On this week’s show special guest co-host Rob Joyce joins Patrick Gray and James Wilson to discuss the week’s cybersecurity news. Rob served as an advisor to Donald Trump during his first term as president and also served at NSA for 34 years. While at the agency, Joyce led Tailored Access Operations (TAO), and later became NSA’s Director of Cybersecurity.

They cover:

• The surprisingly well done Fortibleed campaign
• Stolen Klue OAuth tokens lead to Salesforce data theft
• OpenAI wants to patch the planet
• runZero gets acquired by Accenture, congrats HD Moore!
• Much, much more!

This episode is also available on YouTube.

Show notes

• FortiBleed campaign used custom FortiGate sniffer to steal credentials | BleepingComputer
• FortiBleed: Fortinet device credential compromise expands into broader credential-attack guidance | unit42.paloaltonetworks.com
• Cybercriminals allegedly hacked tens of thousands of Fortinet firewalls used by major companies all over the world | TechCrunch Security
• Klue OAuth breach linked to 'Icarus' Salesforce data theft attacks | BleepingComputer
• Polymarket (@Polymarket) on X | X (formerly Twitter)
• The Korean telecom giant at the center of Anthropic’s Mythos controversy | wrd.cm
• Beyond Fable: Can a Local LLM Replace Cloud AI for Security Code Reviews - SRLabs Research | SRLabs
• OpenAI Launches Full-Scale Effort to Patch Open-Source Bugs as It Takes on Anthropic’s Mythos | wired.com
• Sponsored: Trail of Bits and OpenAI patch the planet | Risky Bulletin
• Intel agencies: Frontier AI models will reshape cybersecurity faster than expected | cyberscoop.com
• Embedding Forbidden Text in Spyware to Discourage AI Analysis | Schneier on Security
• A new unpatchable flaw in Apple chips opens the door to an iPhone jailbreak | TechCrunch Security
• USB worm spreads crypto-stealing malware via Windows shortcut files | BleepingComputer
• Android verification is coming: Google confirms timeline and supported app stores | Ars Technica
• California water utility probes breach claim by Iran-linked actor | Cybersecurity Dive
• Suspected cyberattack triggers false emergency alerts across parts of Brazil | The Record
• Tesco moving 40,000 server workloads off VMware amid Broadcom's "abusive conduct" | Ars Technica
• Trump directs federal agencies to protect US data from quantum threats | therecord.media
• Accenture shells out $4.18B on three companies in big industrial cybersecurity push | cyberscoop.com

💾

On this week’s show Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news. They cover:

• Anthropic’s Fable 5 and Mythos 5 get nuked by the US government four days after launch “because security”
• Why “guardrails” won’t keep the world safe from your AI doomsday machine
• The FISA 702 statute expired, but the spying can (probably) continue!
• NPM v12 delivers some protection against supply chain attacks, but not enough.
• Microsoft has a series of bugs that prevent Windows Update from … updating
• Much, much more!

This episode is also available on YouTube

Show notes

• Anthropic suspends new AI models after government directive | NBC News Tech
• Anthropic rankles users with safety-first Fable release | NBC News Tech
• How a 90-minute White House deadline sparked Silicon Valley’s biggest AI fight | washingtonpost.com
• Pete Hegseth (@PeteHegseth) on X | X (formerly Twitter)
• David Sacks (@DavidSacks) on X | X (formerly Twitter)
• DoW CIO Kirsten Davies (@DoWCIODavies) on X | X (formerly Twitter)
• David Shulman (@DavidShulmanFL) on X | X (formerly Twitter)
• Controversial FISA spying law expires tonight. The spying will continue. | Ars Technica
• GitHub announces npm security changes to tackle supply-chain attacks | BleepingComputer
• Why NPM v12 won’t stop supply chain attacks - Risky Business Media | Social Signals
• Oracle PeopleSoft servers hacked in ShinyHunters data theft attacks | BleepingComputer
• Microsoft patches Exchange Server zero-day exploited in attacks | BleepingComputer
• Max severity Ivanti Sentry vulnerability now exploited in attacks | BleepingComputer
• CISA warns of another cPanel plugin flaw exploited in attacks | BleepingComputer
• Critical Fortinet FortiSandbox flaws now exploited in attacks | BleepingComputer
• CISA orders feds to patch actively exploited Ivanti flaw by Sunday | BleepingComputer
• CISA to require federal agencies to patch some cyber vulnerabilities within 3 days | therecord.media
• Path traversal flaw in AI dev platform Langflow exploited in attacks | BleepingComputer
• Microsoft: Some Windows PCs fail to install latest monthly updates | BleepingComputer
• Microsoft fixes BitLocker recovery bug on Windows Server 2025 | BleepingComputer
• Microsoft fixes Windows update failures linked to WUSA installer | BleepingComputer
• New attack turned Microsoft 365 Copilot into 1-click data theft tool | BleepingComputer
• Over 73,000 French govt employees affected in Tchap messenger breach | BleepingComputer
• Signal Alums Reveal ‘Encrypted Spaces,’ a System for Making Private Collaboration Apps | wired.com
• FBI disrupts massive AI-powered phishing service using a million URLs | BleepingComputer
• Cyberattack shuts down major Australian sugar mills, disrupting harvest | The Record
• Drug Sites Hijacked Spotify’s Search Ranking Through Fake Podcasts, Report Finds | wired.com
• It Is Trivially Easy to Use Reddit to Manipulate AI Search, Research Suggests | 404.feed.press
• Who Runs the Ransomware Group ‘The Gentlemen?’ | krebsonsecurity.com
• :brdKnife: (@cR0w@infosec.exchange) | Infosec Exchange

💾

On this week’s show special guest co-host Chris Wade, the founder of Corellium turned Cellebrite CTO, joins Patrick Gray and James Wilson to discuss the week’s cybersecurity news.

