Retour

Explorez tous les épisodes du podcast Talkin' Bout [Infosec] News

Plongez dans la liste complète des épisodes de Talkin' Bout [Infosec] News. Chaque épisode est catalogué accompagné de descriptions détaillées, ce qui facilite la recherche et l'exploration de sujets spécifiques. Suivez tous les épisodes de votre podcast préféré et ne manquez aucun contenu pertinent.

Rows per page:

1–50 of 343

TitreDateDurée
Denmark is Done with Teams! - 2025-06-1618 Jun 202500:56:19

Register for Free, Live webcasts & summits:

https://poweredbybhis.com

00:00 - PreShow Banter™ — Government Linux

04:16 - Denmark is Done with Teams! - Talkin’ Bout [infosec] News 2025-06-16

05:02 - Story # 1: ‘We’re done with Teams’: German state hits uninstall on Microsoft

17:34 - Story # 1b: Denmark Wants to Dump Microsoft Software for Linux, LibreOffice

18:14 - Story # 2: Zero-click AI data leak flaw uncovered in Microsoft 365 Copilot

25:50 - Story # 3: Fog ransomware attacks use employee monitoring tool to break into business networks

30:25 - Story # 4: Expired Discord Invites Hijacked for Stealthy Malware Attacks

34:00 - Story # 5: SmartAttack uses smartwatches to steal data from air-gapped systems

40:25 - Story # 6: Mirai Botnets Exploiting Wazuh Security Platform Vulnerability

44:47 - Story # 7: Google Cloud and Cloudflare hit by widespread service outages

48:04 - Story # 8: UNFI cyberattack shuts down network and leaves Whole Foods and others in limbo

50:34 - Story # 9: New SharePoint Phishing Attacks Using Lick Deceptive Techniques

51:08 - Story # 10: US-backed Israeli company’s spyware used to target European journalists, Citizen Lab finds

53:32 - Story # 11: Five Zero-Days, 15 Misconfigurations Found in Salesforce Industry Cloud

Chatbot Tells Addict to Take Drugs - 2025-06-0912 Jun 202501:00:21

Register for Free, Live webcasts & summits:

https://poweredbybhis.com

00:00 - PreShow Banter™ — Time to Bake

05:12 - Chatbot Tells Addict to Take Drugs - Talkin’ Bout [infosec] News 2025-05-06

06:08 - Story # 1: Meta and Yandex are de-anonymizing Android users’ web browsing identifiers

12:55 - Story # 2: Therapy Chatbot Tells Recovering Addict to Have a Little Meth as a Treat

16:11 - Story # 3: The Cost of a Call: From Voice Phishing to Data Extortion

26:56 - Story # 4: Questions Swirl Around ConnectWise Flaw Used in Attacks

27:40 - Story # 4b: ConnectWise email

35:28 - Story # 5: Critical Cisco ISE Auth Bypass Flaw Impacts Cloud Deployments on AWS, Azure, and OCI

39:27 - Story # 6: Misconfigured HMIs Expose US Water Systems to Anyone With a Browser

52:20 - Story # 7: Fact Sheet: President Donald J. Trump Reprioritizes Cybersecurity Efforts to Protect America

Desperate Times Makes for More Cyber Crimes -2025-04-0709 Apr 202500:48:31

Register for upcoming webcasts & summits - 

https://poweredbybhis.com

Chapters

00:00 - PreShow Banter™ — A Complex Business

06:40 - BHIS - Talkin’ Bout [infosec] News 2025-04-07

07:34 - Story # 1: Oracle quietly admits data breach, days after lawsuit accused it of cover-up

12:47 - Story # 2: Twitter (X) Hit by 2.8 Billion Profile Data Leak in Alleged Insider Job

21:13 - Story # 3: Phishing platform ‘Lucid’ behind wave of iOS, Android SMS attacks

28:14 - Story # 4: GitHub expands security tools after 39 million secrets leaked in 2024

37:28 - Story # 5: The 10 Biggest Crypto Hacks in History

40:11 - Story # 6: OpenAI tests watermarking for ChatGPT-4o Image Generation model

45:44 - Story # 7: National Security Agency chief fired as Trump ousts another top military officer

The Oracle of Lies! – 2025-03-3103 Apr 202501:02:45

00:00 - PreShow Banter™ — The Bed Slinger

08:34 - The Oracle of Lies! - BHIS - Talkin’ Bout [infosec] News 2025-03-31

10:43 - Story # 1: Oracle attempt to hide serious cybersecurity incident from customers in Oracle SaaS service

20:00 - Story # 2: A Sneaky Phish Just Grabbed my Mailchimp Mailing List

26:17 - Story # 3: Windows 11 is closing a loophole that let you skip making a Microsoft account

29:51 - Story # 4: The Trump Administration Accidentally Texted Me Its War Plans

32:51 - Story # 4b: Signal is ‘absolutely not suitable’ for government use: Former NSA hacker

37:42 - Story # 5: How the FBI Tracked, and Froze, Millions Sent to Criminals in Massive Caesars Casino Hack

42:27 - Story # 6: Retail giant Sam’s Club investigates Clop ransomware breach claims

45:07 - WEBCAST – Keeping Things Local – Making Your Own Private LLM w/ Bronwen Aker

46:16 - Story # 7: New VanHelsing ransomware targets Windows, ARM, ESXi systems

48:28 - Story # 8: Infostealer campaign compromises 10 npm packages, targets devs

53:13 - Story # 9: Risky Biz News: EU bans anonymous crypto payments

56:02 - ChickenSec: South African Poultry Company Reports $1M Loss After Cyber Intrusion

Trading in Jock Straps for Jock Hacks – 2025-03-2426 Mar 202500:58:44

00:00 - PreShow Banter™ — We’re Not Ready For the Finger Thing

01:40 - Trading in Jock Straps for Jock Hacks – BHIS - Talkin’ Bout [infosec] News 2025-03-24

03:24 - Story # 1: GitHub Action hack likely led to another in cascading supply chain attack

07:53 - Story # 2: Wiz to Join Google Cloud: Making Magic Together

14:47 - Story # 3: Oracle denies breach after hacker claims theft of 6 million data records

19:52 - Story # 4: Critical flaw in Next.js lets hackers bypass authorization

25:47 - Story # 5: Cloudflare builds an AI to lead AI scraper bots into a horrible maze of junk content

29:20 - Story # 6: Ex-Michigan QB coach Matt Weiss facing 24 federal charges in hack of thousands of student accounts

35:47 - Story # 7: DNA of 15 Million People for Sale in 23andMe Bankruptcy

38:40 - Story # 8: Everything you say to your Echo will be sent to Amazon starting on March 28

44:03 - Story # 9: We partner with world-renowned scambusters to create our own fraud-fighting call centre

52:01 - Story # 10: Sperm donation giant California Cryobank warns of a data breach

54:19 - Story # 11: Microsoft: New RAT malware used for crypto theft, reconnaissance

56:32 - Story # 12: TrustedSec | Trimarc Joins Forces with TrustedSec to Strengthen…

News 2025-03-17 - Malicious Browser Plugins will Destroy us ALL!!!!!19 Mar 202501:00:41

00:00 - PreShow Banter™ — Fun Jank Decks

05:25 - BHIS - Talkin’ Bout [infosec] News 2025-03-17 - Malicious browser plugins will destroy us ALL!!!!!

06:35 - Story # 1: Polymorphic Extensions: The Sneaky Extension That Can Impersonate Any Browser Extension

14:37 - Story # 1b: Chrome Web Store is a mess

31:14 - Story # 2: Lazarus Strikes npm Again with New Wave of Malicious Packages

36:17 - Story # 3: China’s Volt Typhoon Hackers Dwelled in US Electric Grid for 300 Days

44:44 - Story # 4: Saudi Arabia Buys Pokémon Go, and Probably All of Your Location Data

49:31 - Story # 5: Second biggest bank in US hit by major data breach stealing social security numbers and other personal info

51:25 - Story # 6: Hackers Take Credit for X Cyberattack

54:32 - Story # 7: Hackers Using Advanced MFA-Bypassing Techniques To Gain Access To User Account

2025-03-10 — Agent A.I.12 Mar 202501:04:11

00:00 - PreShow Banter™ — Agent A.I.

