Épisodes

  • Wide World of Cyber: DeepSeek lobs an AI hand grenade

    Wide World of Cyber: DeepSeek lobs an AI hand grenade
    Feb 21 2025

    In this episode of the Wide World of Cyber podcast Risky Business host Patrick Gray chats with SentinelOne’s Chris Krebs and Alex Stamos about AI, DeepSeek, and regulation.

    From its bad transport security to its Chinese ownership and the economic implications of China “entering the chat”, everyone’s freaking out over this new model. But should they be?

    Pat, Alex and Chris dissect the model’s significance, the politics of it all and how AI regulation in Europe, the US and China will shape the future of LLMs.

    This episode is also available on Youtube.

    Show notes
      Voir plus Voir moins
      41 min
    • Risky Business #780 -- ASD torched Zservers data while admins were drunk

      Risky Business #780 -- ASD torched Zservers data while admins were drunk
      Feb 19 2025

      On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:

      • Australian spooks scrubbed Medibank data off Zservers bulletproof hosting
      • Why device code phishing is the latest trick in confusing poor users about cloud authentication
      • Cloudflare gets blocked in Spain, but only on weekends and because of… football?
      • Palo Alto has yet another dumb bug
      • Adam gushes about Qualys’ latest OpenSSH vulns

      Enterprise browser maker Island is this week’s sponsor and Chief Customer Officer Braden Rogers joins the show to talk about how the adoption of AI everywhere is causing headaches.

      This episode is also available on Youtube.

      Show notes
      • Five Russians went out drinking. When they got back, Australia had struck
      • Dutch police say they took down 127 servers used by sanctioned hosting service | The Record from Recorded Future News
      • Further cyber sanctions in response to Medibank Private cyberattack | Defence Ministers
      • What is device code phishing, and why are Russian spies so successful at it? - Ars Technica
      • Anyone Can Push Updates to the DOGE.gov Website
      • Piracy Crisis: Cloudflare Says LaLiga Knew Dangers, Blocked IP Address Anyway (Update) * TorrentFreak
      • Palo Alto Networks warns firewall vulnerability is under active exploitation | Cybersecurity Dive
      • Qualys TRU Discovers Two Vulnerabilities in OpenSSH: CVE-2025-26465 & CVE-2025-26466 | Qualys Security Blog
      • China’s Salt Typhoon hackers targeting Cisco devices used by telcos, universities | The Record from Recorded Future News
      • RedMike Exploits Unpatched Cisco Devices in Global Telecommunications Campaign
      • A Hacker Group Within Russia’s Notorious Sandworm Unit Is Breaching Western Networks | WIRED
      • How Phished Data Turns into Apple & Google Wallets – Krebs on Security
      • New hack uses prompt injection to corrupt Gemini’s long-term memory
      • Arizona woman pleads guilty to running laptop farm for N. Korean IT workers, faces 9-year sentence | The Record from Recorded Future News
      • US reportedly releases Russian cybercrime figure Alexander Vinnik in prisoner swap | The Record from Recorded Future News
      • EXCLUSIVE: A Russia-linked Telegram network is inciting terrorism and is behind hate crimes in the UK – HOPE not hate
      • Remembering David Jorm - fundraising for Mental Health research
      Voir plus Voir moins
      1 h et 1 min
    • Risky Biz Soap Box: Run your own open source IDP with Authentik

      Risky Biz Soap Box: Run your own open source IDP with Authentik
      Feb 14 2025

      In this SoapBox edition of the show Patrick Gray chats to Fletcher Heisler, the CEO of open-source identity provider Authentik.

      The whole idea of Authentik is you can take control of an essential IT and security function: identity. Because Authentik is open source it’s extremely flexible, and if you’re running it yourself, you get to decide where your IDP should sit in your architecture. You can run it on prem if you’re an emergency call centre or you’re operating an airgapped network, or you can spin it up in your cloud environment if you’re a typical enterprise.

