On this week’s show, Patrick Gray and James Wilson are joined by special guest co-host Brad Arkin. They discuss the week’s cybersecurity news, including:

• The US Government says we just have to patch faster, but…
• Bugs in cPanel, MoveIt and all Linux distributions this week show that patching alone isn’t enough
• James gets mad about lame AI Agent adoption advice from the US and Australian Governments
• James Kettle and Niels Provos both showed us that any model can find 0day like Mythos
• And the cyber-assisted theft of cargo results in an astonishing loss of $725 million dollars

This week’s show is sponsored by SpecterOps. Their CTO, Jared Atkinson, chats to Pat about the big changes in the threat landscape, brought about by AI, that are causing a pivot away from detection and remediation, and toward prevention.

This episode is also available on Youtube.

Show notes

• Exclusive: US officials weigh cutting deadlines to fix digital flaws amid worries over AI-powered hacking, sources say | Reuters
• British cyber agency warns of looming ‘patch wave’ as AI speeds flaw discovery | The Record from Recorded Future News
• Federal agencies must patch cPanel bug by Sunday, CISA says | The Record from Recorded Future News
• cPanel zero-day exploited for months before patch release (CVE-2026-41940) - Help Net Security
• The most severe Linux threat to surface in years catches the world flat-footed - Ars Technica
• New MOVEit vulnerabilities prompt urgent patch warning | Cybersecurity Dive
• US and allies urge ‘careful adoption’ of AI agents | Cybersecurity Dive
• careful_adoption_of_agentic_ai_services.pdf
• User just tricked Grok and Bankrbot to send tokens with Morse code - Cryptopolitan
• Finding Zero-Days with Any Model
• (1872) Sponsored: James Kettle built an AI hacker - YouTube
• Feature Interview: Nicholas Carlini, Anthropic - Risky Business Media
• Trellix investigating breach of source code repository | Cybersecurity Dive
• Popular DAEMON Tools software compromised | Securelist
• Komari Red: The Monitoring Tool with a Built-in Reverse Shell | Huntress
• Hackers earning millions from hijacked cargo, FBI says | The Record from Recorded Future News
• Congress punts FISA renewal to June | The Record from Recorded Future News
• Cops Use Apple Data And Car Bluetooth To Identify Crypto Robbery Suspect
• Stewart Baker, outspoken voice on cybersecurity and national security law, dies at 78 | IAPP

💾

In this edition of the Snake Oilers podcast three vendors stop by to pitch the audience on their products:

• Ent AI: Co-founder Brandon Dixon pitched Ent, an intent-aware, AI-powered endpoint security control.

• Spacewalk AI: Founders Chris Fuller and Tim Wenzlau pitch Spacewalk, an AI-powered incident response platform.

• Mondoo: Co-founder Dominik Richter pitches Mondoo, an AI-powered “service as software” in the vulnerability management space.

This episode is also available on YouTube.

Show notes

💾

On this week’s show, Patrick Gray and James Wilson are joined by special guest-host Dmitri Alperovitch. They discuss the week’s cybersecurity news, including:

• The US government is mad as hell about Chinese firms stealing American AI technology
• Dmitri has an opinion or two about the US selling Nvidia chips to China
• Speaking of Chinese AI, Kimi’s new 2.6 is very interesting
• The US sanctions a Cambodian senator for earning mega bucks through scam compounds
• And a ransomware family is promoting itself as being … quantum-safe?

This week’s show is sponsored by Trail of Bits. CEO and co-founder Dan Guido chats to Pat about how private inference works and Trail of Bits’ audit of WhatsApp’s private AI setup.

This episode is also available on Youtube.

Show notes

• Exclusive: US State Dept orders global warning about alleged AI thefts by DeepSeek, other Chinese firms | Reuters
• moonshotai/Kimi-K2.6 · Hugging Face
• Discord Sleuths Gained Unauthorized Access to Anthropic’s Mythos | WIRED
• Newly Deciphered Sabotage Malware May Have Targeted Iran’s Nuclear Program—and Predates Stuxnet | WIRED
• Hackers deployed wiper malware in destructive attacks on Venezuela’s energy sector | The Record from Recorded Future News
• Mystery Around Venezuelan Cyberattack Deepens, with New Discovery of "Highly Destructive" Wiper
• Risky Business #819 -- Venezuela (credibly?!) blames USA for wiper attack - Risky Business Media
• AI Tools Are Helping Mediocre North Korean Hackers Steal Millions | WIRED
• CISA: US agency breached through Cisco vulnerability, FIRESTARTER backdoor allowed access through March | The Record from Recorded Future News
• US, UK authorities warn that Firestarter backdoor malware survives patching | Cybersecurity Dive
• Surveillance campaigns use commercial surveillance tools to exploit long-known telecom vulnerabilities | CyberScoop
• UK regulator closes loophole that allowed rogue companies to track phone users' location | Reuters
• US sanctions Cambodian senator for millions earned through scam compounds | The Record from Recorded Future News
• Vercel says some of its customers' data was stolen prior to its recent hack | TechCrunch
• Supply Chain Security Incident Update
• Apple fixes bug that cops used to extract deleted chat messages from iPhones | TechCrunch
• Kyle Daigle on X: "Wanted to provide more clarity about this. Yesterday, we had a regression in merge queue behavior where, in some cases, squash or rebase commits were generated from the wrong base state, making earlier changes appear reverted in branch history. 2,804 pull requests out of over 4M" / X
• Securing the git push pipeline: Responding to a critical remote code execution vulnerability - The GitHub Blog
• One ransomware crew now drives half of all cyber claims: At-Bay | Insurance Business
• In a first, a ransomware family is confirmed to be quantum-safe - Ars Technica
• What we learned about TEE security from auditing WhatsApp's Private Inference

