The Awareness Angle: Cyber Security Awareness and Human Risk

Risky Creative - Cyber Security for Humans
  • 0.0 (0)
  • TECH NEWS
  • UPDATED WEEKLY

The Awareness Angle is a weekly cybersecurity podcast that makes cyber security make sense for everyday people. Every week, Ant and Luke break down the biggest cyber security news, including data breaches, phishing scams, AI fraud, and the sneaky ways people get hacked, in plain English with no jargon. But this isn’t just another tech podcast. We focus on the human side of cyber security. How scams actually work, why people fall for them, and what you can do to stay safer online. Whether you’re worried about identity theft, online fraud, or just want to understand what’s going on in the world of cyber security, you’ll get practical tips, real-world examples, and relatable stories every week. New episodes every week. Subscribe so you never miss one.

  1. 1D AGO

    ADT Breached by a Phone Call, AI Wipes a Startup in 9 Seconds, and 85% of UK Breaches Are Phishing

    This week on The Awareness Angle, we hit 1.2 million views on a single video across TikTok and Instagram, which is pretty wild for an independent podcast. Thank you to everyone who watched and shared. ADT gets breached for the third time in under a year and it all started with a phone call. An AI coding agent wipes a startup's entire database and all its backups in nine seconds, then writes its own incident report admitting it broke every safety rule it had. The supply chain attack that started with Trivy has now hit Checkmarx and Bitwarden, with three criminal groups teaming up to turn supply chain access into ransomware. And the UK government's annual cyber report says 43% of businesses were breached last year, phishing was behind 85% of them, and despite M&S, Co-op and JLR making national headlines, nothing's really changed. Plus Instructure's Canvas LMS breached again, Itron's smart meters filing quietly on a Friday night, Microsoft Teams helpdesk impersonation going wild, 610,000 Roblox accounts stolen by three lads in Ukraine, QR code scams in Toronto, and a toaster with a touchscreen that nobody asked for. The Awareness Angle is an independent cybersecurity podcast covering cyber news, data breaches, phishing, social engineering, and security awareness. New episodes every week. Chapters:00:00 Intro01:30 Welcome01:52 ADT Breached Again by ShinyHunters Vishing Attack07:23 Instructure / Canvas LMS Hit by Another Cyber Attack13:38 Critical Infrastructure Giant Itron Confirms Cyberattack17:56 AI Coding Agent Deletes Startup Database in 9 Seconds25:28 Supply Chain Attack Hits Checkmarx and Bitwarden28:40 Roblox Account Theft: 610,000 Accounts Stolen36:56 UK Cyber Security Breaches Survey 2025-2643:06 Microsoft Teams Helpdesk Impersonation Attacks52:21 QR Code Scams in Toronto57:03 Smart Toasters and Unnecessary IoT1:01:09 Hannah Fry on AI Agents Going Rogue Subscribe to the newsletter at riskycreative.com Our Intro and Outro Song © 16 by Falling Foreverhttps://fallingforever.bandcamp.com/track/16Licensed under Creative Commons Attribution 4.0https://creativecommons.org/licenses/by/4.0/

    1h 7m

  2. APR 27

    How Roblox Cheats Led to a Corporate Breach, Warship Tracked by Postcard, Passkeys Replace Passwords

