Risky Business Podcast
July 30, 2025
Risky Business #800 — The SharePoint bug may have leaked from Microsoft MAPP
Presented by
Technology Editor
CEO and Publisher
On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news:
- Did the SharePoint bug leak out of the Microsoft MAPP program?
- Expel retracts its FIDO bypass writeup
- The mess surrounding the women-only dating-safety app Tea gets worse
- Broadcom customers struggle to get patches for VMWare hypervisor escapes
- Aeroflot gets hacked by the Cyber Partisans, disrupting flights
This week’s episode is sponsored by Push Security. Satisfied Push customer Daniel Cuthbert from Santander Bank joins on their behalf. He explains how having telemetry about identity from inside the browser is a key pillar for investigating intrusions in the browser-centric future.
This episode is also available on Youtube.
Brought to you by Push Security
Stop identity attacks
Show notes
Microsoft Probing Whether Cyber Alert Tipped Off Chinese Hackers
What we know about the Microsoft SharePoint attacks | Cybersecurity Dive
An important update (and apology) on our PoisonSeed blog
Tea User Files Class Action After Women’s Safety App Exposes Data
A Second Tea Breach Reveals Users’ DMs About Abortions and Cheating
Top Lawyer for National Security Agency Is Fired
From Help Desk to Hypervisor: Defending Your VMware vSphere Estate from UNC3944
VMware prevents some perpetual license holders from downloading patches
Pro-Ukrainian hackers take credit for attack that snarls Russian flight travel - Ars Technica
Treasury sanctions North Koreans involved in IT-worker schemes | Cybersecurity Dive
Minnesota governor activates National Guard amid St. Paul cyberattack | StateScoop
Outage was result of cyberattack, Post Luxembourg says
Clorox files $380 million suit blaming Cognizant for 2023 cyberattack | Cybersecurity Dive
Cisco network access security platform vulnerabilities under active exploitation | CyberScoop
Cybercrime forum Leak Zone publicly exposed its users' IP addresses | TechCrunch