Talkin' About [Infosec] News, Powered by Black Hills Information Security

Black Hills Information Security
  • 5.0 (1)
  • TECH NEWS
  • EVERY TWO WEEKS

Download and listen to our weekly infosec podcast where we discuss the latest attacks, breaches, and how they happened and why. We’re a team of penetration testers (ethical hackers) and friends that love how new technology can be broken and made to do things it was never intended to do.

  1. 4 DAYS AGO

    Louvre’s Video Security Password Was ‘Louvre’ 2025-11-10

    Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com Chapters 00:00 - PreShow Banter™ — Humans are Done 03:04 - Louvre’s video security password was ‘Louvre’ – BHIS - Talkin’ Bout [infosec] News 2025-11-10 05:11 - Story # 1: I Tried the Robot That’s Coming to Live With You. It’s Still Part Human. 15:14 - Story # 2: How to trade your $214,000 cybersecurity job for a jail cell 25:14 - Story # 3: The Louvre’s video security password was reportedly ‘Louvre’ 29:04 - Story # 4: Dangerous runC flaws could allow hackers to escape Docker containers 32:58 - Story # 5: List of AI Tools Promoted by Threat Actors in Underground Forums and Their Capabilities 40:00 - Story # 5b: GTIG AI Threat Tracker: Advances in Threat Actor Usage of AI Tools 56:37 - BHIS Webcast – X-Typhoon - Not your Father’s China with John Strand

    59 min

  2. 6 NOV

    Ransomware Victims Stop Paying Hackers – 2025-11-03

    Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com 00:00 - PreShow Banter™ — Musical Views of the Universe 04:05 - – BHIS - Talkin’ Bout [infosec] News 2025-11-03 04:39 - Story # 1: Ransomware profits drop as victims stop paying hackers 06:22 - Chart since 2019 16:06 - Story # 2: More than a million people every week show suicidal intent when chatting with ChatGPT, OpenAI estimates 33:02 - Story # 3: 10M people watched a YouTuber shim a lock; the lock company sued him. Bad idea. 41:18 - Story # 4: ‘Dangerous’ YouTube videos struck down for bypassing Windows 11 account setup [Update: Restored] 47:13 - Story # 5: Chicago firm that resolves ransomware attacks had rogue workers carrying out their own hacks, FBI says 51:08 - Story # 6: Microsoft: DNS outage impacts Azure and Microsoft 365 services 54:33 - Story # 7: EY Data Leak – Massive 4TB SQL Server Backup Exposed Publicly on Microsoft Azure 55:22 - Stordy # 8: Black Hat Europe 2025 Arsenal: 8 AI Security Tools Transforming Cybersecurity

    1h 4m

  3. 31 OCT

    The AI Browser Wars - 2025-10-27

    Register for FREE Infosec Webcasts, Anti-casts & Summits –  https://poweredbybhis.com The BHIS crew breaks down the latest cybersecurity stories making waves — from data breaches and malware campaigns to privacy issues, exploit trends, and tech policy shake-ups. Join our panel of security pros for expert analysis, sharp humor, and practical insights you can actually use. Whether it’s social engineering, AI-powered attacks, or bizarre security headlines, we dig into what matters most for defenders and curious minds alike. Stay informed, entertained, and one step ahead in the ever-changing world of infosec. 00:00:00 - PreShow Banter™ — The Cost of War.xyz 00:03:42 - The AI Browser Wars - BHIS - Talkin’ Bout [infosec] News 2025-10-27 00:04:04 - Story # 1: Smart bed owners experience AWS outage nightmare as they’re left sweating and stuck in upright position 00:10:49 - Story # 2: Robots May Replace 600,000 Human Employees at Amazon 00:14:40 - Story # 3: Meet Mico, Microsoft’s AI version of Clippy 00:20:59 - Story # 4: Exploitation of Windows Server Update Services Remote Code Execution Vulnerability 00:26:31 - Story # 5: Ex-L3Harris executive accused of selling trade secrets to Russia 00:31:29 - Story # 6: Introducing ChatGPT Atlas 00:43:34 - Story # 7: ‘Phased Out’—Google Confirms Bad News For 3 Billion Chrome Users 00:52:26 - Story # 8: The Y2K38 Bug Is a Vulnerability, Not Just a Date Problem, Researchers Warn 01:00:16 - Story # 9: KFC Venezuela Alleged Data Breach – 1 Million Customer Records Exposed

    1h 1m

  4. 24 OCT

    Online Book Store Takes Down Half the Internet - BHIS - Talkin' Bout [infosec] News 2025-10-20