💾

On this week’s show, Patrick Gray and James Wilson are joined by special guest The Grugq. They discuss the week’s cybersecurity news, including:

• Vercel got owned, and there’s a few infostealer and compromised employee dots to connect
• Mozilla used Mythos to find 271 bugs, which feels like a sign of the bug-pocalypse
• Speaking of the bug-pocalypse, is that why NIST is noping out of enriching a bunch of bugs?
• The NSA is using Mythos even though the government did that whole Anthropic blacklisting thing
• And DDos attacks hit a couple of smaller-player socials

This week’s episode is sponsored by Permiso. Ian Ahl chats to Pat about the subtle signals Permiso uses to detect ShinyHunters-style activity in cloud and on-prem environments.

This episode is also available on Youtube.

Show notes

• Vercel April 2026 Security incident
• Vercel breach linked to infostealer infection at Context.ai
• Vercel confirms breach as hackers claim to be selling stolen data
• Matt Johansen: “This is not a good look” | X
• NIST limits vulnerability analysis as CVE backlog swells | Cybersecurity Dive
• CISA Cyber on X
• Ransomware attack continues to disrupt healthcare in London nearly two years later | The Record from Recorded Future News
• Lawmakers ponder terrorism designations, homicide charges over hospital ransomware attacks | CyberScoop
• In defeat for Trump, House extends electronic spying program for just 10 days | The Record from Recorded Future News
• Crypto infrastructure company blames $290 million theft on North Korean hackers | The Record from Recorded Future News
• US-sanctioned currency exchange says $15 million heist done by "unfriendly states" - Ars Technica
• Hackers are abusing unpatched Windows security flaws to hack into organizations | TechCrunch
• Mozilla Used Anthropic’s Mythos to Find and Fix 271 Bugs in Firefox | WIRED
• NSA using Anthropic's Mythos despite Defense Department blacklist
• Beyond the breach: inside a cargo theft actor’s post-compromise playbook | Proofpoint US
• Beware scam messages offering ships safe transit through Hormuz Strait, says security firm | The Straits Times
• New Jersey men given lengthy sentences for running North Korean laptop farms | The Record from Recorded Future News
• Turns Out We’re Not Alone - Volodymyr Styran
• US joins nearly two dozen other countries in striking back against DDoS-for-hire platforms | Cybersecurity Dive
• Bluesky blames app outage on ‘sophisticated’ DDoS attack | The Record from Recorded Future News
• Mastodon says its flagship server was hit by a DDoS attack | TechCrunch
• An IT expert explained under what conditions using a VPN can cause a smartphone to explode

💾

On this week’s show, Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news. They cover:

• Everyone has an opinion about Claude Mythos… even though almost nobody has used it yet
• CISA adds a 2009 Excel bug to the KEV list, u wot?
• Adobe also parties like it’s the 2000s, and fixes an Acrobat Reader bug
• Disgraced former Trenchant exec Peter Williams’ sob story fails to resonate with … anyone
• Remember those crosswalk buttons hacked to play audio mocking Trump and Zuck? They were “secured” by the password: 1234.

This week’s episode is sponsored by mobile network operator, Cape. Ajit Gokhale talks with James about the ways to get being a telco right when you’re starting from scratch and solving the security problems of 2026.

This episode is also available on Youtube.

Show notes

• Lab Space
• The “AI Vulnerability Storm”: Building a “Mythosready” Security Program
• Polymarket on X: "JUST IN: Goldman Sachs is reportedly ramping up its cyber defenses in preparation for Claude Mythos."
• Ananay on X: "Marcus Hutchins probably has the best take on Mythos doing vulnerability research"
• solst/ICE of Astarte on X: "Th vast majority of CISOs do not work at Google-sized companies, and will not have to worry about 0days"
• Charlie Miller on X: "we’ve gone through this before with early fuzzers, afl, etc"
• James Kettle on X: "'Can AI Do Novel Security Research? Meet the HTTP Terminator' will premiere at Blackhat"
• jeffrey lee funk on X: "We've been tricked, again. Many of the thousands of bugs and vulnerabilities Mythos found are in older software are impossible to exploit."
• Claude is getting worse, according to Claude • The Register
• Your Agent Is Mine: Measuring Malicious Intermediary Attacks on the LLM Supply Chain
• OpenAI's Mac apps need updates thanks to the Axios hack | CyberScoop
• Hack at Anodot leaves over a dozen breached companies facing extortion | TechCrunch
• Snowflake customers hit in data theft attacks after SaaS integrator breach
• Booking.com confirms hackers accessed customers’ data
• CPUID hijacked to serve malware as HWMonitor downloads • The Register
• Known Exploited Vulnerabilities Catalog | CISA
• Adobe fixes PDF zero-day security bug that hackers have exploited for months | TechCrunch
• The Sad Decline of Trenchant Exec Who Had Everything, Before Deciding to Steal and Sell Zero Days to Russian Buyer
• FBI Extracts Suspect’s Deleted Signal Messages Saved in iPhone Notification Database
• US operation evicts Russia from hacked SOHO routers used to breach critical infrastructure | Cybersecurity Dive
• Telegram Is Still Hosting a Sanctioned $21 Billion Crypto Scammer Black Market | WIRED
• The Dumbest Hack of the Year Exposed a Very Real Problem | WIRED

💾

In this edition of the Snake Oilers podcast three vendors stop by to pitch the audience on their products:

• Burp AI and DAST: The founder of PortSwigger and creator of legendary security software Burp Suite, Dafydd Stuttard, drops by to pitch listeners on Burp AI and Burp Suite DAST.