They cover:

• Microsoft has repos owned, GitHub tokens popped, and a new 0day dropped on them
• Meanwhile, researchers are choosing full disclosure instead of engaging MSRC
• Meta’s AI support agent allowed a staggering 20,000 accounts to be stolen!
• Apple pulls Russia’s MAX messenger from the App Store and disables notifications
• Anthropic gives the public our first Mythos-class model but it won’t do cybersecurity work
• Stripe and Google Tag Manager used in eCommerce website hack campaign
• And much, much more!

This week’s show is brought to you by runZero. HD Moore, runZeros’ founder, drops by in this week’s sponsor interview to talk about the AI vibe shift. Everyone is very worried about getting owned all of a sudden, and it’s really changing the cybersecurity business.

This episode is also available on YouTube.

Show notes

• Microsoft Hacked to Deliver Malware to Claude and Gemini Users | 404.feed.press
• Researcher publishes GitHub token-stealing exploit, blames Microsoft’s disclosure process | therecord.media
• Microsoft Defender 'RoguePlanet' zero-day grants SYSTEM privileges | BleepingComputer
• Microsoft breaks Patch Tuesday record with 206 vulnerabilities | CyberScoop
• chompie1337 | X
• WhatsApp says NSO targeted users with spearfishing attacks in violation of court order | therecord.media
• Over 20,000 Instagram accounts stolen in Meta AI support hack | BleepingComputer
• New Apple feature automatically changes your compromised passwords | BleepingComputer
• Apple removes Russia’s state-backed messaging app Max from its store | therecord.media
• Exclusive: Anthropic's Mythos can exploit new flaws in hours |
• Anthropic’s new model is Mythos on a leash | CyberScoop
• Anthropic Offers Mythos Upgrade for Cyber Partners and a ‘Safe’ Version for the Rest of You | wired.com
• OpenClaw AI agent found falling for phishing attacks, spills user data | BleepingComputer
• OpenAI unveils Lockdown Mode to protect sensitive data from prompt injection attacks | TechCrunch Security
• Hands on with Intelligent Terminal, an AI-powered Windows Terminal | BleepingComputer
• Seeking Counsel: Ongoing Targeted Campaign Against US Law Firms | Mandiant
• Check Point warns of zero-day flaw targeted by ransomware affiliate | Cybersecurity Dive
• ServiceNow discloses security incident exposing customer data | BleepingComputer
• Credit card theft campaign abuses Stripe to host stolen payment info | BleepingComputer
• CrowdStrike, Palo Alto Networks defy estimates as AI fuels cyber demand | Cybersecurity Dive
• The U.S. Military Quietly Turned GPS Into a Global ‘Numbers Station,’ Evidence Suggests | 404.feed.press
• New 'HTTP/2 Bomb' DoS attack crashes web servers in under a minute | BleepingComputer
• Google has quietly cut staff across its Cloud business | businessinsider.com

💾

In this sponsored Soap Box edition of the Risky Business podcast Patrick Gray chats with Edward Wu, founder of Dropzone, about what AI is doing to detection, response and the SOC more generally.

Dropzone makes AI agents that conduct alert investigations in your SOC, but will the SOC as we know it even exist in the future?

Ed has a deep expertise in SOC tech, having previously led AI/ML detection engineering at Extrahop. This interview is a fantastic look at what the future may bring for detection and response professionals.

This episode is also available on YouTube

Show notes

💾

On this week’s show special guest co-host Andy Boyd joins Patrick Gray and James Wilson to discuss the week’s cybersecurity news. Andy is the CEO of REDLattice, which makes the Paragon “intelligence collection and reconnaissance” solution.

They cover:

• Adversaries are tracking US troop locations with commercially available location data
• A new Signal phishing campaign is going after message backups
• 404 Media is suing ICE to get its spyware contract with REDLattice (lol)
• Microsoft’s tone-deaf response to ‘never justifiable’ zero-day disclosures
• Mini Shai-Hulud pops up again just as Glassworm gets shattered
• Much, much more

This week’s episode is sponsored by Authentik, an open source identity platform that you can host yourself. In this week’s sponsor interview Authentik’s CEO Fletcher Heisler joins Patrick Gray to talk about how they’re keeping up with the bugpocalypse, and also the work they’re doing to support identities for AI agents.

This episode is also available on YouTube.