    Roblox cheats at work lead to a full corporate breach. Half a million people's health data listed for sale on Alibaba by the researchers trusted to protect it. A $5 Bluetooth tracker in a postcard tracks a NATO warship for 24 hours. The UK government officially says passkeys should replace passwords. In this episode we break down the Vercel breach, the UK Biobank scandal, a Bluetooth tracker that exposed a $585 million warship, the NCSC's official passkey guidance ahead of World Password Day, plus Rituals Cosmetics, GCHQ's SilentGlass, Claude Desktop's silent browser hooks, a Grafana-branded sextortion scam, and Bitwarden's CLI getting hijacked. Chapters 00:00 Intro01:18 Vercel Breach: Roblox Cheats to Customer Data Exposure06:38 Rituals Cosmetics Loyalty Programme Breach09:46 UK Biobank Health Data Sold on Alibaba13:41 GCHQ SilentGlass: Blocking Malware Over HDMI16:25 Claude Desktop Silently Installs Browser Hooks24:03 Sextortion Scam Disguised as Grafana Alert29:15 Bitwarden CLI Hijacked in Supply Chain Attack31:52 $5 Bluetooth Tracker Exposes NATO Warship35:44 NCSC: Passkeys Should Replace Passwords42:50 Security Socials: The HR Hot Take46:08 Security Socials: Spam Caller Rick Astley Script48:09 Security Socials: iPhone 17 Pro Stolen51:56 Security Socials: My Cocoon Airplane Privacy54:19 Security Socials: GPT Image 2 AI Generation58:57 Outro Subscribe to the newsletter for links to every story we discuss: LinkedIn: https://www.linkedin.com/newsletters/the-awareness-angle-newsletter-7274932363787132928/ Our Intro and Outro Song © 16 by Falling Forever — Bandcamp: https://fallingforever.bandcamp.com/track/16 — Licence: https://creativecommons.org/licenses/by/4.0/

    1 hr

  3. APR 20

    Hungarian Passwords, Rockstar Hacked & Booking.com Scams

    Nearly 800 Hungarian government passwords found in breach databases — including one from a colonel in charge of information security who used "FrankLampard". We break down how it happened, why it keeps happening, and what it means for anyone responsible for security culture at work. Also this week: Rockstar Games hacked for the second time in three years through a third-party supplier. Basic-Fit gym breach exposes bank details of around one million members across Europe. Booking.com customers scammed using their own stolen reservation data before the company even told them about the breach. On the news side: Microsoft's biggest ever Patch Tuesday with 165 fixes including an actively exploited SharePoint flaw, France ditching Windows across government, a UK energy company loses £700,000 in a payment redirection attack, Google cracking down on back button hijacking, and an emergency Adobe Acrobat patch for a flaw being quietly exploited since December. Cybersecurity news explained in plain English. No jargon. Just the stories that matter and why they matter to real people. New episodes every week. Subscribe wherever you listen. SpotifyApple PodcastsLinkedIn NewsletterYouTubeInstagramTikTok Our Intro and Outro Song © 16 by Falling Forever — https://fallingforever.bandcamp.com/track/16

    53 min

  4. APR 13

    Missile Alert Phishing, Meeting Recordings Exposed and You Already Have A QR Code Generator

