Cybersecurity Today – Details, episodes & analysis

CISA Orders Emergency Patch for Actively Exploited Dell Flaw; Texas Sues TP-Link; Massive ID Verification Data Leak; SSA Database Leak Allegations

Host Jim Love covers four cybersecurity stories: 

Cybersecurity Today  would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.  You can find them at Meter.com/cst

CISA ordered federal civilian agencies to patch an actively exploited critical Dell RecoverPoint for Virtual Machines vulnerability (CVE-2026-2769) within three days, citing hard-coded credentials that allow unauthenticated root access and links to a China-aligned threat cluster; Texas Attorney General filed suit against TP-Link alleging deceptive security and origin claims and risks tied to Chinese state-linked threats, while TP-Link denies the allegations and says it operates independently, stores U.S. user data on AWS, and bases core operations in the U.S.; researchers found an unsecured MongoDB database tied to AI-powered identity verification provider ID Merit exposing nearly 1 billion records with sensitive personal data, attributed to misconfiguration rather than compromise of the AI systems; and a MarketWatch report describes whistleblower Chuck Borges alleging SSA master data was copied to a cloud environment without oversight, contrasted by the Social Security Commissioner stating the core Numident database remained secure, with Love noting no confirmed public evidence but expressing concern about the implications if such foundational data were compromised.

00:00 Sponsor Message: Meter's Full-Stack Networking
00:19 Headlines: Dell Exploit, TP-Link Lawsuit, Massive Data Leak, SSA Claims
00:45 Urgent Patch Order: Actively Exploited Dell RecoverPoint CVE
02:19 Texas Sues TP-Link Over Router Security & China-Ties Allegations
03:31 AI Identity Verification Leak: Nearly 1 Billion Records Exposed
05:07 Did SSA Data Leak? Whistleblower vs. Official Denial
06:54 Host Take: What If the "Foundational" Database Was Compromised?
07:37 Wrap-Up + Sponsor Thanks and Where to Book a Demo

Info Stealers Target OpenClaw, a Robot Vacuum API Flaw Exposes Thousands, Best Buy Fraud Shows Zero Trust Context, and Canada Goose Data Leaked via Supplier

The episode covers multiple security incidents and lessons. Hudson Rock details how an info stealer malware infection can vacuum OpenClaw data, including authentication tokens, master keys, device private cryptographic keys, and the agent-defining soul.md file that can reveal a "mirror" of a user's life; the attack was not targeted, raising concerns about upcoming dedicated OpenClaw-stealing modules. A hobbyist coder using an AI coding tool to reverse-engineer DJI Romo communications unintentionally accessed roughly 7,000 robot vacuums in 24 countries, enabling live camera and microphone access and floor-plan generation due to missing messaging-level access controls; DJI also shares infrastructure with portable home battery stations and initially claimed the flaw was fixed before a live demonstration showed it was not. Two Best Buy cases illustrate that Zero Trust must consider behavior and context: a Florida employee allegedly used a manager override code 149 times from March–December 2024 to buy discounted electronics, costing about $120,000, while a Georgia case involved over $40,000 in merchandise leaving a store over two weeks amid claims of blackmail. Finally, ShinyHunters leaked about 600,000 Canada Goose customer records, but Canada Goose found no breach in its systems; the data was attributed to a third-party payment processor breach from August 2025, with records largely dating from 2021–2023, underscoring supply-chain risk and ongoing fraud/phishing potential. The episode is sponsored by Meter, which provides an integrated wired, wireless, and cellular networking stack for enterprises.

