Defensive Security Podcast

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Want to support our show? Want to get access to episodes a week before everyone else? Become a patreon sponsor here: https://www.patreon.com/defensivesec

If you’re in Atlanta on August 20, you can join us for a LIVE episode at Mission 25. Register here: MCS Mission: Security’25

Our new merch store is live: DefSec Store

We’ve added a lot of new items and will continue to do so over time.

On to the show. Here are the links for this week’s episode:

• https://www.theregister.com/2025/07/26/microsoft_sharepoint_attacks_leak/
• https://mashable.com/article/google-gemini-deletes-users-code
• https://arstechnica.com/security/2025/07/open-source-repositories-are-seeing-a-rash-of-supply-chain-attacks/
• https://www.theregister.com/2025/07/23/lawsuit_clorox_vs_cognizant/
• https://www.bleepingcomputer.com/news/security/allianz-life-confirms-data-breach-impacts-majority-of-14-million-customers/

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Episode 315 is available for our patreon donors and will be posted for everyone else on Monday, July 28. Going forward, episodes will be released to our patreon donors shortly after recording and will be released to everyone else a week later. If you want to become a patreon donor, you can do so here: https://www.patreon.com/defensivesec

Also, our new merch store is live and available here: https://store.defensivesecurity.org

It’s a work in progress and please let me know if you have any issued with it. Thank you all and we’ll talk on Monday!

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Want to support us?  Want even MORE DefSec?  Starting this week, we are providing more DefSec for our Patreon donors.  Sign up to be a Patreon donor today: https://www.patreon.com/defensivesec

Links:

• https://arstechnica.com/security/2025/06/active-exploitation-of-ami-management-tool-imperils-thousands-of-servers/
• https://www.bleepingcomputer.com/news/security/man-pleads-guilty-to-hacking-networks-to-pitch-security-services/
• https://www.helpnetsecurity.com/2025/06/23/new-hire-phishing-risk/

Patreon exclusive discussions:

• https://www.helpnetsecurity.com/2025/06/27/cybersecurity-risk-reduction-breach-transparency/
• https://www.theregister.com/2025/06/24/vulnerability_management_gap_noone_talks/

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Like what we’re doing with the DefSec Podcast and want to help support us? Donate here: https://www.patreon.com/defensivesec

Links:

• https://www.bleepingcomputer.com/news/security/no-the-16-billion-credentials-leak-is-not-a-new-data-breach/
• https://www.bleepingcomputer.com/news/security/russian-hackers-bypass-gmail-mfa-using-stolen-app-passwords/
• https://www.bleepingcomputer.com/news/security/north-korean-hackers-deepfake-execs-in-zoom-call-to-spread-mac-malware/
• https://socket.dev/blog/libxml2-maintainer-ends-embargoed-vulnerability-reports

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Like what we’re doing with the DefSec Podcast and want to help support us? Donate here: https://www.patreon.com/defensivesec

Links: 

https://www.bleepingcomputer.com/news/security/sentinelone-shares-new-details-on-china-linked-breach-attempt/
https://thehackernews.com/2025/06/new-supply-chain-malware-operation-hits.html?m=1
https://www.csoonline.com/article/4002103/cisos-beware-genai-use-is-outpacing-security-controls.html
https://thehackernews.com/2025/06/fin6-uses-aws-hosted-fake-resumes-on.html?m=1