You've Already Been Hacked

Professor CyberRisk

A Cybersecurity Podcast for the Rest of Us In a world of evolving cyber threats, You’ve Already Been Hacked breaks down cybersecurity for everyone—from experts to everyday users. Hosted by Professor CyberRisk and Cyber Cowboy, we tackle major cyber attacks, emerging threats, and real-world security strategies. Each episode offers expert analysis, case studies, and actionable tips to help listeners stay ahead of hackers and digital risks.

  1. 3d ago

    AI Is Now the Weapon — GreyVibe, BTMOB, and the New Attack Pipeline

    Hosts * Professor CyberRisk Cyber Maps * Bitdefender Threat Map: https://threatmap.bitdefender.com/ * Checkpoint Threat Map: https://threatmap.checkpoint.com/ * Kaspersky Cyber Threat Map: https://cybermap.kaspersky.com/ * Talos Intelligence - ebc_spam Map: https://talosintelligence.com/ebc_spam Episode Information Title: AI Is Now the Weapon — GreyVibe, BTMOB, and the New Attack Pipeline Episode Number: 350 Overview This week: A Russian-linked threat group called GreyVibe is weaponizing ChatGPT, Google Gemini, and Ideogram AI to run sophisticated cyberespionage campaigns against Ukrainian targets across military, government, and civilian sectors. ESET documents BTMOB, an Android RAT sold as malware-as-a-service with a point-and-click builder for generating custom phishing payloads. Perplexity launches Bumblebee, an open-source developer supply chain scanner. And we look at how social engineering on gaming platforms like Roblox is leading to malware infections and extortion attempts targeting younger demographics. Guest Information None this episode Topics Covered * GreyVibe threat group uses AI tools (ChatGPT, Gemini, Ideogram) for cyberespionage against Ukrainian targets * BTMOB Android RAT-as-a-service with graphical APK builder for custom phishing payloads * Perplexity launches Bumblebee open-source developer supply chain scanner * Roblox social engineering campaign leads to malware infection and cookie-logging extortion Top Stories 1. GreyVibe hackers use ChatGPT, Gemini to power cyberattacks - https://www.bleepingcomputer.com/news/security/greyvibe-hackers-use-chatgpt-gemini-to-power-cyberattacks/ Additional Cybersecurity News - Titles and URLs 2. BTMOB Android malware service generates custom phishing payloads - https://www.bleepingcomputer.com/news/security/btmob-android-malware-service-generates-custom-phishing-payloads/ 3. Perplexity launches Bumblebee: open-source read-only dev supply chain scanner - https://www.zdnet.com/article/perplexity-launches-bumblebee-how-its-new-read-only-dev-scanner-differs-from-chainguard/ 4. Roblox social engineering leads to malware infection and extortion - https://www.bleepingcomputer.com/forums/t/816420/malware-extortion-and-cookie-logging/ Resources & Links None this episode Call to Action * Subscribe: Stay updated on cybersecurity threats. * Leave a Review: Let us know what you think. * Join the Conversation: Follow our community and ask questions. Sponsor (if applicable) No sponsors this episode Podcast Socials & Website * Website: https://www.youvealreadybeenhacked.com * X: @professorcyberrisk * YouTube: https://www.youtube.com/@YABHPodcast * Discord/Community Forum: https://discord.gg/cz3xdsrqAE

    14 min

  2. May 25

    Netherlands Seizes 800 Servers in Pro-Russian Cyber Takedown + Microsoft Defender Zero-Days

