CISA Orders Emergency Patch for Actively Exploited Dell Flaw; Texas Sues TP-Link; Massive ID Verification Data Leak; SSA Database Leak Allegations

Host Jim Love covers four cybersecurity stories: 

Cybersecurity Today  would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.  You can find them at Meter.com/cst

CISA ordered federal civilian agencies to patch an actively exploited critical Dell RecoverPoint for Virtual Machines vulnerability (CVE-2026-2769) within three days, citing hard-coded credentials that allow unauthenticated root access and links to a China-aligned threat cluster; Texas Attorney General filed suit against TP-Link alleging deceptive security and origin claims and risks tied to Chinese state-linked threats, while TP-Link denies the allegations and says it operates independently, stores U.S. user data on AWS, and bases core operations in the U.S.; researchers found an unsecured MongoDB database tied to AI-powered identity verification provider ID Merit exposing nearly 1 billion records with sensitive personal data, attributed to misconfiguration rather than compromise of the AI systems; and a MarketWatch report describes whistleblower Chuck Borges alleging SSA master data was copied to a cloud environment without oversight, contrasted by the Social Security Commissioner stating the core Numident database remained secure, with Love noting no confirmed public evidence but expressing concern about the implications if such foundational data were compromised.

00:00 Sponsor Message: Meter's Full-Stack Networking
00:19 Headlines: Dell Exploit, TP-Link Lawsuit, Massive Data Leak, SSA Claims
00:45 Urgent Patch Order: Actively Exploited Dell RecoverPoint CVE
02:19 Texas Sues TP-Link Over Router Security & China-Ties Allegations
03:31 AI Identity Verification Leak: Nearly 1 Billion Records Exposed
05:07 Did SSA Data Leak? Whistleblower vs. Official Denial
06:54 Host Take: What If the "Foundational" Database Was Compromised?
07:37 Wrap-Up + Sponsor Thanks and Where to Book a Demo

Info Stealers Target OpenClaw, a Robot Vacuum API Flaw Exposes Thousands, Best Buy Fraud Shows Zero Trust Context, and Canada Goose Data Leaked via Supplier

The episode covers multiple security incidents and lessons. Hudson Rock details how an info stealer malware infection can vacuum OpenClaw data, including authentication tokens, master keys, device private cryptographic keys, and the agent-defining soul.md file that can reveal a "mirror" of a user's life; the attack was not targeted, raising concerns about upcoming dedicated OpenClaw-stealing modules. A hobbyist coder using an AI coding tool to reverse-engineer DJI Romo communications unintentionally accessed roughly 7,000 robot vacuums in 24 countries, enabling live camera and microphone access and floor-plan generation due to missing messaging-level access controls; DJI also shares infrastructure with portable home battery stations and initially claimed the flaw was fixed before a live demonstration showed it was not. Two Best Buy cases illustrate that Zero Trust must consider behavior and context: a Florida employee allegedly used a manager override code 149 times from March–December 2024 to buy discounted electronics, costing about $120,000, while a Georgia case involved over $40,000 in merchandise leaving a store over two weeks amid claims of blackmail. Finally, ShinyHunters leaked about 600,000 Canada Goose customer records, but Canada Goose found no breach in its systems; the data was attributed to a third-party payment processor breach from August 2025, with records largely dating from 2021–2023, underscoring supply-chain risk and ongoing fraud/phishing potential. The episode is sponsored by Meter, which provides an integrated wired, wireless, and cellular networking stack for enterprises.

00:00 Sponsor: Meter + Today's Cybersecurity Headlines
00:44 Info-Stealer Jackpot: OpenClaw Tokens, Keys & 'soul.md' Exposed
03:17 DIY App, Real-World Disaster: 7,000 Robot Vacuums Exposed via DJI Servers
05:34 Best Buy Insider Fraud: Why Zero Trust Needs Behavior Monitoring
07:36 Canada Goose Leak: When a Third-Party Payment Processor Gets Breached
09:28 Wrap-Up + Sponsor Message (Meter)

In this episode of Cybersecurity Today, Jim Love covers major vulnerabilities and security threats, including the exposure of over 3 million Fortinet devices, a critical flaw in Docker's AI assistant, and a sophisticated Android malware campaign using Hugging Face repositories. Discover the latest updates on these critical issues and gain insights into the measures being taken to mitigate these threats. Sponsored by Meter, providing integrated networking solutions for performance and scale.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:43 Fortinet Devices Vulnerability
03:35 Docker AI Assistant Security Flaw
06:27 Hugging Face Android Malware Campaign
09:25 Conclusion and Sponsor Message

