Risky Business Video
June 04, 2025
Risky Business Weekly (794): Psychic Panda outgunned by Fluffy Lizard and UNC56728242
Presented by

CEO and Publisher

Technology Editor
On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news:
Cyber firms agree to deconflict and cross-reference hacker group names Russian nuclear facility blueprints gathered from public procurement websites Someone audio deepfaked the White House Chief of Staff, but for the dumbest reasons Germany identifies the Trickbot kingpin Google spots China’s MSS using Calendar events for malware C2 Meta apps abuse localhost listeners to track web sessions.
This week’s episode is sponsored by automation vendor Tines. Its Field CISO, Matt Muller, joins the show to discuss an open letter penned by JP Morgan Chase’s CISO that pleads with Software as a Service suppliers to try to suck less at security.
Show notes:
‘Forest Blizzard’ vs ‘Fancy Bear’ - cyber companies hope to untangle weird hacker nicknames | Reuters https://www.reuters.com/sustainability/boards-policy-regulation/forest-blizzard-vs-fancy-bear-cyber-companies-hope-untangle-weird-hacker-2025-06-02/
Ukraine’s Massive Drone Attack Was Powered by Open Source Software https://www.404media.co/ukraines-massive-drone-attack-was-powered-by-open-source-software/
Massive security breach: Russian nuclear facilities exposed online https://danwatch.dk/en/serious-security-breach-russian-nuclear-facilities-exposed/
How a Spyware App Compromised Assad’s Army - New Lines Magazine https://newlinesmag.com/reportage/how-a-spyware-app-compromised-assads-army/
Exclusive | Federal Authorities Probe Effort to Impersonate White House Chief of Staff Susie Wiles - WSJ https://www.wsj.com/politics/policy/federal-authorities-probe-effort-to-impersonate-white-house-chief-of-staff-65da0d59
Malaysian home minister’s WhatsApp hacked, used to scam contacts | The Record from Recorded Future News https://therecord.media/malaysia-hack-scam-whatsapp-minister
U.S. Sanctions Cloud Provider ‘Funnull’ as Top Source of ‘Pig Butchering’ Scams – Krebs on Security https://krebsonsecurity.com/2025/05/u-s-sanctions-cloud-provider-funnull-as-top-source-of-pig-butchering-scams/
Top counter antivirus service disrupted in global takedown | CyberScoop https://cyberscoop.com/avcheck-global-takedown/
Cops in Germany Claim They’ve ID’d the Mysterious Trickbot Ransomware Kingpin | WIRED https://www.wired.com/story/stern-trickbot-identified-germany-bka/
Australian ransomware victims now must tell the government if they pay up | The Record from Recorded Future News https://therecord.media/australia-ransomware-victims-must-report-payments
Google: China-backed hackers hiding malware in calendar events | Cybersecurity Dive https://www.cybersecuritydive.com/news/china-hackers-google-calendar-events-research/749290/
Coinbase breach linked to customer data leak in India, sources say | Reuters https://archive.md/R0VUa#selection-1331.0-1356.0
US military IT specialist arrested for allegedly trying to leak secrets to foreign government | The Record from Recorded Future News https://therecord.media/defense-intelligence-agency-it-specialist-suspected-leak-foreign-government
NSO appeals WhatsApp decision, says it can’t pay $168 million in ‘unlawful’ damages | The Record from Recorded Future News https://therecord.media/nso-group-appeals-jury-award-168million-
ConnectWise says nation-state attack targeted multiple ScreenConnect customers | The Record from Recorded Future News https://therecord.media/connectwise-nation-state-attack-targeted-some-customers
Google Online Security Blog: Sustaining Digital Certificate Security - Upcoming Changes to the Chrome Root Store https://security.googleblog.com/2025/05/sustaining-digital-certificate-security-chrome-root-store-changes.html
Meta and Yandex are de-anonymizing Android users’ web browsing identifiers - Ars Technica https://arstechnica.com/security/2025/06/meta-and-yandex-are-de-anonymizing-android-users-web-browsing-identifiers/
SPONSOR TOPIC:
An Open Letter to Third-Party Suppliers https://www.jpmorgan.com/technology/technology-blog/open-letter-to-our-suppliers
SPONSOR WEBSITE:
Tines | The smart, secure workflow builder https://www.tines.com/