Podcasts

News, analysis and commentary

Risky Bulletin: Research turns any Bluetooth device into an AirTag

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

Researchers turn any Bluetooth device into an AirTag tracker, VMware patches three ESXi zero-days, France debates encryption backdoors, and a fifth of the stolen Bybit funds are now untraceable.

Risky Bulletin: Research turns any Bluetooth device into an AirTag
0:00 / 5:54

RBTALKS6: Will Thomas on the Black Basta leaks

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

In this Risky Business Talks interview we invited Will Thomas to talk about the recent leak of internal chats from the Black Basta ransomware group. Will is a SANS Instructor, co-author of the SANS FOR589 course, and the co-founder of a community research project for CTI analysts called Curated Intelligence. Will walks us through the Black Basta leak and uses the group’s attack on US healthcare provider Ascension to break down how the gang operated.

RBTALKS6: Will Thomas on the Black Basta leaks
0:00 / 25:06

Between Two Nerds: NSA's 9 to 5 hacking campaign

Presented by

The Grugq
The Grugq

Independent Security Researcher

Tom Uren
Tom Uren

Policy & Intelligence

In this edition of Between Two Nerds Tom Uren and The Grugq take a deep dive into incident response reports from Chinese cybersecurity firms that attribute the hack of one of the country’s top seven defence universities to the US National Security Agency. These reports were collated and translated into English by the security researcher known as Inversecos [https://x.com/inversecos].

This episode is also available on Youtube.

Between Two Nerds: NSA's 9 to 5 hacking campaign
0:00 / 35:29

Risky Bulletin: Trump admin halts Russia cyber operations

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

The Trump administration stops treating Russian hackers as a threat, Meta seeks a permanent NSO injunction, new Cellebrite zero-days come to light, and big name Russian cyber criminals get … home detention.

Risky Bulletin: Trump admin halts Russia cyber operations
0:00 / 7:33

Sponsored: Prowler on the Open Cloud Security Movement

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

In this Risky Business News sponsor interview, Catalin Cimpanu talks with Toni de la Fuente, founder and CEO of cloud security firm Prowler. Toni talks about his company’s latest effort, the Open Cloud Security Movement, an initiative to get more cloud security vendors to open-source their core projects.

Sponsored: Prowler on the Open Cloud Security Movement
0:00 / 13:53

Risky Bulletin: Cellebrite fires Serbia as a customer

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

Cellebrite bans Serbia from using its products, Chinese hackers breached the Belgian security service, the Republican National Committee hid a Chinese hack and Microsoft removes malicious extensions from the VSCode Marketplace.

Risky Bulletin: Cellebrite fires Serbia as a customer
0:00 / 6:44

Srsly Risky Biz: Canada's expulsion from Five Eyes would be a disaster

Presented by

Patrick Gray
Patrick Gray

CEO and Publisher

Tom Uren
Tom Uren

Policy & Intelligence

Tom Uren and Patrick Gray talk about the White House apparently considering kicking Canada out of the Five Eyes intelligence alliance to apply pressure on the country. It’s a terrible idea and even thinking about it undermines the strength of the alliance.

They also discuss Sweden’s proposed legislation that would order apps like WhatsApp and Signal to store messages so they could be provided under warrant to authorities. The story is a vignette of the ongoing encryption debate, but we think apps like Signal will leave the country rather than comply.

Finally, they talk about how the illicit cryptocurrency ecosystem is evolving in response to government action such as takedowns and sanctions.

This episode is also available on Youtube.

Srsly Risky Biz: Canada's expulsion from Five Eyes would be a disaster
0:00 / 24:18

Risky Business #781 -- How Bybit oopsied $1.4bn

Presented by

Adam Boileau
Adam Boileau

Technology Editor

Patrick Gray
Patrick Gray

CEO and Publisher

On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news:

  • North Korea pulls off a 1.5 billion dollar crypto heist
  • Apple pulls Advanced Data Protection from the UK
  • Black Basta ransomware gang’s internal chats leak
  • Russians snoop on Signal with QR codes
  • And Myanmar ships thousands of freed scam compound workers to Thailand

Regular guest Lina Lau joins to discuss her work reading Chinese incident response reports on WeChat, and how that has people thinking that … she outed the NSA?

This week’s episode is sponsored by Airlock Digital, and allow-listing tragics Daniel Schell and David Cottingham are along with an amusing tale of using Windows’ own allow-listing software to block EDR from loading.

This episode is also available on Youtube.

Risky Business #781 -- How Bybit oopsied $1.4bn
0:00 / 62:40

Risky Bulletin: Signal threatens to leave Sweden over backdoor request

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

Signal threatens to leave Sweden over backdoor request, the EU sanctions a North Korean general linked to two APTs, Australia bans Kaspersky products on government systems and Google will use QR codes for Gmail authentication.

Risky Bulletin: Signal threatens to leave Sweden over backdoor request
0:00 / 6:59

Between Two Nerds: Hacking's first principles

Presented by

The Grugq
The Grugq

Independent Security Researcher

Tom Uren
Tom Uren

Policy & Intelligence

In this edition of Between Two Nerds Tom, Uren and The Grugq examine the fundamental principles of network exploitation as described in Matthew Monte’s ‘Network Attacks and Exploitation: A Framework’ book using recent hacks as case studies.

This episode is also available on Youtube.

Between Two Nerds: Hacking's first principles
0:00 / 29:52