07:35 - BHIS - Talkin’ Bout [infosec] News 2025-03-10

10:47 - Story # 1: 12 Chinese hackers charged with US Treasury breach — and much, much more

15:25 - Story # 2: Signal President Meredith Whittaker calls out agentic AI as having ‘profound’ security and privacy issues

25:33 - Story # 3: X/Twitter is down for a third time today

27:33 - Story # 4: Developer sabotaged ex-employer with kill switch activated when he was let go

33:37 - Story # 5: Undocumented commands found in Bluetooth chip used by a billion devices

45:37 - Story # 6: Cybercrime’s Cobalt Strike Use Plummets 80% Worldwide

46:19 - Story # 7: Majority of Orgs Hit by AI Cyber-Attacks as Detection Lags

55:01 - Story # 8: Ransomware gang encrypted network from a webcam to bypass EDR

2025-03-03 - Not Talking About Anything05 Mar 202500:58:41

00:00 - PreShow Banter™ — Not Talking About Anything

04:29 - BHIS - Talkin’ Bout [infosec] News 2025-03-03

05:42 - Story # 1: FBI Warns iPhone, Android Users—We Want ‘Lawful Access’ To All Your Encrypted Data

24:28 - Story # 2: Disney engineer downloaded ‘helpful’ AI tool that ended up completely destroying his life

34:28 - Story # 3: Have I Been Pwned adds 284M accounts stolen by infostealer malware

43:22 - Story # 4: Dragos’s 8th Annual OT Cybersecurity Year in Review Is Now Available

45:53 - Story # 5: Trump administration retreats in fight against Russian cyber threats

55:19 - Story # 5b: Exclusive: US intel shows Russia and China are attempting to recruit disgruntled federal employees, sources say

57:33 - Story # 6: Feds: Army soldier suspected of AT&T heist Googled ‘can hacking be treason,’ ‘defecting to Russia’

2025-05-24 - Get Political (With Jake Williams)26 Feb 202501:02:29

00:00 - PreShow Banter™ — Get Political

05:27 - BHIS - Talkin’ Bout [infosec] News 2025-02-25

06:07 - Story # 1: Trump 2.0 Brings Cuts to Cyber, Consumer Protections

37:57 - Story # 2: OpenAI Uncovers Evidence of A.I.-Powered Chinese Surveillance Tool

49:48 - Story # 3: Apple pulls data protection tool after UK government security row

55:00 - Story # 4: Judge dismisses Chris Hadnagy lawsuit against DEF CON

2025-02-17 - Prove That You're Wearing Pants19 Feb 202501:05:31

 

00:00 - PreShow Banter™ — Prove That You’re Wearing Pants

05:50 - BHIS - Talkin’ Bout [infosec] News 2025-05-17

06:46 - Story # 1: Fortinet discloses second firewall auth bypass patched in January

07:12 - Story # 1b: Fortinet CEO boasts it was voted the “most trusted” cybersecurity firm. Don’t die laughing

08:45 - Story # 1c: Forbes Most Trusted Companies in America 2025 List

16:25 - Story # 2: SAML Bypass Authentication on GitHub Enterprise Servers to Login as Other User Account

18:37 - Story # 2b: Rapid7 Flags New PostgreSQL Zero-Day Connected to BeyondTrust Exploitation

20:04 - Story # 3: Putting the human back into AI is key, former NSA Director Nakasone says

36:35 - Story # 4: Apple Confirms USB Restricted Mode Exploited in ‘Extremely Sophisticated’ Attack

37:44 - Story # 5: DOGE Exposes Once-Secret Government Networks, Making Cyber-Espionage Easier than Ever

43:14 - Story # 5b: DOGE’s .gov site lampooned as coders quickly realize it can be edited by anyone

46:59 - Story # 6: Man who SIM-swapped the SEC’s X account pleads guilty

51:26 - Story # 7: Russia’s Sandworm caught snarfing credentials, data from American and Brit orgs

53:55 - Story # 8: Nearly 10 years after Data and Goliath, Bruce Schneier says: Privacy’s still screwed

 

2025-02-10 - Walking Through Denver13 Feb 202501:02:47

00:00 - PreShow Banter™ — Walking Through Denver

02:23 - BHIS - Talkin’ Bout [infosec] News 2025-02-10

04:35 - Story # 1: Ransomware payments declined in 2024 despite massive. well-known hacks

05:02 - Story # 1b: 35% Year-over-Year Decrease in Ransomware Payments, Less than Half of Recorded Incidents Resulted in Victim Payments

14:19 - Story # 2: Critical Cisco ISE bug can let attackers run commands as root

16:43 - Story # 3: The Untold Story of a Crypto Crimefighter’s Descent Into Nigerian Prison

24:18 - Story # 4: IoT’s botnet problem is up 500% – three things admins must do now

31:49 - Story # 5: WhatsApp identifies dozens of users hacked by Paragon spyware company

39:41 - Story # 6: Sri Lanka goes bananas after monkey unplugs nation

43:36 - Story # 7: Microsoft Study Finds AI Makes Human Cognition “Atrophied and Unprepared”

50:17 - ChickenSec Story #: 1 Here’s a Super Bowl riddle: Why are egg prices surging — but not chicken wings?

52:21 - Story # 8: DOGE Staffer Previously Fired From Cybersecurity Company for Leaking Secrets

58:07 - ChickenSec Story #2: Americans to Eat 1.47 Billion Chicken Wings for Super Bowl LIX

2025-02-05 - LIVE FROM WWHF DENVER 202512 Feb 202500:44:41

00:00 - PreShow Banter™ — Community Swear Bucket

01:40 - BHIS - Talkin’ Bout [infosec] News 2025-02-05

03:27 - Story # 1: DeepSeek R1 Exposed: Security Flaws in China’s AI Model

11:25 - Story # 2: Backdoor found in two healthcare patient monitors, linked to IP in China

15:21 - Story # 3: Facebook flags Linux topics as ‘cybersecurity threats’ — posts and users being blocked

20:56 - Story # 4: Here’s how Musk’s access to Treasury system may impact Social Security, other government payments

31:29 - Story # 5: Russian Cybercrime Groups Exploiting 7-Zip Flaw to Bypass Windows MotW Protections

34:34 - Story # 6: Insurance Company Globe Life Notifying 850,000 People of Data Breach

36:15 - Story # 10: DeepSeek Fails Researchers’ Safety Tests

38:35 - Story # 11: Engineering giant Smiths Group discloses security breach

Victoria’s Secrets are Compromised - 2025-06-0205 Jun 202500:54:35

Register for Free, Live webcasts & summits:

https://poweredbybhis.com

00:00 - PreShow Banter™ — natural MSG

05:31 - Victoria’s Secrets are Compromised - Talkin’ Bout [infosec] News 2025-06-02

06:31 - Story # 1: Authors Are Accidentally Leaving AI Prompts In their Novels

08:36 - Story # 1b: This Latest AI Book Debacle Is A Disturbing Part Of A Growing Trend

09:41 - Story # 2: Developer Builds Tool That Scrapes YouTube Comments, Uses AI to Predict Where Users Live

10:48 - Story # 2b: AI-powered OSINT tool profiles YouTube users, raising privacy concerns

15:55 - Story # 2c: Researchers Dump 2 Billion Scraped Discord Messages Online

20:28 - Story # 3: Vending-Bench: A Benchmark for Long-Term Coherence of Autonomous Agents

21:02 - Story # 3b: An AI Goes Insane, Emails FBI Over $2 (YouTube)

26:55 - Story # 4: The UK will totally replace two-thirds of junior civil servants with AI chatbots, says the chatbot

27:27 - Story # 4b: Reeves confirms 15% cut to Civil Service running costs

29:29 - Story # 5: ConnectWise Breached, ScreenConnect Customers Targeted

31:28 - LOLRMM - a curated list of Remote Monitoring and Management (RMM) tools that could potentially be abused by threat actors.

