Podcasts

News, analysis and commentary

Between Two Nerds: How tools evolve

Presented by

The Grugq
The Grugq

Independent Security Researcher

Tom Uren
Tom Uren

Policy & Intelligence

In this edition of Between Two Nerds Tom Uren and The Grugq talk about an in-depth report on a Ukrainian hacking control panel. The panel shows how the Ukrainian group thinks about hacking operations and the pair discuss why the report exists and what it achieves.

This episode is also available on Youtube.

Between Two Nerds: How tools evolve
0:00 / 27:44

Risky Bulletin: Trump admin's Signal clone gets hacked, messages exposed

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

The Trump admin’s Signal clone gets hacked, a six-year-old backdoor comes to life to hijack online stores, a Phishing kingpin identified as a 24-year-old Chinese man, and Ireland fines TikTok for transferring EU user data to China.

Risky Bulletin: Trump admin's Signal clone gets hacked, messages exposed
0:00 / 7:52

Sponsored: Why security is a data search problem

Presented by

Tom Uren
Tom Uren

Policy & Intelligence

In this Risky Bulletin sponsor interview Mike Wiaceck, CEO and founder of Stairwell, explains why he believes security is really a data storage and retrieval problem. He demonstrates how that pays off with in the analysis of new malware.

Sponsored: Why security is a data search problem
0:00 / 13:12

Risky Bulletin: New Microsoft accounts will be passwordless by default

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

New Microsoft accounts will be passwordless by default, a Chinese APT is hijacking software updates, the US dominates EU cybersecurity market, and Commvault discloses a breach.

Risky Bulletin: New Microsoft accounts will be passwordless by default
0:00 / 5:44

Srsly Risky Biz: Security vendors are constantly attacked

Presented by

Patrick Gray
Patrick Gray

CEO and Publisher

Tom Uren
Tom Uren

Policy & Intelligence

Tom Uren and Patrick Gray talk about a SentinelOne report about how it is constantly targeted by both cybercriminal and state-backed hackers. Security firms are high-value targets, so constant attacks on them are the new normal.

They also discuss an article that calls Signal “a kind of dark matter of American politics and media”. Many policy discussions occur on the app, and this explains the Trump administration’s extensive use of the app.

This episode is also available on Youtube.

Srsly Risky Biz: Security vendors are constantly attacked
0:00 / 20:47

Risky Business #789 -- Apple's AirPlay vulns are surprisingly awful

Presented by

Adam Boileau
Adam Boileau

Technology Editor

Patrick Gray
Patrick Gray

CEO and Publisher

On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news:

  • British retail stalwart Marks & Spencer gets cybered
  • South Korean telco sets out to replace all its subscriber SIMs after (we assume) it lost the keymat
  • It’s a good exploit week! Bugs in Apple Airplay, SAP webservers, Erlang SSH and CommVault backups
  • Juice jacking! No, really! Some researchers actually did it (so still not in the wild, then)
  • Anti-DOGE whistleblower sure sounds like he has a point

This week’s episode is sponsored by Knocknoc, who let you glue your firewalls to your single sign on. Knocknoc’s CEO Adam Pointon talks about the joy that having end-to-end IPv6 would bring for zero-trust access control. He also touches on people using Knocknoc inside their network to isolate critical systems.

Editors Note : Pat also gives Adam (Boileau) stick in the sponsor interview about the Risky Biz webserver not having IPv6 enabled, which fact-checking during the edit says is FAKE NEWS. Just uh, don’t look at how fresh that AAAA record in the DNS is, friends 😉

This episode is also available on Youtube.

Risky Business #789 -- Apple's AirPlay vulns are surprisingly awful
0:00 / 62:31

Risky Bulletin: French government grows spine, calls out Russian hacks

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

The French government calls out Russian hacks for the first time, Marks & Spencer sends staff home after a ransomware attack, China accuses America of hacking a major cryptography provider, and AirBorne vulnerabilities impact Apple’s AirPlay.

Risky Bulletin: French government grows spine, calls out Russian hacks
0:00 / 8:49

Between Two Nerds: Releasing the hounds on scam compounds

Presented by

The Grugq
The Grugq

Independent Security Researcher

Tom Uren
Tom Uren

Policy & Intelligence

In this edition of Between Two Nerds Tom Uren and The Grugq discuss the Southeast Asian criminal syndicates that run online scam compounds. Should organisations like US Cyber Command or the UK’s National Cyber Force target these gangs with disruption operations?

This episode is also available on Youtube.

Between Two Nerds: Releasing the hounds on scam compounds
0:00 / 31:23

Snake Oilers: LimaCharlie, Honeywell Cyber Insights, CobaltStrike and Outflank

Presented by

Patrick Gray
Patrick Gray

CEO and Publisher

In this edition of the Snake Oilers podcast, three sponsors come along to pitch their products:

This episode is also available on Youtube.

Snake Oilers: LimaCharlie, Honeywell Cyber Insights, CobaltStrike and Outflank
0:00 / 38:50

Risky Bulletin: Top AI models all fall to new prompt injection technique

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

A new prompt injection attack is effective against all the big AI models, Poland says Facebook is failing to remove malicious ads, Africa’s largest telco discloses a security breach, and hackers breach Malaysian brokerage accounts.

Risky Bulletin: Top AI models all fall to new prompt injection technique
0:00 / 5:25