Risky Business #781 -- How Bybit oopsied $1.4bn

Presented by

Adam Boileau
Adam Boileau

Technology Editor

Patrick Gray
Patrick Gray

CEO and Publisher

On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news:

  • North Korea pulls off a 1.5 billion dollar crypto heist
  • Apple pulls Advanced Data Protection from the UK
  • Black Basta ransomware gang’s internal chats leak
  • Russians snoop on Signal with QR codes
  • And Myanmar ships thousands of freed scam compound workers to Thailand

Regular guest Lina Lau joins to discuss her work reading Chinese incident response reports on WeChat, and how that has people thinking that … she outed the NSA?

This week’s episode is sponsored by Airlock Digital, and allow-listing tragics Daniel Schell and David Cottingham are along with an amusing tale of using Windows’ own allow-listing software to block EDR from loading.

This episode is also available on Youtube.

Risky Business #781 -- How Bybit oopsied $1.4bn
0:00 / 62:40

Show notes

Hackers drained $1.4 billion of cryptocurrency from Bybit exchange, CEO confirms | The Record from Recorded Future News

CertiK - Bybit Incident Technical Analysis

Hackers use ‘sophisticated’ macOS malware to steal cryptocurrency, Microsoft says | The Record from Recorded Future News

EU sanctions North Korean tied to Lazarus group over involvement in Ukraine war | The Record from Recorded Future News

Sanctions: Iranians Flock to Crypto; Int'l Actions Target Russia - Chainalysis

Apple turns off iCloud encryption feature in UK following reported government legal order | The Record from Recorded Future News

Swedish authorities seek backdoor to encrypted messaging apps | The Record from Recorded Future News

Leaked chat logs expose inner workings of secretive ransomware group - Ars Technica

Russian state hackers spy on Ukrainian military through Signal app | The Record from Recorded Future News

Meta Sues Alleged Violent Extortionist For Holding Instagram Accounts Hostage

Weathering the storm: In the midst of a Typhoon

Thailand to take in 7,000 rescued from illegal cyber scam hubs in Myanmar | The Record from Recorded Future News

Genea confirms cyber breach after ‘unauthorised third party’ accesses data | news.com.au — Australia’s leading news site

Managed healthcare defense contractor to pay $11 million over alleged cyber failings | The Record from Recorded Future News

Botnet looks for quiet ways to try stolen logins in Microsoft 365 environments | The Record from Recorded Future News

Director-General's Annual Threat Assessment 2025 | ASIO

An inside look at NSA (Equation Group) TTPs from China’s lense