35:34 - Story # 6: New Windows RAT Evades Detection for Weeks Using Corrupted DOS and PE Headers

36:19 - Story # 7: US intelligence employee arrested for alleged double-dealing of classified info

40:12 - Story # 8: Victoria’s Secret takes down website after security incident

45:43 - Story # 9: Microsoft and CrowdStrike partner to link hacking group names

46:59 - Story # 10: Zscaler Acquisition of Red Canary

49:57 - Story # 11: Most of CISA’s senior leaders are leaving the agency

51:22 - Story # 12: Telegram announces partnership with Musk’s xAI

51:32 - Story # 13: Google warns of Vietnam-based hackers using bogus AI video generators to spread malware

Blackmailing A.I. - 2025-05-2730 May 202500:58:35

Register for Free, Live webcasts & summits:

https://poweredbybhis.com

00:00 - PreShow Banter™ — I just want Jorts!

05:42 - Blackmailing A.I. - Talkin’ Bout [infosec] News 2025-05-27

07:01 - Story # 1: Experimental drones developed to neutralize mass shooters, disable weapons

11:29 - Story # 2: How a global malware operation was taken down from a federal court in Georgia

13:50 - Story # 3: Judge allows Workday AI bias lawsuit to proceed as collective action

15:23 - Marker 17

19:25 - Story # 4: Anthropic’s new AI model turns to blackmail when engineers try to take it offline

32:19 - Story # 5: TeleMessage customers include DC Police, Andreessen Horowitz, JP Morgan, and hundreds more

34:53 - Story # 6: TikTok videos now push infostealer malware in ClickFix attacks

36:57 - Story # 7: Beware, Coinbase users. Crypto thieves are taking fingers now

40:56 - Story # 8: Signal now blocks Microsoft Recall screenshots on Windows 11

43:16 - Story # 9: Suspected InfoStealer Malware Data Breach Exposed 184 Million Logins and Passwords

44:54 - Story # 10: Google Chrome’s Built-in Manager Lets Users Update Breached Passwords with One Click

48:09 - Story # 11: Russian military hackers ‘Fancy Bear’ target Western aid supply chains to Ukraine, NSA report says

50:13 - Story # 12: Google Gemini AI assistant coming to new cars in 2025, starting with Volvo

54:17 - Story # 13: Hacker Conference HOPE Says U.S. Immigration Crackdown Caused Massive Crash in Ticket Sales

56:55 - Story # 13b: [HOPE_16] International Travel Tips

WORLDS FIRST CPU Ransomware! - 2025-05-1921 May 202500:53:26

Register for Free, Live webcasts & summits:

https://poweredbybhis.coma

00:00 - PreShow Banter™ — Twiddle Me This

02:04 - WORLDS FIRST CPU Ransomware! - Talkin’ Bout [infosec] News 2025-05-19

03:10 - Story # 1: Coinbase - Standing Up to Extortionists

11:26 - Story # 2: World’s first CPU-level ransomware

15:09 - Story # 3: New Intel CPU flaws leak sensitive data from privileged memory

19:04 - Story # 4: After latest kidnap attempt, crypto types tell crime bosses: Transfers are traceable

21:39 - Story # 5: Chinese ‘kill switches’ found hidden in US solar farms

27:52 - Story # 6: Congress proposes 10-year ban on state AI regulations

31:41 - Story # 7: Hackers Abuse Copilot AI in SharePoint to Steal Passwords and Sensitive Data

36:02 - Story # 8: European Vulnerability Database Launches Amid US CVE Chaos

37:32 - Story # 9: 89 million Steam accounts reportedly leaked. Change your password now.

40:06 - Story # 10: Hackers Now Targeting US Retailers After UK Attacks, Google

41:11 - Story # 11: How the Signal Knockoff App TeleMessage Got Hacked in 20 Minutes

43:08 - Story # 11b: DDoSecrets publishes 410 GB of heap dumps, hacked from TeleMessage’s archive server

47:12 - ChickenSec: ‘A Minecraft Movie’ Viral TikTok Trend Wreaks Havoc In Theaters

51:20 - Story # 12: Education giant Pearson hit by cyberattack exposing customer data

Inside DragonForce 2025-05-1215 May 202500:56:15

Register for Free, Live webcasts & summits:

https://poweredbybhis.coma

00:00 - PreShow Banter™ — Crime is bad

00:18 - dangerous trend of destroying Chromebooks

04:33 - BHIS - Talkin’ Bout [infosec] News 2025-05-12

05:40 - Story # 1: LockBit Ransomware Hacked, Insider Secrets Exposed

06:36 - Story # 1b: https://ransomch.at

09:31 - Story # 2: White House Proposes $500 Million Cut to CISA

10:35 - Story # 2b: Update to How CISA Shares Cyber-Related Alerts and Notifications

18:09 - Story # 3: Inside DragonForce, the Group Tied to M&S, Co-op and Harrods Hacks

22:28 - Story # 4: Despite ransom payment, PowerSchool hacker now extorting individual school districts

26:28 - Story # 5: Tech CEOs warn Senate: Outdated US power grid threatens AI ambitions

32:20 - Story # 6: Warning — 19 Billion Compromised Passwords Have Been Published Online

34:37 - Story # 7: Botnet Dismantled in International Operation, Russian and Kazakhstani Administrators Indicted

36:33 - Story # 8: How a new type of AI is helping police skirt facial recognition bans

48:38 - Story # 9: Threat Actor Bypass SentinelOne EDR to Deploy Babuk Ransomware

51:33 - Story # 10: A Framework to Report AI’s Flaws

53:42 - Story # 10b: MITRE ATLAS™

54:49 - Simply Hot Ones Challenge | LIVE FIRE SPICE

Scatterd Spider Weaves Another Attack- 2025-05-0509 May 202500:54:42

Register for Free, Live webcasts & summits:

https://poweredbybhis.com

00:00 - PreShow Banter™ — Double Coffee

05:04 - BHIS - Talkin’ Bout [infosec] News 2025-05-05

06:05 - Story # 1: Largest bank in the world issues stark security warning about technology that billions use every single day

11:15 - Story # 2: M&S cyber-attack linked to hacking group Scattered Spider

13:47 - Story # 3: Top Tier Target | What It Takes to Defend a Cybersecurity Company from Today’s Adversaries

20:10 - Story # 4: A North Korean agent applied for a job at a popular crypto firm: They tripped him up with a simple question about Halloween

21:54 - Story # 4b: The one interview question that will protect you from North Korean fake workers

23:09 - Story # 5: Santa Clarita Man Agrees to Plead Guilty to Hacking Disney Employee’s Computer, Downloading Confidential Data from Company

25:33 - Story # 6: TerraStealerV2 and TerraLogger: Golden Chickens’ New Malware Families Discovered

29:19 - Story # 7: Gremlin Stealer: New Stealer on Sale in Underground Forum

33:17 - Story # 8: Over 290,000 citizens at risk: CloudSEK uncovers major data breach at Bangalore Water Supply and Sewerage Board

34:56 - Story # 9: The Signal Clone the Trump Admin Uses Was Hacked

39:58 - Story # 10: Windows RDP lets you log in using revoked passwords. Microsoft is OK with that.

