Sponsored: The state of cloud security

Corelight's Vijit Nair on how and why cloud security is improving

In this Risky Business News sponsored interview, Tom Uren talks to Vijit Nair, Corelight’s VP of Product, about how cloud security was once an afterthought but is now on the improve.

Srsly Rizky Biz: The memory safety long game

Today's best practices are tomorrow's table stakes

In this podcast Patrick Gray and Tom Uren talk about the White House’s push for memory safe programming languages and software measurability. They also discuss Nevada’s moves against end to end encryption for children and the national security concerns with commercial data sales to geopolitical rivals.

You can find the newsletter version of this podcast here.

Risky Biz News: US sanctions Sandvine over Egypt sales

PLUS: Trend Micro confirms i-SOON link to Earth Lusca APT; NIST releases CSF 2.0; White House joins calls for use of memory-safe languages.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast here.

Risky Business #738 -- LockBit is down but not out. Yet.

The ransomware group is defiant. But is it also delusional?

In this week’s show Patrick Gray and Adam Boileau discuss the week’s security news. They talk about:

  • LockBit gets back up after takedown
  • Russia arrests Medibank hacker… for something else
  • ConnectWise gives out free updates, but customers aren’t happy
  • Microsoft gives in to demands for more logs
  • Sandvine gets entity-listed
  • And much much more.

Dmitri Alperovitch also joins the show to discuss Starlink, Starshield and a row with Congress about its availability in Taiwan.

In this week’s sponsor interview, Airlock Digital’s Daniel Schell talks about his adventures with WDAC, and Dave Cottingham predicts Windows 12 will go all in on signed code.

Risky Biz News: Backdoor code found in Tornado Cash

PLUS: Pharmacies disrupted across the US after "nation-state" attack; Canada's RCMP deals with a "cyber event"; and new ransomware hits TerraMaster NAS devices.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast click here.

Risky Biz News: Google addresses Chrome JIT security

PLUS: SmartConnect exploitation starts; Apple adds PQ3 to iMessage; and White House executive order targets cybersecurity at US ports.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast click here.

Srsly Risky Biz: China's free market espionage machine

The i-SOON leaks prove Chinese communists are great at capitalism...

In this podcast Patrick Gray and Tom Uren talk about a recent leak from a PRC cyber espionage contractor i-SOON. The leak sheds light on China’s cyber salt mines and the system’s hyper-capitalist, pay-for-results, approach to stealing secrets.

Risky Business #737 -- LockBit gets absolutely rekt

PLUS: When you buy your Edward Snowden from Wish.com...

In this week’s show Patrick Gray and Adam Boileau discuss the week’s security news. They talk about:

  • LockBit has been taken down by law enforcement
  • Some mega-juicy leaks out of Chinese offsec/APT contractor I-SOON
  • GRU gets its Moobot network shutdown
  • Signal adding usernames is… complicated
  • Much, much more

In this week’s sponsor interview Devicie’s Tom Plant joins the show to talk about problems orgs run into when it comes to Windows policies. There’s an expectation out there that Windows policies are set and forget, but sadly, this is not so.

Soap Box: A deep dive on how Russia's SVR is hacking Microsoft 365 tenants

And what you can do to protect yourself...

The need to properly secure Entra ID tenants has been made pretty obvious this year thanks to a large-scale attack on them by Russia’s SVR intelligence agency. In this interview Andy Robbins from SpecterOps, the maker of Bloodhound Enterprise, talks through how he thinks those attacks actually went down, about how if you’re an o365 customer you’re using Entra ID whether you like it or not, and about how you can lock down your Entra ID tenant.

Sponsored: Breaking apart OT protocols

runZero's Rob King on the how and why of reverse engineering for active discovery

In this Risky Business News sponsored interview, Tom Uren talks to Rob King, runZero’s Director of security research. The pair talk about the world of Operational Technology protocols and how Rob dissects these protocols to be sure that active discovery of OT devices is safe.

Risky Biz News: US takes down GRU/APT28 botnet

PLUS: Volt Typhoon expands to Africa; Poland's spyware abuse was far worse than previously thought; and Microsoft discloses new Exchange zero-day.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast click here.

Srsly Risky Biz: The spyware ecosystem

PLUS: Ukraine's destructive cyber attacks

In this podcast Patrick Gray and Tom Uren talk about what to do about commercial spyware. A new Google TAG report is a great primer on the ecosystem.

They also talk about Ukraine’s shift in cyber strategy. It is now carrying out and publicising that it is launching destructive cyber operations.

Finally, they look at all the reasons why banning ransomware payments is a bad idea.