Cybersecurity Today: Google's Proxy Network Takedown, AI Agent Hijack, and More

In today's episode of Cybersecurity Today, host David Shipley covers major cybersecurity stories, including Google's disruption of the massive residential proxy network IP Idea, the hijacking vulnerability of AI agent platform MT Book, and attackers abusing single sign-on platforms. We also delve into the coordinated cyber attack on Poland's energy sector by Russian state-linked actors and the misuse of eScan antivirus updates to deliver malware. Stay informed about the latest in cybersecurity with us!

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:52 Massive Residential Proxy Network Disrupted by Google
02:41 AI Agent Platform Security Flaw Exposed
04:46 Single Sign-On Platforms Targeted by Attackers
06:28 Coordinated Cyber Attack on Poland's Energy Sector
08:15 Antivirus Software Compromised by Attackers
09:45 Conclusion and Call to Action
10:13 Sponsor Message and Closing Remarks

In this episode of Cybersecurity Today, host Jim Love welcomes David Shipley, CEO of Beauceron Security, as a guest. Together, they delve into the latest research from Beauceron  Security with assistance from he University of Montreal. They discuss the effectiveness of phishing simulations, the importance of reporting suspicious activities, and the psychological factors that lead to clicking on phishing emails. The episode also highlights the surprising advantages small businesses have over larger organizations in phishing defense, and how management's attitude towards cybersecurity significantly impacts a company's overall security culture. Don't miss this thorough, insightful conversation that will change how you think about cybersecurity training and culture!

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:19 Meet the Guest: David Shipley
01:46 David's Research with University of Montreal
02:17 Phishing Simulation Training Insights
03:16 The Importance of Real Research
04:30 Human Risk Management vs. Security Awareness
05:49 Understanding Phishing and Its Impact
11:10 The Role of Technology and Human Resilience
14:34 Effective Phishing Training Strategies
19:02 Analyzing Click Behavior and Reporting
27:17 Why People Click: Survey Insights
36:07 High Click Rates and Psychological Safety
38:13 Management's Role in Cybersecurity Culture
39:29 Impact of Tenure and Compensation on Click Rates
40:58 The Importance of Security Awareness Programs
43:35 Feedback and Reporting in Cybersecurity
54:12 Small Companies vs. Large Companies in Cybersecurity
56:44 Surprising Findings and Future Directions
01:02:12 Conclusion and Report Availability

In this episode of Cybersecurity Today, host Jim Love explores the burgeoning world of actionable AI agents, examining key developments from companies like Google and Anthropic. The episode delves into the rapid rise of MoltBot, an open-source AI agent tool that has taken the developer community by storm. Jim also highlights the significant security concerns associated with these advanced AI systems, including delegated control, exposable credentials, and the potential for real-world consequences due to misuse. The podcast wraps up with a discussion on the future implications of these technologies and a preview of upcoming research by David Shipley from Beauceron Security on phishing. Brought to you with the support of Meter, delivering integrated networking solutions for optimized performance and scale.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:24 Emerging AI Agents: Google and Anthropic
01:59 The Rise of Molt Bot
07:51 Security Concerns with AI Agents
11:09 Looking Ahead: The Future of AI Agents
13:47 Conclusion and Upcoming Episodes

Cybersecurity Today: WhatsApp Privacy Lawsuit, Google's Personal AI, Canada Computers Breach, and Mass Password Leak

In this episode, host Jim Love discusses pressing cybersecurity issues, including a lawsuit against WhatsApp for allegedly misleading users about message privacy, concerns over Google's new personal AI and its data security implications, a delayed response to a credit card skimming attack at Canada Computers, and the exposure of 149 million stolen passwords. Sponsored by Meter, the podcast also highlights the risks of using the same passwords and the importance of timely breach responses.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:21 WhatsApp Privacy Lawsuit
02:48 Google's Personal AI Security Concerns
05:58 Canada Computers Payment Card Breach
09:10 149 Million Stolen Passwords Exposed
12:16 Conclusion and Sponsor Message

Cybersecurity Today: Critical Fortinet Flaws, Windows 11 Issues, and Major Cloud Security Near Miss

