Category: Security

Defensive Security Podcast Episode 340

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Please consider supporting the DefSec podcast here.

Links to this week’s stories:

https://www.theregister.com/2026/02/02/notepad_hijacking_lotus_blossom/

https://www.bleepingcomputer.com/news/security/fake-job-recruiters-hide-malware-in-developer-coding-challenges/

https://www.bleepingcomputer.com/news/security/amos-infostealer-targets-macos-through-a-popular-ai-app/

https://www.theregister.com/2026/02/10/ai_agents_messaging_apps_data_leak/

https://www.theregister.com/2026/02/11/payroll_pirates_business_social_engineering/

Defensive Security Podcast Episode 339

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Please consider supporting the DefSec podcast here.

Links to the stories we cover in this episode:

  • https://www.theregister.com/2026/01/29/faster_patching_please_cry_infoseccers/
  • https://thehackernews.com/2026/01/mandiant-finds-shinyhunters-using.html?m=1
  • https://www.bleepingcomputer.com/news/security/marquis-blames-ransomware-breach-on-sonicwall-cloud-backup-hack/
  • https://thehackernews.com/2026/01/researchers-find-175000-publicly.html?m=1
  • https://www.darkreading.com/application-security/openclaw-ai-runs-wild-business-environments

Defensive Security Podcast Episode 338

Podcast: Play in new window | Download | Embed

Subscribe: RSS

 

Please consider supporting the DefSec podcast here.

Links to the stories we cover in this episode:

https://www.bleepingcomputer.com/news/security/hackers-exploit-security-testing-apps-to-breach-fortune-500-firms/

https://www.securityweek.com/analysis-of-6-billion-passwords-shows-stagnant-user-behavior/

https://www.theregister.com/2026/01/20/group_ib_ai_cycercrime_subscriptions/

https://www.bleepingcomputer.com/news/security/voidlink-cloud-malware-shows-clear-signs-of-being-ai-generated/

https://arstechnica.com/security/2026/01/mandiant-releases-rainbow-table-that-cracks-weak-admin-password-in-12-hours/

Defensive Security Podcast Episode 337

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Links to the stories in this episode:

  • https://www.theregister.com/2026/01/09/pyongyangs_cyberspies_are_turning_qr/
  • https://www.scworld.com/perspective/five-ways-to-conduct-a-more-secure-hiring-process
  • https://cybersecuritynews.com/vmware-esxi-exploited-toolkit/
  • https://www.darkreading.com/cyber-risk/ciso-succession-crisis-highlights-turnover-amplifies-security-risks

Defensive Security Podcast Episode 334

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Merry Christmas and Happy Holidays!

Links to this week’s stories:

https://krebsonsecurity.com/2025/12/most-parked-domains-now-serving-malicious-content/

https://thehackernews.com/2025/12/russia-linked-hackers-use-microsoft-365.html?m=1

https://cybersecuritynews.com/amazon-catches-north-korean-it-worker/

https://www.darkreading.com/application-security/fake-proof-ai-slop-hobble-defenders

https://www.helpnetsecurity.com/2025/12/17/cisco-secure-email-cve-2025-20393/

Defensive Security Podcast Episode 331B

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Reposting Episode 331 due to the wrong mp3 attached to the original.

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Links to this week’s stories:

  • https://cloud.google.com/blog/topics/threat-intelligence/unc6040-proactive-hardening-recommendations
  • https://www.theregister.com/2025/11/13/chinese_spies_claude_attacks/ / https://www.bleepingcomputer.com/news/security/anthropic-claims-of-claude-ai-automated-cyberattacks-met-with-doubt/
  • https://www.theregister.com/2025/11/14/selfreplicating_supplychain_attack_poisons_150k/
  • https://cyberscoop.com/fortinet-delayed-disclosure-exploited-vulnerability/
  • https://www.bleepingcomputer.com/news/security/piecing-together-the-puzzle-a-qilin-ransomware-investigation/

Repo

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Links to this week’s stories:

  • https://cloud.google.com/blog/topics/threat-intelligence/unc6040-proactive-hardening-recommendations
  • https://www.theregister.com/2025/11/13/chinese_spies_claude_attacks/ / https://www.bleepingcomputer.com/news/security/anthropic-claims-of-claude-ai-automated-cyberattacks-met-with-doubt/
  • https://www.theregister.com/2025/11/14/selfreplicating_supplychain_attack_poisons_150k/
  • https://cyberscoop.com/fortinet-delayed-disclosure-exploited-vulnerability/
  • https://www.bleepingcomputer.com/news/security/piecing-together-the-puzzle-a-qilin-ransomware-investigation/

Defensive Security Podcast Episode 330

Podcast: Play in new window | Download | Embed

Subscribe: RSS

 

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Links to this week’s stories:

  • https://www.cybersecuritydive.com/news/nevada-ransomware-attack-traced-back-to-malware-download-by-employee/805011/
  • https://cloud.google.com/blog/topics/threat-intelligence/threat-actor-usage-of-ai-tools
  • https://www.darkreading.com/application-security/owasp-highlights-supply-chain-risks-new-top-10
  • https://www.computerweekly.com/news/366634363/Google-Dont-get-distracted-by-AI-focus-on-real-cyber-threats

Defensive Security Podcast Episode 329

Podcast: Play in new window | Download | Embed

Subscribe: RSS

https://www.youtube.com/watch?v=3BaNujBx62Y

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Links to this week’s stories:

https://www.theregister.com/2025/11/03/mit_sloan_updates_ai_ransomware_paper/

https://www.theregister.com/2025/10/29/ey_exposes_4tb_sql_database/

https://www.darkreading.com/cyber-risk/zombie-projects-rise-again-undermine-security

https://www.darkreading.com/cloud-security/cloud-outages-highlight-need-resilient-secure-infrastructure-recovery

 

Defensive Security Podcast Episode 328

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Links we discuss this week:

https://thehackernews.com/2025/10/self-spreading-glassworm-infects-vs.html?m=1

https://www.cybersecuritydive.com/news/artificial-intelligence-security-risks-ey-report/803490/

https://www.cybersecuritydive.com/news/ai-augment-security-identity-soc/803608/

https://www.darkreading.com/cyber-risk/best-end-user-security-awareness-programs-arent-about-awareness-anymore

https://www.bleepingcomputer.com/news/security/hackers-now-exploiting-critical-windows-server-wsus-flaw-in-attacks/

Defensive Security Podcast Episode 327

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Links to this week’s stories:

https://www.cybersecurity-insiders.com/how-ai-will-shape-the-future-of-cyber-defense-a-one-three-and-five-year-outlook/

https://www.helpnetsecurity.com/2025/10/15/f5-big-ip-data-breach/

https://www.bleepingcomputer.com/news/security/fake-lastpass-bitwarden-breach-alerts-lead-to-pc-hijacks/

https://blogs.microsoft.com/on-the-issues/2025/10/16/mddr-2025/

https://www.theguardian.com/technology/2025/oct/19/global-cyber-attack-russian-hack-solarwinds-stress-health