app_store_button

google_play_button

Details page - Device banner - 894x1036

Step into an infinite world of stories

Listen and read

risky.biz

Regular cybersecurity news updates from the Risky Business team...

Risky Business News

Tom Uren and Amberleigh Jack talk about how America can better use its private sector to scale up offensive cyber activities, including espionage and disruption operations. Involving it to tackle ransomware and cryptocurrency scammers makes a lot of sense.

They also talk about how the ransomware ecosystem is splintering, and one operator’s relatively quick journey from being an affiliate to a platform operator.

This episode is also available on Youtube.

 
 
 Show notes
 
 
 From Chaos to Capability: Building the US Market for Offensive Cyber
 
 Devman's RaaS Launch

Srsly Risky Biz: Hacking for Godot

A worm hits VS Code users, F5 was breached via its own devices back in 2023, Korea Telecom’s CEO says he’ll resign following a recent security breach, and the Boy Scouts will award cybersecurity merit badges.

 
 
 Show notes
 
 
 Risky Bulletin: Clever worm hits the DevOps scene

Risky Bulletin: Clever worm hits the VS Code scene

In this edition of Between Two Nerds Tom Uren and The Grugq talk to Joe Devanny, senior lecturer from King’s College London, all about India’s missing cyber power. It has all the ingredients to become a cyber superpower, but so far, hasn’t shown the motivation.

This episode is also available on Youtube.

 
 
 Show notes
 
 
 Interpreting India's Cyber Statecraft by Joe Devanny and Arthur Laudrain
 
 Dr Joeseph Devanny
 
 Sponsor interview: How AI turbocharges SOC analysts h

Between Three Nerds: India, the sleeping cyber superpower

A Romanian inmate hacks his prison’s IT system, hackers leak the data of DHS and DOJ employees, classified material was stolen from John Bolton’s AOL account and authorities seize a SIM farm in Latvia.

 
 
 Show notes
 
 
 Risky Bulletin: Prisoner hacks prison IT system, goes wild!

Risky Bulletin: Prisoner hacks his prison IT system, goes wild!

In this sponsor interview, Edward Wu, CEO and founder of Dropzone AI talks to Tom Uren about a study that measured how AI practically helps SOC analysts triage real-world problems. Analysts were faster, more accurate and got less tired with AI assistance. Edward thinks the technology won’t replace human analysts, but will speed their skill development.

 
 
 Show notes
 
 
 The Cloud Security Alliance AI SOC study

Risky Bulletin: F5 says an APT stole source code, vulnerability reports

Tom Uren and Amberleigh Jack talk about First Wap, a Jakarta-based company that is selling surveillance-as-a-service. The good news is that it appears that government and media attention has had an impact on high-profile spyware vendors like NSO Group. The bad news is that these smaller players are flying under the radar and aren’t afraid of selling to sketchy customers.

They also talk about how the Chinese government has harnessed the power of its exploit development community with hacking contests.

This episode is also available on Youtube.

 
 
 Show notes

Srsly Risky Biz: Small beer surveillance firms escape crackdown, for now

Windows 10 reaches End-of-Life, CISA cyber personnel avoided last week’s layoffs, the US seizes $15 billion dollars from a cyber-scam-compound operator, and a Secure Boot bypass impacts 200,000 Framework computers.

 
 
 Show notes
 
 
 Risky Bulletin: Windows 10 reaches End-of-Life

Risky Bulletin: Windows 10 reaches End-of-Life

In this edition of Between Two Nerds Tom Uren and The Grugq talk about how different cybercriminal groups are after insiders to provide network access.

This episode is available on Youtube.

 
 
 Show notes
 
 
 Nebulock sponsor episode
 
 Scattered Spider insiders tweet
 
 BBC's Joe Tidy approached by ransomware gang

Between Two Nerds: The Keyser Soze of Scattered Spider

Microsoft revamps Edge-IE-Mode after zero-day attacks, the FBI seizes the extortion site targeting Salesforce, a new round of layoffs hits CISA, and Apple doubles its bug bounty rewards.

 
 
 Show notes
 
 
 Risky Bulletin: Microsoft revamps Edge's "IE Mode" after zero-day attacks

Risky Bulletin: Microsoft revamps Edge's "IE Mode" after zero-day attacks

Russian hackers abuse app-specific passwords to bypass multi-factor, the tenth Salt Typhoon victim is identified, Predatory Sparrow destroys $90 million from an Iranian crypto-exchange, and Argentina arrests a Russian disinfo gang.

 
 
 Show notes

Risky Bulletin: Russian hackers abuse app-specific passwords to bypass MFA

Listen and read

Other podcasts you might like ...