Hewlett Packard Enterprise patches a maximum-severity vulnerability in its OneView infrastructure management software. Cisco warns a critical zero-day is under active exploitation. An emergency Chrome update fixes two high-severity vulnerabilities. French authorities make multiple arrests. US authorities dismantle an unlicensed crypto exchange accused of money laundering. SonicWall highlights an exploited zero-day. Researchers earn $320,000 for demonstrating critical remote code execution flaws in cloud infrastructure components. A U.S. Senator urges electronic health record vendors to give patients greater control over who can access their medical data. Our guest is Larry Zorio, CISO from Mark43, discussing first responders and insider cyber risks. A right-to-repair group puts cash on the table. 

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

Today we are joined by Larry Zorio, CISO from Mark43, to discuss first responders sounding the alarm on insider cyber risks. To see the full report, check it out here.

Selected Reading

HPE warns of maximum severity RCE flaw in OneView software (Bleeping Computer)

China-Linked Hackers Exploiting Zero-Day in Cisco Security Gear (SecurityWeek)

Google Chrome patches two high severity vulnerabilities in emergency update (Beyond Machines)

France arrests 22-year-old over Interior Ministry hack (The Record)

France arrests Latvian for installing malware on Italian ferry  (Bleeping Computer)

FBI dismantles alleged $70M crypto laundering operation (The Register)

SonicWall Patches Exploited SMA 1000 Zero-Day (SecurityWeek)

Zeroday Cloud hacking event awards $320,0000 for 11 zero days (Bleeping Computer)

Senator Presses EHR Vendors on Patient Privacy Controls (Govinfosecurity)

A nonprofit is paying hackers to unlock devices companies have abandoned (TechSpot)

Share your feedback.

What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show.

Want to hear your company in the show?

N2K CyberWire helps you reach the industry’s most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com.

The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc.

Learn more about your ad choices. Visit megaphone.fm/adchoices