42:19 - Story # 11: Software dev fortifies his blog with ‘zip bombs’ — attacking bots meet their end with explosive data package

43:44 - Story # 12: WhatsApp says in-app AI tools will still keep messages secret

45:37 - Story # 13: House passes bill to study routers’ national security risks

49:48 - Simply Hot Ones Challenge (YouTube)

InfoSec CEO Charged with Installing Malware! – 2025-04-2830 Apr 202501:00:58

Register for upcoming webcasts & summits - 

https://poweredbybhis.com

00:00 - PreShow Banter™ — Talking Bout Red Green

02:24 - InfoSec CEO Charged with Installing Malware! – BHIS - Talkin’ Bout [infosec] News 2025-04-28

03:01 - Story # 1: CEO of cybersecurity firm charged with installing malware on hospital systems

11:22 - Story # 2: 2025 Data Breach Investigations Report

25:05 - Story # 3: The Age of Realtime Deepfake Fraud Is Here

29:00 - Story # 4: Whistleblower: DOGE Siphoned NLRB Case Data

33:09 - Story # 5: Top employee monitoring app leaks 21 million screenshots on thousands of users

36:59 - Story # 6: 159 CVEs Exploited in Q1 2025 — 28.3% Within 24 Hours of Disclosure

42:13 - Story # 7: SAP zero-day vulnerability under widespread active exploitation

46:29 - Story # 8: FBI: US lost record $16.6 billion to cybercrime in 2024

47:55 - Story # 8b: FBI Report Doc

53:50 - Story # 9: M- Trends 2025 Report

The CVE Saga - Talkin’ Bout [infosec] News 2025-04-2123 Apr 202500:58:29

Register for upcoming webcasts & summits - 

https://poweredbybhis.com

00:00 - PreShow Banter™ — A Monocle and a Glass of Wine

05:36 - The CVE Saga - Talkin’ Bout [infosec] News 2025-04-21

06:43 - Story # 1: US agency extends support for cyber vulnerability database

29:08 - Story # 1b: CVE Foundation

32:35 - Story # 2: Former cybersecurity agency chief Chris Krebs leaves SentinelOne after Trump targets him in executive order

33:57 - Story # 3: 4chan Is Down Following What Looks to Be a Major Hack Spurred By Meme War

37:17 - Story # 4: TA Phone Home: EDR Evasion Testing Reveals Extortion Actor’s Toolkit

44:57 - Story # 5: The Sophos Annual Threat Report: Cybercrime on Main Street 2025

Largest Corporate Espionage Case this Century - 2025-04-1416 Apr 202500:59:49

Register for upcoming webcasts & summits - 

https://poweredbybhis.com

00:00 - PreShow Banter™ — Trigger Warning

00:42 - Trump Vs Chris Krebs | BHIS - Talkin’ Bout [infosec] News 2025-04-14

01:54 - Story # 1: Cybersecurity Community Must Not Remain Silent On Executive Order Attacking Former CISA Director

17:04 - Story # 2: Cybersecurity industry falls silent as Trump turns ire on SentinelOne

18:00 - Story # 3: Maryland pharmacist used keyloggers to spy on coworkers for a decade, victim alleges

33:13 - Story # 4: Rippling Believe it or Not: How the Largest Corporate Espionage Case this Century Happened

41:36 - Story # 5: Moroccan cybercrime group Atlas Lion hiding in plain sight during attacks on retailers

52:18 - Story # 6: Pentagon to end $5.1 billion in contracts with Accenture, Deloitte, others

Lawmakers Want to Ban VPNs - 2025-12-0104 Dec 202501:02:46

Register for FREE Infosec Webcasts, Anti-casts & Summits – 

https://poweredbybhis.com

00:00 - PreShow Banter™ — The Problem With Extensions

03:10 - Lawmakers want to Ban VPNs – BHIS - Talkin’ Bout [infosec] News 2025-12-01

03:47 - Story # 1: Stop Putting Your Passwords Into Random Websites (Yes, Seriously, You Are The Problem)

12:05 - Story # 2: Lawmakers Want to Ban VPNs—And They Have No Idea What They’re Doing

21:19 - Story # 3: Critical 7 Zip Vulnerability With Public Exploit Requires Manual Update

25:49 - Story # 4: ‘Slop Evader’ Lets You Surf the Web Like It’s 2022

37:08 - Story # 5: China’s Espionage in Europe is Deepening and More Sophisticated than Acknowledged, Expert Says

39:10 - Story # 6: Apple Update Warning For All iPhone 17, 16 And 15 Users—Act Now

42:39 - Story # 6: Meta is earning a fortune on a deluge of fraudulent ads, documents show

50:23 - Story # 7: Meta had a 17-strike policy for sex trafficking, former safety leader claims

52:41 - Story # 8: Man behind in-flight Evil Twin WiFi attacks gets 7 years in prison

Shai-Hulud malware leaks secrets on GitHub – 2025-17-2426 Nov 202501:05:00

???? Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com

00:00 - PreShow Banter™ — Stressed about lithium batteries

04:59 - Shai-Hulud malware leaks secrets on GitHub – BHIS - Talkin’ Bout [infosec] News 2025-17-24

05:57 - Story # 1: Shai-Hulud malware infects 500 npm packages, leaks secrets on GitHub

11:19 - Story # 2: CrowdStrike catches insider feeding information to hackers

15:50 - Story # 3: Fidelity sues Broadcom over access to key software to avoid outages

22:17 - Story # 4: NetApp sues former CTO for alleged data breach

26:49 - Story # 5: CrowdStrike Research: Security Flaws in DeepSeek-Generated Code Linked to Political Triggers

36:05 - Story # 6: A major Cloudflare outage took down large parts of the internet - X, ChatGPT and more were affected, but all recovered now

37:11 - Story # 6b: Cloudflare outage on November 18, 2025

41:43 - Story # 7: Iran-Linked Hackers Mapped Ship AIS Data Days Before Real-World Missile Strike Attempt

46:35 - Story # 8: This Hacker Conference Installed a Literal Antivirus Monitoring System

51:10 - Story # 10: Microsoft to integrate Sysmon directly into Windows 11, Server 2025

56:41 - Story # 9: Crypto and Carcasses: Undercover Sting Recovers $700K in Bitcoin Miners, Foils $75K Frozen Turkey Heist

Kerberoasting Goes to Washington – 2025-09-1520 Sep 202501:02:58

???? Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com

00:00 - PreShow Banter™ — Enter Dark John

03:15 - Kerberoasting Goes to Washington – BHIS - Talkin’ Bout [infosec] News 2025-09-15

03:49 - Story # 1: Senator blasts Microsoft for making default Windows vulnerable to “Kerberoasting”

12:46 - Story # 2: How an Attacker’s Blunder Gave Us a Rare Look Inside Their Day-to-Day Operations

32:42 - Story # 3: Some JLR suppliers ‘face bankruptcy’ due to hack crisis

41:30 - Story # 4: AI-Powered Villager Pen Testing Tool Hits 11,000 PyPI Downloads Amid Abuse Concerns

46:07 - Story # 5: All your vulns are belong to us! CISA wants to maintain gov control of CVE program

49:55 - Story # 6: Qantas penalizes executives for July cyberattack

51:15 - Story # 7: America’s second largest egg producer breached, claim hackers

54:55 - Story # 8: Undocumented Radios Found in Solar-Powered Devices

Anthropic 1.5 Billion © Settlement - 2025-09-0810 Sep 202500:59:54

Register for FREE Infosec Webcasts, Anti-casts & Summits – 

https://poweredbybhis.com

00:00 - PreShow Banter™ — If I Were French

04:35 - Anthropic 1.5 Billion © Settlement - BHIS - Talkin’ Bout [infosec] News 2025-09-08

05:48 - Hackers Threaten to Submit Artists’ Data to AI Models If Art Site Doesn’t Pay Up

08:40 - Anthropic Agrees to Pay Authors at Least $1.5 Billion in AI Copyright Settlement

23:58 - This Company Turns Dashcams into ‘Virtual CCTV Cameras.’ Then Hackers Got In

33:38 - Ice obtains access to Israeli-made spyware that can hack phones and encrypted apps

40:07 - Cloudflare Blocks Record-Breaking 11.5 Tbps DDoS Attack

44:27 - npm Packages With 2 Billion Weekly Downloads Hacked in Major Attack

46:38 - Update on Mandiant Drift and Salesloft Application Investigations

51:04 - M&S hackers claim to be behind Jaguar Land Rover cyber attack

51:55 - New TP-Link zero-day surfaces as CISA warns other flaws are exploited

54:52 - ChickenSec: US turns to Russia for chicken eggs for the first time in 32 years, despite sanctions to cripple its economy

57:58 - Cybercriminals Exploit X’s Grok AI to Bypass Ad Protections and Spread Malware to Millions

Chinese agent tried to recruit Stanford Student - 2025-09-0206 Sep 202500:56:13

Register for FREE Infosec Webcasts, Anti-casts & Summits – 

https://poweredbybhis.com

00:00 - PreShow Banter™ — It’s 8ft skeleton season.

