In this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news. It’s a quiet week with Thanksgiving in the US, but there’s always some cyber to talk about:

• Airbus rolls out software updates after a cosmic ray bitflips an A320 into a dive
• Krebs tracks down a Scattered Lapsus$ Hunters teen through the usual poor opsec…
• … as Wired publishes an opsec guide for teens.
• Microsoft decides its login portal is worth a Content Security Policy
• South Korean online retailer data breach covers 65% of the country

This week’s episode is sponsored by Nebulock. Founder and CEO Damien Lewke joins to talk through their work bringing more SIgma threat detection rules to MacOS.

Show Notes:

Airlines race to fix their Airbus planes after warning solar radiation could cause pilots to lose control | CNN https://edition.cnn.com/2025/11/28/us/a320-series-fixes

Congress calls on Anthropic CEO to testify on Chinese Claude espionage campaign | CyberScoop https://cyberscoop.com/house-homeland-asks-anthropic-ceo-to-testfy-on-chinese-espionage-campaign/

Post-mortem of Shai-Hulud attack on November 24th, 2025 - PostHog https://posthog.com/blog/nov-24-shai-hulud-attack-post-mortem

Update: Shai-Hulud and the npm Ecosystem: Why CTEM Must Extend Beyond Your Walls | Armis https://www.armis.com/blog/update-shai-hulud-and-the-npm-ecosystem-why-ctem-must-extend-beyond-your-walls/

Glassworm’s resurgence | Secure Annex https://secureannex.com/blog/glassworm-continued/

4.3 Million Browsers Infected: Inside ShadyPanda’s 7-Year Malware Campaign | Koi Blog https://www.koi.ai/blog/4-million-browsers-infected-inside-shadypanda-7-year-malware-campaign

Post by @spuxx.bsky.social — Bluesky https://bsky.app/profile/spuxx.bsky.social/post/3m6vwycw47c2u

Meet Rey, the Admin of ‘Scattered Lapsus$ Hunters’ – Krebs on Security https://krebsonsecurity.com/2025/11/meet-rey-the-admin-of-scattered-lapsus-hunters/

The WIRED Guide to Digital Opsec for Teens | WIRED https://www.wired.com/story/digital-opsec-for-teens/

Perth hacker Michael Clapsis jailed after setting up fake Qantas Wi-Fi, stealing sex videos - ABC News https://www.abc.net.au/news/2025-11-28/perth-michael-clapis-guilty-airport-data-theft-sex-videos/105442798

Ed Conway on X: “The person who first downloaded the OBR’s document at 11:35 on Budget day (I’m guessing someone at Reuters, given they first reported it) had already guessed the web address and tried and failed to download it 32 times so far that day(!) https://t.co/6iLm2uEUj2” / X https://x.com/edconwaysky/status/1995509077695435019

Reuters accused of hack attack | ZDNET https://www.zdnet.com/article/reuters-accused-of-hack-attack/

The Destruction of a Notorious Myanmar Scam Compound Appears to Have Been ‘Performative’ | WIRED https://www.wired.com/story/myanmar-kk-park-scam-compound-destruction/

Microsoft tightens cloud login process to prevent common attack | Cybersecurity Dive https://www.cybersecuritydive.com/news/microsoft-change-cloud-login-entra-id-xss/806556/

Fortinet FortiWeb flaws found in unsupported versions of web application firewall | Cybersecurity Dive https://www.cybersecuritydive.com/news/fortinet-fortiweb-flaws-found-in-unsupported-versions-of-web-application-fi/806791/

Cryptomixer platform raided by European police; $29 million in bitcoin seized | The Record from Recorded Future News https://therecord.media/cryptomixer-service-takedown-bitcoin-seized

Officials accuse North Korea’s Lazarus of $30 million theft from crypto exchange | The Record from Recorded Future News https://therecord.media/officials-accuse-north-korea-hackers-of-attack-on-crypto-exchange

Data breach hits ‘South Korea’s Amazon,’ potentially affecting 65% of country’s population | The Record from Recorded Future News https://therecord.media/coupang-south-korea-data-breach

NSA Contractor Groomed Teenage Girls On Reddit, DOJ Alleges https://www.forbes.com/sites/the-wiretap/2025/11/26/nsa-contractor-groomed-teenage-girls-on-reddit-doj-alleges/

Nebulock developed coreSigma for MacOS https://nebulock.io/blog/coresigma-expanding-sigma-detection-for-macos

coreSigma repo: https://github.com/SigmaHQ/pySigma/pull/411