On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:

• DeepSeek leaves an unauthed database on the internet
• Russia hacked UK prime minister’s personal mail
• Australia sanctions a Telegram group… which is more sensible than it sounds
• Medical device backdoor turns out to be just poorly thought out upgrade feature
• Google abuses weak hashing to patch AMD CPU microcode
• And much, much more.

This week’s episode is sponsored by email security boffins Sublime. Their co-founder and CEO Josh Kamdjou joins to talk about how attackers’ abuse of legitimate services like Docusign is a challenge for email security vendors.

Show Notes:

Exclusive: Musk aides lock workers out of OPM computer systems | Reuters https://www.reuters.com/world/us/musk-aides-lock-government-workers-out-computer-systems-us-agency-sources-say-2025-01-31/

Wiz Research Uncovers Exposed DeepSeek Database Leaking Sensitive Information, Including Chat History | Wiz Blog https://www.wiz.io/blog/wiz-research-uncovers-exposed-deepseek-database-leak

Криптостилер SparkCat в магазинах Google Play и App Store | Securelist https://securelist.ru/sparkcat-stealer-in-app-store-and-google-play/111638/

Russian hackers suspected of compromising British PM’s personal email account | The Record from Recorded Future News https://therecord.media/keir-starmer-email-hack-russia-suspected

PowerSchool hack: missed basic security step resulted in data breach https://www.nbcnews.com/tech/security/powerschool-hack-data-breach-protect-student-school-teacher-safe-rcna189029

Australia sanctions ‘Terrorgram’ white supremacist online group | The Record from Recorded Future News https://therecord.media/australia-sanctions-terrorgram-online-hate-group

‘Paid actors’ could be behind some antisemitic attacks, Albanese says | Australian security and counter-terrorism | The Guardian https://www.theguardian.com/australia-news/2025/jan/22/paid-actors-antisemitic-attacks-australia-pm-anthony-albanese-police-afp-ntwnfb

Interview with James Glenday, ABC News Breakfast | Australian Minister for Foreign Affairs https://www.foreignminister.gov.au/minister/penny-wong/transcript/interview-james-glenday-abc-news-breakfast

WhatsApp says spyware company Paragon Solutions targeted journalists https://www.nbcnews.com/tech/security/whatsapp-says-spyware-company-paragon-solutions-targeted-journalists-rcna190227

Spyware maker Paragon confirms US government is a customer | TechCrunch https://techcrunch.com/2025/02/04/spyware-maker-paragon-confirms-u-s-government-is-a-customer/?guccounter=1

Former Polish justice minister arrested in sprawling spyware probe | The Record from Recorded Future News https://therecord.media/poland-spyware-former-justice-minister-arrested

Sweden releases suspected ship, says cable break ‘clearly’ not sabotage | The Record from Recorded Future News https://therecord.media/sweden-releases-ship-suspected-cable-sabotage

Backdoor found in two healthcare patient monitors, linked to IP in China https://www.bleepingcomputer.com/news/security/backdoor-found-in-two-healthcare-patient-monitors-linked-to-ip-in-china/

Attackers exploit zero-day vulnerability in Zyxel CPE devices | Cybersecurity Dive https://www.cybersecuritydive.com/news/exploit-zero-day-vulnerability–zyxel/738611/

AMD: Microcode Signature Verification Vulnerability · Advisory · google/security-research · GitHub https://github.com/google/security-research/security/advisories/GHSA-4xq7-4mgh-gp6w

22-year-old math wiz indicted for alleged DeFI hack that stole $65M - Ars Technica https://arstechnica.com/information-technology/2025/02/man-indicted-for-two-alleged-defi-hacks-that-stole-65-million/

A method to assess ‘forgivable’ vs ‘unforgivable’… - NCSC.GOV.UK https://www.ncsc.gov.uk/report/a-method-to-assess-forgivable-vs-unforgivable-vulnerabilities

Living Off the Land: Credential Phishing via Docusign abuse https://sublime.security/blog/living-off-the-land-credential-phishing-via-docusign-abuse/

Living Off the Land: Callback Phishing via Docusign comment https://sublime.security/blog/living-off-the-land-callback-phishing-via-docusign-comment/

B2B freight-forwarding scams on the rise to evade financial fraud crackdowns https://sublime.security/blog/b2b-freight-forwarding-scams-on-the-rise-to-evade-financial-fraud-crackdowns/

Callback phishing via invoice abuse and distribution list relays https://sublime.security/blog/callback-phishing-via-invoice-abuse-and-distribution-list-relays/

Enhanced message groups: Improving efficiency in email incident response https://sublime.security/blog/enhanced-message-groups-improving-efficiency-in-email-incident-response/