Risky Business #838 – GitHub investigates possible breach

On this week’s show Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news.

They cover:

• GitHub announced a possible breach
• CISA leaks important creds, keys in public repo
• Awful vulnerability in Bitlocker renders it useless without a PIN
• So. Many. Patches.
• Polish Government urges officials to ditch Signal for mSzyfr
• Much, much more

This week’s show is brought to you by Thinkst Canary. Thinkst’s founder, Haroon Meer, is this week’s sponsor guest. He joined James Wilson to talk about how doing “the basics” in security isn’t trivially easy.

Show notes:

GitHub on X https://x.com/github/status/2056884788179726685

CISA Admin Leaked AWS GovCloud Keys on Github – Krebs on Security https://krebsonsecurity.com/2026/05/cisa-admin-leaked-aws-govcloud-keys-on-github/

Experts Confirm the Fast16 Malware Was Sabotaging Nuclear Weapons Tests, Likely in Iran https://www.zetter-zeroday.com/experts-confirm-the-fast16-malware-was-sabotaging-nuclear-weapons-tests-likely-in-iran/

Iran hackers: Hackers have breached tank readers at gas stations; officials suspect Iran is responsible | CNN Politics https://edition.cnn.com/2026/05/15/politics/iran-hackers-tank-readers-gas-stations

War and Data Centers Are Driving Up the Cost of Fiber-Optic Cable https://www.404media.co/war-and-data-centers-are-driving-up-the-cost-of-fiber-optic-cable/

Microsoft on pace to break annual vulnerability record as AI-driven patch wave takes hold | The Record from Recorded Future News https://therecord.media/microsoft-on-pace-to-break-annual-vulnerability-record-ai

NCSC’s Ollie Whitehouse on surviving the “bugpocalypse” - Risky Business Media https://risky.biz/RBFEATURES21/

Defense at AI speed: Microsoft’s new multi-model agentic security system tops leading industry benchmark | Microsoft Security Blog https://www.microsoft.com/en-us/security/blog/2026/05/12/defense-at-ai-speed-microsofts-new-multi-model-agentic-security-system-tops-leading-industry-benchmark/

Project Glasswing: what Mythos showed us https://blog.cloudflare.com/cyber-frontier-models/

Linus Torvalds says AI-powered bug hunters have made Linux security mailing list ‘almost entirely unmanageable’ https://www.theregister.com/security/2026/05/18/linus-torvalds-says-ai-powered-bug-hunters-have-made-linux-security-mailing-list-almost-entirely-unmanageable/5241633

First public macOS kernel memory corruption exploit on Apple M5 https://blog.calif.io/p/first-public-kernel-memory-corruption

OpenAI launches Daybreak to combat cyber threats | Cybersecurity Dive https://www.cybersecuritydive.com/news/OpenAI-Daybreak-cyber-threats/820122/

Zero-day exploit completely defeats default Windows 11 BitLocker protections - Ars Technica https://arstechnica.com/security/2026/05/zero-day-exploit-completely-defeats-default-windows-11-bitlocker-protections/

GitHub - Wack0/bitlocker-attacks: A list of public attacks on BitLocker · GitHub https://github.com/Wack0/bitlocker-attacks

Catalin Cimpanu: “The Polish government has advi…” - Mastodon https://mastodon.social/@campuscodi/116590854884060340

CISA orders all federal agencies to patch exploited bug in Cisco SD-WAN systems by Sunday | The Record from Recorded Future News https://therecord.media/cisa-orders-all-federal-agencies-to-patch-cisco-sd-wan-bug

CVE-2026-20182: Critical authentication bypass in Cisco Catalyst SD-WAN Controller (FIXED) https://www.rapid7.com/blog/post/ve-cve-2026-20182-critical-authentication-bypass-cisco-catalyst-sd-wan-controller-fixed/

Huawei zero-day attack behind last year’s crash of Luxembourg’s entire telecoms network | The Record from Recorded Future News https://therecord.media/huawei-zero-day-behind-last-year-luxembourg-telecom-outage

Patch bypass allows hackers to exploit prior flaw in SonicWall SSL-VPN | Cybersecurity Dive https://www.cybersecuritydive.com/news/patch-bypass-hackers-exploit-flaw-sonicwall/820600/

Microsoft disrupts Fox Tempest malware-signing-as-a-service platform tied to ransomware gangs | The Record from Recorded Future News https://therecord.media/microsoft-disrupts-fox-tempest-malware-signing-service

Streamer Realtime Deepfakes Himself into Mr. Beast, Says He Loves ‘Touching Little Boys’ https://www.404media.co/streamer-realtime-deepfakes-himself-into-mr-beast-says-he-loves-touching-little-boys/