Risky Bulletin Podcast feed

Daily podcasts featuring news bulletins and discussion shows...

Risky Bulletin: DHS IG investigates forced CISA reassignments

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

The DHS inspector general will investigate forced CISA reassignments, Canada hacked a ransomware gang, Taiwan charges two executives with helping Chinese hackers, and new vulnerabilities can disable Hoymiles solar panels.

Risky Bulletin: DHS IG investigates forced CISA reassignments
0:00 / 9:48

Between Two Nerds: Why AI has not meant more hacks. Yet.

Presented by

The Grugq
The Grugq

Independent Security Researcher

Tom Uren
Tom Uren

Policy & Intelligence

In this edition of Between Two Nerds Tom Uren and The Grugq talk about why we haven’t seen an explosion of devastating hacks even though AI has been used to discover lots and lots of bugs.

This episode is also available on YouTube.

Between Two Nerds: Why AI has not meant more hacks. Yet.
0:00 / 32:14

Risky Bulletin: EU official’s phone infected with Pegasus

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

A European MP’s phone was infected by Pegasus spyware, Android drops its PIN guessing limit from 1,800 attempts to 20, Alibaba bans employees from using Claude at work, and there’s a new vulnerability in the Linux kernel.

Risky Bulletin: EU official’s phone infected with Pegasus
0:00 / 5:46

Risky Bulletin: FatFs bugs enable physical access attacks on a load of devices

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

FatFs bugs enable physical access attacks on industrial equipment, a clever password spraying attack bypasses M365 MFA, an AI agent is deploying ransomware in live attacks, and a webinar platform sues two security firms over bad IOCs.

Risky Bulletin: FatFs bugs enable physical access attacks on a load of devices
0:00 / 9:20

Srsly Risky Biz: America won't beat the distillation ecosystem

Presented by

James Wilson
James Wilson

Technology Editor

Tom Uren
Tom Uren

Policy & Intelligence

Tom Uren and James Wilson talk about Chinese AI labs stealing the special sauce of American AI models in ‘distillation attacks’. These attacks are fed by a grey market in which Chinese consumers buy access to American models, where one of the byproducts is logs of user requests and responses. These make wonderful inputs into distillation attacks and the whole market might be subsidised by Chinese AI Labs paying for these logs.

They also discuss the possibility that last year’s hack of Jaguar Land Rover was caused by a group of Russian hackers. Was it Russians? Was it state-directed or endorsed? Who knows, but even the possibility that it was has some benefits for the Russian state.

This episode is also available on YouTube

Srsly Risky Biz: America won't beat the distillation ecosystem
0:00 / 30:02

Risky Bulletin: Researcher drops giant cache of zero-days

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

An anonymous researcher has dropped a giant cache of zero-day exploits, a sensitive DHS network got hacked, the US Supreme Court restricts geofence warrants, and security firm Huntress has denied accusations of a malicious insider.

Risky Bulletin: Researcher drops giant cache of zero-days
0:00 / 9:45

Between Two Nerds: Set cyberspace ablaze

Presented by

The Grugq
The Grugq

Independent Security Researcher

Tom Uren
Tom Uren

Policy & Intelligence

In this edition of Between Two Nerds, Tom Uren and The Grugq discuss whether cyber organisations should actually be separated from Signals Intelligence organisations. The Grugq argues that having cyber expertise subordinate to intelligence collection means that many opportunities are never explored.

This episode is also available on YouTube.

Between Two Nerds: Set cyberspace ablaze
0:00 / 39:08

Risky Bulletin: White House asks OpenAI to restrict GPT 5.6

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

The White House asks OpenAI to keep a tight grip on ChatGPT 5.6, the US Secret Service made some appalling OpSec mistakes, AMD has reintroduced a CPU security feature after consumer backlash, and an Iranian APT operator has been arrested in Montenegro.

Risky Bulletin: White House asks OpenAI to restrict GPT 5.6
0:00 / 7:28

Sponsored: Corelight’s blueprint for AI-era defence

Presented by

James Wilson
James Wilson

Technology Editor

In this sponsored interview James Wilson chats with Corelight’s VP of Product Vijit Nair about defence strategies for the AI era. When agents can find and exploit vulnerabilities at machine speed, you need to balance between proactive and reactive measures.

On the proactive side, you need modelling of assets and threats. On the reactive side you’ll need telemetry so you can act quickly if a threat becomes a reality.

Corelight makes NDR hardware that runs a heavily optimised version of the Zeek network monitoring tool. Combined with its Agentic Triage product, customers can detect threats in their networks, and monitor the effectiveness of their mitigation strategies.

Sponsored: Corelight’s blueprint for AI-era defence
0:00 / 19:27

Risky Bulletin: Operation Endgame dismantles Amadey and StealerC

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

Law enforcement dismantles two more malware operations, Japan’s army used infected USB drives, Anthropic accuses Alibaba of distillation attacks, and Australia finds “digital dynamite” on critical networks.

Risky Bulletin: Operation Endgame dismantles Amadey and StealerC
0:00 / 10:15