On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news:

• Did the US decide to stop caring about Russian cyber, or not?
• Adam stans hard for North Korea’s massive ByBit crypto-theft
• Cellebrite firing Serbia is an example of the system working
• Starlink keeps scam compounds in Myanmar running
• Biggest DDoS botnet yet pushes over 6Tbps

This week’s episode is sponsored by network visibility company Corelight. Vincent Stoffer, field CTO at Corelight joins to talk through where eyes on your network can spot attackers like Salt and Volt Typhoon.

Show notes:

Sygnia Preliminary Bybit Investigation Report https://docsend.com/view/rmdi832mpt8u93s7/d/rwecw3rumhqtgs6a

Verichains Bybit Incident Investigation Preliminary Report https://docsend.com/view/rmdi832mpt8u93s7/d/xc2rkprqm799pymq

North Koreans finish initial laundering stage after more than $1 billion stolen from Bybit | The Record from Recorded Future News https://therecord.media/north-koreans-initial-laundering-bybit-hack

Risky Bulletin: Trump administration stops treating Russian hackers as a threat - Risky Business https://risky.biz/risky-bulletin-trump-administration-stops-treating-russian-hackers-as-a-threat/

Did Trump Admin Order U.S. Cyber Command and CISA to Stand Down on Russia? (Story updated) https://www.zetter-zeroday.com/did-trump-admin-order-u-s-cyber-command-and-cisa-to-stand-down-on-russia/

Russia to redeploy resources freed up by end of war in Ukraine, warns Finnish intelligence | The Record from Recorded Future News https://therecord.media/finland-intelligence-report-russia-redeploy-resources-after-ukraine-war

FBI urges crypto community to avoid laundering funds from Bybit hack | The Record from Recorded Future News https://therecord.media/fbi-bybit-laundering-crypto-warning

Risky Bulletin: Cellebrite bans bad boy Serbia - Risky Business https://risky.biz/risky-bulletin-cellebrite-bans-bad-boy-serbia/

Belgium probes suspected Chinese hack of state security service | The Record from Recorded Future News https://therecord.media/belgium-investigation-alleged-china-cyber-espionage-vsse

Gabbard: UK demand to Apple for backdoor access is ‘grave concern’ to US | The Record from Recorded Future News https://therecord.media/odni-gabbard-uk-apple-backdoor-request-grave-concern

Elon Musk’s Starlink Is Keeping Modern Slavery Compounds Online | WIRED https://www.wired.com/story/starlink-scam-compounds/

U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason” – Krebs on Security https://krebsonsecurity.com/2025/02/u-s-soldier-charged-in-att-hack-searched-can-hacking-be-treason/

Google Password Manager finally syncs to iOS—here’s how - Ars Technica https://arstechnica.com/security/2025/02/google-password-manager-finally-syncs-to-ios-heres-how/

Gmail Security Alert: Google To Ditch SMS Codes For Billions Of Users https://www.forbes.com/sites/daveywinder/2025/02/26/google-confirms-gmail-to-ditch-sms-code-authentication/

Massive Iran-linked botnet launches DDoS attacks against telecom, gaming platforms | Cybersecurity Dive https://www.cybersecuritydive.com/news/massive-iran-botnet-ddos-telecom/741359/

Microsoft-signed driver used in ransomware attacks | Cybersecurity Dive https://www.cybersecuritydive.com/news/microsoft-signed-driver-used-in-ransomware-attacks/741372/

London member of ‘Com’ network convicted of making indecent images of children | The Record from Recorded Future News https://therecord.media/london-com-member-convicted

Volt Typhoon & Salt Typhoon Attackers Are Evading EDR: What Can You Do? | Corelight https://corelight.com/blog/volt-typhoon-salt-typhoon-edr