Show notes

• The Pentagon Knew Enemies Could Track Troops’ Phones for Years. Now They Are | wired.com
• U.S. says troops were targeted with location data, as senator warns ad industry is a ‘national security threat’ | TechCrunch Security
• DOD location data attachment (Wyden) |
• Risky Business #830 -- LiteLLM and security scanner supply chains compromised | Risky Business Media
• US has seized nearly $1 billion in crypto from Iran, Bessent says |
• Russia claims foreign spy agencies hacked officials' phones | therecord.media
• Hackers are trying to steal Signal users’ backups in new wave of phishing attacks | TechCrunch Security
• We Sued ICE to Get Its Spyware Contract. The Agency Is Redacting Essentially Everything | Social Signals
• Microsoft calls zero-day releases ‘never justifiable’ as researcher threatens to drop more | therecord.media
• A shared responsibility: Protecting customers through Coordinated Vulnerability Disclosure | Social Signals
• Microsoft says it will not pursue security researchers after zero-day backlash | therecord.media
• IBM’s new $5B initiative will help enterprises rapidly patch open-source vulnerabilities | Social Signals
• Federal audit reveals NIST’s NVD is plagued by poor planning and duplication | cyberscoop.com
• Hackers Used Meta’s AI Support Bot to Seize Instagram Accounts | krebsonsecurity.com
• Critical Windows Netlogon RCE flaw now exploited in attacks | BleepingComputer
• CISA adds exploited Palo Alto Networks GlobalProtect flaw to KEV | Cybersecurity Dive
• Password manager Dashlane says hackers stole some customers’ password vaults | TechCrunch Security
• CrowdStrike disrupts Glassworm botnet that preyed on open-source supply chain | cyberscoop.com
• Botnet of more than 17 million devices dismantled | arstechnica.com
• Chinese-speaking fraud gang could be stealing millions from 2026 World Cup fans | therecord.media
• ACCC investigating Olympics ticket scam | ABC
• Dozens of Red Hat packages backdoored through its offical NPM channel | arstechnica.com
• Solo podcast: A deep dive on TeamPCP - Risky Business Media |
• Trump administration releases scaled-back AI executive order | cyberscoop.com
• Google security engineer accused of turning confidential search trends into $1.2M win on Polymarket | cyberscoop.com

💾

On this week’s show Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news. They cover:

• TeamPCP breached GitHub’s internal repos. Now what?
• Some absolute plonker glued Coruna to a hijacked npm package
• CISA is worried about about open source and wants third party submissions for KEV
• AI infrastructure is “systemically” insecure
• Much, much more

This week’s episode is sponsored by allowlisting vendor Airlock Digital. Airlock’s founders David Cottingham and Daniel Schell join Patrick Gray to talk about Microsoft briefly flagging DigitCert’s root certificate as malware. Fun!

This episode is also available on YouTube

Show notes

• GitHub confirms being hacked by TeamPCP, says customer data unaffected | therecord.media
• Grafana Labs links GitHub environment breach to TanStack npm supply chain attack | Cybersecurity Dive
• Coruna Respawned: Compromised art-template npm Package Leads... | Socket
• CISA chief frets about open-source vulnerabilities, delayed security improvements | cyberscoop.com
• Anthropic: Mythos finds more than 10,000 software flaws in first month | cyberscoop.com
• Pardon MIE? | ironPeak Blog
• CISA asks cybersecurity community to alert it to vulnerability exploitation | Cybersecurity Dive
• Lawmakers Demand Answers as CISA Tries to Contain Data Leak | krebsonsecurity.com
• Google publishes exploit code threatening millions of Chromium users | arstechnica.com
• Millions of AI agents imperiled by critical vulnerability in open source package | arstechnica.com
• Discord migrates all users to end-to-end encryption by default | The Record
• Texas AG sues Meta over claims that WhatsApp doesn't provide end-to-end encryption | arstechnica.com
• Alleged Kimwolf Botmaster ‘Dort’ Arrested, Charged in U.S. and Canada | krebsonsecurity.com
• Iran-linked hackers target key US, allied sectors with sophisticated spear-phishing messages | Cybersecurity Dive
• FBI warns about fast-growing phishing kit targeting Microsoft 365 users | cyberscoop.com
• Analyzing the rise in device code phishing attacks in 2026 | Push Security
• Trump Mobile confirms it exposed customers’ personal data, including phone numbers and home addresses | TechCrunch Security
• Kash Patel’s clothing brand website shut down after reports it was hacked | TechCrunch Security
• Tulsi Gabbard resigns as US director of national intelligence | Social Signals
• When Certificate Trust Fails: The DigiCert Code-Signing Incident and Microsoft Defender False Positive |

💾

On this week’s show Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news.

They cover:

• GitHub announced a possible breach
• CISA leaks important creds, keys in public repo
• Awful vulnerability in Bitlocker renders it useless without a PIN
• So. Many. Patches.
• Polish Government urges officials to ditch Signal for mSzyfr
• Much, much more

This week’s show is brought to you by Thinkst Canary. Thinkst’s founder, Haroon Meer, is this week’s sponsor guest. He joined James Wilson to talk about how doing “the basics” in security isn’t trivially easy.

This episode is also available on YouTube.

