π Welcome to another episode of Blumira Briefings! This week, we welcome special guest Dennis Fisher, InfoSec journalist extraordinaire and Editor-in-Chief of Decipher, joining Zoe Lindsey, Jake Ouellette, and Nick Dixon to break down the week's most important security headlines. π
What We Cover This Week:
π± Apple's iOS/iPadOS 18.5 update patches 30+ security bugs - learn what's affected and why you need to update now
π» ASUS DriverHub vulnerability allows attackers to run admin commands through malicious websites
π§ Cisco IOS XE Wireless Controller critical vulnerability (CVSS 10.0) exploitable via hardcoded JWT tokens
βοΈ Fortinet zero-day exploited in FortiVoice attacks - what post-compromise activity looks like
π SPECIAL SEGMENT: Dennis Fisher shares insights on navigating InfoSec journalism, finding reliable sources, and how to cut through vendor spin to find the truth
π οΈ Detection Engineering deep dive: Why maintenance matters, and how to shift from reactive to proactive security operations
π‘ Quick tip: Consider the security implications of pre-installed utilities with elevated privileges - sometimes you need to disable bloatware in BIOS, not just uninstall it!
π LINKS:
Apple iOS/iPadOS 18.5 Security Update: https://support.apple.com/en-us/122404
ASUS DriverHub Advisory: https://www.bleepingcomputer.com/news/security/asus-driverhub-flaw-let-malicious-sites-run-commands-with-admin-rights/
Cisco IOS XE Advisory: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wlc-file-uplpd-rHZG9UfC
Fortinet Advisory: https://fortiguard.fortinet.com/psirt/FG-IR-25-254
Detection Engineering Maintenance Article: https://medium.com/falconforce/why-is-no-one-talking-about-maintenance-in-detection-engineering-ebb5820564dc
Detection Engineering Maturity Matrix: https://detectionengineering.io/
Popular Podcasts
Fudd Around And Find Out
UConn basketball star Azzi Fudd brings her championship swag to iHeart Womenβs Sports with Fudd Around and Find Out, a weekly podcast that takes fans along for the ride as Azzi spends her final year of college trying to reclaim the National Championship and prepare to be a first round WNBA draft pick. Ever wonder what itβs like to be a world-class athlete in the public spotlight while still managing schoolwork, friendships and family time? Itβs time to Fudd Around and Find Out!
Crime Junkie
Does hearing about a true crime case always leave you scouring the internet for the truth behind the story? Dive into your next mystery with Crime Junkie. Every Monday, join your host Ashley Flowers as she unravels all the details of infamous and underreported true crime cases with her best friend Brit Prawat. From cold cases to missing persons and heroes in our community who seek justice, Crime Junkie is your destination for theories and stories you wonβt hear anywhere else. Whether you're a seasoned true crime enthusiast or new to the genre, you'll find yourself on the edge of your seat awaiting a new episode every Monday. If you can never get enough true crime... Congratulations, youβve found your people. Follow to join a community of Crime Junkies! Crime Junkie is presented by audiochuck Media Company.
The Breakfast Club
The World's Most Dangerous Morning Show, The Breakfast Club, With DJ Envy, Jess Hilarious, And Charlamagne Tha God!