#227 - Intel Chat: Sudo, browser vulns, Medusa & Cloudflare blocks AI
In this episode of The Cybersecurity Defenders Podcast, we discuss some intel being shared in the LimaCharlie community: https://community.limacharlie.com/
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Stop Ransomware Over SMB with Falcon Endpoint Security: Demo Drill Down
Ransomware is evolving—and it's targeting your blind spots. Attackers now encrypt files remotely over SMB shares using stolen credentials and unmanaged systems, bypassing traditional defenses. CrowdStrike closes this gap with File System Containment, a powerful Falcon Endpoint Security feature that detects ransomware-style behaviors like mass encryption and blocks destructive file actions instantly—directly at the endpoint, without relying on cloud checks or process termination.
Stop Remote Ransomware Attacks with Falcon Endpoint Security
Ransomware is a rapidly evolving threat, with attackers increasingly turning to remote techniques that target network shares. To help defend against these tactics, CrowdStrike Falcon Prevent endpoint security includes a capability called File System Containment, which is precision-focused to block malicious file system actions over Windows Server Message Block (SMB) shares, halting encryption as soon as possible.
WatchGuard's Q1 2025 Internet Security Report. - The 443 Podcast - Episode 335
This week on the podcast, Corey Nachreiner and guest host Ryan Estes from WatchGuard’s malware analysis team explore WatchGuard’s recently released Q1 Internet Security Report (ISR). As always with the ISR, we highlight the top malware, network attacks, and malicious domains that our products see, but with our guest host, the author of the Endpoint section, we dive much deeper into all the threats arriving at our customers’ endpoints. Listen in for the latest threat landscape trends and some practical tips to stay safe from the most recent threats.
DORA and NIS 2: Regulatory Compliance as a Competitive Advantage for MSPs
The evolution and growing impact of cyberthreats are increasingly impacting the economic and social fabric. From attacks on business infrastructures to political disinformation campaigns and ransomware targeting critical environments such as hospitals or transportation networks, the impact is no longer just technical; it’s systemic.
XDR vs. SIEM: Defeating Cyber Chaos
Cybersecurity decision-makers face a growing challenge: defending against a rising tide of threats without drowning in operational complexity. Designed for large security teams, SIEM platforms often introduce more chaos than clarity, burdening small teams with high costs, complex deployments, and overwhelming data. In this webinar, Stephen Helm and Ricardo Arroyo will discuss the core differences between SIEM and XDR (Extended Detection and Response) and explain why XDR is emerging as the smart, scalable choice for modern MSPs and lean IT security teams.
New WatchGuard Research Reveals 171% Increase in Total Unique Malware as Attackers Defy Traditional Defences
Other key findings show an increase in email-borne malware threats, a rise in unique and evasive endpoint threats, and a decline in ransomware-shifts shaped by the AI boom.
WatchGuard Report: Malware Explodes Across Network and Endpoints
In WatchGuard’s just-released Q1 2025 Internet Security Report, one thing is clear: attackers are getting faster, stealthier, and more sophisticated, powered by an underground boom in AI tools. The numbers speak for themselves: These insights paint a clear picture: evasive, AI-driven threats are reshaping the cybersecurity battlefield. Organizations must adapt with layered, intelligent, and proactive defenses to stay ahead.
Rewind: Microsoft Kernel Shift, GPT-4o Threats, and Scattered Spider - The 443 Podcast - Episode 334
First, we look back at Microsoft’s major shift to remove endpoint protection from the Windows kernel. When we first covered it, it was a proposed change—now it's happening, and the implications are big. Next, we revisit a segment on GPT-4o and how generative AI is fueling the next wave of social engineering attacks. It's smarter, faster, and more convincing than ever. And finally, a refresher on the arrest of a Scattered Spider leader. While that made headlines, the group's activity hasn’t slowed down, they're still very much on the radar, as we discussed just last week.
The future of the digital estate: Automomous Endpoint Management | Tanium & endpointX
In this TechMonitor vodcast, brought to you in partnership with Tanium and endpointX, we dive into the evolving world of autonomous endpoint management (AEM). Join Dan Jones (Senior Security Advisor, EMEA at Tanium) and Dan Stead (Director at endpointX) as they explore: Whether you're in the public or private sector, this conversation offers valuable insights into how to secure and streamline your enterprise with modern tools.