Risky Biz News: Russian hackers stole Microsoft's source code

PLUS: CISA had Ivanti servers, so of course they got hacked; China has been secretly removing American technology; Malta will strip citizenship from spyware exec.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast here.

Risky Biz News: Crypto-fraud is now bigger than BEC

PLUS: UAC-0050 linked to low-tier Russian hacker-for-hire group; 85% of TeamCity servers have been hacked; and 41 US states ask Meta to fix its account hacking problem.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast here.

Srsly Risky Biz: German use of WebEx is fine, actually

PLUS: The data broker band aid

In this podcast Patrick Gray and Tom Uren talk about the recent kerfuffle in Germany after a WebEx discussion between senior air force officials was leaked by Russian propagandists. Its interesting to see Russia using raw intelligence to try and shape German actions and they conclude that WebEx would have been fine if it had been used properly.

They also talk about a new executive order aimed at preventing bulk sale of Americans’ sensitive personal data to countries of concern. This is the best short term option, but they contrast this with the ad tech ecosystem to explore what controls on the collection of data might look like.

Risky Business #739 -- ALPHV exit scams while Change Healthcare burns

PLUS: Intellexa and NSO both have an awful, no good week...

In this week’s show Patrick Gray and Adam Boileau discuss the week’s security news. They talk about:

  • The serious consequences from the Change Healthcare ransomware, and the need for a … nastier response
  • Predator spyware maker getting a stern sanctioning
  • A German military WebEx meeting gets snooped
  • Mem-corrpution is still king
  • And much, much more

In this week’s sponsor interview Patrick Gray speaks to Karl McGuinness, Okta’s chief architect, about some new security improvements they’ve built into their IDP.

Between Two Nerds: Ukraine goes on the offensive

A drumbeat of cyber destruction

In this edition of Between Two Nerds Tom Uren and The Grugq look at the shift that has taken place in Ukraine’s cyber strategy as it has gone on the front foot and its cyber forces have launched multiple cyber strikes in the last few months. They discuss reasons why Ukraine might want to make this change and ask whether it makes sense.

Sponsored: The state of cloud security

Corelight's Vijit Nair on how and why cloud security is improving

In this Risky Business News sponsored interview, Tom Uren talks to Vijit Nair, Corelight’s VP of Product, about how cloud security was once an afterthought but is now on the improve.

Srsly Rizky Biz: The memory safety long game

Today's best practices are tomorrow's table stakes

In this podcast Patrick Gray and Tom Uren talk about the White House’s push for memory safe programming languages and software measurability. They also discuss Nevada’s moves against end to end encryption for children and the national security concerns with commercial data sales to geopolitical rivals.

You can find the newsletter version of this podcast here.

Risky Biz News: US sanctions Sandvine over Egypt sales

PLUS: Trend Micro confirms i-SOON link to Earth Lusca APT; NIST releases CSF 2.0; White House joins calls for use of memory-safe languages.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast here.

Risky Business #738 -- LockBit is down but not out. Yet.

The ransomware group is defiant. But is it also delusional?

In this week’s show Patrick Gray and Adam Boileau discuss the week’s security news. They talk about:

  • LockBit gets back up after takedown
  • Russia arrests Medibank hacker… for something else
  • ConnectWise gives out free updates, but customers aren’t happy
  • Microsoft gives in to demands for more logs
  • Sandvine gets entity-listed
  • And much much more.

Dmitri Alperovitch also joins the show to discuss Starlink, Starshield and a row with Congress about its availability in Taiwan.

In this week’s sponsor interview, Airlock Digital’s Daniel Schell talks about his adventures with WDAC, and Dave Cottingham predicts Windows 12 will go all in on signed code.

Risky Biz News: Backdoor code found in Tornado Cash

PLUS: Pharmacies disrupted across the US after "nation-state" attack; Canada's RCMP deals with a "cyber event"; and new ransomware hits TerraMaster NAS devices.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast click here.

Risky Biz News: Google addresses Chrome JIT security

PLUS: SmartConnect exploitation starts; Apple adds PQ3 to iMessage; and White House executive order targets cybersecurity at US ports.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast click here.

Srsly Risky Biz: China's free market espionage machine

The i-SOON leaks prove Chinese communists are great at capitalism...

In this podcast Patrick Gray and Tom Uren talk about a recent leak from a PRC cyber espionage contractor i-SOON. The leak sheds light on China’s cyber salt mines and the system’s hyper-capitalist, pay-for-results, approach to stealing secrets.

Risky Business #737 -- LockBit gets absolutely rekt

PLUS: When you buy your Edward Snowden from Wish.com...

In this week’s show Patrick Gray and Adam Boileau discuss the week’s security news. They talk about:

  • LockBit has been taken down by law enforcement
  • Some mega-juicy leaks out of Chinese offsec/APT contractor I-SOON
  • GRU gets its Moobot network shutdown
  • Signal adding usernames is… complicated
  • Much, much more

In this week’s sponsor interview Devicie’s Tom Plant joins the show to talk about problems orgs run into when it comes to Windows policies. There’s an expectation out there that Windows policies are set and forget, but sadly, this is not so.