Show notes

• GitHub on X: "We are investigating unauthorized access to GitHub’s internal repositories. While we currently have no evidence of impact to customer information stored outside of GitHub’s internal repositories (such as our customers’ enterprises, organizations, and repositories), we are closely" / X
• CISA Admin Leaked AWS GovCloud Keys on Github – Krebs on Security
• Experts Confirm the Fast16 Malware Was Sabotaging Nuclear Weapons Tests, Likely in Iran
• Iran hackers: Hackers have breached tank readers at gas stations; officials suspect Iran is responsible | CNN Politics
• War and Data Centers Are Driving Up the Cost of Fiber-Optic Cable
• Microsoft on pace to break annual vulnerability record as AI-driven patch wave takes hold | The Record from Recorded Future News
• NCSC’s Ollie Whitehouse on surviving the "bugpocalypse" - Risky Business Media
• Defense at AI speed: Microsoft’s new multi-model agentic security system tops leading industry benchmark | Microsoft Security Blog
• Project Glasswing: what Mythos showed us
• Linus Torvalds says AI-powered bug hunters have made Linux security mailing list ‘almost entirely unmanageable’
• First public macOS kernel memory corruption exploit on Apple M5
• OpenAI launches Daybreak to combat cyber threats | Cybersecurity Dive
• Zero-day exploit completely defeats default Windows 11 BitLocker protections - Ars Technica
• GitHub - Wack0/bitlocker-attacks: A list of public attacks on BitLocker · GitHub
• Catalin Cimpanu: "The Polish government has advi…" - Mastodon
• CISA orders all federal agencies to patch exploited bug in Cisco SD-WAN systems by Sunday | The Record from Recorded Future News
• CVE-2026-20182: Critical authentication bypass in Cisco Catalyst SD-WAN Controller (FIXED)
• Huawei zero-day attack behind last year’s crash of Luxembourg's entire telecoms network | The Record from Recorded Future News
• Patch bypass allows hackers to exploit prior flaw in SonicWall SSL-VPN | Cybersecurity Dive
• Microsoft disrupts Fox Tempest malware-signing-as-a-service platform tied to ransomware gangs | The Record from Recorded Future News
• Streamer Realtime Deepfakes Himself into Mr. Beast, Says He Loves 'Touching Little Boys'

💾

In this sponsored soap box edition of the Risky Business podcast Patrick Gray chats with Toni de la Fuente, the founder of Prowler.

Prowler started off as a bunch of scripts in a trenchcoat, then became an open source cloud security tool, and it’s now a venture-funded cloud security business. In this interview Toni talks us through how AI is changing the game for him as an open source project owner, and as a vendor. In short, reports of the death of IT and security tooling at the hands of frontier models have been greatly exaggerated.

This episode is also available on Youtube.

Show notes

💾

On this week’s show Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news.

They cover:

• Mini Shai-Hulud and the TanStack compromise using Github Actions
• Instructure pays Canvas elearning platform data extortionists
• More Linux privilege escalation 0days!
• CISA helping critical infrastructure operators rearchitect their networks so they work offline

This week’s episode is sponsored by email security platform Sublime Security. Bobby Filar chats with Patrick about how agentic AI is being evaluated by buyers in a marketplace that’s experiencing “AI fatigue”.

This episode is also available on Youtube.

Show notes

• ‘Mini Shai-Hulud’ malware compromises hundreds of open-source packages in sprawling supply-chain attack | CyberScoop
• Hardening TanStack After the npm Compromise | TanStack Blog
• Canvas Breach Disrupts Schools & Colleges Nationwide – Krebs on Security
• Instructure pays ransom after Canvas incident as Congress announces investigation | The Record from Recorded Future News
• When DNSSEC goes wrong: how we responded to the .de TLD outage
• Adversaries Leverage AI for Vulnerability Exploitation, Augmented Operations, and Initial Access | Google Cloud Blog
• Mythos smythos! How to find 0day with lesser models - Risky Business Media
• GitHub - V4bel/dirtyfrag · GitHub
• retr0.zip
• NVD - CVE-2026-42511
• Flaw in Claude’s Chrome extension allowed ‘any’ other plugin to hijack victims’ AI | CyberScoop
• Ivanti customers confront yet another actively exploited zero-day | CyberScoop
• Palo Alto warns of critical software bug used in firewall attacks | The Record from Recorded Future News
• Where Have All the Complex Windows Malware and Their Analyses Gone?
• Meet Rassvet, Russia’s Answer to Starlink | WIRED
• DOJ says ransomware gang tapped into Russian government databases | TechCrunch
• Iranian government hackers using Chaos ransomware as cover, researchers say | The Record from Recorded Future News
• Foxconn confirms cyberattack impacting North American factories | The Record from Recorded Future News
• New CISA initiative aims for critical infrastructure to operate offline during cyberattacks | The Record from Recorded Future News
• ‘HELLO BOSS’: Inside the Chinese Realtime Deepfake Software Powering Scams Around the World
• How to Disable Google's Gemini in Chrome | WIRED
• FCC pushes ban on security updates for foreign-made routers, drones to 2029 | The Record from Recorded Future News

💾

On this week’s show, Patrick Gray and James Wilson are joined by special guest co-host Brad Arkin. They discuss the week’s cybersecurity news, including:

• The US Government says we just have to patch faster, but…
• Bugs in cPanel, MoveIt and all Linux distributions this week show that patching alone isn’t enough
• James gets mad about lame AI Agent adoption advice from the US and Australian Governments
• James Kettle and Niels Provos both showed us that any model can find 0day like Mythos
• And the cyber-assisted theft of cargo results in an astonishing loss of $725 million dollars

This week’s show is sponsored by SpecterOps. Their CTO, Jared Atkinson, chats to Pat about the big changes in the threat landscape, brought about by AI, that are causing a pivot away from detection and remediation, and toward prevention.

This episode is also available on Youtube.

