Risky Business Podcast
August 06, 2025
Risky Business #801 -- AI models can hack well now and it's weirding us out
Presented by

Producer and Editor

Technology Editor

CEO and Publisher
On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news. Google security engineering VP Heather Adkins drops by to talk about their AI bug hunter, and Risky Business producer Amberleigh Jack makes her main show debut.
This episode explores the rise of AI-powered bug hunting:
- Google’s Project Zero and Deepmind team up to find and report 20 bugs to open source projects
- The XBOW AI bug hunting platform sees success on HackerOne
- Is an AI James Kettle on the horizon?
There’s also plenty of regular cybersecurity news to discuss:
- On-prem Sharepoint’s codebase is maintained out of China… awkward!
- China frets about the US backdooring its NVIDIA chips, how you like ‘dem apples, China?
- SonicWall advises customers to turn off their VPNs
- Hardware controlling Dell laptop fingerprint and card readers has nasty driver bugs
- Russia uses its ISPs to in-the-middle embassy computers and backdoor ‘em.
- The Russian government pushes VK’s Max messenger for everything
This week’s show is sponsored by device management platform Devicie. Head of Solutions Sean Ollerton talks through the impending Windows 10 apocalypse, as Microsoft ends mainstream support. He says Windows 11 isn’t as scary as people make out, but if the update isn’t on your radar now, time is running out.
This episode is also available on Youtube.

Brought to you by Devicie
Cloud-native device management platform
Show notes
Google says its AI-based bug hunter found 20 security vulnerabilities | TechCrunch
Is XBOW’s success the beginning of the end of human-led bug hunting? Not yet. | CyberScoop
Risky Bulletin: China with the accusations again - Risky Business Media
SharePoint Exploit: Microsoft Used China-Based Engineers to Maintain the Software — ProPublica
China fears Nvidia chips could track, trace and shut down its AIs - Asia Times
Gen 7 SonicWall Firewalls – SSLVPN Recent Threat Activity
ReVault! When your SoC turns against you…
Nearly 100,000 ChatGPT Conversations Were Searchable on Google
Microsoft catches Russian hackers targeting foreign embassies - Ars Technica
The Kremlin’s Most Devious Hacking Group Is Using Russian ISPs to Plant Spyware | WIRED
Frozen in transit: Secret Blizzard’s AiTM campaign against diplomats | Microsoft Security Blog