In today's episode of Cybersecurity Today, host David Shipley covers several pressing cybersecurity topics including the continued exploitation of Fortinet flaws despite recent patches, Windows 11 systems failing to boot after January updates, a thwarted cyber attack on Poland's energy sector by the Sandworm group, a sophisticated phishing campaign targeting the energy sector, and a critical AWS vulnerability that posed a significant risk to cloud security globally. Stay informed on these key issues and more.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:48 Fortinet Flaws Still Actively Exploited
03:08 Windows 11 Update Issues
04:44 Cyber Attack on Poland's Energy Systems
06:18 Phishing Campaign Targeting Energy Sector
07:48 AWS CodeBuild Vulnerability
10:26 Conclusion and Final Thoughts

Discovering Void Link: The AI-Generated Malware Shaking Up Cybersecurity

In this episode, we explore the fascinating discovery of 'Void Link,' one of the first documented cases of advanced malware authored almost entirely by artificial intelligence. Hosts delve into an eye-opening interview with experts from Checkpoint Research—Pedro Drimel  and Sven Rath—who were integral to uncovering this next-gen cyber threat. Learn how Void Link's design, rapid development, and sophisticated features signify a new age in malware creation, and understand the implications for cybersecurity, particularly in cloud and Linux environments. This episode provides a compelling look into the tools and methodologies behind the groundbreaking find, and a rare glimpse into the evolving landscape of AI-driven cyber threats.

LINK TO CHECKPOINT RESEARCH PAPER: 
https://research.checkpoint.com/2026/voidlink-early-ai-generated-malware-framework/

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:19 AI-Generated Malware: The Void Link Case
03:16 Interview with Checkpoint Researchers
04:05 Background of the Researchers
06:56 Discovering Void Link
10:27 Analyzing the Malware
14:46 AI's Role in Malware Development
19:55 Implications and Future of AI in Cybersecurity
21:21 Introduction to IDE and Agent Support
21:45 Jailbreaking AI Models for Malware Development
22:24 Challenges and Implications of AI in Malware
23:43 AI's Role in Malware Detection and Development
26:35 The Future of AI in Cybersecurity
32:30 Operational Security and AI Limitations
33:59 Concluding Thoughts and Future Research
36:28 Final Remarks and Acknowledgements
37:32 Show Wrap-Up and Sponsor Message

Fortinet Firewall Breached, Hidden Linux Vulnerability & Ransomware Boss Pleads Guilty | Cybersecurity Today

In this episode of Cybersecurity Today, host David Shipley discusses the latest breach involving Fortinet FortiGate firewalls, an 11-year-old critical Linux vulnerability that was recently discovered, and a rare courtroom case where a ransomware boss pleaded guilty. The episode also highlights a report on widespread credential exposure in the retail sector. Stay informed on the latest cybersecurity news and developments. Sponsored by Meter.

00:00 Introduction and Sponsor Message
00:39 Fortinet Firewalls Breached
02:05 Critical Linux Vulnerability Exposed
03:31 Ransomware Boss Pleads Guilty
04:52 Widespread Credential Exposure in Retail
05:47 Conclusion and Sign-Off
06:11 Sponsor Message and Closing Remarks

Critical Cybersecurity Updates: Microsoft, Goot Loader, Anthropic, and AI-Generated Malware

In this episode of Cybersecurity Today, host Jim Love discusses the latest security patches and threats in the industry. Topics include Microsoft's recent patch for a Windows Admin Center flaw, the resurgence and evolution of Goot Loader malware, Anthropic's quiet patching of key vulnerabilities in their Git MCP server, and the emergence of Void Link, an advanced AI-generated malware targeting Linux-based servers. Tune in to learn about the implications of these updates and what steps you can take to protect your systems.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:20 Microsoft Patches Critical Windows Admin Center Flaw
02:54 Goot Loader Malware Resurgence
06:18 Anthropic Patches Git MCP Vulnerabilities
09:55 Void Link: AI-Generated Malware

Critical Security Flaws Patched by Cisco and Fortinet Amidst Recent Cyber Threats