Show notes

• Exclusive: US officials weigh cutting deadlines to fix digital flaws amid worries over AI-powered hacking, sources say | Reuters
• British cyber agency warns of looming ‘patch wave’ as AI speeds flaw discovery | The Record from Recorded Future News
• Federal agencies must patch cPanel bug by Sunday, CISA says | The Record from Recorded Future News
• cPanel zero-day exploited for months before patch release (CVE-2026-41940) - Help Net Security
• The most severe Linux threat to surface in years catches the world flat-footed - Ars Technica
• New MOVEit vulnerabilities prompt urgent patch warning | Cybersecurity Dive
• US and allies urge ‘careful adoption’ of AI agents | Cybersecurity Dive
• careful_adoption_of_agentic_ai_services.pdf
• User just tricked Grok and Bankrbot to send tokens with Morse code - Cryptopolitan
• Finding Zero-Days with Any Model
• (1872) Sponsored: James Kettle built an AI hacker - YouTube
• Feature Interview: Nicholas Carlini, Anthropic - Risky Business Media
• Trellix investigating breach of source code repository | Cybersecurity Dive
• Popular DAEMON Tools software compromised | Securelist
• Komari Red: The Monitoring Tool with a Built-in Reverse Shell | Huntress
• Hackers earning millions from hijacked cargo, FBI says | The Record from Recorded Future News
• Congress punts FISA renewal to June | The Record from Recorded Future News
• Cops Use Apple Data And Car Bluetooth To Identify Crypto Robbery Suspect
• Stewart Baker, outspoken voice on cybersecurity and national security law, dies at 78 | IAPP

💾

In this edition of the Snake Oilers podcast three vendors stop by to pitch the audience on their products:

• Ent AI: Co-founder Brandon Dixon pitched Ent, an intent-aware, AI-powered endpoint security control.

• Spacewalk AI: Founders Chris Fuller and Tim Wenzlau pitch Spacewalk, an AI-powered incident response platform.

• Mondoo: Co-founder Dominik Richter pitches Mondoo, an AI-powered “service as software” in the vulnerability management space.

This episode is also available on YouTube.

Show notes

💾

On this week’s show, Patrick Gray and James Wilson are joined by special guest-host Dmitri Alperovitch. They discuss the week’s cybersecurity news, including:

• The US government is mad as hell about Chinese firms stealing American AI technology
• Dmitri has an opinion or two about the US selling Nvidia chips to China
• Speaking of Chinese AI, Kimi’s new 2.6 is very interesting
• The US sanctions a Cambodian senator for earning mega bucks through scam compounds
• And a ransomware family is promoting itself as being … quantum-safe?

This week’s show is sponsored by Trail of Bits. CEO and co-founder Dan Guido chats to Pat about how private inference works and Trail of Bits’ audit of WhatsApp’s private AI setup.

This episode is also available on Youtube.

Show notes

• Exclusive: US State Dept orders global warning about alleged AI thefts by DeepSeek, other Chinese firms | Reuters
• moonshotai/Kimi-K2.6 · Hugging Face
• Discord Sleuths Gained Unauthorized Access to Anthropic’s Mythos | WIRED
• Newly Deciphered Sabotage Malware May Have Targeted Iran’s Nuclear Program—and Predates Stuxnet | WIRED
• Hackers deployed wiper malware in destructive attacks on Venezuela’s energy sector | The Record from Recorded Future News
• Mystery Around Venezuelan Cyberattack Deepens, with New Discovery of "Highly Destructive" Wiper
• Risky Business #819 -- Venezuela (credibly?!) blames USA for wiper attack - Risky Business Media
• AI Tools Are Helping Mediocre North Korean Hackers Steal Millions | WIRED
• CISA: US agency breached through Cisco vulnerability, FIRESTARTER backdoor allowed access through March | The Record from Recorded Future News
• US, UK authorities warn that Firestarter backdoor malware survives patching | Cybersecurity Dive
• Surveillance campaigns use commercial surveillance tools to exploit long-known telecom vulnerabilities | CyberScoop
• UK regulator closes loophole that allowed rogue companies to track phone users' location | Reuters
• US sanctions Cambodian senator for millions earned through scam compounds | The Record from Recorded Future News
• Vercel says some of its customers' data was stolen prior to its recent hack | TechCrunch
• Supply Chain Security Incident Update
• Apple fixes bug that cops used to extract deleted chat messages from iPhones | TechCrunch
• Kyle Daigle on X: "Wanted to provide more clarity about this. Yesterday, we had a regression in merge queue behavior where, in some cases, squash or rebase commits were generated from the wrong base state, making earlier changes appear reverted in branch history. 2,804 pull requests out of over 4M" / X
• Securing the git push pipeline: Responding to a critical remote code execution vulnerability - The GitHub Blog
• One ransomware crew now drives half of all cyber claims: At-Bay | Insurance Business
• In a first, a ransomware family is confirmed to be quantum-safe - Ars Technica
• What we learned about TEE security from auditing WhatsApp's Private Inference

💾

On this week’s show, Patrick Gray and James Wilson are joined by special guest The Grugq. They discuss the week’s cybersecurity news, including:

• Vercel got owned, and there’s a few infostealer and compromised employee dots to connect
• Mozilla used Mythos to find 271 bugs, which feels like a sign of the bug-pocalypse
• Speaking of the bug-pocalypse, is that why NIST is noping out of enriching a bunch of bugs?
• The NSA is using Mythos even though the government did that whole Anthropic blacklisting thing
• And DDos attacks hit a couple of smaller-player socials

This week’s episode is sponsored by Permiso. Ian Ahl chats to Pat about the subtle signals Permiso uses to detect ShinyHunters-style activity in cloud and on-prem environments.