    Register for FREE Infosec Webcasts, Anti-casts & Summits –  https://poweredbybhis.com 00:00:00 - PreShow Banter™ — AWS Snow Day Party 00:11:31 - Online Book Store Takes Down Half of the Internet - BHIS - Talkin’ Bout [infosec] News 2025-10-20 00:12:12 - Story # 1: F5 says hackers stole undisclosed BIG-IP flaws, source code 00:35:11 - Story # 2: Newsom signs age verification law, siding with tech giants over Hollywood 00:48:39 - Story # 3: Researchers find a startlingly cheap way to steal your secrets from space 00:55:04 - Story # 4: Jeff Bezos Has a Plan to Curb AI’s Carbon Footprint: Send Data Centers to Space 01:02:22 - Story # 5: SolarWinds Security Chief reflects on the Russian hack that exposed US government agencies

    1h 8m

  5. 18 OCT

    Hackers claim Discord breach exposed data of 5.5 million users - 2025-10-13

    Register for FREE Infosec Webcasts, Anti-casts & Summits –  https://poweredbybhis.com 00:00 - PreShow Banter™ — A Real Podcast 03:15 - Hackers claim Discord breach exposed data of 5.5 million users – BHIS - Talkin' Bout [infosec] News 2025-10-13 05:44 - Story # 1: CamoLeak: Critical GitHub Copilot Vulnerability Leaks Private Source Code 24:27 - Story # 2: Hackers claim Discord breach exposed data of 5.5 million users 36:52 - Story # 3: Velociraptor leveraged in ransomware attacks 46:47 - Story # 4: Huntress Threat Advisory: Widespread SonicWall SSLVPN Compromise 54:48 - CTF Challenge

    59 min

  6. 2 OCT

    2 Million Cisco Devices Targeted by Exploited 0-Day – 2025-09-29

    Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com 00:00 - PreShow Banter™ — A little radiation never hurt anybody. 03:07 - BHIS - Talkin’ Bout [infosec] News 2025-09-29 03:29 - Story # 1: As many as 2 million Cisco devices affected by actively exploited 0-day 19:07 - Story # 2: Viral call-recording app Neon goes dark after exposing users’ phone numbers, call recordings, and transcripts | TechCrunch 24:25 - Story # 3: AI Darwin Awards Show AI’s Biggest Problem Is Human 29:32 - Story # 4: Nikon revokes all C2PA image authenticity certificates after major vulnerability exposed 34:14 - Story # 5: ‘You’ll never need to work again’: Criminals offer reporter money to hack BBC 38:18 - Story # 6: Cybersecurity Training Programs Don’t Prevent Employees from Falling for Phishing Scams 46:48 - Mini CTF Walkthrough 56:03 - Story # 7: U.S. Secret Service dismantles imminent telecommunications threat in New York tristate area

    1h 1m

  7. 25 SEPT

    D**k-Jan Mollema Walks Us Through the Entra ID Cross-Tenant Vulnerability Discovery– 2025-09-22

    Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com 00:00 - PreShow Banter™ — Unnatural European Fridges 03:34 - The Entra ID Cross-Tenant Vulnerability Discovery – BHIS - Talkin’ Bout [infosec] News 2025-09-22 04:14 - Story # 1: One Token to rule them all - obtaining Global Admin in every Entra ID tenant via Actor tokens 21:32 - Story # 2: Shai-Hulud: Self-Replicating Worm Compromises 500+ NPM Packages 40:50 - OSSPREY – NPM Package @Ctrl/Tinycolor Compromised: Shai Hulud Malware Targets Secrets and Persistence 51:41 - Story # 3: Verified Steam game steals streamer’s cancer treatment donations 57:16 - Story # 4: Heathrow warns of second day of disruption after cyber-attack

    1 hr

  8. 20 SEPT

    Kerberoasting Goes to Washington – 2025-09-15

    ???? Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com 00:00 - PreShow Banter™ — Enter Dark John 03:15 - Kerberoasting Goes to Washington – BHIS - Talkin’ Bout [infosec] News 2025-09-15 03:49 - Story # 1: Senator blasts Microsoft for making default Windows vulnerable to “Kerberoasting” 12:46 - Story # 2: How an Attacker’s Blunder Gave Us a Rare Look Inside Their Day-to-Day Operations 32:42 - Story # 3: Some JLR suppliers ‘face bankruptcy’ due to hack crisis 41:30 - Story # 4: AI-Powered Villager Pen Testing Tool Hits 11,000 PyPI Downloads Amid Abuse Concerns 46:07 - Story # 5: All your vulns are belong to us! CISA wants to maintain gov control of CVE program 49:55 - Story # 6: Qantas penalizes executives for July cyberattack 51:15 - Story # 7: America’s second largest egg producer breached, claim hackers 54:55 - Story # 8: Undocumented Radios Found in Solar-Powered Devices

    1h 3m
See All (20)

About

Download and listen to our weekly infosec podcast where we discuss the latest attacks, breaches, and how they happened and why. We’re a team of penetration testers (ethical hackers) and friends that love how new technology can be broken and made to do things it was never intended to do.

Information

You Might Also Like