack Blamed on Employee Using Personal Google Account on Company Laptop (13:13) - Story # 2: Boeing confirms cyberattack, global services disrupted (14:34) - Story # 3: Four dozen countries declare they won’t pay ransomware ransoms (15:26) - Story # 4: https://www.healthcareinfosecurity.com/feds-levy-first-ever-hipaa-fine-for-ransomware-data-breach-a-23448 (27:08) - Story # 5: “This vulnerability is now under mass exploitation.” Citrix Bleed bug bites hard (30:52) - Story # 6: 3,000 Apache ActiveMQ servers vulnerable to RCE attacks exposed online (32:03) - Story # 7: Exploit released for critical Cisco IOS XE flaw, many hosts still hacked (33:28) - Story # 7b: Cisco IOS XE CVE-2023-20198: Deep Dive and POC (42:38) - Story # 8: SEC charges SolarWinds CISO with fraud for misleading investors before major cyberattack