This episode is also available on Youtube.

Show notes

• Vercel April 2026 Security incident
• Vercel breach linked to infostealer infection at Context.ai
• Vercel confirms breach as hackers claim to be selling stolen data
• Matt Johansen: “This is not a good look” | X
• NIST limits vulnerability analysis as CVE backlog swells | Cybersecurity Dive
• CISA Cyber on X
• Ransomware attack continues to disrupt healthcare in London nearly two years later | The Record from Recorded Future News
• Lawmakers ponder terrorism designations, homicide charges over hospital ransomware attacks | CyberScoop
• In defeat for Trump, House extends electronic spying program for just 10 days | The Record from Recorded Future News
• Crypto infrastructure company blames $290 million theft on North Korean hackers | The Record from Recorded Future News
• US-sanctioned currency exchange says $15 million heist done by "unfriendly states" - Ars Technica
• Hackers are abusing unpatched Windows security flaws to hack into organizations | TechCrunch
• Mozilla Used Anthropic’s Mythos to Find and Fix 271 Bugs in Firefox | WIRED
• NSA using Anthropic's Mythos despite Defense Department blacklist
• Beyond the breach: inside a cargo theft actor’s post-compromise playbook | Proofpoint US
• Beware scam messages offering ships safe transit through Hormuz Strait, says security firm | The Straits Times
• New Jersey men given lengthy sentences for running North Korean laptop farms | The Record from Recorded Future News
• Turns Out We’re Not Alone - Volodymyr Styran
• US joins nearly two dozen other countries in striking back against DDoS-for-hire platforms | Cybersecurity Dive
• Bluesky blames app outage on ‘sophisticated’ DDoS attack | The Record from Recorded Future News
• Mastodon says its flagship server was hit by a DDoS attack | TechCrunch
• An IT expert explained under what conditions using a VPN can cause a smartphone to explode

💾

On this week’s show, Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news. They cover:

• Everyone has an opinion about Claude Mythos… even though almost nobody has used it yet
• CISA adds a 2009 Excel bug to the KEV list, u wot?
• Adobe also parties like it’s the 2000s, and fixes an Acrobat Reader bug
• Disgraced former Trenchant exec Peter Williams’ sob story fails to resonate with … anyone
• Remember those crosswalk buttons hacked to play audio mocking Trump and Zuck? They were “secured” by the password: 1234.

This week’s episode is sponsored by mobile network operator, Cape. Ajit Gokhale talks with James about the ways to get being a telco right when you’re starting from scratch and solving the security problems of 2026.

This episode is also available on Youtube.

Show notes

• Lab Space
• The “AI Vulnerability Storm”: Building a “Mythosready” Security Program
• Polymarket on X: "JUST IN: Goldman Sachs is reportedly ramping up its cyber defenses in preparation for Claude Mythos."
• Ananay on X: "Marcus Hutchins probably has the best take on Mythos doing vulnerability research"
• solst/ICE of Astarte on X: "Th vast majority of CISOs do not work at Google-sized companies, and will not have to worry about 0days"
• Charlie Miller on X: "we’ve gone through this before with early fuzzers, afl, etc"
• James Kettle on X: "'Can AI Do Novel Security Research? Meet the HTTP Terminator' will premiere at Blackhat"
• jeffrey lee funk on X: "We've been tricked, again. Many of the thousands of bugs and vulnerabilities Mythos found are in older software are impossible to exploit."
• Claude is getting worse, according to Claude • The Register
• Your Agent Is Mine: Measuring Malicious Intermediary Attacks on the LLM Supply Chain
• OpenAI's Mac apps need updates thanks to the Axios hack | CyberScoop
• Hack at Anodot leaves over a dozen breached companies facing extortion | TechCrunch
• Snowflake customers hit in data theft attacks after SaaS integrator breach
• Booking.com confirms hackers accessed customers’ data
• CPUID hijacked to serve malware as HWMonitor downloads • The Register
• Known Exploited Vulnerabilities Catalog | CISA
• Adobe fixes PDF zero-day security bug that hackers have exploited for months | TechCrunch
• The Sad Decline of Trenchant Exec Who Had Everything, Before Deciding to Steal and Sell Zero Days to Russian Buyer
• FBI Extracts Suspect’s Deleted Signal Messages Saved in iPhone Notification Database
• US operation evicts Russia from hacked SOHO routers used to breach critical infrastructure | Cybersecurity Dive
• Telegram Is Still Hosting a Sanctioned $21 Billion Crypto Scammer Black Market | WIRED
• The Dumbest Hack of the Year Exposed a Very Real Problem | WIRED

💾

In this edition of the Snake Oilers podcast three vendors stop by to pitch the audience on their products:

• Burp AI and DAST: The founder of PortSwigger and creator of legendary security software Burp Suite, Dafydd Stuttard, drops by to pitch listeners on Burp AI and Burp Suite DAST.

• Sondera: Josh Devon talks about Sondera, a technology designed to intervene when AI models start doing the wrong thing by statefully tracking their trajectories. This isn’t a permissions suite for AI agents, it’s a way to stick agents in a harness and make sure they adhere to hard policy boundaries.