    This week: attackers are sending fake missile alert emails exploiting real Iran-US-Israel tensions to steal Microsoft credentials via QR code. We also cover a massive leak of sensitive LAPD police documents, an AI model that autonomously finds and exploits thousands of zero-days, and a Windows exploit that went public after a researcher fell out with Microsoft. This week on The Awareness Angle: Hackers steal 7.7TB of sensitive LAPD police documents including officer files, internal affairs investigations, and unredacted witness identities, via a third-party storage system. World Leaks (formerly Hunters International) are behind it. Anthropic's Claude Mythos autonomously discovers and exploits thousands of zero-day flaws across major systems. The same capability that speeds up defence also speeds up attack. We break down what this means for security teams. GrafanaGhost: a vulnerability in the popular monitoring platform Grafana that allows silent data exfiltration via AI prompt injection. Grafana disputes the severity. We give both sides. Fake missile alert emails are landing in inboxes right now, exploiting real Iran-US-Israel tensions. They use QR codes to bypass email filters and redirect victims to a fake Microsoft login page. Urgency is the mechanism. BlueHammer: a Windows local privilege escalation zero-day leaked publicly by a disgruntled researcher after a falling-out with Microsoft's security response team. No patch available. Functional exploit on GitHub. The White House is proposing a $707 million cut to CISA, the agency that coordinates national cyber defence. A third of staff already left in the first months of Trump's second term. Phish of the Week (from Hoxhunt): a WhatsApp/Meta impersonation email targeting business accounts that captures your login credentials and your MFA code in real time. Plus: a North Korean hacker gets caught mid-interview, a job candidate accidentally receives a recording of his interviewers criticising him after he dropped off the call, and TikTok Lite appearing on Android phones after a carrier update. 00:00 Introduction 01:03 Breach of the Week: LAPD Police Documents Stolen and Leaked 03:18 Wynn Resorts - 21,000 Employees Hit by ShinyHunters 05:21 ChipSoft Ransomware Attack Disrupts Dutch Hospitals 06:51 Jones Day Law Firm Confirms Breach - Silent Ransom Group 09:48 Anthropic Project Glasswing: AI Finds Thousands of Zero-Days 13:42 GrafanaGhost: Data Theft via AI Prompt Injection 17:53 Missile Alert Phishing - Fake Civil Defence Emails Steal Microsoft Logins 22:49 BlueHammer: Windows Zero-Day Leaked on GitHub 26:55 White House Proposes $707M Cut to CISA 30:10 Phish of the Week: WhatsApp Meta Impersonation 35:34 Security Socials Subscribe to the newsletter: https://www.linkedin.com/newsletters/the-awareness-angle-newsletter-7274932363787132928/ Spotify: https://open.spotify.com/show/7rwzcRsKrXbASFBfiXoCZ6 Apple Podcasts: https://podcasts.apple.com/us/podcast/the-awareness-angle-cyber-news-weekly/id1784126196 TikTok: https://www.tiktok.com/@infosecantInstagram: https://www.instagram.com/riskycreative YouTube: https://www.youtube.com/@riskycreative Our Intro and Outro Song © 16 by Falling Forever Bandcamp: https://fallingforever.bandcamp.com/track/16 Licence: https://creativecommons.org/licenses/by/4.0/

    48 min

  5. APR 7

    FBI Wiretap System Hacked, White House App Security Concerns, and LinkedIn's Secret Browser Scans

    Chinese hackers just broke into the system the FBI uses to track its own surveillance targets. The White House released an app that security researchers took apart and didn't like what they found. LinkedIn has been secretly scanning your browser extensions without telling you. And a Carnegie Mellon professor says app privacy labels are the nutrition labels of the internet — which tells you everything. This week on The Awareness Angle: cybersecurity news explained in plain English, no jargon, no technical degree required. Anthony and Luke break down the biggest cyber stories of the week including a major FBI data breach, WhatsApp malware targeting Windows users, Google Drive's new ransomware protection, Apple blocking ClickFix attacks, and why AI-generated slop is quietly making all of us easier to scam. New episode every week. Subscribe so you don't miss one. Chapters 00:00 Intro01:40 Breach of the Week: Chinese Hackers Breach the FBI's Wiretap System07:15 Trivy Supply Chain Attack Hits the European Commission11:45 The White House App Security Concerns Explained18:15 Apple Blocks ClickFix Paste Attacks in macOS23:35 App Privacy Labels vs Food Nutrition Labels28:40 Google Drive Ransomware Detection Now Available35:51 LinkedIn Secretly Scanning Your Browser Extensions41:11 WhatsApp Used to Deliver Malware to Windows PCs44:54 Phish of the Week: QR Code Salary Scam and Device Code Phishing50:42 SMS Delivery Scam in the Wild57:06 Sloppypasta and Why AI Content Is a Security Risk1:02:04 Artemis II Has Two Broken Instances of Outlook in Space1:03:54 Artemis II is Running Microsoft 365 in Space1:04:43 Artemis II Astronaut Enters PIN on Live Stream1:06:43 Apple Passwords App Ad1:09:58 Nice Looking TikTok Video 📩 New episode every week. Get the newsletter at riskycreative.com 🌐 Website: https://www.riskycreative.com🎙️ Spotify: https://open.spotify.com/show/7rwzcRsKrXbASFBfiXoCZ6🍎 Apple Podcasts: https://podcasts.apple.com/us/podcast/the-awareness-angle-cyber-news-weekly/id1784126196💼 LinkedIn: https://www.linkedin.com/newsletters/the-awareness-angle-newsletter-7274932363787132928/🎵 TikTok: @infosecant📸 Instagram: https://www.instagram.com/riskycreative▶️ YouTube: https://www.youtube.com/@riskycreative 🎵 Intro/outro music: "16" by Falling Forever -- Licensed under Creative Commons Attribution 4.0 International (CC BY 4.0).Track: https://fallingforever.bandcamp.com/track/16License: https://creativecommons.org/licenses/by/4.0/