02:18 - BHIS - Talkin’ Bout [infosec] News 2025-09-02

03:07 - Story # 1: Salesloft breached to steal OAuth tokens for Salesforce data-theft attacks

07:35 - Story # 2: DSLRoot, Proxies, and the Threat of ‘Legal Botnets’

13:46 - Story # 3: Attackers Abuse Velociraptor Forensic Tool to Deploy Visual Studio Code for C2 Tunneling

17:44 - Story # 4: Ransomware crooks knock Swedish municipalities offline for measly sum of $168K

19:39 - Story # 5: As crippling cyberattack against Nevada continues, Lombardo says ‘we’re working through it.’

20:56 - Story # 6: Citrix forgot to tell you CVE-2025–6543 has been used as a zero day since May 2025

22:43 - Story # 7: NetScaler ADC and NetScaler Gateway Security Bulletin for CVE-2025-7775, CVE-2025-7776 and CVE-2025-8424

25:20 - Story # 8: First known AI-powered ransomware uncovered by ESET Research

30:00 - Story # 9: In the rush to adopt hot new tech, security is often forgotten. AI is no exception

32:06 - Story # 10: TransUnion suffers data breach impacting over 4.4 million people

34:17 - Story # 11: ChickenSec FollowUp: Artificial Intelligence: The other AI

35:20 - Story # 12: They weren’t lovin’ it - hacker cracks McDonald’s security in quest for free nuggets, and it was apparently not too tricky

39:29 - Identify the birds you see or hear with Merlin Bird ID

40:04 - Story # 13: Detecting and countering misuse of AI: August 2025

51:31 - Story # 14: I’m a Stanford student. A Chinese agent tried to recruit me as a spy

The Impending AI Bubble 2025-08-2530 Aug 202501:04:00

Register for FREE Infosec Webcasts, Anti-casts & Summits – 

https://poweredbybhis.com

00:00 - PreShow Banter™ — Canadian Chicken

02:01 - The AI Bubble BHIS - Talkin’ Bout [infosec] News 2025-08-25

02:23 - Story # 1: Congressman proposes bringing back letters of marque for cyber privateers

09:27 - Story # 2: SIM-Swapper, Scattered Spider Hacker Gets 10 Years

12:43 - Story # 3: Developer jailed for taking down employer’s network with kill switch malware

16:33 - Story # 4: Agentic Browser Security: Indirect Prompt Injection in Perplexity Comet

20:42 - The Utopia Chronicles

23:20 - Story # 5: “Unstoppable Power Surges”: China’s Quantum Processor Outspeeds Supercomputers by 1 Quadrillion and Triggers US Intelligence Panic

28:47 - Story # 6: Bank forced to rehire workers after lying about chatbot productivity, union says

41:21 - Story # 7: It Took Many Years And Billions Of Dollars, But Microsoft Finally Invented A Calculator That Is Wrong Sometimes

43:41 - Story # 8: Copilot Broke Your Audit Log, but Microsoft Won’t Tell You

46:33 - Story # 9: Russian state-sponsored espionage group Static Tundra compromises unpatched end-of-life network devices

49:24 - Story # 10 : Zero-Day Clickjacking Flaws Found in Password Managers Used by Millions

53:12 - Story # 11: Cybersecurity training doesn’t work: time wasted with no impact, study finds

59:07 - ChickenSec: Artificial Intelligence: The other AI

Cyberattack Bricks Speed Cameras – 2025-08-1820 Aug 202500:58:10

Register for FREE Infosec Webcasts, Anti-casts & Summits – 

https://poweredbybhis.com

00:00 - PreShow Banter™ — The gif that keeps on giffing

01:46 - Cyberattack Bricks Speed Cameras – BHIS - Talkin’ Bout [infosec] News 2025-08-18

02:39 - Story # 1: Perplexity made a sky-high $34.5 billion bid for Google Chrome — a bold and unusual move in the midst of antitrust scrutiny

07:16 - Story # 2: Exclusive: US embeds trackers in AI chip shipments to catch diversions to China, sources say

10:22 - Story # 3: How we found TeaOnHer spilling users’ driver’s licenses in less than 10 minutes

12:17 - Story # 4: Cisco discloses maximum-severity defect in firewall software

13:56 - Story # 5: Data Dump From APT Actor Yields Clues to Attacker Capabilities

19:13 - Story # 6: Russian cyberattack in the Netherlands leaves speed cameras offline indefinitely

23:30 - Story # 7: HTTP/2 MadeYouReset Vulnerability Enables Massive DDoS Attacks

24:51 - Story # 8: LAPD Eyes ‘GeoSpy’, an AI Tool That Can Geolocate Photos in Seconds

29:05 - Story # 9: Manpower discloses data breach affecting nearly 145,000 people

34:51 - Story # 10: Hacker Offers to Sell 15.8 Million Plain-Text PayPal Credentials On Dark Web Forum

35:34 - Story # 11: The First Federal Cybersecurity Disaster of Trump 2.0 Has Arrived

40:54 - Story # 12: New Clever Phishing Attack Uses Japanese Character “ん” to Mimic Forward Slash “/”

46:28 - Story # 13: Fortinet warns of FortiSIEM pre-auth RCE flaw with exploit in the wild

48:13 - Story # 14: Plex warns users to patch security vulnerability immediately

50:53 - ChickenSec: Noble Foods using soil mapping technology at organic egg farm

DEF CON RECAP – 2025-08-1114 Aug 202500:59:54

Register for FREE Infosec Webcasts, Anti-casts & Summits – 

https://poweredbybhis.com

00:00 - PreShow Banter™ — Wading Through Woods

06:06 - DEF CON RECAP - Talkin’ Bout [infosec] News 2025-08-11

09:16 - Story # 1: It’s time to acknowledge HTTP/1.1 is insecure

12:36 - Story # 2: Research reveals possible privacy gaps in Apple Intelligence’s data handling

17:51 - Story # 3: Federal court filing system hit in sweeping hack

21:09 - Story # 4: Cisco discloses data breach impacting Cisco.com user accounts

32:17 - Story # 5: Google says its AI-based bug hunter found 20 security vulnerabilities

34:20 - Story # 6: Automate security reviews with Claude Code

39:01 - Story # 7: Flipper Zero ‘DarkWeb’ Firmware Bypasses Rolling Code Security on Major Vehicle Brands

44:44 - Story # 7b: OnStar assists CHP in stopping fleeing SUV with toddler inside

47:12 - Story # 7c: That viral video of a ‘deactivated’ Tesla Cybertruck is a fake

49:37 - Story # 8: LegalPwn Attack Tricks GenAI Tools Into Misclassifying Malware as Safe Code

50:53 - Story # 9: Microsoft Launches Project Ire to Autonomously Classify Malware Using AI Tools

53:08 - Story # 10: A Single Poisoned Document Could Leak ‘Secret’ Data Via ChatGPT

58:10 - Story # 11: Millions of Dell Laptops Vulnerable to Device Takeover and Persistent Malware Attacks

Perplexity Stealth Crawlers Evade No-Crawl Directives - 2025-08-0407 Aug 202501:03:06

Register for FREE Infosec Webcasts, Anti-casts & Summits – 

https://poweredbybhis.com

00:00:00 - PreShow Banter™ — Stop Asking Wade if he’s in Vegas

00:02:16 - Perplexity Uses Stealth Crawlers to Evade No-Crawl Directives – 2025-08-04

00:11:25 - Story # 1: Insurance won’t cover $5M in City of Hamilton claims for cyberattack, citing lack of log-in security

00:18:40 - Story # 2: States Enact Safe Harbor Laws that Provide Affirmative Defenses in Data Breach Litigation

00:26:45 - Story # 3: Hackers Destroy Aeroflot’s IT Infrastructure, Causing Over 42 Flight Cancellations

00:34:18 - Story # 4: Attackers exploit link-wrapping services to steal Microsoft 365 logins

00:40:09 - Story # 5: Mozilla flags phishing wave aimed at hijacking trusted Firefox add-ons

00:42:18 - Wade’s plugin recommendation

00:44:39 - Story # 6: Perplexity is using stealth, undeclared crawlers to evade website no-crawl directives

00:51:11 - Story # 7: After Backlash, ChatGPT Removes Option to Have Private Chats Indexed by Google

00:55:21 - AI 2027

01:01:01 - What’s Ralph been up to?

