Get inside the minds of leading white-hat hackers and security researchers. Each week, we’ll educate and entertain you by breaking down and simplifying the latest cyber security headlines and trends. Using our special blend of expertise, wit, and cynicism, we’ll turn complex security concepts into easily understood and actionable insights.
VirusTotal Global Ransomware Report
This week on the podcast we cover VirusTotal's first ever global ransomware report which analyzes ransomware trends over the last year from the unique position of the world's largest malware intelligence platform. Before that though, we cover another APT group with a ridiculous name found exploiting a zero-day vulnerability in Windows.
The SMS Breach You Didn’t Hear About
This week on the podcast we discuss a breach that lasted over 5 years involving a company responsible for routing SMS messages for 95 of the top 100 mobile carriers in the world. Before that though, we'll cover the recent Facebook downtime incident as well as the seemingly total compromise of the video game streaming platform Twitch.
Q2 2021 Internet Security Report
This week on the podcast we cover the latest quarterly Internet Security Report from the WatchGuard Threat Lab. We'll go over the latest attack trends and key findings from Q2 2021 as well as defensive tips for keeping your systems safe from the latest threat landscape.
Kaseya’s Trusted Third Party
This week on the podcast we discuss the recently disclosed identify of the"Trusted Third Party" that Kaseya acquired the REvil ransomware master decryption key from, as well as the morals around a decision to hold on to the decryption key for multiple weeks before handing it off to Kaseya. We then cover a new APT discovered by researchers at ESET and the latest CISA alert on ransomware activity.
This week on the podcast we discuss the recently patched zero-click vulnerability in iOS, macOS and WatchOS that researchers at TheCitizen Lab discovered while investigating NSO Group's Pegasus spyware. After that, we cover a vulnerability in the OMI Agent that comes automatically installed on all Azure Linux virtual machines. We finish by covering Microsoft's latest efforts to kill passwords for good.
This week on the podcast we discuss the first update to the OWASP Top 10 since 2017. OWASP servers as an excellent resource for improving web application security so we're excited to run through the latest refresh of their top security weaknesses. We also discuss phishing attacks that abuse Internationalized Domain Names (IDNs) in emails and a critical vulnerability in Microsoft Office.
Amazing security podcast
This guys are amazing in bringing the latest security topics and more in a very enjoyable simple way. Love their sense of humor and they are very knowledgeable in their field. Thank you and keep them coming!
Great way to stay current on cybersecurity
Relevant news and trends in cybersecurity are discussed in an informal manner. Information is presented by knowledgable industry insiders. Insights are relevant for the network engineer to the CIO.