• Sondera: Josh Devon talks about Sondera, a technology designed to intervene when AI models start doing the wrong thing by statefully tracking their trajectories. This isn’t a permissions suite for AI agents, it’s a way to stick agents in a harness and make sure they adhere to hard policy boundaries.

• Truffle Security: Dylan Ayrey, the founder of Truffle Security, joins Risky Business again to talk through the latest bells and whistles in Trufflehog, a security tool that searches for exposed secrets and validates them. The Truffle team has done a lot of work on the remediation part of their product over the last few years, and Dylan tells us all about it!

This episode is also available on YouTube

Show notes

💾

On this week’s show, Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news. They cover:

• Anthropic’s new Mythos model hunts bugs and chains exploits together so well that… you cant have it…
• …Unless you’re one of their Project Glasswing partners
• The world isn’t short on bugs, though. F5, Fortinet, Progress ShareFile, and TrueConf are all getting rekt by humans
• GPU Rowhammering goes in the GPU, past the IOMMU and back into the host-side Nvidia driver
• North Korea is spending serious time and money on its crypto hacking
• Just when the US needs CISA most, they slash its budget some more!

This week’s episode is sponsored by identity verification firm, Persona. Tying digital actions to actual human identities isn’t just for banking know-your-customer any more. Persona’s Benjamin Chait says know-your-staff checks belong in high-value flows inside your organisation, too.

This episode is also available on Youtube.

Show notes

• Claude Mythos Preview \ red.anthropic.com
• Anthropic Claims Its New A.I. Model, Mythos, Is a Cybersecurity ‘Reckoning’ - The New York Times
• Anthropic Teams Up With Its Rivals to Keep AI From Hacking Everything | WIRED
• FFmpeg on X: "Thank you to @AnthropicAI for sending FFmpeg patches" / X
• Critical flaw in F5 BIG-IP faces wide exploitation risk | Cybersecurity Dive
• React2Shell vulnerability helps hackers steal credentials, AI platform keys and other sensitive data | Cybersecurity Dive
• Critical flaw in FortiClient EMS under exploitation | Cybersecurity Dive
• Researchers warn of critical flaws in Progress ShareFile | Cybersecurity Dive
• CISA gives agencies two weeks to patch video conferencing bug exploited by Chinese hackers | The Record from Recorded Future News
• New Rowhammer attacks give complete control of machines running Nvidia GPUs - Ars Technica
• North Korea's hijack of one of the web's most used open source projects was likely weeks in the making | TechCrunch
• Drift crypto platform confirms $280 million stolen in hack as researchers point finger at North Korea | The Record from Recorded Future News
• Drift on X: "Drift Protocol — Incident Background Update " / X
• Trump’s FY2027 budget again targets CISA | Cybersecurity Dive
• CISA’s vulnerability scans, field support on chopping block in Trump budget | Cybersecurity Dive
• Iranian hackers break into U.S. industrial systems, agencies warn
• FBI labels suspected China hack of law enforcement data 'a major cyber incident'
• Russia Hacked Routers to Steal Microsoft Office Tokens – Krebs on Security
• Massachusetts hospital turning ambulances away after cyberattack | The Record from Recorded Future News
• Exclusive | 'Ghost Murmur,' a never-used secret tool, deployed to find lost airman in Iran in daring mission
• A Secure Chat App’s Encryption Is So Bad It Is ‘Meaningless’

💾

In this special documentary episode, Patrick Gray and Amberleigh Jack take a look back at hacking throughout the 1990s, from the feel-good vibes of the early hacking communities to the antics of young hackers who wound up on the run from the FBI.

Part one features recollections from:

• Jeff Moss (The Dark Tangent), DefCon and Black Hat founder
• Chris Wysopal (Weld Pond), L0pht member, co-founder, @Stake
• Kevin Poulsen (Dark Dante), 1990s hacker turned journalist
• Elias Levy (Aleph One), author of Smashing the Stack for Fun and Profit, Phrack, 1996

How the World Got Owned is produced in partnership with SentinelOne.

Show notes

• Elias Levy (Aleph1), Former Principle Engineer, Google
• Kevin Poulsen, Journalist
• Jeff Moss, DefCon founder
• Chris Wysopal, @Stake founder, L0pht member
• Hackers testifying at the United States Senate, May 19, 1998
• Hackers May ‘Net’ Good PR for Studio
• DefCon Archives | DefCon 1
• A Not So Terribly Brief History of the Electronic Frontier Foundation
• Innocent Hackers Want Their Computers Back
• Breakdowns in Computer Security
• Unsolved Mysteries, Season 3, Episode 4
• The Last Hacker: He Called Himself Dark Dante. His Compulsion Led Him to Secret Files and, Eventually, The Bar of Justice
• Justia appeal summary, Kevin Poulsen, 1994
• Smashing the Stack for Fun and Profit, Phrack Magazine, November 1996
• From subversives to CEOs: How radical hackers built today’s cybersecurity industry

💾

On this week’s show, Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news. They cover:

• Those pesky North Koreans shim a backdoor into a 100M-downloads-a-week npm package
• TeamPCP appear to have ransacked Cisco’s source and cloud environments
• AI is getting legitimately good at being told to “just go find some 0day in this”
• Kaspersky says Coruna and Triangulation do share code lineage
• Iranian hackers dump Kash Patel’s gmail spool
• Oh, and of course there’s a Citrix Netscaler memory leak being exploited in the wild

This week’s episode is sponsored by Dropzone AI, who make automated AI SOC analysts. Head honcho Ed Wu explains how they’ve built pre-canned ‘hunt packs’ to lead the AI off into your environment to find weird, interesting and security relevant things.

