Blumira Briefings
Blumira Briefings
Podcast Description
Staying on top of security news shouldn't be another full-time job.Enter Blumira Briefings, our weekly panel series where security experts break down the headlines you might have missed, and explain what they actually mean for your security practice! 🔒Each week, join a lineup of different Blumira experts (and sometimes special guests!) who will:Share the top threats, suspects, and risks we're seeing across our detection and response platformDiscuss significant security stories and what they mean for YOUProvide practical advice you can actually implement right away••Keep it conversational, informative, and under 30 minutes
Podcast Insights
Content Themes
The show focuses on critical security issues, trending threats, and risk analysis, with episodes discussing topics such as major vulnerabilities in software, breach incidents involving well-known companies, and analysis of specific security tools and methods. For example, the latest episode covers new flaws in VMware Tools and CrushFTP, CheckPoint's breach confirmation, and the rise of ransomware techniques like BlackSuit.
Staying on top of security news shouldn’t be another full-time job.
Enter Blumira Briefings, our weekly panel series where security experts break down the headlines you might have missed, and explain what they actually mean for your security practice! 🔒
Each week, join a lineup of different Blumira experts (and sometimes special guests!) who will:
- Share the top threats, suspects, and risks we’re seeing across our detection and response platform
- Discuss significant security stories and what they mean for YOU
- Provide practical advice you can actually implement right away
••Keep it conversational, informative, and under 30 minutes
🔔 Welcome to Blumira Briefings! This week, we're joined by Michael Kellar, Chris Furner, and Justin Kikani to break down the week's most important security headlines with expert context you can actually use. 🔔
What We Cover This Week:
🔄 NEW FORMAT! Instead of our usual top trends, we're highlighting the rarest findings in our environments – with insights on what makes these unusual detections worth your attention
🌐 Critical Chrome vulnerabilities with active exploits in the wild – what makes use-after-free and out-of-bounds write bugs so dangerous
🛠️ ConnectWise ScreenConnect and other vulnerabilities added to CISA's Known Exploited Vulnerabilities list
🪟 OneDrive File Picker flaw giving third-party apps broader permissions than users expect
🍪 NordVPN's alarming research on 94 billion stolen cookies for sale on dark web marketplaces
🎭 Deep dive into Scattered Spider's sophisticated help desk social engineering tactics
💡 Quick tip of the week: Consider conducting periodic, scheduled reboots for your organization's devices – this helps clear browser sessions, refresh security policies, and force application updates like Chrome to install critical patches.
Plus, Expert Insights On:
– Why auditing third-party app permissions is crucial for cloud security
– Why infostealer attacks are on the rise
– Practical strategies for protecting help desk teams from social engineering
– The rising trend of identity-focused attacks vs. traditional device targeting
– How to implement proper controls for remote workers using home network equipment
🔗 LINKS:
Prowler – Cloud security assessment tool: https://github.com/prowler-cloud/prowler
SilentPush research on Scattered Spider: https://www.silentpush.com/blog/scattered-spider-2025/
Blumira blog on SocGholish: https://www.blumira.com/blog/socgholish-malware-recent-trends-and-effective-detection-strategies
📰 SOURCES:
Chrome Zero-Day Vulnerability: https://www.securityweek.com/google-researchers-find-new-chrome-zero-day/
ConnectWise and CISA KEV Update: https://www.bleepingcomputer.com/news/security/cisa-warns-of-connectwise-screenconnect-bug-exploited-in-attacks/
OneDrive File Picker Vulnerability: https://hackread.com/onedrive-file-picker-apps-full-access-user-drives/
Stolen Cookies Research: https://www.theregister.com/2025/05/29/billions_of_cookies_available
Scattered Spider Analysis: https://thehackernews.com/2025/06/scattered-spider-understanding-help.html
Disclaimer
This podcast’s information is provided for general reference and was obtained from publicly accessible sources. The Podcast Collaborative neither produces nor verifies the content, accuracy, or suitability of this podcast. Views and opinions belong solely to the podcast creators and guests.
For a complete disclaimer, please see our Full Disclaimer on the archive page. The Podcast Collaborative bears no responsibility for the podcast’s themes, language, or overall content. Listener discretion is advised. Read our Terms of Use and Privacy Policy for more details.