Zero Downtime

John Hass

Zero Downtime brings together tech, business, and the everyday experiences of running an IT company. John and Logan discuss what’s going on in their world, the questions people ask them most, and talk with other business owners and professionals in conversations that are real, relaxed, and worth your time.

  1. 13h ago

    Unpatchable iPhone Exploit, CD Pirate Convicted in 2026, AirPods Hacked Open, Verizon Shakeup

    Researchers say they have found an iPhone exploit Apple cannot patch, a man in the UK was just criminally convicted in 2026 for burning and selling pirated CDs, and a high school student in India just cracked open Apple's AirPods walled garden. This week, John and Logan break down ten stories covering AI, Apple, healthcare breaches, wireless plans, and one genuinely bizarre medical study. Stories in this episode: Unpatchable iPhone exploit. Researchers disclosed a boot-level vulnerability affecting Apple's A12 and A13 chips inside the iPhone XS, XR, and the entire iPhone 11 lineup. Because the flaw lives in code burned into the chip at the factory, Apple cannot push a fix. The exploit could open the door to new jailbreaks on hardware many believed had become unjailbreakable. CD pirate convicted in 2026. A 47-year-old UK DJ was criminally convicted for selling burned pirated CDs over five years, generating more than £220,000 through eBay and Facebook. Not torrents. Physical CDs. In 2026. The judge called it "hypocrisy of the highest order." LibrePods cracks AirPods open. An open-source project just reverse-engineered Apple's AirPods protocols to bring noise cancellation, transparency mode, adaptive audio, and ear detection to Android and Linux. Built by a high school student in India. Proof that most of Apple's lock-in is software, not hardware. Verizon blows up its lineup. The new Simplicity plans drop the 36-month financing trap, simplify pricing, and add annual upgrades. The catch: the old plans still exist, multiline families may save more on the old structure, and the headline $30 price is mostly a switcher promotion. Plus the alleged 8.8TB Amazon One Medical breach attributed to ShinyHunters, Sakana AI's evolutionary approach to building models instead of bigger ones, AMD restoring a memory encryption security feature after community pushback, Apple's new Hide My Email domain that may make the feature easier to block, a retrospective study claiming 96% remission of tick-borne red meat allergy after ear acupuncture, and new Jon Prosser renders of what may be Apple's first foldable iPhone. New episodes weekly. Follow Zero Downtime for cybersecurity, AI, privacy, infrastructure, and the tech stories that actually matter.

    1h 1m

  2. Jun 22

    White House Shut Down Claude, Anthropic Sued, Fox Buys Roku for $22B, UK Bans Teen Socials

    The White House just forced Anthropic to shut down Claude Fable 5 less than a week after launch, and the fingerprints on that decision lead straight back to Amazon. This week, John and Logan break down the wild 48-hour Fable 5 shutdown, the new class-action lawsuit hitting Anthropic over Claude Max usage limits, Fox's $22 billion acquisition of Roku, and the UK's aggressive new ban on social media for anyone under 16. Stories in this episode: The Fable 5 shutdown. Anthropic launched Fable 5 on June 9 as the first publicly available Mythos-class model. Less than a week later, the U.S. government raised national security concerns and Anthropic disabled access entirely. The twist: Amazon (Anthropic's biggest investor at $8 billion) reportedly jailbroke the model, Andy Jassy personally called the White House on Thursday night, and the model was offline by Friday evening. Amazon sells competing AI models. None of them were affected. Anthropic sued over Claude Max usage limits. A new class-action lawsuit alleges Anthropic misled customers about usage available under the $100 and $200 Max plans. This is AI's "unlimited data plan" moment, where tokens, dynamic rate limits, and rolling usage windows are now landing in court. Fox buys Roku for $22 billion. Fox already owns Fox News, Fox Sports, and Tubi. Now it adds Roku's operating system, ad platform, and a direct relationship with over 100 million streaming households. This is Fox buying the front door to millions of living rooms. The UK bans social media for anyone under 16. TikTok, Instagram, Snapchat, X, and YouTube are all expected to be covered. Enforcement proposals include facial age estimation and digital identity systems overseen by Ofcom. The UK is also looking at restrictions on AI companion chatbots for minors. Plus Satya Nadella's essay on Human Capital vs Token Capital and why the AI model itself may not be where the long-term value lives, and the "Atomic Arch" supply chain attack that compromised over 400 packages in the Arch User Repository through abandoned maintainer accounts. New episodes weekly. Follow Zero Downtime for cybersecurity, AI, privacy, infrastructure, and the tech stories that actually matter.

    1h 14m

  3. Jun 15

    Siri Runs on Gemini Now, Hackers Got Zuck's Instagram, UniFi 10/10 Exploit, Linux in Windows

    Apple's new Siri is quietly powered by Google's Gemini, hackers took over Mark Zuckerberg's Instagram by simply asking Meta's AI, and Microsoft just shipped native Linux commands directly into Windows. This week, John and Logan break down WWDC 2026, the critical UniFi exploit IT teams need to patch immediately, the AI customer support failure that gave away 20,000 Instagram accounts, and the historical shift in how Windows treats Linux. Stories in this episode: WWDC 2026 and Apple's AI pivot. After years of being behind in AI, Apple finally showed its hand. Siri was completely rebuilt, but the surprise is what's powering it: Google's Gemini models running under the Apple Intelligence umbrella. Plus macOS Golden Gate drops Intel support, new AI photo tools, expanded parental controls, and the strangest part of all, no new hardware announcements. UniFi unauthenticated root exploit. Bishop Fox disclosed three chained vulnerabilities (all CVSS 10.0) that allow attackers to get full root on UniFi OS Server with no credentials. Roughly 100,000 UniFi endpoints were exposed to the internet at disclosure. If you run UniFi, this goes to the top of the patching list today. Hackers got 20,000 Instagrams by asking Meta's AI. Attackers exploited Meta's AI-powered High Touch Support tool to add attacker-controlled email addresses to accounts and trigger password resets. Compromised accounts included the former Obama White House, Sephora, a U.S. Space Force official, and Mark Zuckerberg himself. This is not a story about Instagram. It is about AI being given authority before anyone figured out how to secure it. Microsoft ships Linux commands in Windows. Microsoft officially released Coreutils for Windows, bringing ls, cp, grep, find, and other Linux tools natively to Windows. No WSL or Cygwin required. Twenty-five years after Ballmer called Linux "a cancer," Microsoft is actively trying to make Windows the best platform for Linux developers. Plus Google Photos Wardrobe, a new AI feature that scans your photo library, builds a digital closet, and generates virtual try-on images of you wearing different outfit combinations. Useful for some, unsettling for others, and another step toward AI making everyday decisions for you. New episodes weekly. Follow Zero Downtime for cybersecurity, AI, privacy, infrastructure, and the tech stories that actually matter.

    1h 10m

  4. Jun 8

    Microsoft's Hacker Returns, Starbucks AI Can't Count, Japan Regrows Teeth, Office 2019 Dies

    Microsoft's banned security researcher is back with a new project that allegedly bypasses BitLocker, Starbucks just retired an AI that could not reliably count syrup bottles, and Japan's tooth-regrowth drug is actually in human trials. This week, John and Logan break down eight stories shaping tech, AI, and cybersecurity right now. Stories in this episode: Nightmare-Eclipse returns with Bitskrieg. After six Windows zero-days and platform bans across GitHub and GitLab, the researcher is now teasing a project that allegedly breaks Secure Boot trust guarantees and bypasses BitLocker. The wild twist: other researchers have reportedly started sending vulnerabilities directly to Nightmare-Eclipse instead of going through Microsoft. Starbucks AI fails. The chain quietly retired an AI inventory system that used cameras, LIDAR, and computer vision to count milk and syrups. It mislabeled products and missed items entirely. Plus Flathub banning AI-generated submissions because the maintainers are buried in AI slop. Japan's tooth-regrowth drug. TRG-035 is in human trials at Kyoto University Hospital, with researchers targeting 2030 for general availability. The catch: the most immediate use case is for people born with missing teeth, not adults who lost them years ago. Microsoft kills Office 2019. Starting July 13, 2026, the suite goes read-only on Mac, iPad, and iPhone. A lot of small businesses and home users bought Office 2019 specifically to avoid the subscription model, and now they are being pushed to Microsoft 365. Plus a critical Windows Netlogon zero-click vulnerability being actively exploited, GitHub Copilot's new token-based billing burning through credits in hours, California exempting Linux from age verification requirements, and Dell undercutting Apple with a $699 XPS 13. New episodes weekly. Follow Zero Downtime for cybersecurity, AI, privacy, infrastructure, and the tech stories that actually matter.

    56 min

  5. Jun 1

    Microsoft Cuts Off Claude Code, Pope's AI Warning, Hacker Microsoft Can't Stop, iPhone Ultra Leaks

    Microsoft just phased Claude Code out of internal developer use, the Pope dropped one of the most important AI documents of 2026, and a hacker GitHub banned is reportedly threatening Microsoft for the next Patch Tuesday. This week, John and Logan break down what's looking like an AI cold war inside Microsoft, the Vatican entering the AI policy debate, the security researcher Microsoft cannot contain, and the leaked cases that suggest the foldable iPhone Ultra is finally getting real. Stories in this episode: The AI cold war inside Microsoft. After investing billions in OpenAI, Microsoft's own developers reportedly preferred Anthropic's tools. Now the company is reasserting platform control through Copilot CLI. Plus Uber burning through its entire 2026 AI budget by April, and one consultant client accidentally spending $500 million in a single month after failing to set usage limits. Pope Leo XIV's AI encyclical. Magnifica Humanitas may become one of the defining philosophical documents of the AI era. The Vatican is not arguing AI is evil. It is asking what happens to humanity when machines start mediating nearly every part of human life, and comparing AI development to a modern Tower of Babel. The hacker Microsoft can't contain. Nightmare-Eclipse publicly released a series of weaponized Windows zero-days, got banned from GitHub on May 23rd, migrated to GitLab, and got banned there within days. The blog posts have turned emotional, with threats tied to the July 14th Patch Tuesday. This may be one of the first major AI era vulnerability conflicts. Apple's AI camera future. iOS 27 is reportedly baking AI-powered reframing, scene extension, and natural-language photo editing directly into Camera and Photos. Classic Apple Sherlock move that could wipe out an entire category of third-party camera apps overnight. The foldable iPhone Ultra leaks. Newly leaked accessory cases suggest a wider, tablet-like form factor, book-style design, MagSafe, and Touch ID instead of Face ID. Apple is arriving late on purpose, and the moment they enter foldables seriously, the whole category gets legitimized overnight. New episodes weekly. Follow Zero Downtime for cybersecurity, AI, privacy, infrastructure, and the tech stories that actually matter.

    1h 5m

  6. May 25

    The Castle and Moat Is Dead: Zero Trust vs Modern Ransomware

    This week, John and Logan take a break from the news roundup to go deep on one topic: Zero Trust. No vendor pitch, no sales angle, just a real conversation about why the castle and moat security model is dying and how Zero Trust is changing the way the industry thinks about ransomware, identity, and access. What's covered in this episode: What Zero Trust actually means. Never trust, always verify. The hotel keycard analogy, granular and identity-based access, and why the question shifted from "are you inside the network" to "should you still be allowed right now." Why the castle and moat model failed. Servers used to live in one building. Now employees work from everywhere, SaaS runs critical operations, and attackers do not storm the walls anymore. They steal a badge and walk in. The VPN problem and the rise of ZTNA. Why traditional VPNs became a liability, and how products like Cloudflare, Tailscale, Zscaler, ThreatLocker, Twingate, Okta, and Microsoft Entra are reshaping access. Application allowlisting and ringfencing. The default-deny model that blocks everything unless it is known good, why it is one of the most powerful anti-ransomware controls available, and why it is operationally painful to implement. The real cost of Zero Trust. It is not a product you can buy in a box. It is a philosophy that affects identity, networking, endpoints, cloud apps, and culture. The hardest part is not technical, it is human. Plus why detection alone is no longer enough, how modern ransomware turned into multi-million dollar business interruption attacks, and why identity is becoming the new perimeter in the AI era. New episodes weekly. Follow Zero Downtime for cybersecurity, privacy, AI, infrastructure, and the tech stories that actually matter.

    51 min

  7. May 18

    Hackers Drive Robot Mower Over Reporter, iOS 27 Leaks, Canvas Mystery, BlackBerry Comeback

    A security researcher took remote control of thousands of internet-connected robotic lawn mowers, then drove one over a reporter to prove the point. This week, John and Logan break down the Yarbo hack and what it means when cybersecurity gets physical, the iOS 27 leaks that suggest Apple is scrambling to fix Siri, the strange silence after the Canvas breach, and Chrome quietly downloading a 4GB AI model onto people's machines without asking. Stories in this episode: The strange silence after the Canvas breach. ShinyHunters allegedly got the Instructure data, started contacting school districts directly instead of the vendor, then the breach quietly vanished from the leak site. No dump, no countdown, just gone. The lesson: the absence of a leak does not mean the absence of damage. iOS 27 and the Siri redemption. After a $250 million settlement over delayed Siri AI promises, Apple is reportedly rebuilding Siri into a real assistant, possibly letting models like Gemini or Claude plug into iOS. The bigger story is Apple competing against AI ecosystems, not phones. The BlackBerry comeback. Startups like Clicks are betting people are exhausted by engagement-maximizing glass slabs. The kicker: about 45 percent of Clicks customers have never used a keyboard phone, so this is not nostalgia. It is people actively seeking less distraction. Chrome's quiet 4GB AI download. Google has been dropping Gemini Nano into Chrome profile folders without clear consent, and reinstalling it if you delete it. The backlash is about consent and ownership, not the AI. Plus the Yarbo story in full, where the emergency stop could potentially be overridden remotely, and why the Internet of Things just became the Internet of Blades. New episodes weekly. Follow Zero Downtime for cybersecurity, privacy, AI, robotics, and the tech stories that actually matter.

    1h 8m

  8. May 11

    Anti-ICE Site Leaks 18K Users, Utah Bans VPNs, Defender Nukes DigiCert, Canvas Breach

    A platform built to expose ICE operations may have ended up exposing nearly 18,000 of its own users instead. This week, John and Logan break down the GTFO ICE data leak and the irony of an activist site getting taken down by Web App Security 101 mistakes, Utah's new law that tries to make websites responsible for VPN users (which is not how the internet works), the Microsoft Defender update that started deleting DigiCert root certificates as malware, and the Canvas breach that hit one of the biggest learning platforms in education. Stories in this episode: GTFO ICE data exposure. The activist platform reportedly tied to Miles Taylor allegedly leaked names, emails, phone numbers, and possibly location data for around 18,000 users through an unauthenticated API. No nation-state exploit. Just an open endpoint and no access control. Utah vs VPNs. SB 73 says it does not matter if you are using a VPN, if you are physically in Utah, you are a Utah user. The problem is websites cannot actually detect that, so the practical response will be VPN blocking and ID verification for everyone. Microsoft Defender attacks DigiCert. A bad signature update started flagging legitimate root certificates as a trojan and removing them from Windows on some systems. Your antivirus did not just alert. It attacked the chain of trust the entire internet runs on. Canvas breach. Instructure confirmed attackers accessed student IDs, emails, and internal messages between students and teachers. ShinyHunters is claiming 3.65 terabytes stolen. Line this up with Infinite Campus and PowerSchool, and the pattern is clear: edtech is a targeted campaign. Plus the bigger picture: organizational trust is collapsing at every layer, and the fix is not asking people to trust you more. It is designing systems that do not require blind trust in the first place. New episodes weekly. Follow Zero Downtime for cybersecurity, privacy, AI, edtech, and the tech stories that actually matter.

    1h 8m
See All (32)

Ratings & Reviews

5
out of 5
2 Ratings

About

Zero Downtime brings together tech, business, and the everyday experiences of running an IT company. John and Logan discuss what’s going on in their world, the questions people ask them most, and talk with other business owners and professionals in conversations that are real, relaxed, and worth your time.

Information

  • Creator
    John Hass
  • Years Active
    2025 - 2026
  • Episodes
    32
  • Rating
    Explicit
  • Copyright
    © Copyright 2025 All rights reserved.
  • Show Website
    Zero Downtime