This episode is also available on Youtube.

Show notes

• Google links axios supply chain attack to North Korean group | The Record from Recorded Future News
• Cisco source code stolen in Trivy-linked dev environment breach
• chiefofautism on X: "someone at ANTHROPIC just showed CLAUDE finding ZERO DAY vulnerabilities in a live conference demo"
• h0mbre on X: "Claude is somehow better at kernel exploitation than creating meal plans."
• Vulnerability Research Is Cooked — Quarrelsome
• MAD Bugs: vim vs emacs vs Claude - Calif
• MAD Bugs: Claude Wrote a Full FreeBSD Remote Kernel RCE with Root Shell (CVE-2026-4747)
• A Risky Biz Experiment: Hunting for iOS 0day with AI - Risky Business Media
• Security leaders say the next two years are going to be 'insane' | CyberScoop
• Coruna framework: an exploit kit and ties to Operation Triangulation | Securelist
• Apple says no one using Lockdown Mode has been hacked with spyware | TechCrunch
• Reverse engineering Apple’s silent security fixes - Calif
• Jury finds Meta's platforms are harmful to children in 1st wave of social media addiction lawsuits | PBS News
• Meta and YouTube found liable in social media addiction trial
• Iranian hackers publish emails allegedly stolen from Kash Patel
• Iran Us War: 'Legitimate targets': Iran issues warning to US tech firms including Google, Amazon, Microsoft, Nvidia - The Times of India
• Drop Site on X: "IRGC: From now on, for every assassination, an American company will be destroyed"
• OSINTtechnical on X: "Starlink shutdowns are forcing Russian troops even deeper into Ubiquiti’s ecosystem. "
• Citrix NetScaler products confirmed to be under exploitation | Cybersecurity Dive
• CISA tells federal agencies to patch Citrix NetScaler bug by Thursday | The Record from Recorded Future News
• Using a VPN May Subject You to NSA Spying | WIRED
• Post reporters called the White House. Their phones showed ‘Epstein Island.’ - The Washington Post

💾

In this sponsored Soap Box edition of the show, Patrick Gray and James Wilson talk about red teaming AI systems with Russel Van Tuyl, Vice President of Services at elite penetration testing firm SpecterOps.

SpecterOps is the company behind attack path enumeration tool Bloodhound and Bloodhound Enterprise, but they’re also a pentest and red teaming shop with world class expertise in popping shells on all sorts of interesting systems in all sorts of interesting places.

This episode is also available on Youtube.

Show notes

💾

On this week’s show, Patrick Gray, Adam Boileau and James WIlson discuss the week’s cybersecurity news. They talk through:

• TeamPCP’s supply chain attack on Github, and they threw in an anti-Iran wiper, because why not?!
• Anthropic hooks up its models to just… use your whole computer
• After Stryker’s Very Bad Day, CISA says maybe add some more controls around your Intune?
• Another iOS exploit kit shows up in the cyber bargain-bin
• The FTC decides to ban… all new home routers?! U wot m8?!
• Supermicro founder was personally sanction-busting Nvidia GPUs into China?!

This week’s episode is sponsored by enterprise browser maker, Island. Chief Customer Officer Bradon Rogers joins Pat to explain how its customers are using Island to control the use of personal AI services in regulated industries.

This episode is also available on Youtube.

Show notes

• ‘CanisterWorm’ Springs Wiper Attack Targeting Iran
• TeamPCP deploys CanisterWorm on NPM following Trivy compromise
• Andrej Karpathy on X: "Software horror: litellm PyPI supply chain" attack
• Checkmarx KICS GitHub Action Compromised: Malware Injected in All Git Tags
• Felix Rieseberg on X: "Today, we’re releasing a feature that allows Claude to control your computer"
• A Top Google Search Result for Claude Plugins Was Planted by Hackers
• Lockheed Martin targeted in alleged breach by pro-Iran hacktivist
• CISA urges companies to secure Microsoft Intune systems after hackers mass-wipe Stryker devices
• FBI seems to seize website tied to Iranian cyberattack on Stryker
• Stryker confirms cyberattack is contained and restoration underway
• Hundreds of Millions of iPhones Can Be Hacked With a New Tool Found in the Wild
• Someone has publicly leaked an exploit kit that can hack millions of iPhones
• Russia-linked hackers use advanced iPhone exploit to target Ukrainians
• Apple rolls out first 'background security' update for iPhones, iPads, and Macs to fix Safari bug
• Post by @wartranslated.bsky.social — Bluesky
• Signal’s Creator Is Helping Encrypt Meta AI
• Hacker says they compromised millions of confidential police tips held by US company
• Millions of 'anonymous' crime tips exposed in massive Crime Stoppers hack
• Feds Disrupt IoT Botnets Behind Huge DDoS Attacks
• FCC bans import of consumer-grade routers amid national security concerns
• White House pours cold water on cyber ‘letters of marque’ speculation
• Google launches threat disruption unit, stops short of calling it ‘offensive'
• Supermicro’s cofounder was just arrested for allegedly smuggling $2.5 billion in GPUs to China
• Cyberattack on vehicle breathalyzer company leaves drivers stranded across the US
• Man pleads guilty to $8 million AI-generated music scheme
• Two Israelis AI generated "intelligence" and sold it to Iran