UK Bans Ransomware Payments - 2025-07-2801 Aug 202501:02:15

Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com

00:00 - PreShow Banter™ — National Chicken Wing Day

04:16 - BHIS - Talkin’ Bout [infosec] News 2025-07-28

05:30 - Story # 1: Bad vibes: How an AI agent coded its way to disaster

08:40 - Story # 1b: Replit goes rogue, deletes entire database.

15:44 - Story # 2: A major AI training data set contains millions of examples of personal data

26:05 - Story # 3: Women Dating Safety App ‘Tea’ Breached, Users’ IDs Posted to 4chan

33:19 - Story # 4:A Startup is Selling Data Hacked from Peoples’ Computers to Debt Collectors

40:28 - Story # 5: Clorox Sues IT Provider Cognizant For Simply Giving Employee Password to Hackers

49:46 - Story # 6: Businesses banned from paying hackers’ ransoms to target cybercrime

57:38 - SharePoint Follow Up

Microsoft's OverSharePoint 0-Day Exploit – 2025-07-2123 Jul 202501:04:15

Register for FREE Infosec Webcasts, Anti-casts & Summits – 

https://poweredbybhis.com

00:00 - PreShow Banter™ — PaintBallers

03:55 - BHIS - Talkin’ Bout [infosec] News 2025-07-21

04:21 - Story # 1: Microsoft 0-day Mass Exploitation

09:39 - Story # 2: Replit AI went rogue, deleted a company’s entire database, then hid it and lied about it

13:15 - Story # 3: ‘All US forces must now assume their networks are compromised’ after Salt Typhoon breach

18:08 - Story # 4: After FBI Warning, Alaska Airlines Grounded; Salt Typhoon Suspected

20:45 - Story # 5: FBI Cybersecurity Breach Led to Murders of Informants in El Chapo Case

21:54 - Story # 5b: FBI’s Report

29:57 - Story # 6: Google fixes actively exploited sandbox escape zero day in Chrome

31:30 - Story # 7: Exploited Wing file transfer bug risks ‘total server compromise,’ CISA warns

32:33 - Story # 8: CitrixBleed 2 situation update — everybody already got owned

33:01 - Story # 9: At Least 750 US Hospitals Faced Disruptions During Last Year’s CrowdStrike Outage, Study Finds

46:14 - Story # 10: Amazon Ring Doorbell May 28 Mass Hacking Claim Goes Viral

48:56 - jdbgmgr.exe virus hoax

51:52 - Story # 11: HPE warns of hardcoded passwords in Aruba access points

McDonald’s Over 64 Million Exposed Job Applicants - 2025-07-1416 Jul 202500:55:06

Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com

00:00 - PreShow Banter™ — Traditional Finger

00:21 - BHIS - Talkin’ Bout [infosec] News 2025-07-14

01:29 - Story # 1: ‘123456’ password exposed chats for 64 million McDonald’s job chatbot applications

22:12 - Story # 2: Employee gets $920 for credentials used in $140 million bank heist

33:50 - Story # 3: Microsoft laying off about 9,000 employees in latest round of cuts

37:21 - Story # 5: Scammy YouTube Ads

46:31 - Story # 6: New ServiceNow flaw lets attackers enumerate restricted data

A.I. Transcription Startup Was Just A Guy Taking Notes- 2025-11-1721 Nov 202501:16:33

Register for FREE Infosec Webcasts, Anti-casts & Summits – 

https://poweredbybhis.com

00:00:00 - PreShow Banter™ — The Way the Community Rumbles

00:08:21 - A.I. Transcription Startup Was Just A Guy Taking Notes - BHIS - Talkin’ Bout [infosec] News 2025-11-17

00:09:01 - Story # 1: New data shows companies are rehiring former employees as AI falls short of expectations

00:18:06 - Eric & Whitney’s “Podcast” [webcast] on training your own LLM

00:22:12 - Story # 2: Founder Admits His “AI Transcription” Startup Was Just Him Joining People’s Meetings and Taking Notes by Hand

00:26:20 - Story # 3: Five Plead Guilty in U.S. for Helping North Korean IT Workers Infiltrate 136 Companies

00:37:35 - Story # 4: Google is easing up on Android’s new sideloading restrictions!

00:43:44 - Story # 5: Google is collecting troves of data from downgraded Nest thermostats

00:44:58 - Story # 5b: Hackers are saving Google’s abandoned Nest thermostats with open-source firmware

00:51:34 - Story # 6: FFmpeg to Google: Fund Us or Stop Sending Bugs

01:00:40 - Story # 7: Teens are Hacking School Systems. Let’s Teach Them to Protect Communities Instead

01:05:55 - Story # 8: Disrupting the first reported AI-orchestrated cyber espionage campaign

01:14:58 - Discord CTF Winners

North Korean Remote Workers are at it Again! – BHIS - Talkin' Bout [infosec] News 2025-07-0709 Jul 202500:55:59

Register for FREE Infosec Webcasts, Anti-casts & Summits – 

https://poweredbybhis.com

00:00 - PreShow Banter™ — Pre Stream Appropriate

03:39 - N. Korean Remote Workers are at it Again! – BHIS - Talkin’ Bout [infosec] News 2025-07-07

05:41 - Story # 1: Fortune 500 Cyber Spending Pays Off: Large Enterprise Risk Falls 33% Despite Rising Threats

20:01 - Story # 2: Jasper Sleet: North Korean remote IT workers’ evolving tactics to infiltrate organizations

25:49 - Story # 2b: Engineer caught juggling multiple startup jobs is a cautionary tale of ‘extreme’ hustle culture, experts say

34:47 - Story # 3: Taking SHELLTER: a commercial evasion framework abused in- the- wild

42:15 - Story # 3b: Statement Regarding Recent Misuse of Shellter Elite and Elastic Security Labs’ Handling

46:58 - Story # 4: Ingram Micro outage caused by SafePay ransomware attack

49:45 - Story # 5: Germany asks Google, Apple to remove DeepSeek AI from app stores

53:13 - Story # 6: This Call of Duty game just hit Xbox Game Pass, but it’s infested with RCE hackers — I’d take cover and avoid playing until there’s a fix

Year of the [European Union] Linux Desktop Finally Arrives? | BHIS - Talkin' Bout [infosec] News 2025-06-3004 Jul 202500:59:25

Register for FREE Infosec Webcasts, Anti-casts & Summits – 

https://poweredbybhis.com

Chapters:

00:00 - PreShow Banter™ — Names on Cups

01:39 - Year of the [European Union] Linux Desktop Finally Arrives? | BHIS - Talkin’ Bout [infosec] News 2025-06-30

03:34 - Story # 1: You should probably delete any sensitive screenshots you have in your phone right now.

10:55 - Story # 2: Ongoing Campaign Abuses Microsoft 365’s Direct Send to Deliver Phishing Emails

14:07 - Story # 3: The year of the European Union Linux desktop may finally arrive

24:46 - Story # 4: Restricted data once again leaked on War Thunder forums

27:04 - Story # 5: Scale AI Leaks Meta, Google, xAI Confidential Files Through ‘Incredibly Janky’ Document Practices

31:47 - Story # 6: French police reportedly arrest suspected BreachForums administrators

34:22 - Story # 7: Another Wave: North Korean Contagious Interview Campaign Drops 35 New Malicious npm Packages

39:41 - Story # 8: CitrixBleed 2: Electric Boogaloo — CVE-2025–5777

42:16 - Story # 9: Millions of Brother Printers Hit by Critical, Unpatchable Bug

47:05 - Story # 10: Canada orders China’s Hikvision to close Canadian operations

50:13 - Story # 11: US House bans WhatsApp on staff devices over security concerns

53:17 - ChickenSec: Chickens are becoming 3rd most popular pet: Tractor Supply CEO

56:34 - Story # 12: Norway Dam Hacked, Valve Opened But No Danger

58:11 - Review your calendar invites!

