Patrick Gray and Adam Boileau are joined by the newest guy on the Risky Business Media team, James WIlson. They discuss the week’s cybersecurity news, including:

• Notepad++ update supply chain attack has been attributed to China
• The AI agent future is even more stupid than expected; behold the OpenClaw/Clawdbot/Moltbook mess
• The Epstein files claim he had a personal hacker?
• Microsoft is finally getting ready to (think about starting to begin to) disable NTLM by default
• The usual bugs in the usual things! Ivanti, Fortinet, and Solarwinds. Again.
• Telco hides a free trip in its privacy policy, someone actually reads it and wins!

This weeks’s episode is sponsored by opensource IDP platform Authentik. CEO Fletcher Heisler talks to Pat about their new endpoint agent that can enforce device posture policies during login.

Show Notes:

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit https://www.rapid7.com/blog/post/tr-chrysalis-backdoor-dive-into-lotus-blossoms-toolkit/

Notepad++ Hijacked by State-Sponsored Hackers | Notepad++ https://notepad-plus-plus.org/news/hijacked-incident-info-update/

Notepad++ v8.8.3 - Self-signed Certificate: Certified by Code, Not Corporations | Notepad++ https://notepad-plus-plus.org/news/v883-self-signed-certificate/

Hacking Moltbook: AI Social Network Reveals 1.5M API Keys | Wiz Blog https://www.wiz.io/blog/exposed-moltbook-database-reveals-millions-of-api-keys

lcamtuf on X: “Moltbook debate in a nutshell” / X https://x.com/lcamtuf/status/2017751093653229597?s=20

Exposed Moltbook Database Let Anyone Take Control of Any AI Agent on the Site https://www.404media.co/exposed-moltbook-database-let-anyone-take-control-of-any-ai-agent-on-the-site/

AndrewMohawk on X: “How exactly did an attacker send a message to your bot since you need to approve all the channels and set keys etc” / X https://x.com/AndrewMohawk/status/2017858486491599239

Signal president warns AI agents are making encryption irrelevant https://cyberinsider.com/signal-president-warns-ai-agents-are-making-encryption-irrelevant/

Massive AI Chat App Leaked Millions of Users Private Conversations https://www.404media.co/massive-ai-chat-app-leaked-millions-of-users-private-conversations/

Runa Sandvik on X: “New court record from the FBI details the state of the devices seized from Washington Post reporter Hannah Natanson” https://x.com/runasand/status/2017652181441118603?s=46&t=VLIuBKdOq3MvRk4IpV-_-A

EFTA01683874.pdf https://www.justice.gov/epstein/files/DataSet%2010/EFTA01683874.pdf

Disrupting the World’s Largest Residential Proxy Network | Google Cloud Blog https://cloud.google.com/blog/topics/threat-intelligence/disrupting-largest-residential-proxy-network

Nobel Committee says Peace Prize winner likely revealed early by digital spying | Reuters https://www.reuters.com/world/americas/nobel-committee-says-peace-prize-winner-likely-revealed-early-by-digital-spying-2026-01-30/

County pays $600,000 to pentesters it arrested for assessing courthouse security - Ars Technica https://arstechnica.com/security/2026/01/county-pays-600000-to-pentesters-it-arrested-for-assessing-courthouse-security/

Advancing Windows security: Disabling NTLM by default - Windows IT Pro Blog https://techcommunity.microsoft.com/blog/windows-itpro-blog/advancing-windows-security-disabling-ntlm-by-default/4489526

Critical flaws in Ivanti EPMM lead to fast-moving exploitation attempts | Cybersecurity Dive https://www.cybersecuritydive.com/news/critical-flaws-ivanti-epmm-exploitation/811228/

CISA orders federal agencies to patch exploited SolarWinds bug by Friday | The Record from Recorded Future News https://therecord.media/cisa-orders-agencies-patch-solarwinds-vuln

CISA, security researchers warn FortiCloud SSO flaw is under attack | Cybersecurity Dive https://www.cybersecuritydive.com/news/cisa-researchers-warn-forticloud-flaw-attack/810861/

Fintech firm Marquis blames hack at firewall provider SonicWall for its data breach | TechCrunch https://techcrunch.com/2026/01/29/fintech-firm-marquis-blames-hack-at-firewall-provider-sonicwall-for-its-data-breach/

We Hid a Free Trip to Switzerland in Our Privacy Policy. Someone Found It in 2 Weeks. - Cape https://www.cape.co/blog/easter-egg-in-privacy-policy

Between Two Nerds: The internal logic of Russian power grid attacks - YouTube https://www.youtube.com/watch?v=IqLHE-lIP4s