💾

On this week’s show, Patrick Gray, Adam Boileau and James WIlson discuss the week’s cybersecurity news. They discuss:

• Iran’s Intune-based wiper attack on medical device maker Stryker
• Qihoo 360’s AI publishes its own wildcard TLS cert private key
• Instagram is canning its end-to-end encrypted messaging
• What’s going on with mobile internet access in Moscow?
• The Xbox One’s bootloader gets voltage glitched into submission
• Oh Qualys! We love you! (At least, whoever is in the basement writing these beautiful .txt files…)

This week’s episode is sponsored by browser-based detection and response company, Push Security. Researcher Dan Green and Field CTO Mark Orlando join Pat to talk through the InstallFix variant of the *Fix attack technique.

This episode is also available on Youtube.

Show notes

• Iranian Hacktivists Strike Medical Device Maker Stryker in "Severe" Attack that Wiped Systems
• Stryker says it's restoring systems after pro-Iran hackers wiped thousands of employee devices | TechCrunch
• Stryker attack raises concerns about role of device management tool | Cybersecurity Dive
• Stryker tells SEC that timeline for recovery from cyberattack unknown | The Record from Recorded Future News
• How ‘Handala’ Became the Face of Iran’s Hacker Counterattacks | WIRED
• U.S Strikes Killed Iranian Cyber Chiefs, But The Hacks Continued
• Risky Business Features: Being a Wartime CISO
• Supply-chain attack using invisible code hits GitHub and other repositories - Ars Technica
• China's biggest cybersecurity company, Qihoo 360 just leaked their own wildcard SSL private key
• Emergent Cyber Behavior: When AI Agents Become Offensive Threat Actors - Irregular
• Risky Business Features: MCP is Dead
• Measuring AI Agents’ Progress on Multi-Step Cyber Attack Scenarios
• Measuring AI Agents' Progress on Multi-Step Cyber Attack Scenarios
• What is end-to-end encryption on Instagram | Instagram Help Center
• US Lawmakers Move to Kill the FBI’s Warrantless Wiretap Access | WIRED
• Website "whitelists" launched in Moscow | Forbes.ru
• Exclusive: Foreign hacker in 2023 compromised Epstein files held by FBI, source and documents show | Reuters
• Feds say another DigitalMint negotiator ran ransomware attacks and helped extort $75 million | CyberScoop
• Researchers disclose vulnerabilities in IP KVMs from four manufacturers - Ars Technica
• RE//verse 2026: Hacking the Xbox One by Markus 'doom' Gaasedelen - YouTube
• CrackArmor: Multiple vulnerabilities in AppArmor

💾

In this Soap Box edition of the Risky Business podcast Patrick Gray sits down with Airlock Digital co-founders Daniel Schell and David Cottingham to talk about the role AI models could play in managing enterprise allowlists.

They also talk about the durability of allowlisting as a control. After 12 years in business, the Airlock product hasn’t really changed all that much. That’s a good thing! It also means the Airlock team have been able to spend some time doing deep engineering instead of chasing the latest attacker TTPs and writing detection rules for them.

This episode is also available on Youtube.

Show notes

💾

On this week’s show, Patrick Gray, Adam Boileau and James WIlson discuss the week’s cybersecurity news. They cover:

• The Coruna exploits were L3 Harris, but it seems Triangulation… was not!
• Iran’s cyber HQ hit by Israeli (kinetic) strikes
• Trump’s cyber “strategy” is … well, all we’ve got is jokes cause there’s no serious content
• NSA and CyberCom finally get a leader after Lt Gen Joshua Rudd gets Senate nod
• DOGE (remember them?!) employee walked a social security database out on a USB stick

This episode is sponsored by open source cloud security scanner Prowler. Creator and CEO Toni de la Fuente talks to Pat about some of the enterprise features Prowler is growing, while remaining true to its open source roots.

This episode is also available on Youtube.

Show notes

• Inside Coruna: Reverse Engineering a Nation-State iOS Exploit Kit From JavaScript
• GitHub - matteyeux/coruna: deobfuscated JS and blobs
• US military contractor likely built iPhone hacking tools used by Russian spies in Ukraine
• APT36: A Nightmare of Vibeware
• State-linked actors targeted US networks in lead-up to Iran war
• Iranian cyber warfare HQ allegedly hit by Israel
• Last 2 names of 6 US soldiers who died in Kuwait attack identified by the Pentagon
• Signal, WhatsApp users face Russian phishing push, Dutch warn
• Samuel Bendett on X: "Russian military told it couldn't use Telegram messaging app"
• FBI investigating ‘suspicious’ cyber activities on critical surveillance network
• Risky Bulletin: New White House EO prioritizes fight against scams and cybercrime
• President Trump’s CYBER STRATEGY for America
• Fact Sheet: President Donald J. Trump Combats Cybercrime, Fraud, and Predatory Schemes Against American Citizens
• UK plans to shift fraud fight onto telecoms, tech companies
• Trump to hit Anthropic with executive order to remove "woke" AI Claude
• Anthropic launches code review tool to check flood of AI-generated code
• CrowdStrike reports record quarter amid investor concerns about AI impact
• Critical defect in Java security engine poses serious downstream security risks
• Gen. Joshua Rudd confirmed as NSA, Cyber Command head
• Plankey’s nomination as CISA director now in jeopardy
• DOGE employee stole Social Security data and put it on a thumb drive, report says
• Taming Agentic Browsers: Vulnerability in Chrome Allowed Extensions to Hijack New Gemini Panel
• Cel mai mare exportator român de carne, deținătorul brandului Cocorico, a intrat în restructurări, alături de Casa de Insolvență Transilvania