      Fletcher talks through the reasons Authentik users are decoupling themselves from the major SaaS Identity Providers, and the flexibility that comes from being able to assemble exactly what you need.

      This episode is also available on Youtube.

      Show notes
        Voir plus Voir moins
        38 min
      • Risky Business #779 -- DOGE staffer linked to The Com

        Risky Business #779 -- DOGE staffer linked to The Com
        Feb 12 2025
        On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including: Musk’s DOGE kid has a history with The ComParagon fires Italy as a spyware customerThailand cuts power to scam compounds…… and arrests Phobos/8Base Russian cybercrimsThe CyberCX DFIR report shows non-U2F MFA is well and truly overAnd much, much more. This week’s episode is sponsored by Dropzone.AI. They make an AI SOC analysis platform that relieves your analysts of the necessary but tedious work, so they can focus on the value of human insight. Dropzone’s founder and CEO Edward Wu joins to talk about how they approach the problem. This episode is also available on Youtube. Show notes Teen on Musk’s DOGE Team Graduated from ‘The Com’ – Krebs on SecurityACLU Warns DOGE’s ‘Unchecked’ Access Could Violate Federal Law | WIREDLawsuit accuses Trump administration of violating federal information security law | The Record from Recorded Future NewsThe Recruitment Effort That Helped Build Elon Musk’s DOGE Army | WIREDStates prepare privacy lawsuit against DOGE over access to federal data | The Record from Recorded Future NewsUnion groups sue Treasury over giving DOGE access to sensitive data | The Record from Recorded Future NewsStudent group sues Education Department over reported DOGE access to financial aid databases | The Record from Recorded Future NewsHackers exploiting bug in popular Trimble Cityworks tool used by local gov’ts | The Record from Recorded Future NewsDeepSeek iOS app sends data unencrypted to ByteDance-controlled servers - Ars TechnicaDeepSeek Is a Win for Chinese Hackers - Risky BusinessOwner of spyware used in alleged WhatsApp breach ends contract with Italy | WhatsApp | The GuardianAnother person targeted by Paragon spyware comes forward | TechCrunchApple fixes security flaw allowing third-party access to locked devices | The Record from Recorded Future NewsU.S. sanctions bulletproof hosting provider for supplying LockBit infrastructure | CyberScoopThailand cuts power supply to Myanmar scam hubs | The Record from Recorded Future News8Base ransomware site taken down as Thai authorities arrest 4 connected to operation | The Record from Recorded Future NewsTwo Russian nationals arrested in takedown of Phobos ransomware infrastructure | The Record from Recorded Future NewsThe Company Man: Binance exec detained in Nigeria breaks his silence | The Record from Recorded Future NewsDeloitte pays $5M in connection with breach of Rhode Island benefits site | Cybersecurity DiveDFIR - Threat Report 2025 | CyberCXRequest a Demo | Dropzone AI
        Voir plus Voir moins
        59 min
      • Risky Business #778 -- Musk's child soldiers seize control of FedGov IT systems

