On this week’s show special guest co-host Rob Joyce joins Patrick Gray and James Wilson to discuss the week’s cybersecurity news. Rob served as an advisor to Donald Trump during his first term as president and also served at NSA for 34 years. While at the agency, Joyce led Tailored Access Operations (TAO), and later became NSA’s Director of Cybersecurity.

They cover:

• The surprisingly well done Fortibleed campaign
• Stolen Klue OAuth tokens lead to Salesforce data theft
• OpenAI wants to patch the planet
• runZero gets acquired by Accenture, congrats HD Moore!
• Much, much more!

Show notes:

FortiBleed campaign used custom FortiGate sniffer to steal credentials | BleepingComputer https://www.bleepingcomputer.com/news/security/fortibleed-campaign-used-custom-fortigate-sniffer-to-steal-credentials

FortiBleed: Fortinet device credential compromise expands into broader credential-attack guidance | unit42.paloaltonetworks.com https://unit42.paloaltonetworks.com/large-scale-credential-attacks

Cybercriminals allegedly hacked tens of thousands of Fortinet firewalls used by major companies all over the world | TechCrunch Security https://techcrunch.com/2026/06/17/cybercriminals-allegedly-hacked-tens-of-thousands-of-fortinet-firewalls-used-by-major-companies-all-over-the-world

Klue OAuth breach linked to ‘Icarus’ Salesforce data theft attacks | BleepingComputer https://www.bleepingcomputer.com/news/security/klue-oauth-breach-linked-to-icarus-salesforce-data-theft-attacks

Polymarket (@Polymarket) on X | X (formerly Twitter) https://x.com/Polymarket/status/2068649209654309288

The Korean telecom giant at the center of Anthropic’s Mythos controversy | wrd.cm https://wrd.cm/4uHi57q

Beyond Fable: Can a Local LLM Replace Cloud AI for Security Code Reviews - SRLabs Research | SRLabs https://srlabs.de/blog/beyond-fable

OpenAI Launches Full-Scale Effort to Patch Open-Source Bugs as It Takes on Anthropic’s Mythos | wired.com https://www.wired.com/story/openai-launches-full-scale-effort-to-patch-open-source-bugs-as-it-takes-on-anthropics-mythos

Sponsored: Trail of Bits and OpenAI patch the planet | Risky Bulletin https://risky.biz/RBNEWSSI133

Intel agencies: Frontier AI models will reshape cybersecurity faster than expected | cyberscoop.com https://cyberscoop.com/five-eyes-alliance-say-advanced-ai-hacking-models-months-away

Embedding Forbidden Text in Spyware to Discourage AI Analysis | Schneier on Security https://www.schneier.com/blog/archives/2026/06/embedding-forbidden-text-in-spyware-to-discourage-ai-analysis.html

A new unpatchable flaw in Apple chips opens the door to an iPhone jailbreak | TechCrunch Security https://techcrunch.com/2026/06/22/a-new-unpatchable-flaw-in-apple-chips-opens-the-door-to-an-iphone-jailbreak

USB worm spreads crypto-stealing malware via Windows shortcut files | BleepingComputer https://www.bleepingcomputer.com/news/security/usb-worm-spreads-crypto-stealing-malware-via-windows-shortcut-files

Android verification is coming: Google confirms timeline and supported app stores | Ars Technica https://arstechnica.com/gadgets/2026/06/google-shares-updated-timeline-for-rolling-out-android-developer-verification

California water utility probes breach claim by Iran-linked actor | Cybersecurity Dive https://www.cybersecuritydive.com/news/california-water-utility-breach-iran-hacker/823148

Suspected cyberattack triggers false emergency alerts across parts of Brazil | The Record https://therecord.media/suspected-cyberattack-triggers-false-emergency-alerts-brazil

Tesco moving 40,000 server workloads off VMware amid Broadcom’s “abusive conduct” | Ars Technica https://arstechnica.com/information-technology/2026/06/tesco-moving-40000-server-workloads-off-vmware-amid-broadcoms-abusive-conduct

Trump directs federal agencies to protect US data from quantum threats | therecord.media https://therecord.media/trump-directs-federal-agencies-quantum-cryptography

Accenture shells out $4.18B on three companies in big industrial cybersecurity push | cyberscoop.com https://cyberscoop.com/accenture-industrial-cybersecurity-acquisition-dragos-netrise-runzero