Risky Business News Podcast

Analysis and news podcasts published weekly

Risky Bulletin: CISA tells federal agencies to mitigate on-prem-to-cloud Exchange attack

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

Federal agencies told to patch a new Exchange flaw, millions of sites are vulnerable to HTTP desync attacks, Trend Micro patches a zero-day, and the Salesforce data breaches continue.

Risky Bulletin: CISA tells federal agencies to mitigate on-prem-to-cloud Exchange attack
0:00 / 8:27

Risky Bulletin: Russia's war on foreign software continues

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

Russian companies must migrate to domestic ERP systems; A Thai hospital gets fined over the the dumbest data breach ever; Ohio’s public sector will have to approve ransom payments in public; …and Chanel and Cisco disclose data breaches.

Risky Bulletin: Russia's war on foreign software continues
0:00 / 7:37

Between Two Nerds: The Aeroflot hack

Presented by

The Grugq
The Grugq

Independent Security Researcher

Tom Uren
Tom Uren

Policy & Intelligence

In this edition of Between Two Nerds Tom Uren and The Grugq dissect the Belarusian Cyber Partisans hack of Russian airline Aeroflot. Despite the short-term impact, the airline will likely bounce back quite quickly. But it is still a big win for the Cyber Partisans.

This episode is also available on Youtube.

Between Two Nerds: The Aeroflot hack
0:00 / 29:28

Risky Bulletin: China with the accusations again

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

China accuses the US of new cyberattacks, a $14.5b crypto hack discovered five years later, the US National Cyber Director is named, and Lovense considers legal action over a security flaw disclosure.

Risky Bulletin: China with the accusations again
0:00 / 6:35

Sponsored: Tines shines at solving interesting problems

Presented by

Casey Ellis
Casey Ellis

Founder, Bugcrowd

In this week’s sponsor interview, Tines’ Field CISO, Matt Muller, chats to Casey Ellis about the interesting and out-of-the-box ways they’ve seen people using the platform. Tines is a platform designed to automate repetitive tasks for IT and security teams. And, as it turns out, it can be used to … gamify shift handover?

Sponsored: Tines shines at solving interesting problems
0:00 / 12:40

Risky Bulletin: Russia spies on local embassies via ISPs

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

Russia spies on local embassies via ISPs, a Canadian man jailed for stealing Internet Apes, Signal threatens to leave Australia, and Russian pharmacies go down after a cyberattack.

Risky Bulletin: Russia spies on local embassies via ISPs
0:00 / 8:05

Srsly Risky Biz: The West's tepid China deterrence is not working

Presented by

Amberleigh Jack
Amberleigh Jack

Producer and Editor

Tom Uren
Tom Uren

Policy & Intelligence

Tom Uren and Amberleigh Jack talk about how recent SharePoint exploitation is a blow-by-blow repeat of the 2021 Microsoft Exchange mass compromise event. The international response to that clearly didn’t deter Chinese hackers, so it is time to try something different.

They also talk about recent cases where outsourcing IT services has come with increased risk. Convenient, cheap, secure, pick any two.

This episode is also available on Youtube.

Srsly Risky Biz: The West's tepid China deterrence is not working
0:00 / 17:07

Risky Bulletin: Russia's Aeroflot cancels flights after hack

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

Russia’s national airline cancels more than 100 flights following a cyberattack, the FBI seizes $2.4 million from the Chaos ransomware, Kazakhstan arrests a ransomware suspect, and Kyrgyzstan nationalizes internet access.

Risky Bulletin: Russia's Aeroflot cancels flights after hack
0:00 / 6:37

Risky Bulletin: Microsoft investigates MAPP leak

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

Microsoft investigates a MAPP leak as the source of the SharePoint zero-day, US law enforcement takes down the BlackSuit ransomware portal, an Arizona woman is imprisoned for running a North Korean laptop farm, and Allianz life insurance suffers a security breach.

Risky Bulletin: Microsoft investigates MAPP leak
0:00 / 5:23

Sponsored: Nucleus Security on the evolution of vulnerability management

Presented by

Casey Ellis
Casey Ellis

Founder, Bugcrowd

In this sponsored interview, Nucleus Security co-founder and COO, Scott Kuffer joins Casey Ellis to chat about how vulnerability management evolved into quite a lot more than just patch prioritization.

Sponsored: Nucleus Security on the evolution of vulnerability management
0:00 / 19:14