        Risky Business #778 -- Musk's child soldiers seize control of FedGov IT systems
        Feb 5 2025
        On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including: DeepSeek leaves an unauthed database on the internetRussia hacked UK prime minister’s personal mailAustralia sanctions a Telegram group… which is more sensible than it soundsMedical device backdoor turns out to be just poorly thought out upgrade featureGoogle abuses weak hashing to patch AMD CPU microcodeAnd much, much more. This week’s episode is sponsored by email security boffins Sublime. Their co-founder and CEO Josh Kamdjou joins to talk about how attackers’ abuse of legitimate services like Docusign is a challenge for email security vendors. This episode is also available on Youtube. Show notes Exclusive: Musk aides lock workers out of OPM computer systems | ReutersWiz Research Uncovers Exposed DeepSeek Database Leaking Sensitive Information, Including Chat History | Wiz BlogКриптостилер SparkCat в магазинах Google Play и App Store | SecurelistRussian hackers suspected of compromising British PM’s personal email account | The Record from Recorded Future NewsPowerSchool hack: missed basic security step resulted in data breachAustralia sanctions ‘Terrorgram’ white supremacist online group | The Record from Recorded Future News‘Paid actors’ could be behind some antisemitic attacks, Albanese says | Australian security and counter-terrorism | The GuardianInterview with James Glenday, ABC News Breakfast | Australian Minister for Foreign AffairsWhatsApp says spyware company Paragon Solutions targeted journalistsSpyware maker Paragon confirms US government is a customer | TechCrunchFormer Polish justice minister arrested in sprawling spyware probe | The Record from Recorded Future NewsSweden releases suspected ship, says cable break ‘clearly’ not sabotage | The Record from Recorded Future NewsBackdoor found in two healthcare patient monitors, linked to IP in ChinaAttackers exploit zero-day vulnerability in Zyxel CPE devices | Cybersecurity DiveAMD: Microcode Signature Verification Vulnerability · Advisory · google/security-research · GitHub22-year-old math wiz indicted for alleged DeFI hack that stole $65M - Ars TechnicaA method to assess 'forgivable' vs 'unforgivable'... - NCSC.GOV.UKLiving Off the Land: Credential Phishing via Docusign abuseLiving Off the Land: Callback Phishing via Docusign commentB2B freight-forwarding scams on the rise to evade financial fraud crackdownsCallback phishing via invoice abuse and distribution list relaysEnhanced message groups: Improving efficiency in email incident response
        Voir plus Voir moins
        56 min
      • Risky Business #777 -- It's SonicWall's turn

        Risky Business #777 -- It's SonicWall's turn
        Jan 29 2025

        Coming to you from the same room in Risky Business headquarters Patrick Gray and Adam Boileau discuss the week’s cybersecurity news. They talk through:

        • Sonicwall firewalls hand out remote code exec like candy
        • Mastercard make a slapstick-grade mistake with their DNS
        • The data breach at PowerSchool and other niche SaaS providers
        • Academic research proposes taking down Europe’s power grid
        • Apple CPUs get a new speculative execution side channel
        • And much, much more.

        This week’s episode is sponsored by Push Security, who make an identity security product that runs inside browsers. Luke Jennings joins to discuss some of the pitfalls of federated authentication, like attackers using unexpected identity providers to log in to your apps.

        This episode is also available on Youtube.

        Show notes
        • SonicWall warns hackers targeting critical vulnerability in SMA 1000 series appliances | Cybersecurity Dive
        • MasterCard DNS Error Went Unnoticed for Years – Krebs on Security
        • Data breach hitting PowerSchool looks very, very bad - Ars Technica
        • OpenAI rival DeepSeek limits registration after ‘large-scale malicious attacks’ | The Record from Recorded Future News
        • Hackers imitate Kremlin-linked group to target Russian entities | The Record from Recorded Future News
        • UK to examine undersea cable vulnerability as Russian spy ship spotted in British waters | The Record from Recorded Future News
        • Questions grow over whether Baltic Sea cable damage was sabotage or accidental | The Record from Recorded Future News
        • Researchers say new attack could take down the European power grid - Ars Technica
        • At least $69 million stolen from crypto platform Phemex in suspected cyberattack | The Record from Recorded Future News
        • BreachForums admin to be resentenced after appeals court slams supervised release | The Record from Recorded Future News
        • Apple chips can be hacked to leak secrets from Gmail, iCloud, and more - Ars Technica
        • Apple fixes zero-day flaw affecting all devices | TechCrunch
        • I’m Lovin’ It: Exploiting McDonald’s APIs to hijack deliveries and order food for a penny
        • Government websites vanish under Trump, from the Constitution to DEI
        • Trail of Bits: Director, Technical Marketing
        • Push Security: Security Researcher (remote in the USA)
        • A new class of phishing: Verification phishing and cross-IdP impersonation
        Voir plus Voir moins
        51 min
      • Risky Business #776 -- Trump will flex American cyber muscles

