Risky Business News Podcast

Analysis and news podcasts published weekly

Risky Bulletin: Israel-linked hackers claim Iran bank disruption

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

An Israeli-linked hacktivist group claims attack on Iranian bank, Chrome gets a new prompt to prevent local network attacks, a Century-old German napkin company goes under following ransomware attack, and Europol takes down the Archetyp dark web market.

Risky Bulletin: Israel-linked hackers claim Iran bank disruption
0:00 / 7:03

Between Two Nerds: Why modern influence operations suck

Presented by

The Grugq
The Grugq

Independent Security Researcher

Tom Uren
Tom Uren

Policy & Intelligence

In this edition of Between Two Nerds Tom Uren and The Grugq take a look at a new AI-powered covert influence campaign and compare it to World War 2 efforts.

This episode is also available on Youtube.

Between Two Nerds: Why modern influence operations suck
0:00 / 30:21

Risky Bulletin: Washington Post email accounts hacked

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

Email accounts compromised at the Washington Post, shady email provider Cock.li gets hacked, hackers steal data from a French university, and the EU invests €145 million in hospital cybersecurity.

Risky Bulletin: Washington Post email accounts hacked
0:00 / 5:48

Sponsored: Hardening the browser

Presented by

Tom Uren
Tom Uren

Policy & Intelligence

In this Risky Bulletin sponsor interview Michael Leland, Field CTO of Island, talks about how Island manages risks from extensions, phishing and infostealers. Even when credentials are stolen, it is still not game over and there are still ways to prevent data loss and breaches.

Sponsored: Hardening the browser
0:00 / 12:42

Risky Bulletin: Predator spyware alive despite US sanctions

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

Intellexa is alive and well despite US sanctions, Paragon spyware used a zero-click iMessage exploit, South Korea’s largest online bookstore gets ransomwared, and law enforcement takes down several cybercrime operations.

Risky Bulletin: Predator spyware alive despite US sanctions
0:00 / 7:47

Srsly Risky Biz: Trump scales back Biden product security demands

Presented by

Patrick Gray
Patrick Gray

CEO and Publisher

Tom Uren
Tom Uren

Policy & Intelligence

Tom Uren and Patrick Gray talk about how a Trump executive order has scaled back the government’s cyber security ambitions. The carrots and sticks that would have been used to encourage organisations to adopt stricter security standards are gone.

They also discuss North Korea’s use of AI in its IT worker scam and the emergence of espionage-as-a-service… perhaps.

This episode is also available on Youtube.

Srsly Risky Biz: Trump scales back Biden product security demands
0:00 / 19:26

Risky Bulletin: SentinelOne dodges a Chinese APT hack

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

SentinelOne dodges a Chinese APT hack, anonymous sources point to more Salt Typhoon victims, a cyberattack disrupts grocery deliveries in the US, and 140 arrested in Kazakhstan for selling citizens’ data.

Risky Bulletin: SentinelOne dodges a Chinese APT hack
0:00 / 5:13

Between Two Nerds: How Russia's sabotage team got into hacking

Presented by

The Grugq
The Grugq

Independent Security Researcher

Tom Uren
Tom Uren

Policy & Intelligence

In this edition of Between Two Nerds Tom Uren and The Grugq take a look at the hackers of Unit 29155, Russian military intelligence’s sabotage and assassination group.

This episode is also available on Youtube.

Between Two Nerds: How Russia's sabotage team got into hacking
0:00 / 37:05

Risky Bulletin: EU launches its own DNS service

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

The EU launches its own DNS service, Trump revises previous administrations’ cyber executive orders, a supply chain attack hits popular NPM packages, and mysterious iOS attacks spotted in the wild.

Risky Bulletin: EU launches its own DNS service
0:00 / 6:12

Sponsored: Phishing crews have gotten really good at evasion

Presented by

Casey Ellis
Casey Ellis

Founder, Bugcrowd

In this sponsored interview, Casey Ellis interviews Push Security co-founder and Chief Product Officer Jaques Louw about how good phishing crews have gotten at evading detection.

Attackers are hiding their payloads behind legitimate bot-detection tools to stop things like email security gateways from seeing them, as well as locking up phishing pages behind OAuth challenges.

Push sees all this because it’s installed as a browser plugin and sees what users see.

Sponsored: Phishing crews have gotten really good at evasion
0:00 / 18:19