Podcasts

News, analysis and commentary

Srsly Risky Biz: Ransomware uses AI to amp up negotiations

Presented by

James Wilson
James Wilson

Technology Editor

Tom Uren
Tom Uren

Policy & Intelligence

Tom Uren and James Wilson talk about different ways ransomware groups are taking advantage of AI. The relatively new FulcrumSec group uses simple techniques to breach companies and then uses AI to get more leverage over victims in its extortion negotiations.

They also discuss the ever so many bugs being patched. This is good for organisations that patch, but it will leave a very long tail of unpatched vulnerabilities.

This episode is also available on YouTube

Srsly Risky Biz: Ransomware uses AI to amp up negotiations
0:00 / 20:23

Fortibleed: The bleeding edge of AI cybercrime

Presented by

James Wilson
James Wilson

Technology Editor

In this podcast episode SOCRadar CISO Ensar Seker and James Wilson chat about the company’s deep dive into the Fortibleed campaign. A small investigation into a curiously open directory on an unknown server expanded into the discovery of an attack that targeted 400,000 Fortinet devices.

As Ensar says, each time the SOCRadar team pulled a single thread, it led to a tapestry of AI-enabled cybercrime. They uncovered custom initial access, persistence and packet sniffing tools, as well as direct links to the INC and Lynx ransomware operations. Most interesting though is the use of AI to design, implement and operate all aspects of the campaign across a team of 20 individual actors. Operating more like a modern software company than a traditional cybercrime gang, Fortibleed serves as our first in-depth look at the future of cybercrime.

Fortibleed: The bleeding edge of AI cybercrime
0:00 / 48:03

Between Two Nerds: Exploits are not cyber power

Presented by

The Grugq
The Grugq

Independent Security Researcher

Tom Uren
Tom Uren

Policy & Intelligence

In this edition of Between Two Nerds Tom Uren and The Grugq discuss just how important exploits are for cyber operations using data published in a new paper authored by two members of Ukraine’s cyber security agency.

This episode is also available on YouTube.

Between Two Nerds: Exploits are not cyber power
0:00 / 30:08

What to do 'til the bugpocalypse gets here

Presented by

James Wilson
James Wilson

Technology Editor

In this podcast episode Brad Arkin joins James Wilson to discuss how defenders can get ahead of the late-running bugpocalypse. While we’re confident the offensive cybersecurity capabilities of frontier and open-weight LLMs are real, attackers don’t yet seem able to fully utilise them. This creates a window of opportunity for defenders to tackle the threat.

There are a few well-funded and seemingly overlapping industry efforts under way including Athena, Akrites, and Patch the Planet. But, as Brad says in this interview, there’s too much focus on fixing bugs and traditional vulnerability triage, and not enough on exploring how to make entire classes of vulnerabilities inert.

What to do 'til the bugpocalypse gets here
0:00 / 44:24

Risky Bulletin: NSA Tailored Access Operations is back

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

The NSA’s Tailored Access Operations team is back, India bans an app used to hack e-rickshaws, Accenture has another data breach, and a leak exposes a suspected Chinese cyber contractor.

The Risky Bulletin newsletter and podcast will be on an editorial break until July 20.

Risky Bulletin: NSA Tailored Access Operations is back
0:00 / 7:54

Sponsored: Why Sublime doesn’t toss AI at every email

Presented by

Tom Uren
Tom Uren

Policy & Intelligence

In this Risky Business sponsored interview, Tom Uren chats with Sublime Security Product Manager AJ Williams about how the company targets its AI use. Rather than throwing its AI agents at everything, Sublime gives them the time-consuming email security tasks that humans don’t want to do.

Its ASA (Autonomous Security Analyst) agent investigates suspicious and user-reported messages, while the ADÉ (Autonomous Detection Engineer) agent writes new detection coverage for attacks that slipped through.

Sponsored: Why Sublime doesn’t toss AI at every email
0:00 / 14:30

Srsly Risky Biz: US Supreme Court undermines Section 702 intel

Presented by

James Wilson
James Wilson

Technology Editor

Tom Uren
Tom Uren

Policy & Intelligence

Tom Uren and James Wilson talk about a new US Supreme Court decision that puts the current EU-US data sharing agreement at risk. American intelligence collection efforts have been at the centre of legal challenges of these on-again off-again data transfer agreements, and if the current agreement were struck down it would cripple Section 702 collection from Europe.

They also discuss Canada’s effort to be more transparent about its active cyber operations, those that degrade and disrupt foreign adversaries.

This episode is also available on YouTube

Srsly Risky Biz: US Supreme Court undermines Section 702 intel
0:00 / 27:55

Risky Bulletin: DHS IG investigates forced CISA reassignments

Presented by

Catalin Cimpanu
Catalin Cimpanu

News Editor

Claire Aird
Claire Aird

Newsreader

The DHS inspector general will investigate forced CISA reassignments, Canada hacked a ransomware gang, Taiwan charges two executives with helping Chinese hackers, and new vulnerabilities can disable Hoymiles solar panels.

Risky Bulletin: DHS IG investigates forced CISA reassignments
0:00 / 9:48

Soap Box: Using threat hunting to drive detection

Presented by

Patrick Gray
Patrick Gray

CEO and Publisher

In this wholly sponsored Soap Box edition of the podcast Patrick Gray chats with Damien Lewke, the CEO and founder of Nebulock, about the future of threat hunting and detection.

Damien spent a decade in the EDR and MDR space before founding Nebulock in 2024. It started off as an AI-powered threat hunt platform but has evolved into a broader security data platform that can answer questions, drive hunts and drive detections.

This product is engineered around the idea that a lot of security is a data problem. So, if we accept this premise, how do we solve security? And how much of that solution is about agents, vs building a good graph? And if you’re going to build a good graph, do you want to build it for a person to use, or an agent to use?

This is truly a conversation for the security nerd’s nerd. Enjoy!

This episode is also available on YouTube

Soap Box: Using threat hunting to drive detection
0:00 / 35:16

Between Two Nerds: Why AI has not meant more hacks. Yet.

Presented by

The Grugq
The Grugq

Independent Security Researcher

Tom Uren
Tom Uren

Policy & Intelligence

In this edition of Between Two Nerds Tom Uren and The Grugq talk about why we haven’t seen an explosion of devastating hacks even though AI has been used to discover lots and lots of bugs.

This episode is also available on YouTube.

Between Two Nerds: Why AI has not meant more hacks. Yet.
0:00 / 32:14