Podcasts

News, analysis and commentary

Risky Bulletin: Phishers abuse forgotten Direct Send feature

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

A phishing group abuses a forgotten Exchange Online feature, a patient’s death is linked to the Synnovis ransomware attack, France arrests the BreachForums leadership, and Microsoft offers free Windows 10 Extended Security Updates … with a catch.

Risky Bulletin: Phishers abuse forgotten Direct Send feature
0:00 / 7:35

Srsly Risky Biz: Comparing Chinese and American 0day pipelines

Presented by

Patrick Gray
Patrick Gray

CEO and Publisher

Tom Uren
Tom Uren

Policy & Intelligence

Tom Uren and Patrick Gray talk about a new report that compares Chinese and American 0day pipelines. The US is narrowly focussed on acquiring exquisitely stealthy and reliable exploits, while China casts a far broader net. That was fine in the past, but as 0days get harder and harder to find, the report argues that the US needs to change the way it goes about getting them.

The pair also talk about Cyber Command supporting the US bomb strikes against Iranian nuclear facilities. We like to believe in magic cyber capabilities, but we suspect the truth was far more mundane in this case.

This episode is also available on Youtube.

Srsly Risky Biz: Comparing Chinese and American 0day pipelines
0:00 / 16:46

Risky Business #797 -- Stuxnet vs Massive Ordnance Penetrators

Presented by

Adam Boileau
Adam Boileau

Technology Editor

Patrick Gray
Patrick Gray

CEO and Publisher

On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news:

  • We roll our eyes over the “16 billion credentials” leak hitting mainstream news
  • Some interesting cyber angles emerge from the conflict in Iran
  • Opensource maintainer of libxml2 is fed up with this hacker crap
  • Shockingly, there are yet more ways to trick people into pasting commands into Windows
  • Veeam “patches” its backup software RCE like it’s 2002 … by breaking the public PoC

This week’s episode is sponsored by Internet-wide honeypot reconnaissance platform, Greynoise. Founder Andrew Morris joins to talk about their journey spotting Chinese ORB-builders hacking thousands of ASUS routers, and why they’re destined for the woodchipper.

This episode is also available on Youtube.

Risky Business #797 -- Stuxnet vs Massive Ordnance Penetrators
0:00 / 62:16

Risky Bulletin: Hackers breach Norwegian dam, open valve at full capacity

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

Hackers fully open a valve at a Norwegian dam, the US house bans WhatsApp on staff devices, Russia wants to build a national IMEI database, and four REvil members are released after time served.

Risky Bulletin: Hackers breach Norwegian dam, open valve at full capacity
0:00 / 6:42

Between Two Nerds: The evil genius of Predatory Sparrow

Presented by

The Grugq
The Grugq

Independent Security Researcher

Tom Uren
Tom Uren

Policy & Intelligence

In this edition of Between Two Nerds Tom Uren and The Grugq dive into the motivations and actions of Predatory Sparrow, a purported hacktivist group that has been attacking Iran for the last five years and has leapt into the Iran-Israel war.

This episode is also available on Youtube.

Between Two Nerds: The evil genius of Predatory Sparrow
0:00 / 28:37

Risky Bulletin: White House rejects nominee for NSA & CyberCom leader

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

The White House rejects the Pentagon’s nominee for NSA & CyberCom leader, the FCC probes the US Cyber Trust Mark program, a cyberattack disrupts Russia’s animal products industry, and hackers leak data about everyone in Paraguay.

Risky Bulletin: White House rejects nominee for NSA & CyberCom leader
0:00 / 8:09

Sponsored: The geopolitics of trust

Presented by

Tom Uren
Tom Uren

Policy & Intelligence

In this Risky Bulletin sponsor interview Fletcher Heisler, CEO of Authentik, talks to Tom Uren about the inflection points that make organisations consider rationalising their Identity Providers (IdPs). The pair also discuss sovereign tech stacks and how to earn the trust of customers.

Sponsored: The geopolitics of trust
0:00 / 11:16

Risky Bulletin: Russian hackers abuse app-specific passwords to bypass MFA

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

Russian hackers abuse app-specific passwords to bypass multi-factor, the tenth Salt Typhoon victim is identified, Predatory Sparrow destroys $90 million from an Iranian crypto-exchange, and Argentina arrests a Russian disinfo gang.

Risky Bulletin: Russian hackers abuse app-specific passwords to bypass MFA
0:00 / 7:46

Srsly Risky Biz: Data brokers are a killer's best friend

Presented by

Patrick Gray
Patrick Gray

CEO and Publisher

Tom Uren
Tom Uren

Policy & Intelligence

Tom Uren and Patrick Gray talk about a Minnesota man who used people-search services to locate, stalk and eventually murder political targets.

They also discuss purported hacktivist group Predatory Sparrow weighing in on the Iran-Israel conflict. It has attacked Iran’s financial system including a bank associated with the Iranian Revolutionary Guard Corp and also burnt USD$90 million worth of cryptocurrency from an Iranian exchange

This episode is also available on Youtube.

Srsly Risky Biz: Data brokers are a killer's best friend
0:00 / 22:28

Risky Business #796 -- With special guest co-host Chris Krebs

Presented by

Chris Krebs
Chris Krebs

Funemployed

Adam Boileau
Adam Boileau

Technology Editor

Patrick Gray
Patrick Gray

CEO and Publisher

On this week’s show Patrick Gray and Adam Boileau are joined by special guest Chris Krebs to discuss the week’s cybersecurity news. They talk through:

  • Israeli “hacktivists” take out an Iranian state-owned bank
  • Scattered-spider and friends pivot into attacking insurers
  • Securing identities in a cloud-first world keeps us awake at night
  • Microsoft takes the “aas” out of SaaS for Europe, leaving us with just software!
  • An AI prompt injection into M365 exfils corporate data

This week’s episode is sponsored by Kroll’s Cyber practice. Kroll Cyber Associate Managing Director George Glass is based in London and talks through his experiences helping organisations in the UK deal with the Scattered Spider attacks.

This episode is also available on Youtube.

Risky Business #796 -- With special guest co-host Chris Krebs
0:00 / 61:04