Category: Security

Defensive Security Podcast Episode 343

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Please consider supporting the DefSec podcast here.

Here are the links we discuss this week:

  • https://www.darkreading.com/identity-access-management-security/more-attackers-logging-in-not-breaking-in
  • https://www.bleepingcomputer.com/news/security/stryker-attack-wiped-tens-of-thousands-of-devices-no-malware-needed/
  • https://www.csoonline.com/article/4147833/cisa-urges-it-to-harden-endpoint-management-systems-after-cyberattack-by-pro-iranian-group.html
  • https://arstechnica.com/security/2026/03/widely-used-trivy-scanner-compromised-in-ongoing-supply-chain-attack/
  • https://techcrunch.com/2026/03/21/delve-accused-of-misleading-customers-with-fake-compliance/

Defensive Security Podcast Episode 342B

Podcast: Play in new window | Download | Embed

Subscribe: RSS

This time it’s not a rerun!

]Please consider supporting the DefSec podcast here.

Here are the links we discuss this week:

  • https://www.bleepingcomputer.com/news/security/ransomware-payment-rate-drops-to-record-low-as-attacks-surge/
  • https://www.securityweek.com/recent-cisco-catalyst-sd-wan-vulnerability-now-widely-exploited/
  • https://www.darkreading.com/cyberattacks-data-breaches/nation-state-actor-ai-malware-assembly-line
  • https://www.cybersecuritydive.com/news/ransomware-identity-ai-cloudflare/813319/
  • https://thehackernews.com/2026/03/anthropic-finds-22-firefox.html?m=1

Defensive Security Podcast Episode 341

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Please consider supporting the DefSec podcast here.

Here are the links we discuss this week:

https://www.bleepingcomputer.com/news/security/amazon-ai-assisted-hacker-breached-600-fortigate-firewalls-in-5-weeks/

https://www.theregister.com/2026/02/16/open_source_registries_fund_security/

https://www.bleepingcomputer.com/news/security/infostealer-malware-found-stealing-openclaw-secrets-for-first-time/

https://www.securityweek.com/api-threats-grow-in-scale-as-ai-expands-the-blast-radius/

https://www.theregister.com/2026/02/19/rmm_rat_trustconnect/

Defensive Security Podcast Episode 340

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Please consider supporting the DefSec podcast here.

Links to this week’s stories:

https://www.theregister.com/2026/02/02/notepad_hijacking_lotus_blossom/

https://www.bleepingcomputer.com/news/security/fake-job-recruiters-hide-malware-in-developer-coding-challenges/

https://www.bleepingcomputer.com/news/security/amos-infostealer-targets-macos-through-a-popular-ai-app/

https://www.theregister.com/2026/02/10/ai_agents_messaging_apps_data_leak/

https://www.theregister.com/2026/02/11/payroll_pirates_business_social_engineering/

Defensive Security Podcast Episode 339

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Please consider supporting the DefSec podcast here.

Links to the stories we cover in this episode:

  • https://www.theregister.com/2026/01/29/faster_patching_please_cry_infoseccers/
  • https://thehackernews.com/2026/01/mandiant-finds-shinyhunters-using.html?m=1
  • https://www.bleepingcomputer.com/news/security/marquis-blames-ransomware-breach-on-sonicwall-cloud-backup-hack/
  • https://thehackernews.com/2026/01/researchers-find-175000-publicly.html?m=1
  • https://www.darkreading.com/application-security/openclaw-ai-runs-wild-business-environments

Defensive Security Podcast Episode 338

Podcast: Play in new window | Download | Embed

Subscribe: RSS

 

Please consider supporting the DefSec podcast here.

Links to the stories we cover in this episode:

https://www.bleepingcomputer.com/news/security/hackers-exploit-security-testing-apps-to-breach-fortune-500-firms/

https://www.securityweek.com/analysis-of-6-billion-passwords-shows-stagnant-user-behavior/

https://www.theregister.com/2026/01/20/group_ib_ai_cycercrime_subscriptions/

https://www.bleepingcomputer.com/news/security/voidlink-cloud-malware-shows-clear-signs-of-being-ai-generated/

https://arstechnica.com/security/2026/01/mandiant-releases-rainbow-table-that-cracks-weak-admin-password-in-12-hours/

Defensive Security Podcast Episode 337

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Links to the stories in this episode:

  • https://www.theregister.com/2026/01/09/pyongyangs_cyberspies_are_turning_qr/
  • https://www.scworld.com/perspective/five-ways-to-conduct-a-more-secure-hiring-process
  • https://cybersecuritynews.com/vmware-esxi-exploited-toolkit/
  • https://www.darkreading.com/cyber-risk/ciso-succession-crisis-highlights-turnover-amplifies-security-risks

Defensive Security Podcast Episode 334

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Merry Christmas and Happy Holidays!

Links to this week’s stories:

https://krebsonsecurity.com/2025/12/most-parked-domains-now-serving-malicious-content/

https://thehackernews.com/2025/12/russia-linked-hackers-use-microsoft-365.html?m=1

https://cybersecuritynews.com/amazon-catches-north-korean-it-worker/

https://www.darkreading.com/application-security/fake-proof-ai-slop-hobble-defenders

https://www.helpnetsecurity.com/2025/12/17/cisco-secure-email-cve-2025-20393/

Defensive Security Podcast Episode 331B

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Reposting Episode 331 due to the wrong mp3 attached to the original.

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Links to this week’s stories:

  • https://cloud.google.com/blog/topics/threat-intelligence/unc6040-proactive-hardening-recommendations
  • https://www.theregister.com/2025/11/13/chinese_spies_claude_attacks/ / https://www.bleepingcomputer.com/news/security/anthropic-claims-of-claude-ai-automated-cyberattacks-met-with-doubt/
  • https://www.theregister.com/2025/11/14/selfreplicating_supplychain_attack_poisons_150k/
  • https://cyberscoop.com/fortinet-delayed-disclosure-exploited-vulnerability/
  • https://www.bleepingcomputer.com/news/security/piecing-together-the-puzzle-a-qilin-ransomware-investigation/

Repo

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Links to this week’s stories:

  • https://cloud.google.com/blog/topics/threat-intelligence/unc6040-proactive-hardening-recommendations
  • https://www.theregister.com/2025/11/13/chinese_spies_claude_attacks/ / https://www.bleepingcomputer.com/news/security/anthropic-claims-of-claude-ai-automated-cyberattacks-met-with-doubt/
  • https://www.theregister.com/2025/11/14/selfreplicating_supplychain_attack_poisons_150k/
  • https://cyberscoop.com/fortinet-delayed-disclosure-exploited-vulnerability/
  • https://www.bleepingcomputer.com/news/security/piecing-together-the-puzzle-a-qilin-ransomware-investigation/

Defensive Security Podcast Episode 330

Podcast: Play in new window | Download | Embed

Subscribe: RSS

 

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Links to this week’s stories:

  • https://www.cybersecuritydive.com/news/nevada-ransomware-attack-traced-back-to-malware-download-by-employee/805011/
  • https://cloud.google.com/blog/topics/threat-intelligence/threat-actor-usage-of-ai-tools
  • https://www.darkreading.com/application-security/owasp-highlights-supply-chain-risks-new-top-10
  • https://www.computerweekly.com/news/366634363/Google-Dont-get-distracted-by-AI-focus-on-real-cyber-threats