Risky Business Podcast

November 01, 2023

Risky Business #727 -- Mr Gray goes to Washington

Presented by

Patrick Gray
Patrick Gray

CEO and Publisher

Adam Boileau
Adam Boileau

Technology Editor

On this week’s show Patrick Gray talks through the news with Chris Krebs and Dmitri Alperovitch. They discuss:

  • The SEC enforcement action against Solarwinds’ CISO
  • The White House AI Executive Order
  • CitrixBleed exploitation goes wide
  • How Kaspersky captured some (likely) Five Eyes iOS 0day
  • Elon Musk’s Gaza Strip adventures
  • Much, much more

This week’s show is brought to you by Greynoise. Andrew Morris, Greynoise’s founder and CEO, is this week’s sponsor guest. He talks about how Greynoise is using large language models to help them analyse massive quantities of malicious internet traffic.

Risky Business #727 -- Mr Gray goes to Washington
0:00 / 0:00

Show notes

comp-pr2023-227.pdf

Biden signs executive order to oversee and invest in AI tech

Risky Biz News: CitrixBleed vulnerability goes from bad to disastrous

Andrew Morris on X: "Confluence bug is popping off. VAST majority of it is blasting thru Tor, similar to the first wave of Log4J exploitation two years ago. If you haven't patched, it's probably popped. https://t.co/4JC0uiTaqc https://t.co/wLDgQpq7r0" / X

Andrew Morris on X: "Confluence bug is popping off. VAST majority of it is blasting thru Tor, similar to the first wave of Log4J exploitation two years ago. If you haven't patched, it's probably popped. https://t.co/4JC0uiTaqc https://t.co/wLDgQpq7r0" / X

How Kaspersky obtained all stages of Operation Triangulation | Securelist

Kaspersky reveals 'elegant' malware resembling NSA code | CyberScoop

Sophisticated StripedFly Spy Platform Masqueraded for Years as Crypto Miner

A cascade of compromise: unveiling Lazarus' new campaign | Securelist

Near-total internet and cellular blackout hits Gaza as Israel ramps up strikes

Amichai Stein on X: "Israel's Communications Minister @shlomo_karhi in response to Elon Musk: Israel will use all the means at its disposal to fight this. Hamas will use this for terrorist activity. There is no doubt about it. We know it, and Musk knows it. Hamas is ISIS." / X

Shashank Joshi on X: "Wonder what encryption, if any, they use? Vulnerable to tapping. "Hamas has maintained operational security by going “stone age” and using hard-wired phone lines while eschewing devices that are hackable or emit an electronic signature." https://t.co/ALVSXb55Zn" / X

Hackers that breached Las Vegas casinos rely on violent threats, research shows | CyberScoop

Octo Tempest crosses boundaries to facilitate extortion, encryption, and destruction | Microsoft Security Blog

GitHub - cloudflare/har-sanitizer

Russia to launch its own version of VirusTotal due to US snooping fears

iPhones have been exposing your unique MAC despite Apple’s promises otherwise | Ars Technica

VMware warns of critical vulnerability affecting vCenter Server product

Judge tosses Khashoggi widow’s lawsuit against NSO Group