• Truffle Security: Dylan Ayrey, the founder of Truffle Security, joins Risky Business again to talk through the latest bells and whistles in Trufflehog, a security tool that searches for exposed secrets and validates them. The Truffle team has done a lot of work on the remediation part of their product over the last few years, and Dylan tells us all about it!

This episode is also available on YouTube

Show notes

💾

On this week’s show, Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news. They cover:

• Anthropic’s new Mythos model hunts bugs and chains exploits together so well that… you cant have it…
• …Unless you’re one of their Project Glasswing partners
• The world isn’t short on bugs, though. F5, Fortinet, Progress ShareFile, and TrueConf are all getting rekt by humans
• GPU Rowhammering goes in the GPU, past the IOMMU and back into the host-side Nvidia driver
• North Korea is spending serious time and money on its crypto hacking
• Just when the US needs CISA most, they slash its budget some more!

This week’s episode is sponsored by identity verification firm, Persona. Tying digital actions to actual human identities isn’t just for banking know-your-customer any more. Persona’s Benjamin Chait says know-your-staff checks belong in high-value flows inside your organisation, too.

This episode is also available on Youtube.

Show notes

• Claude Mythos Preview \ red.anthropic.com
• Anthropic Claims Its New A.I. Model, Mythos, Is a Cybersecurity ‘Reckoning’ - The New York Times
• Anthropic Teams Up With Its Rivals to Keep AI From Hacking Everything | WIRED
• FFmpeg on X: "Thank you to @AnthropicAI for sending FFmpeg patches" / X
• Critical flaw in F5 BIG-IP faces wide exploitation risk | Cybersecurity Dive
• React2Shell vulnerability helps hackers steal credentials, AI platform keys and other sensitive data | Cybersecurity Dive
• Critical flaw in FortiClient EMS under exploitation | Cybersecurity Dive
• Researchers warn of critical flaws in Progress ShareFile | Cybersecurity Dive
• CISA gives agencies two weeks to patch video conferencing bug exploited by Chinese hackers | The Record from Recorded Future News
• New Rowhammer attacks give complete control of machines running Nvidia GPUs - Ars Technica
• North Korea's hijack of one of the web's most used open source projects was likely weeks in the making | TechCrunch
• Drift crypto platform confirms $280 million stolen in hack as researchers point finger at North Korea | The Record from Recorded Future News
• Drift on X: "Drift Protocol — Incident Background Update " / X
• Trump’s FY2027 budget again targets CISA | Cybersecurity Dive
• CISA’s vulnerability scans, field support on chopping block in Trump budget | Cybersecurity Dive
• Iranian hackers break into U.S. industrial systems, agencies warn
• FBI labels suspected China hack of law enforcement data 'a major cyber incident'
• Russia Hacked Routers to Steal Microsoft Office Tokens – Krebs on Security
• Massachusetts hospital turning ambulances away after cyberattack | The Record from Recorded Future News
• Exclusive | 'Ghost Murmur,' a never-used secret tool, deployed to find lost airman in Iran in daring mission
• A Secure Chat App’s Encryption Is So Bad It Is ‘Meaningless’

💾

In this special documentary episode, Patrick Gray and Amberleigh Jack take a look back at hacking throughout the 1990s, from the feel-good vibes of the early hacking communities to the antics of young hackers who wound up on the run from the FBI.

Part one features recollections from:

• Jeff Moss (The Dark Tangent), DefCon and Black Hat founder
• Chris Wysopal (Weld Pond), L0pht member, co-founder, @Stake
• Kevin Poulsen (Dark Dante), 1990s hacker turned journalist
• Elias Levy (Aleph One), author of Smashing the Stack for Fun and Profit, Phrack, 1996

How the World Got Owned is produced in partnership with SentinelOne.

Show notes

• Elias Levy (Aleph1), Former Principle Engineer, Google
• Kevin Poulsen, Journalist
• Jeff Moss, DefCon founder
• Chris Wysopal, @Stake founder, L0pht member
• Hackers testifying at the United States Senate, May 19, 1998
• Hackers May ‘Net’ Good PR for Studio
• DefCon Archives | DefCon 1
• A Not So Terribly Brief History of the Electronic Frontier Foundation
• Innocent Hackers Want Their Computers Back
• Breakdowns in Computer Security
• Unsolved Mysteries, Season 3, Episode 4
• The Last Hacker: He Called Himself Dark Dante. His Compulsion Led Him to Secret Files and, Eventually, The Bar of Justice
• Justia appeal summary, Kevin Poulsen, 1994
• Smashing the Stack for Fun and Profit, Phrack Magazine, November 1996
• From subversives to CEOs: How radical hackers built today’s cybersecurity industry

💾

On this week’s show, Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news. They cover:

• Those pesky North Koreans shim a backdoor into a 100M-downloads-a-week npm package
• TeamPCP appear to have ransacked Cisco’s source and cloud environments
• AI is getting legitimately good at being told to “just go find some 0day in this”
• Kaspersky says Coruna and Triangulation do share code lineage
• Iranian hackers dump Kash Patel’s gmail spool
• Oh, and of course there’s a Citrix Netscaler memory leak being exploited in the wild

This week’s episode is sponsored by Dropzone AI, who make automated AI SOC analysts. Head honcho Ed Wu explains how they’ve built pre-canned ‘hunt packs’ to lead the AI off into your environment to find weird, interesting and security relevant things.