Iran Shuts Down It's Own Internet - 2025-06-2326 Jun 202501:05:55

Register for Free, Live webcasts & summits:

https://poweredbybhis.com

00:00 - PreShow Banter™ — Explaining the Muppets

03:09 - Iran Shuts Down It's Own Internet- BHIS - Talkin’ Bout [infosec] News 2025-06-23

04:52 - Story # 1: Iran’s government says it shut down internet to protect against cyberattacks

20:20 - Story # 2: Iranian bank linked to revolutionary guard hit by ‘cyber attack’

22:11 - Story # 3: Hackers switch to targeting U.S. insurance companies

23:32 - Story # 3b: Statement: Erie Insurance Information Security Incident (June 23)

33:33 - Story # 4: No, the 16 billion credentials leak is not a new data breach

43:23 - Story # 5: ‘Water Curse’ Targets Infosec Pros via Poisoned GitHub Repositories

47:09 - Story # 6: CISA Reveals ‘Pattern’ of Ransomware Attacks Against SimpleHelp RMM

48:49 - Story # 7: Report Links Los Pollos and RichAds to Malware Traffic Operations

58:29 - Story # 8: Minnesota lawmaker’s alleged killer had list of data broker websites in car, FBI says

2025-01-27 - Fake Australian29 Jan 202501:03:20

00:00 - PreShow Banter™ — Fake Australian

04:17 - BHIS - Talkin’ Bout [infosec] News 2025-01-27

04:34 - Story # 1: DeepSeek sparks AI stock selloff; Nvidia posts record market-cap loss

30:50 - Story # 2: Tech giants are putting $500bn into ‘Stargate’ to build up AI in US

42:23 - Story # 3: DeepSeek Faces Large-scale Cyberattack, Halts New User Registrations

43:34 - Story # 4: DHS cyber review board cleaned out in Trump move to eliminate ‘misuse of resources’

47:38 - Story # 5: UnitedHealth estimates 190M people impacted by Change Healthcare cyberattack

50:02 - Story # 5b: UnitedHealth now says 190 million impacted by 2024 data breach

53:09 - Story # 6: Cloudflare Issue Can Leak Chat App Users’ Broad Location

54:09 - Story # 7: Hacking Subaru: Tracking and Controlling Cars via the STARLINK Admin Panel

59:40 - Story # 8: Researchers say new attack could take down the European power grid

2025-01-20 - Highest Rated Chalk22 Jan 202501:04:51

00:00 - PreShow Banter™ — Highest Rated Chalk

04:14 - BHIS - Talkin’ Bout [infosec] News 2025-01-20

08:53 - Story # 1: Data From 15,000 Fortinet Firewalls Leaked by Hackers

14:25 - Story # 2: China’s Salt Typhoon spies spotted on US govt networks before telcos, CISA boss says

16:29 - Story # 3: TikTok reportedly plans ‘immediate’ Sunday shutdown in the US if it’s banned

25:47 - Story # 4: FBI forces Chinese malware to delete itself from thousands of US computers

35:06 - WWHF Denver

36:03 - BSides San Diego

37:23 - Security Stadium

38:22 - Story # 5: Exchange 2016 and 2019 reach end-of-life status later this year

42:45 - Story # 6: Snyk security researcher deploys malicious NPM packages targeting Cursor.com

46:17 - Story # 7: New UEFI Secure Boot flaw exposes systems to bootkits, patch now

57:34 - Story # 8: Lawsuit: Allstate used GasBuddy and other apps to quietly track driving

2025-01-13 — An RGB State of Mind15 Jan 202501:07:54

00:00:00 - PreShow Banter™ — An RGB State of Mind

00:07:20 - BHIS - Talkin’ Bout [infosec] News 2025-01-13

00:10:24 - Story # 1: A Day in the Life of a Prolific Voice Phishing Crew

00:18:39 - Story # 2: Dental group lied through teeth about data breach, fined $350,000

00:25:49 - Story # 3: Hacker claims breach of US location tracking company Gravy Analytics

00:27:48 - Story # 4: License Plate Readers Are Leaking Real-Time Video Feeds and Vehicle Data

00:33:19 - Story # 5: US Cyber Trust Mark launches as the Energy Star of smart home security

00:43:08 - Story # 6: Hackers are exploiting a new Ivanti VPN security bug to hack into company networks

00:45:09 - Story # 7: Hacker Broke into ‘Path of Exile 2’ Admin Account, Hijacked Wave of Characters

00:47:36 - Story # 8: Information Stealer Masquerades as LDAPNightmare (CVE-2024-49113) PoC Exploit

00:54:47 - Story # 9: Ransomware crew abuses AWS native encryption

01:00:41 - Story # 10: Cannabis company Stiiizy says hackers accessed customers’ ID documents

2025-01-06 - Coffee With Wade09 Jan 202501:04:38

00:00:00 - PreShow Banter™ — Coffee With Wade Wells

00:05:41 - BHIS - Talkin’ Bout [infosec] News 2025-01-06

00:06:45 - Story # 1: BeyondTrust says hackers breached Remote Support SaaS instances

00:13:18 - Things Continued to be ignored in 2025

00:24:39 - Story # 2: Classified fighter jet specs leaked on War Thunder – again

00:28:26 - Story # 3: New Proposed HIPAA Security Rule Changes

00:34:33 - Story # 4: The Breachies 2024: The Worst, Weirdest, Most Impactful Data Breaches of the Year

00:35:47 - Story # 5: AT&T and Verizon say networks secure after Salt Typhoon breach

00:37:20 - Story # 6: Net Neutrality Rules Struck Down by Appeals Court

00:41:56 - Story # 7: U.S. Army Soldier Arrested in AT&T, Verizon Extortions

00:45:28 - Story # 8: New U.S. DoJ Rule Halts Bulk Data Transfers to Adversarial Nations to Protect Privacy

00:48:38 - Story # 9: Meta’s AI Profiles Are Indistinguishable From Terrible Spam That Took Over Facebook

00:50:42 - Story # 9b: Meta deletes AI character profiles after backlash, racism accusations

00:51:40 - Story # 10: Watch: Tiny robot ‘kidnaps’ 12 big Chinese bots from a Shanghai showroom, shocks world

00:55:27 - Story # 11: China Arrests 4 Who Weaponized ChatGPT for Ransomware Attacks

00:58:42 - Story # 12: Man Accused of SQL Injection Hacking Gets 69-Month Prison Sentence

01:01:22 - Story # 13: Germany cuts hacker access to 30,000 devices infected with BadBox malware

2024-12-16 - ChickenSec News Part 318 Dec 202401:10:35

00:00 - PreShow Banter™ — ChickenSec News Part 3

12:23 - BHIS - Talkin’ Bout [infosec] News 2024-12-16

14:48 - Story # 1: $50 Million Radiant Capital Heist Blamed on North Korean Hackers

20:30 - Story # 2: Trump administration wants to go on cyber offensive against China

32:53 - Story # 3: Krispy Kreme cyberattack impacts online orders and operations

43:02 - Story # 4: Arctic Wolf and BlackBerry Announce Acquisition Agreement for Cylance

52:02 - Story # 5: Europol announces takedown of major DDoS-for-hire network

56:50 - Story # 6: Data breach at Senior Dating website spills info of 765,000 users

58:46 - Story # 7: US sanctions Chinese firm for hacking firewalls in ransomware attacks

2024-12-09 - A Better Mike11 Dec 202401:04:45

00:00 - PreShow Banter™ — A Better Mike

04:46 - BHIS - Talkin’ Bout [infosec] News 2024-12-09

05:43 - Story # 1: FBI Warns iPhone And Android Users—Stop Sending Texts

23:36 - Story # 2: US agency proposes new rule blocking data brokers from selling Americans’ sensitive personal data

42:55 - Story # 3: Vodka maker Stoli files for bankruptcy in US after ransomware attack

46:48 - Story # 4: British hospitals hit by cyberattacks still battling to get systems back online

2024-12-02 - C Squad04 Dec 202401:12:18

00:00:00 - PreShow Banter™ — C Squad

00:11:03 - BHIS - Talkin’ Bout [infosec] News 2024-12-02

00:15:43 - Story # 1: Gaming Engines: An Undetected Playground for Malware Loaders - Check Point Research

00:30:41 - Story # 2: FTC finds that smart-device makers fail to make clear how long their products will be supported

00:44:47 - Story # 3: US senators propose law to require bare minimum security standards

00:46:35 - Story # 4: Starbucks baristas can’t view their schedules after ransomware attack on vendor

01:04:26 - Story # 5: Volunteer DEF CON hackers dive into America’s leaky water infrastructure

01:08:45 - Shameless Plugs

Louvre’s Video Security Password Was ‘Louvre’ 2025-11-1013 Nov 202500:58:56

Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com

Chapters

00:00 - PreShow Banter™ — Humans are Done

03:04 - Louvre’s video security password was ‘Louvre’ – BHIS - Talkin’ Bout [infosec] News 2025-11-10

05:11 - Story # 1: I Tried the Robot That’s Coming to Live With You. It’s Still Part Human.