💾

On this week’s show, Patrick Gray, Adam Boileau and James WIlson discuss the week’s cybersecurity news. They cover:

• The US-Israeli attack on Iran had a whole lot of cyber. It’s clearly in the playbook now!
• The NSA Triangulation / L3 Harris Trenchant iOS exploit kit is on the loose, and being used by Chinese crypto scammers
• So long Maddhu Gottumukkala, but CISA’s annus horribilis continues
• Adam “humbug” Boileau complains about the Airsnitch wifi attack just being three ethernets in a trenchcoat
• ASD’s Cisco SD-WAN threat hunting guide is clearly borne of … experience

This week’s episode is sponsored by AI threat hunting platform Nebulock. Sydney Marrone joins to talk about how useful AI models are on the hunt, and her work building out an open source framework and maturity model. It’s methodology agnostic, so you can adapt it for your environment, and the github link is in the show notes!

This episode is also available on Youtube.

Show notes

• Inside the plan to kill Ali Khamenei
• Hacked traffic cams and hijacked TVs: How cyber operations supported the war against Iran | TechCrunch
• Matthew Prince 🌥 on X: "Counter to what some cyber vendors are saying, there’s been a dramatic drop in Iranian cyber operations. Likely as the operators are sheltering. They may pick back up, but right now there’s a noticeable lull." / X
• Cyber Command disrupted Iranian comms, sensors, top general says | The Record from Recorded Future News
• Iranian Hackers Use Elon Musk’s Starlink To Stay Online
• Exclusive | U.S. Smuggled Thousands of Starlink Terminals Into Iran After Protest Crackdown - WSJ
• Attacks on GPS Spike Amid US and Israeli War on Iran | WIRED
• Amazon Data Centers on Fire After Iranian Missile Strikes on Dubai
• A Possible US Government iPhone-Hacking Toolkit Is Now in the Hands of Foreign Spies and Criminals | WIRED
• Canceled contracts, a failed polygraph and personal disputes: Inside the turbulent tenure of Noem’s former cyber czar - POLITICO
• CISA CIO Robert Costello exits agency | CyberScoop
• OpenAI alters deal with Pentagon as critics sound alarm over surveillance
• Inside Anthropic’s Killer-Robot Dispute With the Pentagon - The Atlantic
• Read the full transcript of our interview with Anthropic CEO Dario Amodei - CBS News
• CBP Tapped Into the Online Advertising Ecosystem To Track Peoples’ Movements
• Large-Scale Online Deanonymization with LLMs
• Hackers Weaponize Claude Code in Mexican Government Cyberattack - SecurityWeek
• New AirSnitch attack bypasses Wi-Fi encryption in homes, offices, and enterprises - Ars Technica
• CISA orders agencies to patch Cisco devices now under attack | Cybersecurity Dive
• CISCO SD-WAN THREAT HUNT GUIDE
• ClawJacked attack let malicious websites hijack OpenClaw to steal data
• Area Man Accidentally Hacks 6,700 Camera-Enabled Robot Vacuums | WIRED
• Intellexa founder, three others sentenced to 8 years in prison over Greek spyware scandal | The Record from Recorded Future News
• Moscow man accused of posing as FSB officer to extort Conti ransomware gang | The Record from Recorded Future News
• Farewell, Felix · The Recurity Lablog
• Atmos Sphere 2026 | Atmos
• The Agentic Threat Hunting Framework | Nebulock blog
• GitHub - Nebulock-Inc/agentic-threat-hunting-framework: ATHF is a framework for agentic threat hunting - building systems that can remember, learn, and act with increasing autonomy. · GitHub

💾

On this week’s show, Patrick Gray, Adam Boileau and James WIlson discuss the week’s cybersecurity news. They cover:

• Low skill actors compromise 600 Fortinets with AI-generated playbooks
• Anthropic calls out Chinese AI firms over model distillation
• Meta’s director of AI safety tells her ClawdBot not to delete her mail… so of course it does
• Peter Williams cops 7 years in jail for selling L3 Harris Trenchant’s exploits to Russia
• Ivanti got hacked in 2021 via… bugs in Ivanti

This episode is sponsored by line-rate network capture system Corelight. CEO Brian Dye joins to discuss what AI can do for defenders, and what it can’t.

This episode is also available on Youtube.