00:00 Sponsor: Meter + Today's Cybersecurity Headlines
00:44 Info-Stealer Jackpot: OpenClaw Tokens, Keys & 'soul.md' Exposed
03:17 DIY App, Real-World Disaster: 7,000 Robot Vacuums Exposed via DJI Servers
05:34 Best Buy Insider Fraud: Why Zero Trust Needs Behavior Monitoring
07:36 Canada Goose Leak: When a Third-Party Payment Processor Gets Breached
09:28 Wrap-Up + Sponsor Message (Meter)

In this episode of Cybersecurity Today, Jim Love covers major vulnerabilities and security threats, including the exposure of over 3 million Fortinet devices, a critical flaw in Docker's AI assistant, and a sophisticated Android malware campaign using Hugging Face repositories. Discover the latest updates on these critical issues and gain insights into the measures being taken to mitigate these threats. Sponsored by Meter, providing integrated networking solutions for performance and scale.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:43 Fortinet Devices Vulnerability
03:35 Docker AI Assistant Security Flaw
06:27 Hugging Face Android Malware Campaign
09:25 Conclusion and Sponsor Message

Cybersecurity Today: Google's Proxy Network Takedown, AI Agent Hijack, and More

In today's episode of Cybersecurity Today, host David Shipley covers major cybersecurity stories, including Google's disruption of the massive residential proxy network IP Idea, the hijacking vulnerability of AI agent platform MT Book, and attackers abusing single sign-on platforms. We also delve into the coordinated cyber attack on Poland's energy sector by Russian state-linked actors and the misuse of eScan antivirus updates to deliver malware. Stay informed about the latest in cybersecurity with us!

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:52 Massive Residential Proxy Network Disrupted by Google
02:41 AI Agent Platform Security Flaw Exposed
04:46 Single Sign-On Platforms Targeted by Attackers
06:28 Coordinated Cyber Attack on Poland's Energy Sector
08:15 Antivirus Software Compromised by Attackers
09:45 Conclusion and Call to Action
10:13 Sponsor Message and Closing Remarks

In this episode of Cybersecurity Today, host Jim Love welcomes David Shipley, CEO of Beauceron Security, as a guest. Together, they delve into the latest research from Beauceron  Security with assistance from he University of Montreal. They discuss the effectiveness of phishing simulations, the importance of reporting suspicious activities, and the psychological factors that lead to clicking on phishing emails. The episode also highlights the surprising advantages small businesses have over larger organizations in phishing defense, and how management's attitude towards cybersecurity significantly impacts a company's overall security culture. Don't miss this thorough, insightful conversation that will change how you think about cybersecurity training and culture!

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:19 Meet the Guest: David Shipley
01:46 David's Research with University of Montreal
02:17 Phishing Simulation Training Insights
03:16 The Importance of Real Research
04:30 Human Risk Management vs. Security Awareness
05:49 Understanding Phishing and Its Impact
11:10 The Role of Technology and Human Resilience
14:34 Effective Phishing Training Strategies
19:02 Analyzing Click Behavior and Reporting
27:17 Why People Click: Survey Insights
36:07 High Click Rates and Psychological Safety
38:13 Management's Role in Cybersecurity Culture
39:29 Impact of Tenure and Compensation on Click Rates
40:58 The Importance of Security Awareness Programs
43:35 Feedback and Reporting in Cybersecurity
54:12 Small Companies vs. Large Companies in Cybersecurity
56:44 Surprising Findings and Future Directions
01:02:12 Conclusion and Report Availability

In this episode of Cybersecurity Today, host Jim Love explores the burgeoning world of actionable AI agents, examining key developments from companies like Google and Anthropic. The episode delves into the rapid rise of MoltBot, an open-source AI agent tool that has taken the developer community by storm. Jim also highlights the significant security concerns associated with these advanced AI systems, including delegated control, exposable credentials, and the potential for real-world consequences due to misuse. The podcast wraps up with a discussion on the future implications of these technologies and a preview of upcoming research by David Shipley from Beauceron Security on phishing. Brought to you with the support of Meter, delivering integrated networking solutions for optimized performance and scale.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:24 Emerging AI Agents: Google and Anthropic
01:59 The Rise of Molt Bot
07:51 Security Concerns with AI Agents
11:09 Looking Ahead: The Future of AI Agents
13:47 Conclusion and Upcoming Episodes

Cybersecurity Today: WhatsApp Privacy Lawsuit, Google's Personal AI, Canada Computers Breach, and Mass Password Leak