This episode is also available on Youtube.

Show notes

• Google links axios supply chain attack to North Korean group | The Record from Recorded Future News
• Cisco source code stolen in Trivy-linked dev environment breach
• chiefofautism on X: "someone at ANTHROPIC just showed CLAUDE finding ZERO DAY vulnerabilities in a live conference demo"
• h0mbre on X: "Claude is somehow better at kernel exploitation than creating meal plans."
• Vulnerability Research Is Cooked — Quarrelsome
• MAD Bugs: vim vs emacs vs Claude - Calif
• MAD Bugs: Claude Wrote a Full FreeBSD Remote Kernel RCE with Root Shell (CVE-2026-4747)
• A Risky Biz Experiment: Hunting for iOS 0day with AI - Risky Business Media
• Security leaders say the next two years are going to be 'insane' | CyberScoop
• Coruna framework: an exploit kit and ties to Operation Triangulation | Securelist
• Apple says no one using Lockdown Mode has been hacked with spyware | TechCrunch
• Reverse engineering Apple’s silent security fixes - Calif
• Jury finds Meta's platforms are harmful to children in 1st wave of social media addiction lawsuits | PBS News
• Meta and YouTube found liable in social media addiction trial
• Iranian hackers publish emails allegedly stolen from Kash Patel
• Iran Us War: 'Legitimate targets': Iran issues warning to US tech firms including Google, Amazon, Microsoft, Nvidia - The Times of India
• Drop Site on X: "IRGC: From now on, for every assassination, an American company will be destroyed"
• OSINTtechnical on X: "Starlink shutdowns are forcing Russian troops even deeper into Ubiquiti’s ecosystem. "
• Citrix NetScaler products confirmed to be under exploitation | Cybersecurity Dive
• CISA tells federal agencies to patch Citrix NetScaler bug by Thursday | The Record from Recorded Future News
• Using a VPN May Subject You to NSA Spying | WIRED
• Post reporters called the White House. Their phones showed ‘Epstein Island.’ - The Washington Post

💾

In this sponsored Soap Box edition of the show, Patrick Gray and James Wilson talk about red teaming AI systems with Russel Van Tuyl, Vice President of Services at elite penetration testing firm SpecterOps.

SpecterOps is the company behind attack path enumeration tool Bloodhound and Bloodhound Enterprise, but they’re also a pentest and red teaming shop with world class expertise in popping shells on all sorts of interesting systems in all sorts of interesting places.

This episode is also available on Youtube.

Show notes

💾

On this week’s show, Patrick Gray, Adam Boileau and James WIlson discuss the week’s cybersecurity news. They talk through:

• TeamPCP’s supply chain attack on Github, and they threw in an anti-Iran wiper, because why not?!
• Anthropic hooks up its models to just… use your whole computer
• After Stryker’s Very Bad Day, CISA says maybe add some more controls around your Intune?
• Another iOS exploit kit shows up in the cyber bargain-bin
• The FTC decides to ban… all new home routers?! U wot m8?!
• Supermicro founder was personally sanction-busting Nvidia GPUs into China?!

This week’s episode is sponsored by enterprise browser maker, Island. Chief Customer Officer Bradon Rogers joins Pat to explain how its customers are using Island to control the use of personal AI services in regulated industries.

This episode is also available on Youtube.

Show notes

• ‘CanisterWorm’ Springs Wiper Attack Targeting Iran
• TeamPCP deploys CanisterWorm on NPM following Trivy compromise
• Andrej Karpathy on X: "Software horror: litellm PyPI supply chain" attack
• Checkmarx KICS GitHub Action Compromised: Malware Injected in All Git Tags
• Felix Rieseberg on X: "Today, we’re releasing a feature that allows Claude to control your computer"
• A Top Google Search Result for Claude Plugins Was Planted by Hackers
• Lockheed Martin targeted in alleged breach by pro-Iran hacktivist
• CISA urges companies to secure Microsoft Intune systems after hackers mass-wipe Stryker devices
• FBI seems to seize website tied to Iranian cyberattack on Stryker
• Stryker confirms cyberattack is contained and restoration underway
• Hundreds of Millions of iPhones Can Be Hacked With a New Tool Found in the Wild
• Someone has publicly leaked an exploit kit that can hack millions of iPhones
• Russia-linked hackers use advanced iPhone exploit to target Ukrainians
• Apple rolls out first 'background security' update for iPhones, iPads, and Macs to fix Safari bug
• Post by @wartranslated.bsky.social — Bluesky
• Signal’s Creator Is Helping Encrypt Meta AI
• Hacker says they compromised millions of confidential police tips held by US company
• Millions of 'anonymous' crime tips exposed in massive Crime Stoppers hack
• Feds Disrupt IoT Botnets Behind Huge DDoS Attacks
• FCC bans import of consumer-grade routers amid national security concerns
• White House pours cold water on cyber ‘letters of marque’ speculation
• Google launches threat disruption unit, stops short of calling it ‘offensive'
• Supermicro’s cofounder was just arrested for allegedly smuggling $2.5 billion in GPUs to China
• Cyberattack on vehicle breathalyzer company leaves drivers stranded across the US
• Man pleads guilty to $8 million AI-generated music scheme
• Two Israelis AI generated "intelligence" and sold it to Iran

💾