On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:

• Oracle’s long term CSO departs, and we’re not that sad about it
• Canada’s House of Commons gets popped through a Microsoft bug
• Russia degrades voice calls via Whatsapp and Telegram to push people towards Max
• South-East Asian scam compounds are also behind child sextortion
• Reports that the UK has backed down on Apple crypto are… strange
• Oh and of course there’s a Fortinet bug! There’s always a Fortinet bug!

This week’s episode is sponsored by open source identity provider Authentik. CEO Fletcher Heisler joins the show this week, and explains the journey of implementing SSO backed login on Windows, Mac and Linux. You’ll never guess which one was a few lines of PAM config, and which was a multi-month engineering project!

Show Notes:

Is Oracle facing headwinds? After layoffs, its 4-decade veteran Chief Security Officer Mary Ann Davidson departs https://www.msn.com/en-in/news/India/is-oracle-facing-headwinds-after-layoffs-its-4-decade-veteran-chief-security-officer-mary-ann-davidson-departs/ar-AA1KOgUs

Oracle CSO blasted over anti-security research rant - iTnews https://www.itnews.com.au/news/oracle-cso-blasted-over-anti-security-research-rant-407776

New York lawsuit against Zelle creator alleges features allowed $1 billion in thefts | The Record from Recorded Future News https://therecord.media/zelle-lawsuit-new-york-state-scams-fraud

Mobile Phishers Target Brokerage Accounts in ‘Ramp and Dump’ Cashout Scheme – Krebs on Security https://krebsonsecurity.com/2025/08/mobile-phishers-target-brokerage-accounts-in-ramp-and-dump-cashout-scheme/

How we found TeaOnHer spilling users’ driver’s licenses in less than 10 minutes | TechCrunch https://techcrunch.com/2025/08/13/how-we-found-teaonher-spilling-users-drivers-licenses-in-less-than-10-minutes/

UK has backed down on demand to access US Apple user data, spy chief says https://www.theguardian.com/technology/2025/aug/19/uk-has-backed-down-on-demand-to-access-us-apple-user-data-spy-chief-says

DNI Tulsi Gabbard on X: “As a result, the UK has agreed to drop its mandate for” https://x.com/DNIGabbard/status/1957623737232007638

Hackers target Workday in social engineering attack https://blog.workday.com/en-us/protecting-you-from-social-engineering-campaigns-update-from-workday.html?refCamp=7014X000002rwAFQAY

Russia curbs WhatsApp, Telegram calls to counter cybercrime | The Record from Recorded Future News https://therecord.media/russia-restricts-voice-calls-whatsapp-telegram-cybercrime

Hackers reportedly compromise Canadian House of Commons through Microsoft vulnerability | The Record from Recorded Future News https://therecord.media/hackers-compromise-canada-house-of-commons

Norway police believe pro-Russian hackers were behind April dam sabotage | The Record from Recorded Future News https://therecord.media/norway-police-suspect-pro-russian-hackers-dam-sabotage

US agencies, international allies issue guidance on OT asset inventorying | Cybersecurity Dive https://www.cybersecuritydive.com/news/ot-asset-inventory-guidance-cisa-international/757569/

FortMajeure: Authentication Bypass in FortiWeb (CVE-2025-52970) https://pwner.gg/blog/2025-08-13-fortiweb-cve-2025-52970

U.S. State Dept - Near Eastern Affairs on X: “He did not claim diplomatic immunity and was released by a state judge” https://x.com/statedept_nea/status/1957445268942528763?s=46&t=VLIuBKdOq3MvRk4IpV-_-A

493 Cases of Sextortion Against Children Linked to Notorious Scam Compounds | WIRED https://www.wired.com/story/child-sextorition-scam-compounds-southeast-asia/

.:: Phrack Magazine ::. https://phrack.org/issues/72/1

Accenture to buy Australian cyber security firm CyberCX - iTnews https://www.itnews.com.au/news/accenture-to-buy-australian-cyber-security-firm-cybercx-619634