    1h 13m

  6. MAR 30

    Ajax Season Tickets Stolen, OpenAI Kills Sora & Apple's Age Verification Explained

    Episode 81 of The Awareness Angle. This week: a hack at Ajax Amsterdam let attackers steal season tickets and quietly lift stadium bans. A security scanner got compromised and was used to backdoor LiteLLM, a tool downloaded 3.4 million times a day. OpenAI shuts down Sora and Disney walks away from its $1 billion deal. Meta launches new AI anti-scam features across WhatsApp, Facebook and Messenger. And Lloyds Banking reveals the full picture of its March 12 app glitch, where nearly half a million customers briefly saw each other's transactions. We've also got Apple's new age verification rollout for UK iPhone users, a phishing campaign targeting TikTok for Business accounts that can bypass 2FA, and the ChatGPT fake invoice phish doing the rounds. In the Security Socials: a great child online safety poster worth sharing with parents, a free phishing game for kids called The Phisherman, a viral deepfake detection trick, a personalised smishing campaign in France, and what happens when a French soldier goes for a Strava run on a ship. Chapters 00:00 Intro01:31 Breach of the Week: Ajax Amsterdam04:37 Meta anti-scam tools10:08 OpenAI Sora and Disney14:23 LiteLLM supply chain attack21:43 Apple age verification UK26:33 TikTok for Business phishing32:26 Lloyds Banking app glitch37:26 Phish of the Week: ChatGPT fake invoice42:57 Security Socials48:32 Anthony's Security Social1:00:47 Luke's Security Social Subscribe to the newsletter at riskycreative.com 🌐 Website: https://riskycreative.com 🎧 Spotify: https://open.spotify.com/show/theawarenessangle 🍎 Apple Podcasts: https://podcasts.apple.com/podcast/the-awareness-angle 💼 LinkedIn: https://www.linkedin.com/company/risky-creative 🎵 TikTok: https://www.tiktok.com/@theawarenessangle 📸 Instagram: https://www.instagram.com/theawarenessangle ▶️ YouTube: https://www.youtube.com/@theawarenessangle Our Intro and Outro Song © 16 by Falling Foreverhttps://fallingforever.bandcamp.com/track/16 License https://creativecommons.org/licenses/by/4.0/

    1h 7m

  7. MAR 23

    Chrome Malware, 8 Million Tips Exposed & Japan Legalises Hacking Back

    This week's human cybersecurity news . A US general leaves classified military documents on a train, over 8 million anonymous crime tips are exposed in a major data breach, and a Chrome extension with a million users and Google's Featured badge was silently hijacking shopping commissions for months. This week's cyber news explained in plain English. Also covered this week: the FBI seizes websites belonging to Handala, the Iran-linked hacker group behind the devastating Stryker wiper attack that wiped 200,000 devices and shut down hospitals. Companies House exposes UK company directors' home addresses, email addresses and dates of birth for five months, through a bug that required nothing more than pressing the browser back button. A new Android malware called Perseus hides inside IPTV streaming apps and targets your notes app to steal passwords, financial details and account recovery phrases. And Japan officially legalises offensive cyber operations, or "proactive cyber defence", from October 2026, a major shift away from its post-war defensive-only stance. This week's phishing example: a convincing Emirates loyalty reward scam sent through legitimate Eventbrite infrastructure to bypass email security filters, and how to spot it. We're The Awareness Angle, a weekly cybersecurity podcast and newsletter that explains the biggest cyber threats, data breaches and online scams in plain English, with a focus on the human side of security. No jargon. No technical background needed. New episode every week. Get the newsletter at riskycreative.com Full episode on YouTube: https://youtu.be/9n-ewD0zZuU Chapters 0:00 Intro1:47 Breach of the Week: US General leaves classified maps on a train7:23 Crime Stoppers data breach: 8 million anonymous tips exposed12:22 Android malware Perseus: hiding in streaming apps, targeting your notes17:29 Handala update: FBI seizes hacker websites after Stryker attack20:58 Marquis ransomware: 672,000 bank customers' data stolen26:37 Companies House: five months of exposed director data, fixed with a back button31:34 Chrome extension malware: Save Image as Type removed after stealing commissions38:18 Phish of the Week: Emirates loyalty scam via Eventbrite43:05 SANS Security Awareness Summit 2026: call for presentations45:18 Topics: Idris Elba's wax model unlocks his iPhone46:30 Pete Tong reads out a URL like it's 199548:40 Tinder wants to scan your camera roll with AI50:07 Japan legalises hacking back Find Us WebsiteSpotifyApple PodcastsLinkedInTikTokInstagramYouTube Music Intro/outro music: "16" by Falling Forever, licensed under Creative Commons Attribution 4.0 International (CC BY 4.0).Track: https://fallingforever.bandcamp.com/track/16License: https://creativecommons.org/licenses/by/4.0/

    57 min

  8. MAR 16

    Your Antivirus Won't Catch This, SMS Blasters Are Real and a USB Full of America's Secrets

    This week it's a busy one. We've got stories about hackers targeting your phone, your bank account, and even your doctor's equipment. There's a nasty trick doing the rounds that looks just like a Google Meet update, a massive data leak from the US government, and some alarming news for anyone who banks with Lloyds, Halifax or Bank of Scotland. All that, plus why you really need to update your iPhone this week. Let's get into it. Chapters 00:01 Intro01:50 Breach of the Week: Starbucks06:06 Stryker hit by Iran-linked wiper attack11:03 Lloyds, Halifax and Bank of Scotland banking glitch16:09 Fake Google Meet update hands attackers control of your PC20:19 Google Messages to get SMS blaster protection27:02 Live: Anthony calls the SMS blaster scammer34:51 DOGE staffer allegedly walked out with Americans' Social Security data38:16 Apple patches older iPhones against Coruna exploit kit43:32 Phish of the Week: Google recovery notification callback scam (Hoxhunt)48:09 Topics: ClickFix evolves again51:03 Topics: Darren Jones MP accidentally shares his passcode on camera53:06 Topics: Tricking an AI scam caller56:29 Topics: Apple MacBook Neo Touch ID ad1:01:02 Outro Subscribe to the weekly newsletter at riskycreative.com or find us as The Awareness Angle on LinkedIn, TikTok, Instagram, YouTube, Spotify and Apple Podcasts. Got a story for us? Drop us a line at hello@riskycreative.com

    1h 2m
See All (86)

About

The Awareness Angle is a weekly cybersecurity podcast that makes cyber security make sense for everyday people. Every week, Ant and Luke break down the biggest cyber security news, including data breaches, phishing scams, AI fraud, and the sneaky ways people get hacked, in plain English with no jargon. But this isn’t just another tech podcast. We focus on the human side of cyber security. How scams actually work, why people fall for them, and what you can do to stay safer online. Whether you’re worried about identity theft, online fraud, or just want to understand what’s going on in the world of cyber security, you’ll get practical tips, real-world examples, and relatable stories every week. New episodes every week. Subscribe so you never miss one.

Information

You Might Also Like