app_store_button

google_play_button

Device Banner Block-copy 894x1036

Astu lugude lõputusse maailma

Loe ja kuula

risky.biz

Regular cybersecurity news updates from the Risky Business team...

Risky Business News

The US indicts two cybersecurity employees over ransomware attacks, hackers extort customers of South Korean massage parlors, another crypto firm gets hacked for $128 million dollars, and cargo thieves collab with hackers to target freight companies.

 
 
 Show notes
 
 
 Risky Bulletin: US indicts two rogue cybersecurity employees for ransomware attacks

Risky Bulletin: US indicts two rogue cybersecurity employees for ransomware attacks

In this edition of Between Two Nerds Tom Uren and The Grugq discuss the futility of using aggressive cyber operations to send messages between states.

This episode is also available on Youtube.

 
 
 Show notes
 
 
 The Record, Volt Typhoon was not successful
 
 Sand in the gears: Sabotage in world politics by Joshua Rovner, Rory Cormac and Lennart Maschmeyer

Between Two Nerds: Lost in transmission

Norway finds remote control features in its Chinese electric buses, the US CyberCorps program may saddle students with debt, Edge and Chrome get AI-based scareware blockers, and a Conti member has been extradited to the US.

 
 
 Show notes
 
 
 Risky Bulletin: Norway skittish of its Chinese electric buses

Risky Bulletin: Norway skittish of its Chinese electric buses

In this sponsored interview, Casey Ellis chats to Sublime Security CEO and founder, Josh Kamdjou about how Sublime is seeing a massive surge in ICS or calendar invite phishing and how the email security platform can help.

 
 
 Show notes

Risky Bulletin: Russia arrests Meduza Stealer group

Tom Uren and Amberleigh Jack talk about Peter Williams, the general manager of vulnerability research firm Trenchant, who has pleaded guilty to selling exploits to the Russian 0day broker Operation Zero. It’s a terrible look, but it doesn’t mean the private sector can’t be trusted to develop exploits.

They also discuss a new report’s recommendations to empower the Office of the National Cyber Director. It’s a good idea, but it won’t make up for the cuts in funding and personnel across the Trump administration’s cyber portfolio.

This episode is also available on Youtube.

 
 
 Show notes

Srsly Risky Biz: Peter Williams, Ex-ASD, Pleads Guilty to Selling Eight Exploits to Russia

HackingTeam’s successor is targeting Russia and Belarus, X users must re-enroll their security keys, Chrome will put HTTP behind a warning dialogue, and 15 people are expected to plead guilty in an Italian hacking scandal.

 
 
 Show notes
 
 
 Risky Bulletin: HackingTeam successor linked to recent Chrome zero-days

Risky Bulletin: HackingTeam is back!

In this edition of Between Two Nerds Tom Uren and The Grugq dissect a recent Chinese CERT report that the NSA had hacked China’s national time keeping service.

This episode is also available on Youtube.

 
 
 Show notes
 
 
 MSS Weixin post 
 
 CN-CERT technical analysis
 
 Global Times on X
 
 BTN110: The NSA's nine to five hacking campaign

Between Two Nerds: NSA gets its mojo back!

A bug in Microsoft WSUS is under attack, Thailand revokes the citizenship of scam-linked businessman, the US charges high tech poker cheat, and Iran’s top hacking school is breached.

 
 
 Show notes
 
 
 Risky Bulletin: Russian bill would require researchers to report bugs to the FSB

Risky Bulletin: WSUS bug under attack

In this sponsored podcast Patrick Gray chats with Knocknoc CEO Adam Pointon about why true Zero Trust architectures never really got there. Spinning up ZTNA access to core applications and slapping SSO prompts on everything else is great, but if we’re honest, it’s not really Zero Trust. So, how and why did we get here?

 
 
 Show notes

Risky Bulletin: Router APIs abused to send SMS spam

Loe ja kuula

Muud podcastid, mis võivad sulle meeldida ...