Risky Business Weekly: Microsoft un-patches a critical bug

On this week’s show, Patrick Gray and Adam Boileau discuss the weeks security news, including: Russia’s disinformation peddlers face multifaceted sternness from the DoJ Telegram is now law enforcement’s bestest new pal, all of a sudden Iran’s banking industry arranges a payment plan for a ransom Columbia investigates how it sent private jets full of cash to pay for Pegasus Microsoft innovates with Un-Patch Tuesday And much, much more. This week’s sponsor is Kroll Cyber, and one of their incident responders Paul Wells joins to discuss that one weird trick that actually helps - preparing for an incident before hand, rather than learning all those hard lessons in the middle of a crisis. Show notes/links: Risky Biz News: Doppelganger gets a kick in the butt from Uncle Sam https://news.risky.biz/risky-biz-news... Russia focusing on American social media stars to covertly influence voters | Reuters https://www.reuters.com/world/russia-... Russian pro-democracy nonprofit investigates alleged data breach by Kremlin-backed hackers https://therecord.media/free-russia-f... Biden administration hits Russia with sanctions over efforts to manipulate U.S. opinion ahead of the election https://www.nbcnews.com/politics/2024... US hits Chinese companies with new sanctions over Russia-Ukraine war https://thehill.com/policy/defense/48... Elon Musk’s Starlink backtracks to comply with Brazil’s ban on X | Elon Musk | The Guardian https://www.theguardian.com/technolog... Why It's So Hard to Fully Block X in Brazil | WIRED https://www.wired.com/story/brazil-x-... Durov says Telegram will tackle criticism of how it moderates content | Reuters https://www.reuters.com/technology/du... Navalny allies accuse Telegram and other platforms of censorship | Economy News | Al Jazeera https://www.aljazeera.com/news/2021/9... How India tamed Twitter and set a global standard for online censorship - The Washington Post https://www.washingtonpost.com/world/... 2 white supremacists tried to spark race war by soliciting murder and hate crimes on Telegram, feds say https://www.nbcnews.com/news/us-news/... Matthew Garrett: "Why clone a yubikey when you c…" - Nondeterministic Computer https://nondeterministic.computer/@mj... Iran pays millions in ransom to end massive cyberattack on banks, officials say – POLITICO https://www.politico.eu/article/iran-... Four Delaware men charged in international sextortion scheme that netted nearly $2 million | CyberScoop https://cyberscoop.com/sextortion-sca... Colombian president suggests prior administration illegally sent $11 million in cash to Israel for spyware https://therecord.media/colombian-pre... Poland’s constitutional court finds commission investigating use of Pegasus spyware unconstitutional | Notes From Poland https://notesfrompoland.com/2024/09/1... CISA says SonicWall bug being exploited as experts warn of ransomware gang use https://therecord.media/cisa-orders-p... SonicWall SSLVPN access control flaw is now exploited in attacks https://www.bleepingcomputer.com/news... Bug Left Some Windows PCs Dangerously Unpatched – Krebs on Security https://krebsonsecurity.com/2024/09/b...