Show notes

• AI-augmented threat actor accesses FortiGate devices at scale
• "this reads to me like: they ran existing tools.... but with a cool dashboard :D"
• Anthropic accuses Chinese labs of trying to illicitly take Claude’s capabilities | CyberScoop
• Detecting and preventing distillation attacks
• Hegseth warns Anthropic to let the military use the company’s AI tech as it sees fit, AP sources say
• Anthropic Rolls Out Embedded Security Scanning for Claude
• AWS's AI Coding Bot Kiro Caused a 13-Hour Outage
• Running OpenClaw safely: identity, isolation, and runtime risk
• Former Adobe, Cisco and Salesforce CISO talks AI pentesting
• History Repeats: Security in the AI Agent Era
• Meta Director of AI Safety Allows AI Agent to Accidentally Delete Her Inbox
• Microsoft says Office bug exposed customers' confidential emails to Copilot AI | TechCrunch
• The (tangential) fix: Microsoft adds Copilot data controls to all storage locations
• Ex-L3Harris executive sentenced to 87 months in prison for selling zero-day exploits to Russian broker
• Treasury Sanctions Exploit Broker Network for Theft and Sale of U.S. Government Cyber Tools
• Risky Bulletin: Russia starts criminal probe of Telegram founder Pavel Durov
• Ukraine pushes tighter Telegram regulation, citing Russian recruitment of locals
• The watchers: how openai, the US government, and persona built an identity surveillance machine that files reports on you to the feds
• Persona emails customers saying they don’t work with ICE or DHS amid ‘surveillance’ claims
• Inside the Fix: Analysis of In-the-Wild Exploit of CVE-2026-21513
• Ivanti hacked in 2021 via its own product
• Fed agencies ordered to patch Dell bug by Saturday after exploitation warning | The Record from Recorded Future News
• From BRICKSTORM to GRIMBOLT: UNC6201 Exploiting a Dell RecoverPoint for Virtual Machines Zero-Day

💾

There’s a lethal trifecta of AI risks: access to private data, exposure to untrusted content, and external communication. In this conversation, Risky Business host Patrick Gray chats with Josh Devon, the co-founder of Sondera, about how to best address these risks.

There is no magic solution to this problem. AI models mix code and data, are non-deterministic, and are crawling around all over your enterprise data and APIs as you read this.

But in this sponsored interview, Josh outlines how we can start to wrap our hands around the problem.

This episode is also available on Youtube.

Show notes

💾

On this week’s show, Patrick Gray, Adam Boileau and James WIlson discuss the week’s cybersecurity news. They cover:

• Palo Alto threat researchers want to attribute to China, but management says shush
• An increasing proportion of ransomware is data extortion. Is this good?
• Cambodia says it’s going to dismantle scam compounds
• CISA sufferers through yet another shutdown
• Google Gemini’s training secrets are being systematically harvested to improve other LLMs
• Academics assess SaaS password managers’ resilience against a malicious server

This episode is sponsored by SSO-firewall integration vendor Knocknoc. Chief exec Adam Pointon joins to talk about the latest in defences… which is to say Knocknoc for Solaris/Sparc and HPUX on PA-RISC?! Okay also that other little known OS… Windows.

This episode is also available on Youtube.

Show notes

• Data-only extortion grows as ransomware gangs seek better profits | Cybersecurity Dive
• Arctic Wolf Threat Report 2026
• Exclusive: Palo Alto chose not to tie China to hacking campaign for fear of retaliation from Beijing, sources say
• Risky Bulletin: Cambodia promises to dismantle scam networks by April - Risky Business Media
• Age of the ‘scam state’: how an illicit, multibillion-dollar industry has taken root in south-east Asia | Cybercrime | The Guardian
• Critical flaw in BeyondTrust Remote Support sees early signs of exploitation | Cybersecurity Dive
• CISA Navigates DHS Shutdown With Reduced Staff - SecurityWeek
• Kimwolf Botnet Swamps Anonymity Network I2P – Krebs on Security
• BADIIS to the Bone: New Insights to a Global SEO Poisoning Campaign — Elastic Security Labs
• Over 500,000 VKontakte accounts hijacked through malicious Chrome extensions | The Record from Recorded Future News
• Password managers' promise that they can't see your vaults isn't always true - Ars Technica
• Zero Knowledge (About) Encryption: A Comparative Security Analysis of Three Cloud-based Password Managers
• Google finds state-sponsored hackers use AI at 'all stages' of attack cycle | CyberScoop
• Google: Gemini hit with 100,000+ prompts in cloning attempt
• Proofpoint acquires Acuvity to tackle the security risks of agentic AI | CyberScoop
• Cisco Redefines Security for the Agentic Era with AI Defense Expansion and AI-Aware SASE
• Sophos Acquires Arco Cyber to Bring CISO-Level, Agentic AI-Powered Expertise to Every Organization
• Dave Kennedy on X: "Regarding this, there was a couple questions on does the pacemaker continue to advertise - most BLE implantable devices go into a sleep type mode. In this case, we are lucky - it does not. We know based on law enforcement answers that she is using a more modern pacemaker with" / X
• Clash Report on X: "BIG: Dutch Defence Minister Gijs Tuinman hints that software independence is possible for F-35 jets. He literally said you can “jailbreak” an F-35. When asked if Europe can modify it without US approval: “That’s not the point… we’ll see whether the Americans will show https://t.co/f11cGvtYsO" / X
• Dutch police arrest man who refused to delete confidential files shared by mistake | The Record from Recorded Future News

💾

On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:

• Microsoft reshuffles security leadership. It doesn’t spark joy.
• Russia is hacking the Winter Olympics. Again. But y tho?
• China-linked groups are keeping busy, hacking telcos in Norway, Singapore and dozens of others
• Campaigns underway targeting Ivanti, BeyondTrust and SolarWinds products
• An unknown hero blocks 23/tcp on the US internet backbone
• And James Wilson pops into talk about Claude’s go at a C compiler

This week’s episode is sponsored by Ent.AI, an AI startup that isn’t quite ready to tell us all what they’re doing. But nevertheless, founder Brandon Dixon joins to discuss AI’s role in security. Where does language-based understanding take us that previous methods couldn’t?

