The Security Squawk Podcast crew discusses cybersecurity. The hosts, Bryan Horning, Reginald Andre, Randy Brian, and Ryan O'Hara, talk about the current state of ransomware attacks happening in the world. They discuss the recent attack on a hospital in Tallahassee, which has led to a security issue, and the hospital has suspended all non-emergency procedures. The word "issue" to describe the attack is noted as being too weak, and the hosts suggest it is being used to minimize public fear and legal implications. The hospital has been targeted due to its large amount of valuable data, making it a high-value target for criminals. The hospital is prioritizing its IT systems and bringing them back online one by one.
Ryan, Randy, and Bryan are discussing the recent ransomware attacks on hospitals and other organizations. They mention that the increase in ransomware attacks was expected due to a combination of factors, including the position of the hackers, the release of vulnerabilities, and the recent boasting of the FBI and Justice Department about their takedown of some cybercrime groups. They also discuss the vulnerability in VMware ESXi servers, a common technology many organizations use for their server infrastructure. The ransomware variant, DougE, is fast and widespread, causing admins to scramble to patch their systems. The recommendation is to apply the patch as soon as possible and to scan for signs of compromise if the system is left unpatched. The vulnerability is considered serious as it gives the attacker's God mode access to all virtual machines running on the VMware ESXi server.
The conversation is about cyber security and the recent ransomware attacks on various organizations. The crew discusses the importance of having an independent cybersecurity risk assessment to understand the full picture of the security situation. They are also discussing the need for regular maintenance and updates to keep systems secure and the importance of educating people about cybersecurity, including the next generation. The cyber experts also mention the recent attack on a chipmaker and a school district, as well as Italy's recent ransomware attack, which was related to the VMware issue. They also mention the use of the Conte ransomware source code by the LockBit ransomware group, highlighting the need for constant vigilance and updates to stay ahead of evolving threats.