Risky Business #743 -- A chat about the xz backdoor with the guy who found it

PLUS: The CSRB mauls Microsoft…
03 Apr 2024 » Risky Business

On this week’s show Patrick and Adam discuss the week’s security news, including:

  • The SSH backdoor that dreams (or nightmares) are made of
  • Microsoft gets a solid spanking from the CSRB
  • Ukraine uses an old Russian WinRAR bug to hack Russia
  • Push-notifications and social-engineering combined-arms vs Apple
  • And much, much more.

We have a special guest in this week’s show, Andres Freund, the Postgres developer who discovered the backdoor in the xz Linux compression library.

This week’s show is brought to you by Island, a company that makes a security-focussed enterprise browser. Island’s Bradon Rogers is this week’s sponsor guest and he’ll be joining us to talk about how people are swapping out their Virtual Desktop Infrastructure for enterprise-focussed browsers like theirs.

SUBSCRIBE NOW:
Risky Business main podcast feed:
Listen on Apple Podcasts Listen on Overcast Listen on Pocket Casts Listen on Spotify Subscribe with RSS
Our extra podcasts feed:
Listen on Apple Podcasts Listen on Overcast Listen on Pocket Casts Listen on Spotify Subscribe with RSS
Subscribe to our newsletters: