Proposed cuts put CISA in focus.
Get the full intelligence
Search transcripts, export clips, track mentions, and explore all topics from “Proposed cuts put CISA in focus.” inside PodZeus.
This episode of CyberWire Daily examines a proposed $707 million budget cut to CISA for fiscal year 2027, which would refocus the agency on federal network protection while eliminating programs like school safety initiatives and international stakeholder engagement. The segment highlights growing concerns over Russian-Iranian cyber cooperation, with allegations of coordinated satellite surveillance and cyber operations targeting regional infrastructure. Meanwhile, emerging threats include new BPF door malware variants, a GPU-based Rohammer attack enabling privilege escalation, and a major cyberattack disrupting Northern Ireland’s school IT systems. In a featured Industry Voices segment, John Anthony Smith, founder and CISO of Phoenix 24, argues that organizations are failing to improve security despite investing in technology—because they neglect proper configuration, execution, and resilience. He emphasizes that most breaches are not due to missing tools but to poor implementation, alert fatigue, and a lack of survivable backups. Smith urges executives to shift focus from prevention to resiliency, advocating for orchestrated, multi-layered recovery strategies. The episode concludes with a frustrated researcher releasing exploit code for an unpatched Windows zero-day, underscoring the urgency of proactive defense and real-world threat readiness.
Organizations must prioritize resiliency over prevention—most security failures stem from poor configuration and recovery planning, not missing tools.
84% of organizations lack survivable backups, and many cannot recover from destructive attacks within acceptable RTOs/RPOs.
Threat actors increasingly exploit convenience-driven policies like remote SaaS access, exposing credentials and authentication tokens.
Complexity in security is necessary—but only when it supports orchestrated, multi-layered recovery and defense-in-depth strategies.
Alert fatigue is real and dangerous; many organizations ignore critical alerts, allowing attackers to dwell for hours or days.
…and 3 more takeaways available in PodZeus
CISA Budget Cuts and Global Cyber Threats
“The proposal would remove programs considered redundant, including school safety initiatives, and dissolve offices handling international affairs, stakeholder engagement, and efforts to counter misinformation.”
Emerging Malware and Cybercrime Trends
New BPF door malware variants are evading defenses using ICMP relays and stateless C2 routing. Cybercrime losses continue to rise, with over $262 million lost to account takeover fraud in 2025. Impersonation campaigns and spoofed websites remain key vectors.
Advanced Hardware-Based Attacks
“Combined with memory safety flaws in NVIDIA drivers, the attack can escalate privileges to root-level system compromise.”
Northern Ireland School IT Breach
“The Education Authority said it detected the incident last week and shut down system access to contain the breach.”
Why More Technology Isn’t Making Us Safer
“Most of these tools are largely not configured in the context of what threat actors are able and willing to do.”
“84% of organizations that we meet in breach—it's the first time we've ever met them to actually orchestrate their recovery from a disastrous exfiltration or destructive event.”
“You're probably living in a farce. Actually, I can almost guarantee you're living in a farce.”
“The researcher, posting as chaotic eclipse, declined to explain the exploit in detail, suggesting others could figure it out.”
Host
Guest
John Anthony Smith
person
CISA
organization
BPF door malware
other
Phoenix 24
organization
Iranian hackers
other
Microsoft
organization
Northern Ireland Education Authority
organization
GPU Breach
other
Russian satellites
other
Blue Hammer
other
Water sector feels the pressure.
CyberWire Daily • 26m • 3/31/2026
A war of missiles and messages.
CyberWire Daily • 30m • 4/1/2026
The WhatsApp impostor.
CyberWire Daily • 30m • 4/2/2026
War comes for the cloud.
CyberWire Daily • 30m • 4/3/2026
Startup surge sparks spy interest. [Research Saturday]
CyberWire Daily • 19m • 4/4/2026
Get the full intelligence
Search transcripts, export clips, track mentions, and explore all topics from “Proposed cuts put CISA in focus.” inside PodZeus.
Start discovering podcast insights today
Start with a 7-day trial and explore a growing catalog of popular podcasts. No credit card required.
No credit card required • 7-day trial • Cancel anytime