        Risky Business #776 -- Trump will flex American cyber muscles
        Jan 22 2025
        Risky Business returns for its 19th year! Patrick Gray and Adam Boileau discuss the week’s cybersecurity news and there is a whole bunch of it. They discuss: The incoming Trump administration guts the CSRBBiden’s last cyber Executive Order has sensible things in itChina’s breach of the US Treasury gets our reluctant admirationRoss Ulbricht - the Dread Pirate Roberts of Silk Road fame - gets his Trump pardonNew year, same shameful comedy Forti- and Ivanti- bugsUS soldier behind the Snowflake hacks faces charges after a solid Krebs-ingAnd much, much (much! after a month off) more. This week’s episode is sponsored by Sandfly Security, who make a Linux EDR solution. Founder Craig Rowland joins to talk about how the Linux ecosystem struggles with its lack of standardised approaches to detection and response. If you’ve got a telco full of unix, and people are asking how much Salt Typhoon you’ve got in there… Sandfly’s tools are probably what you’re looking for. If you like your Business like us… - Risky - then we’re hiring! We’re looking for someone to help with audio and video production for our work, manage our socials, and if you’re also into the Cybers… even better. Position is remote, with a preference for timezones amenable to Australia/NZ. Drop us a line: editorial at risky.biz. This episode is also available on Youtube. Show notes POLITICO Pro | Article | Acting DHS chief ousts CSRB experts, other department advisersTreasury’s sanctions office hacked by Chinese government, officials say Strengthening America’s Resilience Against the PRC Cyber Threats | CISAAT&T, Verizon say they evicted Salt Typhoon from their networksRisky Bulletin: Looking at Biden's last cyber executive order - Risky BusinessInternet-connected devices can now have a label that rates their security | ReutersUS sanctions prominent Chinese cyber company for role in Flax Typhoon attacksFCC ‘rip and replace’ provision for Chinese tech tops cyber provisions in defense billCIA nominee tells Senate he, too, wants to go on cyber offense | CyberScoopTrump tells Justice Department not to enforce TikTok ban for 75 daysJudge rules NSO Group is liable for spyware hacks targeting 1,400 WhatsApp user devices | The Record from Recorded Future NewsUnpacking WhatsApp’s Legal Triumph Over NSO Group | LawfareTime to check if you ran any of these 33 malicious Chrome extensionsConsole Chaos: A Campaign Targeting Publicly Exposed Management Interfaces on Fortinet FortiGate Firewalls - Arctic WolfOngoing attacks on Ivanti VPNs install a ton of sneaky, well-written malwareResearchers warn of active exploitation of critical Apache Struts 2 flaw DOJ deletes China-linked PlugX malware off more than 4,200 US computersRussian internet provider confirms its network was ‘destroyed’ following attack claimed by Ukrainian hackers | The Record from Recorded Future NewsUkraine restores state registers after suspected Russian cyberattack | The Record from Recorded Future NewsHackers claim to breach Russian state agency managing property, land records | The Record from Recorded Future NewsU.S. Army Soldier Arrested in AT&T, Verizon Extortions – Krebs on Security
        Voir plus Voir moins
        1 h et 4 min
      • Risky Biz Soap Box: Cool compliance tricks with the Island enterprise browser

        Risky Biz Soap Box: Cool compliance tricks with the Island enterprise browser
        Dec 20 2024

        In this sponsored Soap Box edition of the show Patrick Gray talks to Island CEO Michael Fey about some of the cool tricks in the Island enterprise browser. You can use it to tick off so many compliance boxes, and not just cybersecurity boxes.

        This is largely a conversation about compliance, but it’s actually interesting and fun. These are words we never thought we’d type!

        You can find Island at https://island.io/

        This episode is also available on Youtube.

        Show notes
          Voir plus Voir moins
          27 min