In this episode, host Jim Love discusses pressing cybersecurity issues, including a lawsuit against WhatsApp for allegedly misleading users about message privacy, concerns over Google's new personal AI and its data security implications, a delayed response to a credit card skimming attack at Canada Computers, and the exposure of 149 million stolen passwords. Sponsored by Meter, the podcast also highlights the risks of using the same passwords and the importance of timely breach responses.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:21 WhatsApp Privacy Lawsuit
02:48 Google's Personal AI Security Concerns
05:58 Canada Computers Payment Card Breach
09:10 149 Million Stolen Passwords Exposed
12:16 Conclusion and Sponsor Message

Cybersecurity Today: Critical Fortinet Flaws, Windows 11 Issues, and Major Cloud Security Near Miss

In today's episode of Cybersecurity Today, host David Shipley covers several pressing cybersecurity topics including the continued exploitation of Fortinet flaws despite recent patches, Windows 11 systems failing to boot after January updates, a thwarted cyber attack on Poland's energy sector by the Sandworm group, a sophisticated phishing campaign targeting the energy sector, and a critical AWS vulnerability that posed a significant risk to cloud security globally. Stay informed on these key issues and more.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:48 Fortinet Flaws Still Actively Exploited
03:08 Windows 11 Update Issues
04:44 Cyber Attack on Poland's Energy Systems
06:18 Phishing Campaign Targeting Energy Sector
07:48 AWS CodeBuild Vulnerability
10:26 Conclusion and Final Thoughts

Discovering Void Link: The AI-Generated Malware Shaking Up Cybersecurity

In this episode, we explore the fascinating discovery of 'Void Link,' one of the first documented cases of advanced malware authored almost entirely by artificial intelligence. Hosts delve into an eye-opening interview with experts from Checkpoint Research—Pedro Drimel  and Sven Rath—who were integral to uncovering this next-gen cyber threat. Learn how Void Link's design, rapid development, and sophisticated features signify a new age in malware creation, and understand the implications for cybersecurity, particularly in cloud and Linux environments. This episode provides a compelling look into the tools and methodologies behind the groundbreaking find, and a rare glimpse into the evolving landscape of AI-driven cyber threats.

LINK TO CHECKPOINT RESEARCH PAPER: 
https://research.checkpoint.com/2026/voidlink-early-ai-generated-malware-framework/

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:19 AI-Generated Malware: The Void Link Case
03:16 Interview with Checkpoint Researchers
04:05 Background of the Researchers
06:56 Discovering Void Link
10:27 Analyzing the Malware
14:46 AI's Role in Malware Development
19:55 Implications and Future of AI in Cybersecurity
21:21 Introduction to IDE and Agent Support
21:45 Jailbreaking AI Models for Malware Development
22:24 Challenges and Implications of AI in Malware
23:43 AI's Role in Malware Detection and Development
26:35 The Future of AI in Cybersecurity
32:30 Operational Security and AI Limitations
33:59 Concluding Thoughts and Future Research
36:28 Final Remarks and Acknowledgements
37:32 Show Wrap-Up and Sponsor Message

Fortinet Firewall Breached, Hidden Linux Vulnerability & Ransomware Boss Pleads Guilty | Cybersecurity Today

In this episode of Cybersecurity Today, host David Shipley discusses the latest breach involving Fortinet FortiGate firewalls, an 11-year-old critical Linux vulnerability that was recently discovered, and a rare courtroom case where a ransomware boss pleaded guilty. The episode also highlights a report on widespread credential exposure in the retail sector. Stay informed on the latest cybersecurity news and developments. Sponsored by Meter.

00:00 Introduction and Sponsor Message
00:39 Fortinet Firewalls Breached
02:05 Critical Linux Vulnerability Exposed
03:31 Ransomware Boss Pleads Guilty
04:52 Widespread Credential Exposure in Retail
05:47 Conclusion and Sign-Off
06:11 Sponsor Message and Closing Remarks