This episode is also available on Youtube.

Show notes

• Updates in two of our core priorities - The Official Microsoft Blog
• Strengthening Windows trust and security through User Transparency and Consent | Windows Experience Blog
• Microsoft prepares to refresh Secure Boot’s digital certificate | Cybersecurity Dive
• Microsoft Patch Tuesday matches last year’s zero-day high with six actively exploited vulnerabilities | CyberScoop
• Microsoft releases urgent Office patch. Russian-state hackers pounce. - Ars Technica
• Italy blames Russia-linked hackers for cyberattacks ahead of Winter Olympics | The Record from Recorded Future News
• Researchers uncover vast cyberespionage operation targeting dozens of governments worldwide | The Record from Recorded Future News
• Germany warns of state-linked phishing campaign targeting journalists, government officials | The Record from Recorded Future News
• Norwegian intelligence discloses country hit by Salt Typhoon campaign | The Record from Recorded Future News
• Singapore says China-linked hackers targeted telecom providers in major spying campaign | The Record from Recorded Future News
• Largest Multi-Agency Cyber Operation Mounted to Counter Threat Posed by Advanced Persistent Threat (APT) Actor UNC3886 to Singapore’s Telecommunications Sector | Cyber Security Agency of Singapore
• How Intel and Google Collaborate to Strengthen Intel® TDX
• Strengthening the Foundation: A Joint Security Review of Intel TDX 1.5 - Google Bug Hunters
• Active Exploitation of SolarWinds Web Help Desk (CVE-2025-26399) | Huntress
• EU, Dutch government announce hacks following Ivanti zero-days | The Record from Recorded Future News
• North Korean hackers targeted crypto exec with fake Zoom meeting, ClickFix scam | The Record from Recorded Future News
• BeyondTrust warns of critical RCE flaw in remote support software
• Rapid7 Analysis of CVE-2026-1731
• Building a C compiler with a team of parallel Claudes \ Anthropic
• (1) Post by @ryiron.bsky.social — Bluesky
• What AI Security Research Looks Like When It Works | AISLE
• South Korean crypto exchange races to recover $40bn of bitcoin sent to customers by mistake | South Korea | The Guardian
• White House to meet with GOP lawmakers on FISA Section 702 renewal | The Record from Recorded Future News

💾

Patrick Gray and Adam Boileau are joined by the newest guy on the Risky Business Media team, James WIlson. They discuss the week’s cybersecurity news, including:

• Notepad++ update supply chain attack has been attributed to China
• The AI agent future is even more stupid than expected; behold the OpenClaw/Clawdbot/Moltbook mess
• The Epstein files claim he had a personal hacker?
• Microsoft is finally getting ready to (think about starting to begin to) disable NTLM by default
• The usual bugs in the usual things! Ivanti, Fortinet, and Solarwinds. Again.
• Telco hides a free trip in its privacy policy, someone actually reads it and wins!

This weeks’s episode is sponsored by opensource IDP platform Authentik. CEO Fletcher Heisler talks to Pat about their new endpoint agent that can enforce device posture policies during login.

This episode is also available on Youtube.

Show notes

• The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit
• Notepad++ Hijacked by State-Sponsored Hackers | Notepad++
• Notepad++ v8.8.3 - Self-signed Certificate: Certified by Code, Not Corporations | Notepad++
• Hacking Moltbook: AI Social Network Reveals 1.5M API Keys | Wiz Blog
• lcamtuf on X: "Moltbook debate in a nutshell" / X
• Exposed Moltbook Database Let Anyone Take Control of Any AI Agent on the Site
• AndrewMohawk on X: "How exactly did an attacker send a message to your bot since you need to approve all the channels and set keys etc" / X
• Signal president warns AI agents are making encryption irrelevant
• Massive AI Chat App Leaked Millions of Users Private Conversations
• Runa Sandvik on X: New court record from the FBI details the state of the devices seized from Washington Post reporter Hannah Natanson
• EFTA01683874.pdf
• Disrupting the World's Largest Residential Proxy Network | Google Cloud Blog
• Nobel Committee says Peace Prize winner likely revealed early by digital spying | Reuters
• County pays $600,000 to pentesters it arrested for assessing courthouse security - Ars Technica
• Advancing Windows security: Disabling NTLM by default - Windows IT Pro Blog
• Critical flaws in Ivanti EPMM lead to fast-moving exploitation attempts | Cybersecurity Dive
• CISA orders federal agencies to patch exploited SolarWinds bug by Friday | The Record from Recorded Future News
• CISA, security researchers warn FortiCloud SSO flaw is under attack | Cybersecurity Dive
• Fintech firm Marquis blames hack at firewall provider SonicWall for its data breach | TechCrunch
• We Hid a Free Trip to Switzerland in Our Privacy Policy. Someone Found It in 2 Weeks. - Cape
• Between Two Nerds: The internal logic of Russian power grid attacks - YouTube

💾