15:14 - Story # 2: How to trade your $214,000 cybersecurity job for a jail cell

25:14 - Story # 3: The Louvre’s video security password was reportedly ‘Louvre’

29:04 - Story # 4: Dangerous runC flaws could allow hackers to escape Docker containers

32:58 - Story # 5: List of AI Tools Promoted by Threat Actors in Underground Forums and Their Capabilities

40:00 - Story # 5b: GTIG AI Threat Tracker: Advances in Threat Actor Usage of AI Tools

56:37 - BHIS Webcast – X-Typhoon - Not your Father’s China with John Strand

Ransomware Victims Stop Paying Hackers – 2025-11-0306 Nov 202501:03:33

Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com

00:00 - PreShow Banter™ — Musical Views of the Universe

04:05 - – BHIS - Talkin’ Bout [infosec] News 2025-11-03

04:39 - Story # 1: Ransomware profits drop as victims stop paying hackers

06:22 - Chart since 2019

16:06 - Story # 2: More than a million people every week show suicidal intent when chatting with ChatGPT, OpenAI estimates

33:02 - Story # 3: 10M people watched a YouTuber shim a lock; the lock company sued him. Bad idea.

41:18 - Story # 4: ‘Dangerous’ YouTube videos struck down for bypassing Windows 11 account setup [Update: Restored]

47:13 - Story # 5: Chicago firm that resolves ransomware attacks had rogue workers carrying out their own hacks, FBI says

51:08 - Story # 6: Microsoft: DNS outage impacts Azure and Microsoft 365 services

54:33 - Story # 7: EY Data Leak – Massive 4TB SQL Server Backup Exposed Publicly on Microsoft Azure

55:22 - Stordy # 8: Black Hat Europe 2025 Arsenal: 8 AI Security Tools Transforming Cybersecurity

The AI Browser Wars - 2025-10-2731 Oct 202501:01:09

Register for FREE Infosec Webcasts, Anti-casts & Summits – 

https://poweredbybhis.com

The BHIS crew breaks down the latest cybersecurity stories making waves — from data breaches and malware campaigns to privacy issues, exploit trends, and tech policy shake-ups. Join our panel of security pros for expert analysis, sharp humor, and practical insights you can actually use. Whether it’s social engineering, AI-powered attacks, or bizarre security headlines, we dig into what matters most for defenders and curious minds alike. Stay informed, entertained, and one step ahead in the ever-changing world of infosec.

00:00:00 - PreShow Banter™ — The Cost of War.xyz

00:03:42 - The AI Browser Wars - BHIS - Talkin’ Bout [infosec] News 2025-10-27

00:04:04 - Story # 1: Smart bed owners experience AWS outage nightmare as they’re left sweating and stuck in upright position

00:10:49 - Story # 2: Robots May Replace 600,000 Human Employees at Amazon

00:14:40 - Story # 3: Meet Mico, Microsoft’s AI version of Clippy

00:20:59 - Story # 4: Exploitation of Windows Server Update Services Remote Code Execution Vulnerability

00:26:31 - Story # 5: Ex-L3Harris executive accused of selling trade secrets to Russia

00:31:29 - Story # 6: Introducing ChatGPT Atlas

00:43:34 - Story # 7: ‘Phased Out’—Google Confirms Bad News For 3 Billion Chrome Users

00:52:26 - Story # 8: The Y2K38 Bug Is a Vulnerability, Not Just a Date Problem, Researchers Warn

01:00:16 - Story # 9: KFC Venezuela Alleged Data Breach – 1 Million Customer Records Exposed

Online Book Store Takes Down Half the Internet - BHIS - Talkin' Bout [infosec] News 2025-10-2024 Oct 202501:08:01

Register for FREE Infosec Webcasts, Anti-casts & Summits – 

https://poweredbybhis.com

00:00:00 - PreShow Banter™ — AWS Snow Day Party

00:11:31 - Online Book Store Takes Down Half of the Internet - BHIS - Talkin’ Bout [infosec] News 2025-10-20

00:12:12 - Story # 1: F5 says hackers stole undisclosed BIG-IP flaws, source code

00:35:11 - Story # 2: Newsom signs age verification law, siding with tech giants over Hollywood

00:48:39 - Story # 3: Researchers find a startlingly cheap way to steal your secrets from space

00:55:04 - Story # 4: Jeff Bezos Has a Plan to Curb AI’s Carbon Footprint: Send Data Centers to Space

01:02:22 - Story # 5: SolarWinds Security Chief reflects on the Russian hack that exposed US government agencies

Hackers claim Discord breach exposed data of 5.5 million users - 2025-10-1318 Oct 202500:58:37

Register for FREE Infosec Webcasts, Anti-casts & Summits – 

https://poweredbybhis.com

00:00 - PreShow Banter™ — A Real Podcast

03:15 - Hackers claim Discord breach exposed data of 5.5 million users – BHIS - Talkin' Bout [infosec] News 2025-10-13

05:44 - Story # 1: CamoLeak: Critical GitHub Copilot Vulnerability Leaks Private Source Code

24:27 - Story # 2: Hackers claim Discord breach exposed data of 5.5 million users

36:52 - Story # 3: Velociraptor leveraged in ransomware attacks

46:47 - Story # 4: Huntress Threat Advisory: Widespread SonicWall SSLVPN Compromise

54:48 - CTF Challenge

2 Million Cisco Devices Targeted by Exploited 0-Day – 2025-09-2902 Oct 202501:01:29

Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com

00:00 - PreShow Banter™ — A little radiation never hurt anybody.

03:07 - BHIS - Talkin’ Bout [infosec] News 2025-09-29

03:29 - Story # 1: As many as 2 million Cisco devices affected by actively exploited 0-day

19:07 - Story # 2: Viral call-recording app Neon goes dark after exposing users’ phone numbers, call recordings, and transcripts | TechCrunch

24:25 - Story # 3: AI Darwin Awards Show AI’s Biggest Problem Is Human

29:32 - Story # 4: Nikon revokes all C2PA image authenticity certificates after major vulnerability exposed

34:14 - Story # 5: ‘You’ll never need to work again’: Criminals offer reporter money to hack BBC

38:18 - Story # 6: Cybersecurity Training Programs Don’t Prevent Employees from Falling for Phishing Scams

46:48 - Mini CTF Walkthrough

56:03 - Story # 7: U.S. Secret Service dismantles imminent telecommunications threat in New York tristate area

Dirk-Jan Mollema Walks Us Through the Entra ID Cross-Tenant Vulnerability Discovery– 2025-09-2225 Sep 202501:00:18

Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com

00:00 - PreShow Banter™ — Unnatural European Fridges

03:34 - The Entra ID Cross-Tenant Vulnerability Discovery – BHIS - Talkin’ Bout [infosec] News 2025-09-22

04:14 - Story # 1: One Token to rule them all - obtaining Global Admin in every Entra ID tenant via Actor tokens

21:32 - Story # 2: Shai-Hulud: Self-Replicating Worm Compromises 500+ NPM Packages

40:50 - OSSPREY – NPM Package @Ctrl/Tinycolor Compromised: Shai Hulud Malware Targets Secrets and Persistence

51:41 - Story # 3: Verified Steam game steals streamer’s cancer treatment donations

57:16 - Story # 4: Heathrow warns of second day of disruption after cyber-attack

© My Podcast Data