    Hosts * Professor CyberRisk * Cyber Cowboy Live Cyber Maps * Bitdefender Threat Map: https://threatmap.bitdefender.com/ * Checkpoint Threat Map: https://threatmap.checkpoint.com/ * Kaspersky Cyber Threat Map: https://cybermap.kaspersky.com/ * Talos Intelligence - ebc_spam Map: https://talosintelligence.com/ebc_spam Episode Information Title: Netherlands Seizes 800 Servers in Pro-Russian Cyber Takedown + Microsoft Defender Zero-Days Episode Number: 349 Overview This week: Dutch authorities dismantle a massive bulletproof hosting operation linked to pro-Russian cyberattacks, seizing 800 servers and arresting two suspects. Microsoft confirms two actively exploited zero-days in Windows Defender and rushes emergency mitigation for a BitLocker bypass vulnerability. A solo researcher's six-week campaign of retaliatory zero-days against Microsoft is now being weaponized by ransomware groups. And Foxconn confirms a Nitrogen ransomware attack stole 8TB of data including network topology maps for Intel, Google, and other major tech firms. Guest Information None this episode Topics Covered * Netherlands seizes 800 servers of hosting firm enabling pro-Russian cyberattacks * Two actively exploited Microsoft Defender zero-days (CVE-2026-41091, CVE-2026-45498) * YellowKey BitLocker bypass zero-day - emergency manual mitigation required * Nightmare-Eclipse: six zero-days targeting Windows core security stack * Foxconn Nitrogen ransomware attack - 8TB stolen, supply chain implications Top Stories 1. Netherlands Seizes 800 Servers, Arrests Two in Major Takedown of Pro-Russian Cyberattack Hosting Infrastructure - https://www.bleepingcomputer.com/news/security/netherlands-seizes-800-servers-of-hosting-firm-enabling-cyberattacks/ Additional Cybersecurity News - Titles and URLs 2. Microsoft Warns of Two Actively Exploited Defender Zero-Days - Patches Rolling Out - https://www.bleepingcomputer.com/news/security/microsoft-warns-of-new-defender-zero-days-exploited-in-attacks/ 3. Microsoft Rushes Emergency Mitigation for YellowKey - BitLocker Bypass Zero-Day - https://cybersecuritynews.com/windows-bitlocker-yellowkey-mitigation/ 4. Nightmare-Eclipse - Six Zero-Days, Six Weeks, One Big Grudge - https://blog.barracuda.com/2026/05/19/nightmare-eclipse-zero-days-grudge 5. Foxconn Confirms Nitrogen Ransomware Attack - 8TB Stolen Including Network Topology Maps - https://cybersecuritynews.com/foxconn-confirms-cyberattack/ Resources & Links None this episode Call to Action * Subscribe: Stay updated on cybersecurity threats. * Leave a Review: Let us know what you think. * Join the Conversation: Follow our community and ask questions. Sponsor (if applicable) No sponsors this episode Podcast Socials & Website * Website: https://www.youvealreadybeenhacked.com * X: @professorcyberrisk * YouTube: https://www.youtube.com/@YABHPodcast * Discord/Community Forum: https://discord.gg/cz3xdsrqAE

    36 min

  3. May 17

    Breached, Stolen, Encrypted This Week's Cyber Threat Trifecta

    Hosts * Professor CyberRisk * Cyber Cowboy Live Cyber Maps * Bitdefender Threat Map: https://threatmap.bitdefender.com/ * Checkpoint Threat Map: https://threatmap.checkpoint.com/ * Kaspersky Cyber Threat Map: https://cybermap.kaspersky.com/ * Talos Intelligence - ebc_spam Map: https://talosintelligence.com/ebc_spam Episode Information Title: Breached, Stolen, Encrypted This Week's Cyber Threat Trifecta Episode Number: 349 Overview Weekly roundup of the most critical cybersecurity developments from 2026-05-10 to 2026-05-14. Join Professor CyberRisk and Cyber Cowboy Live as they break down the stories that matter most. Guest Information None this episode Topics Covered * Main threat analysis and implications * Emerging AI security challenges * Vulnerability disclosures and patches * Threat landscape updates Top Stories 1. Hackers exploit auth bypass flaw in Burst Statistics WordPress plugin - https://www.bleepingcomputer.com/news/security/hackers-exploit-auth-bypass-flaw-in-burst-statistics-wordpress-plugin/ Additional Cybersecurity News – Titles and URLs 2. TeamPCP hackers advertise Mistral AI code repos for sale - https://www.bleepingcomputer.com/news/security/teampcp-hackers-advertise-mistral-ai-code-repos-for-sale/ 3. Red Hat outlines sovereign AI strategy amid growing regulation and control concerns - https://siliconangle.com/2026/05/14/red-hat-outlines-sovereign-ai-strategy-amid-growing-regulation-control-concerns/ 4. .VER_TU-[random string] has encrypted my files (Mimic/Pay2Key) - https://www.bleepingcomputer.com/forums/t/816096/ver-tu-random-string-has-encrypted-my-files-mimicpay2key/ Resources & Links None this episode Call to Action * Subscribe: Stay updated on cybersecurity threats. * Leave a Review: Let us know what you think. * Join the Conversation: Follow our community and ask questions. Sponsor (if applicable) No sponsors this episode Podcast Socials & Website * Website: https://www.youvealreadybeenhacked.com * X: @professorcyberrisk * YouTube: https://www.youtube.com/@YABHPodcast * Discord/Community Forum: https://discord.gg/cz3xdsrqAE

