Category: Security

Defensive Security Podcast Episode 329

Podcast: Play in new window | Download | Embed

Subscribe: RSS

https://www.youtube.com/watch?v=3BaNujBx62Y

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Links to this week’s stories:

https://www.theregister.com/2025/11/03/mit_sloan_updates_ai_ransomware_paper/

https://www.theregister.com/2025/10/29/ey_exposes_4tb_sql_database/

https://www.darkreading.com/cyber-risk/zombie-projects-rise-again-undermine-security

https://www.darkreading.com/cloud-security/cloud-outages-highlight-need-resilient-secure-infrastructure-recovery

 

Defensive Security Podcast Episode 328

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Links we discuss this week:

https://thehackernews.com/2025/10/self-spreading-glassworm-infects-vs.html?m=1

https://www.cybersecuritydive.com/news/artificial-intelligence-security-risks-ey-report/803490/

https://www.cybersecuritydive.com/news/ai-augment-security-identity-soc/803608/

https://www.darkreading.com/cyber-risk/best-end-user-security-awareness-programs-arent-about-awareness-anymore

https://www.bleepingcomputer.com/news/security/hackers-now-exploiting-critical-windows-server-wsus-flaw-in-attacks/

Defensive Security Podcast Episode 327

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Links to this week’s stories:

https://www.cybersecurity-insiders.com/how-ai-will-shape-the-future-of-cyber-defense-a-one-three-and-five-year-outlook/

https://www.helpnetsecurity.com/2025/10/15/f5-big-ip-data-breach/

https://www.bleepingcomputer.com/news/security/fake-lastpass-bitwarden-breach-alerts-lead-to-pc-hijacks/

https://blogs.microsoft.com/on-the-issues/2025/10/16/mddr-2025/

https://www.theguardian.com/technology/2025/oct/19/global-cyber-attack-russian-hack-solarwinds-stress-health

Defensive Security Podcast Episode 326

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Here are the stories we discuss this week:

https://cybersecuritynews.com/hackers-actively-compromising-databases/

https://www.bleepingcomputer.com/news/security/hackers-target-university-hr-employees-in-payroll-pirate-attacks/

https://securityaffairs.com/183154/security/threat-actors-steal-firewall-configs-impacting-all-sonicwall-cloud-backup-users.html

https://www.theregister.com/2025/10/07/gen_ai_shadow_it_secrets/

https://thehackernews.com/2025/10/from-phishing-to-malware-ai-becomes.html?m=1

https://databreaches.net/2025/10/12/from-sizzle-to-drizzle-to-fizzle-the-massive-data-leak-that-wasnt/

Defensive Security Podcast Episode 325

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Here are links to the stories we discuss this week:

https://www.theregister.com/2025/09/29/postmark_mcp_server_code_hijacked/

https://www.bleepingcomputer.com/news/security/oracle-patches-ebs-zero-day-exploited-in-clop-data-theft-attacks/

https://www.bleepingcomputer.com/news/security/westjet-data-breach-exposes-travel-details-of-12-million-customers/

https://www.cybersecuritydive.com/news/material-cybersecurity-breaches-unreported/760892/

https://www.securityweek.com/red-hat-confirms-gitlab-instance-hack-data-theft/

https://www.securityweek.com/hackers-extorting-salesforce-after-stealing-data-from-dozens-of-customers/

https://databreaches.net/2025/10/04/just-days-before-its-data-might-be-leaked-qantas-airways-obtained-a-permanent-injunction/

Defensive Security Podcast Episode 324

Podcast: Play in new window | Download | Embed

Subscribe: RSS

 

Here are links to the stories we discuss this week:

  • https://cloud.google.com/blog/topics/threat-intelligence/brickstorm-espionage-campaign
  • https://thehackernews.com/2025/09/github-mandates-2fa-and-short-lived.html
  • https://www.theregister.com/2025/09/23/gartner_ai_attack/
  • https://www.bleepingcomputer.com/news/security/sonicwall-releases-sma100-firmware-update-to-wipe-rootkit-malware/
  • https://www.zdnet.com/article/battered-by-cyberattacks-salesforce-faces-a-trust-problem-and-a-potential-class-action-lawsuit/

Defensive Security Podcast Episode 320

Podcast: Play in new window | Download | Embed

Subscribe: RSS

 

Links to stories:

Defensive Security Podcast Episode 318

Podcast: Play in new window | Download | Embed

Subscribe: RSS

I have no idea why Riverside.fm (the service we use to record the podcast) has such an audio/video sync problem for the first minute or so of the recording. We’re working on it…

On to the show. Here are the links for this week’s episode:

https://www.bleepingcomputer.com/news/security/new-downgrade-attack-can-bypass-fido-auth-in-microsoft-entra-id

https://www.bleepingcomputer.com/news/security/docker-hub-still-hosts-dozens-of-linux-images-with-the-xz-backdoor

https://www.darkreading.com/threat-intelligence/charon-ransomware-apt-tactics

https://www.securityweek.com/vibe-coding-when-everyones-a-developer-who-secures-the-code

https://www.securityweek.com/inside-the-dark-webs-access-economy-how-hackers-sell-the-keys-to-enterprise-networks

Defensive Security Podcast Episode 316

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Want to support our show? Want to get access to episodes a week before everyone else? Become a patreon sponsor here: https://www.patreon.com/defensivesec

If you’re in Atlanta on August 20, you can join us for a LIVE episode at Mission 25. Register here: MCS Mission: Security’25

Our new merch store is live: DefSec Store

We’ve added a lot of new items and will continue to do so over time.

On to the show. Here are the links for this week’s episode:

  • https://www.theregister.com/2025/07/26/microsoft_sharepoint_attacks_leak/
  • https://mashable.com/article/google-gemini-deletes-users-code
  • https://arstechnica.com/security/2025/07/open-source-repositories-are-seeing-a-rash-of-supply-chain-attacks/
  • https://www.theregister.com/2025/07/23/lawsuit_clorox_vs_cognizant/
  • https://www.bleepingcomputer.com/news/security/allianz-life-confirms-data-breach-impacts-majority-of-14-million-customers/

Defensive Security Podcast Episode 315

Podcast: Play in new window | Download | Embed

Subscribe: RSS

 

If you’re in Atlanta on August 20, you can join us for a LIVE episode at Mission 25. Register here: MCS Mission: Security’25

Our new merch store is live(ish): DefSec Store – We’ll be adding more items as time goes on. This is managed through Printify, which has a quite expansive range of products to logo up.

Also, some of you may know that Jerry is into photography and contemplating creating a calendar with images he’s taken. Let us know if that sounds interesting. Possible themes are: beach sunsets, flowers, or jet fighters, because that’s about all he’s good at taking pictures of.

 

 

On to the show. Here are the links for this week’s episode: