Risky Business #745 – Tales from the PANageddon

PLUS: Why the Sisense breach is a BFD...

On this week’s show Patrick and Adam discuss the week’s security news, including:

  • Palo Alto’s firewalls have a ../ bad day
  • Sisense’s bucket full of creds gets kicked over
  • United Healthcare draws the ire of congress
  • FISA 702 reauthorisation finally moves forward
  • Apple warns about “mercenary exploitation” but what’s the India link?
  • And much, much, more

This week’s sponsor is Panther, a platform that does detection as code on massive amounts of data. Panther’s founder Jack Naglieri is this week’s sponsor guest, and we spoke with him about some common detection-as-code approaches.

Risky Biz News: PuTTY crypto bug exposes private keys

PLUS: Cisco Duo discloses data breach; China tells telcos to ditch US chips; month-long brute-force campaign targets VPN devices.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast here.

Between Two Nerds: 0days in 2023

Looking at 0day through Google-coloured glasses

In this edition of Between Two Nerds Tom Uren and The Grugq look at Google’s review of 0days in 2023. They discuss what this kind of information tells us and how Google’s perspective influences the report.

Risky Biz News: Palo Alto Networks scrambles to push zero-day RCE patch

PLUS: FISA S702 reapproval passes through the House; Roku forcibly enables 2FA for all users after waves of credential-stuffing attacks; ex-Amazon engineer gets 3 years in prison for crypto-heist.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast here.

Sponsored: When standards drive innovation

Airlock Digital on how to make sure security standards work

In this Risky Business News sponsored interview, Tom Uren talks to Daniel Schell and David Cottingham, the CTO and CEO of Airlock Digital. They discuss the security standard that drove innovation and the genesis of Airlock Digital and also how to make sure that standards don’t become box-checking exercises.

Risky Biz News: CISA sounds alarm on Sisense breach

PLUS: Apple sends mercenary spyware notifications in 92 countries; US prepares a full Kasperksy ban; BatBadBut bug impacts multiple programming languages.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast here

Srsly Risky Biz: States behaving badly

PLUS: The Big Tech bogeyman

In this podcast Patrick Gray and Tom Uren talk about how different states are transgressing what we want to be norms of online behaviour. They also look at the framing around new bipartisan privacy legislation and why vendors should have positive security obligations.

Risky Biz News: Ukraine suspends SBU cyber chief

PLUS: Multi-party approval comes to Google Workspace; Hacker dumps data of most Salvadorans; Ukrainian hackers wipe Russian cloud provider.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast here.

Risky Business #744 -- Ransomware upstarts jostle in Lockbit's absence

PLUS: Why enterprise software security will never be truly secure...

On this week’s show Patrick and Adam discuss the week’s security news, including:

  • Ransomware: down but not out
  • Zero day prices on the rise…
  • … and what it means for enterprise software
  • Geopolitical conflict comes to computers in Palau
  • Ukraine cyber chief Illia Vitiuk suspended
  • More x86 microarchitectural bad times
  • And much much more

Proofpoint’s chief strategy officer Ryan Kalember is this week’s sponsor guest. He takes aim at some recent vendor trends, like security companies describing themselves as “platforms”.

Sponsored: GreyNoise on last year's vulnerability exploitation trends

GreyNoise founder Andrew Morris explains how the company's Sift AI works under the hood.

In this Risky Business News sponsor interview, Catalin Cimpanu talks with GreyNoise founder Andrew Morris about last year’s vulnerability exploitation trends, how the company’s AI system works, and Catalin makes a fool of himself because he can’t pronounce ‘abnormalities.’

Snake Oilers: Kodex, ClearVector and Censys

Hear three pitches from three vendors!

In this edition of Snake Oilers you’ll hear pitches from three companies:

  • Kodex: Makes a platform companies can use to interact with law enforcement (Solves the law enforcement impersonator problem, among others.)
  • ClearVector: Cloud security startup from former FireEye/Mandiant SVP/CTO John Laliberte
  • Censys: Scans the entire internet, identifies assets you didn’t know were yours, helps you track attacker infrastructure like C2

Risky Biz News: Ukraine wants Sandworm hackers tried at The Hague

PLUS: Google fixes two Pixel zero-days used to unlock devices; Progress Software delivers another ten out of ten bug; and Windows 10 ESU prices are out!

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast here.

Srsly Risky Biz: The heavy weight of CIRCIA regulation

PLUS: Why looking at Signalling System 7 is weird

In this podcast Patrick Gray and Tom Uren talk about the weighty tome of CISA’s critical infrastructure reporting legislation, CIRCIA, and compare different approaches to defining regulation.

They also look at moves to better protect customers from being tracked by the telco protocol Signalling System 7.

Risky Business #743 -- A chat about the xz backdoor with the guy who found it

PLUS: The CSRB mauls Microsoft…

On this week’s show Patrick and Adam discuss the week’s security news, including:

  • The SSH backdoor that dreams (or nightmares) are made of
  • Microsoft gets a solid spanking from the CSRB
  • Ukraine uses an old Russian WinRAR bug to hack Russia
  • Push-notifications and social-engineering combined-arms vs Apple
  • And much, much more.

We have a special guest in this week’s show, Andres Freund, the Postgres developer who discovered the backdoor in the xz Linux compression library.

This week’s show is brought to you by Island, a company that makes a security-focussed enterprise browser. Island’s Bradon Rogers is this week’s sponsor guest and he’ll be joining us to talk about how people are swapping out their Virtual Desktop Infrastructure for enterprise-focussed browsers like theirs.

Risky Biz News: CSRB drops scathing Microsoft report

PLUS: F-Droid narrowly avoided XZ-like incident in 2020, new Chrome feature fights auth cookie theft; anti-Kremlin hacktivists breach Russia's prison system.

Description: A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast here.

Sponsored: Resourcely on how it manages its secure templates

Resourcely co-founder and CEO Travis McPeak explains how Resourcely can be used beyond just security operations.

In this Risky Business News sponsor interview, Catalin Cimpanu talks with Resourcely co-founder and CEO Travis McPeak about how the DevOps ecosystem has evolved and ushered the need for DevSecOps, and how the company provides and manages its secure-by-default templates.

Risky Biz News: Epic supply chain attack on Linux SSH

PLUS: AT&T confirms 2019 data breach; Canonical switches to manual reviews after flood of scam apps; HP leaves Russia.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast here.