    32 min

  4. May 10

    9,000 Schools Hacked, AI Used as Malware Bait, and the IMF Sounds the Alarm

    Hosts * Professor CyberRisk * Cyber Cowboy Live Cyber Maps * Bitdefender Threat Map: https://threatmap.bitdefender.com/ * Checkpoint Threat Map: https://threatmap.checkpoint.com/ * Kaspersky Cyber Threat Map: https://cybermap.kaspersky.com/ * Talos Intelligence - ebc_spam Map: https://talosintelligence.com/ebc_spam Episode Information Title: 9,000 Schools Hacked, AI Used as Malware Bait, and the IMF Sounds the Alarm Episode Number: TBD Air Date: 2026-05-08 Overview It was a rough week for education, AI trust, and global finance. Join Professor CyberRisk and Cyber Cowboy Live as they break down the biggest cybersecurity stories from 2026-05-03 to 2026-05-07 — including a massive Canvas LMS breach affecting 275 million users, attackers using fake AI sites to spread new malware, and the IMF warning that advanced AI could trigger a systemic shock to global financial markets. Guest Information None this episode Top Stories 1. Duke among 9,000 schools affected by Canvas cyberattack - The Duke Chronicle The threat group ShinyHunters breached Instructure's Canvas LMS, defacing login pages and exfiltrating over 3.65 TB of data across nearly 9,000 institutions worldwide — affecting an estimated 275 million users. https://slashdot.org/firehose.pl?op=view&id=183156890 2. Hackers Use Fake Claude AI Site to Infect Users With New Beagle Malware Attackers built a convincing fake site for a popular AI tool, using SEO poisoning and malvertising to deliver a new backdoor called Beagle via DLL sideloading. https://hackread.com/hackers-fake-claude-ai-site-infect-beagle-malware/ 3. Akamai shares surge 26% on $1.8B AI infrastructure deal as Q1 results meet estimates Akamai is doubling down on AI-powered security with a major acquisition, signaling where the industry is heading. https://siliconangle.com/2026/05/07/akamai-shares-surge-26-1-8b-ai-infrastructure-deal-q1-results-meet-estimates/ 4. IMF Warns New AI Models Risk 'Systemic' Shock To Finance The IMF is raising red flags about AI-powered cyberattacks targeting the highly interconnected global financial system — and the potential for cascading consequences. https://news.slashdot.org/story/26/05/07/200212/imf-warns-new-ai-models-risk-systemic-shock-to-finance Topics Covered * Canvas LMS breach: scope, impact, and what schools should do now * How attackers are weaponizing AI brand trust to spread malware * Akamai's AI security acquisition and what it signals for the industry * IMF's warning on AI-driven systemic risk to global finance Resources & Links None this episode Call to Action * Subscribe to stay ahead of the latest cybersecurity threats every week * Leave a review and let us know what stories you want covered * Join the conversation in our Discord community — links below Sponsors No sponsors this episode Connect With Us * Website: https://www.youvealreadybeenhacked.com * X: @professorcyberrisk * YouTube: https://www.youtube.com/@YABHPodcast * Discord: https://discord.gg/cz3xdsrqAE

    25 min
  5. Kernel Exploits, Compromised Repos, and a Global Fraud Bust

    May 4

    Kernel Exploits, Compromised Repos, and a Global Fraud Bust

    Hosts * Professor CyberRisk * Cyber Cowboy Live Cyber Maps * Bitdefender Threat Map: https://threatmap.bitdefender.com/ * Checkpoint Threat Map: https://threatmap.checkpoint.com/ * Kaspersky Cyber Threat Map: https://cybermap.kaspersky.com/ * Talos Intelligence – Spam Map: https://talosintelligence.com/ebc_spam Episode Information Title: Kernel Exploits, Compromised Repos, and a Global Fraud Bust Episode Number: 3x47 Overview Weekly roundup of the most critical cybersecurity developments from 2026-04-26 to 2026-04-30. Join Professor CyberRisk and Cyber Cowboy Live as they break down the stories that matter most for your security operations. Guest Information None this episode Topics Covered * Critical Linux kernel privilege escalation vulnerability "Copy Fail" threatening major distributions * Apple patches iOS flaw that allowed FBI access to deleted Signal messages * cPanel authentication bypass CVE-2026-41940 actively exploited across 1.5M+ exposed instances * PyTorch Lightning PyPI supply chain attack harvesting developer credentials and crypto wallets * FBI-led global operation busts 276 in crypto pig-butchering crackdown across 9 scam centers Top Story 1. As the Most Severe Linux Threat in Years Surfaces, the World Scrambles – Ars Technica https://slashdot.org/firehose.pl?op=view&id=183083220 Additional Cybersecurity News – Titles and URLs 2. Apple Plugs Security Hole That Enabled FBI to Access Deleted Signal Messages on iPhone https://www.cnet.com/tech/mobile/apple-plugs-iphone-hole-that-enabled-fbi-to-access-deleted-signal-messages/ 3. Critical cPanel Authentication Vulnerability Identified — Update Your Server Immediately https://thehackernews.com/2026/04/critical-cpanel-authentication.html 4. PyTorch Lightning Compromised in PyPI Supply Chain Attack to Steal Credentials https://thehackernews.com/2026/04/pytorch-lightning-compromised-in-pypi.html 5. Coordinated Takedown of Scam Centers Leads to at Least 276 Arrests – DOJ https://www.justice.gov/opa/pr/coordinated-takedown-scam-centers-leads-least-276-arrests-alleged-managers-and-recruiters Resources & Links None this episode Call to Action * Subscribe: Stay updated on the cybersecurity threats that matter most. * Leave a Review: Let us know what you think of the show. * Join the Conversation: Follow our community and ask questions. Sponsor No sponsors this episode Podcast Socials & Website * Website: https://www.youvealreadybeenhacked.com * X: @professorcyberrisk * YouTube: https://www.youtube.com/@YABHPodcast * Discord: https://discord.gg/cz3xdsrqAE

    26 min

  6. Apr 25

    Quantum Ransomware Is Here. You're Not Ready

    Hosts * Professor CyberRisk * Cyber Cowboy Live Cyber Maps * Bitdefender Threat Map: https://threatmap.bitdefender.com/ * Checkpoint Threat Map: https://threatmap.checkpoint.com/ * Kaspersky Cyber Threat Map: https://cybermap.kaspersky.com/ * Talos Intelligence - ebc_spam Map: https://talosintelligence.com/ebc_spam Episode Information Title: Quantum Ransomware Is Here. You're Not Ready Episode Number: 3x46 Overview Weekly roundup of the most critical cybersecurity developments from 2026-04-19 to 2026-04-23. Join Professor CyberRisk and Cyber Cowboy Live as they break down the stories that matter most. Guest Information None this episode Topics Covered * Main threat analysis and implications * Emerging AI security challenges * Vulnerability disclosures and patches * Threat landscape updates Top Stories 1. Hackers exploit file upload bug in Breeze Cache WordPress plugin - https://www.bleepingcomputer.com/news/security/hackers-exploit-file-upload-bug-in-breeze-cache-wordpress-plugin/ Additional Cybersecurity News – Titles and URLs 2. Cyera acquires Ryft to give enterprises traceable data access for AI agents - https://siliconangle.com/2026/04/23/cyera-acquires-ryft-give-enterprises-traceable-data-access-ai-agents/ 3. Bitwarden CLI is the next compromise in supply chain campaign - https://slashdot.org/submission/17346688/bitwarden-cli-is-the-next-compromise-in-supply-chain-campaign 4. In a first, a ransomware family is confirmed to be quantum-safe - https://slashdot.org/firehose.pl?op=view&id=181960188 5. Newly Deciphered Sabotage Malware May Have Targeted Iran’s Nuclear Program—and Predates Stuxnet - https://www.wired.com/story/fast16-malware-stuxnet-precursor-iran-nuclear-attack/ Resources & Links None this episode Call to Action * Subscribe: Stay updated on cybersecurity threats. * Leave a Review: Let us know what you think. * Join the Conversation: Follow our community and ask questions. Sponsor (if applicable) No sponsors this episode Podcast Socials & Website * Website: https://www.youvealreadybeenhacked.com * X: @professorcyberrisk * YouTube: https://www.youtube.com/@YABHPodcast * Discord/Community Forum: https://discord.gg/cz3xdsrqAE

    29 min

  7. Apr 19

    NIST Pulls Back: CVE Enrichment Limits Shake the Industry

    Hosts • Professor CyberRisk • Cyber Cowboy --- Live Cyber Maps Bitdefender Threat Map — https://threatmap.bitdefender.com/ Checkpoint Threat Map — https://threatmap.checkpoint.com/ Kaspersky Cyber Threat Map — https://cybermap.kaspersky.com/ Talos Intelligence (EBC Spam Map) — https://talosintelligence.com/ebc_spam --- Episode Information Title: NIST Pulls Back: CVE Enrichment Limits Shake the Industry Episode Number: 3x45 --- Overview This week, the cybersecurity world reacted to NIST’s decision to scale back automatic CVE enrichment after a massive surge in vulnerability submissions. We break down what this means for defenders, vendors, and anyone relying on the NVD for prioritization. We also cover major developments in AI infrastructure, government–AI relations, and the rapidly growing AI chip market. --- Guest Information None this episode --- Topics Covered • NIST’s new CVE enrichment limits • AI’s shifting role in government cybersecurity • Enterprise AI infrastructure consolidation • AI chip market expansion and IPO activity --- Top Stories 1. NIST Limits CVE Enrichment After 263% Surge in Submissions NIST is restricting automatic CVE enrichment due to overwhelming volume growth. Only CVEs tied to KEV, federal software, or EO 14028 critical software will be prioritized. Everything else risks being marked “Not Scheduled.” Source: https://it.slashdot.org/story/26/04/17/2127243/nist-limits-cve-enrichment-after-263-surge-in-vulnerability-submissions (it.slashdot.org in Bing) 2. Anthropic’s New Cybersecurity Model Reopens Doors in Washington After months of tension with the administration, Anthropic’s “Claude Mythos Preview” — a defensive cybersecurity model — appears to be improving relations with federal leadership. Source: https://www.theverge.com/ai-artificial-intelligence/914229/tides-turning-anthropic-trump-administration-cybersecurity-mythos-preview (theverge.com in Bing) 3. Dell & Nvidia Position AI Infrastructure as the New Enterprise Power Center A major partnership aims to unify Dell’s server ecosystem with Nvidia’s GPU dominance, creating a turnkey AI infrastructure stack for enterprises. Source: https://siliconangle.com/2026/04/17/dell-nvidia-push-ai-infrastructure-aifactoriesdatacenters/ (siliconangle.com in Bing) 4. Cerebras Systems Files for IPO Amid Explosive Growth AI chipmaker Cerebras is heading toward one of the largest tech IPOs in recent years after reporting massive revenue gains. Source: https://siliconangle.com/2026/04/17/ai-chip-developer-cerebras-systems-files-go-public-amid-rapid-revenue-growth/ (siliconangle.com in Bing) --- Additional Cybersecurity News – Titles and URLs • NIST Limits CVE Enrichment After 263% Surge In Vulnerability Submissions — https://it.slashdot.org/story/26/04/17/2127243/nist-limits-cve-enrichment-after-263-surge-in-vulnerability-submissions (it.slashdot.org in Bing) • Anthropic’s Cybersecurity Model May Repair Government Relations — https://www.theverge.com/ai-artificial-intelligence/914229/tides-turning-anthropic-trump-administration-cybersecurity-mythos-preview (theverge.com in Bing) • Dell & Nvidia Turn AI Infrastructure Into Enterprise Power Center — https://siliconangle.com/2026/04/17/dell-nvidia-push-ai-infrastructure-aifactoriesdatacenters/ (siliconangle.com in Bing) • Cerebras Systems Files for IPO Amid Rapid Growth — https://siliconangle.com/2026/04/17/ai-chip-developer-cerebras-systems-files-go-public-amid-rapid-revenue-growth/ (siliconangle.com in Bing) --- Resources & Links None this episode --- Call to Action • Subscribe: Stay updated on cybersecurity threats. • Leave a Review: Let us know what you think. • Join the Conversation: Follow our community and ask questions. --- Sponsor (if applicable) No sponsors this episode --- Podcast Socials & Website • Website: https://www.youvealreadybeenhacked.com • X: @professorcyberrisk • YouTube: https://www.youtube.com/@YABHPodcast • Discord — The Neural Network: https://discord.gg/cz3xdsrqAE

    36 min

  8. Apr 12

    LucidRook, Ransomware, and AI Fallout

    Hosts * Professor CyberRisk * Cyber Cowboy Cyber Maps * Bitdefender Threat Map: https://threatmap.bitdefender.com/ * Checkpoint Threat Map: https://threatmap.checkpoint.com/ * Kaspersky Cyber Threat Map: https://cybermap.kaspersky.com/ * Talos Intelligence - ebc_spam Map: https://talosintelligence.com/ebc_spam Episode Information Title: LucidRook, Ransomware, and AI Fallout Episode Number: 344 Guest Information None this episode Topics Covered * Main threat analysis and implications * Emerging AI security challenges * Vulnerability disclosures and patches * Threat landscape updates Top Stories 1. New ‘LucidRook’ malware used in targeted attacks on NGOs, universities - https://www.bleepingcomputer.com/news/security/new-lucidrook-malware-used-in-targeted-attacks-on-ngos-universities/ Additional Cybersecurity News – Titles and URLs 2. Florida AG announces investigation into OpenAI over shooting that allegedly involved ChatGPT | TechCrunch - https://techcrunch.com/2026/04/09/florida-ag-investigation-openai-chatgpt-shooting/ 3. Healthcare IT solutions provider ChipSoft hit by ransomware attack - https://www.bleepingcomputer.com/news/security/healthcare-it-solutions-provider-chipsoft-hit-by-ransomware-attack/ 4. After data breach, $10B valued startup Mercor is having a month | TechCrunch - https://techcrunch.com/2026/04/09/after-data-breach-10b-valued-startup-mercor-is-having-a-month/ 5. Barcelona complain to Uefa about VAR in Atletico loss - https://www.bbc.com/sport/football/articles/cr41dq4pywxo Resources & Links None this episode Call to Action * Subscribe: Stay updated on cybersecurity threats. * Leave a Review: Let us know what you think. * Join the Conversation: Follow our community and ask questions. Sponsor (if applicable) No sponsors this episode Podcast Socials & Website * Website: https://www.youvealreadybeenhacked.com * X: @professorcyberrisk * YouTube: https://www.youtube.com/@YABHPodcast * Discord/Community Forum: https://discord.gg/cz3xdsrqAE

    31 min
See All (121)

Ratings & Reviews

5
out of 5
4 Ratings

About

A Cybersecurity Podcast for the Rest of Us In a world of evolving cyber threats, You’ve Already Been Hacked breaks down cybersecurity for everyone—from experts to everyday users. Hosted by Professor CyberRisk and Cyber Cowboy, we tackle major cyber attacks, emerging threats, and real-world security strategies. Each episode offers expert analysis, case studies, and actionable tips to help listeners stay ahead of hackers and digital risks.

Information

  • Creator
    Professor CyberRisk
  • Years Active
    2020 - 2026
  • Episodes
    121
  • Rating
    Clean
  • Copyright
    © Professor CyberRisk
  • Show Website
    You've Already Been Hacked