In this episode of Cybersecurity Today, host David Chipley covers several pressing cybersecurity issues. Cisco has patched a maximum severity zero-day vulnerability in its Async OS software, which has been exploited by a Chinese state-linked group. Fortinet has also addressed a critical vulnerability in its 40 Seam product, which is being actively exploited in the wild. The Dutch National Police are still recovering from a Citrix breach, emphasizing the need for modern infrastructure. Meanwhile, a spear-phishing campaign targeting US organizations uses Venezuela-themed lures. The episode wraps up with a discussion on a recent study revealing that training AI to produce insecure code can lead to broader problematic behaviour.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:46 Cisco Patches Critical Async OS Bug
02:26 Fortinet Vulnerability Exploited in the Wild
04:04 Dutch National Police and Aging IT Infrastructure
05:55 Spear Phishing Campaign with Venezuelan Lure
07:54 AI Writing Buggy Code: Unexpected Consequences
10:21 Conclusion and Final Thoughts

This episode covers multiple active threats and security changes. It warns of an actively exploited critical BeyondTrust remote access vulnerability (CVE-2026-1731, CVSS 9.9) enabling pre-authentication remote code execution in Remote Support and Privileged Remote Access, noting SaaS was patched while on-prem deployments require urgent manual updates and may already be compromised. Microsoft details an evolution of the ClickFix social engineering technique where victims are tricked into running NSLookup commands that use attacker-controlled DNS responses as a malware staging channel, leading to payload delivery (including a Python-based RAT) and persistence via startup shortcuts, alongside increased Lumma Stealer activity. 

Cybersecurity Today  would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.  You can find them at Meter.com/cst

Researchers also report Mac-focused campaigns abusing AI-generated content and malicious search ads to push copy-paste terminal commands that install an info stealer (MaxSync) targeting Keychain, browsers, and crypto wallets. T

The show describes fake recruiter campaigns targeting developers with coding tests containing malicious dependencies on repositories like NPM and PyPI, linked to the "Gala" operation and nearly 200 packages. Finally, it reviews NPM's authentication overhaul after a supply-chain worm incident—revoking classic long-lived tokens, moving to short-lived session credentials, encouraging MFA and OIDC trusted publishing—while noting remaining risks such as MFA phishing, non-mandatory MFA for unpublish, and the continued ability to create long-lived tokens.

00:00 Sponsor: Meter + Today's Cybersecurity Headlines
00:48 Urgent Patch: BeyondTrust Remote Access RCE (CVE-2026-1731) Actively Exploited
02:45 ClickFix Evolves: DNS Lookups (nslookup) Used as Malware Staging
04:34 Mac Malware via AI Search Results: Fake Terminal Commands Deliver Info-Stealer
06:08 Fake Recruiters, Real Malware: Coding Tests Poison Dev Environments
07:19 NPM Security Overhaul After Supply-Chain Worm—What's Better, What Still Risks
09:11 Wrap-Up, Thanks, and Sponsor Message

Building Secure Software with Tanya Janca: From Coding to Cybersecurity Advocacy

In this episode of Cybersecurity Today, host Jim Love interviews Tanya Janca, also known as She Hacks Purple, a renowned Canadian application security expert and author. Tanya shares her journey from a software developer and musician to becoming a penetration tester and cybersecurity advocate. She discusses her work in training developers on secure coding practices and application security, emphasizing the need for integrated security training in academic programs and the software development lifecycle. Tanya also talks about the challenges women face in the cybersecurity field and her efforts to empower underrepresented groups through initiatives like WOsec and We Hack Purple. Sponsored by Meter, this episode dives deep into the importance of building security into software development and the potential role of AI in improving code security.

00:00 Introduction and Sponsor Message
00:18 Meet Tanya Janca: The Journey Begins
01:05 From Developer to Pen Tester
03:14 Empowering Women in Cybersecurity
13:11 Challenges in Academia and Training
19:18 The Need for Secure Coding
21:22 Challenges in Medical Device Security
22:18 The Economics of Open Source
24:43 Building Security into Development
26:14 Training and Cultural Shifts
32:33 AI and Secure Coding
39:03 Incident Response and Preparedness
39:54 Final Thoughts and Future Directions

Cybersecurity Challenges: Data Privacy Failures, AI Risks, and New Malware Threats

In this episode of Cybersecurity Today, host David Shipley covers a range of pressing issues. The discussion kicks off with Staples Canada reselling laptops without wiping customer data, highlighting loopholes in Canada's privacy laws. Next, David delves into a new class of attacks known as 'Reprompt' that target Microsoft Co-pilot, exposing vulnerabilities in large language models. The episode also explores a critical flaw in ServiceNow's virtual agent that allowed attackers to impersonate legitimate users, emphasizing the importance of robust identity verification. Lastly, a newly discovered advanced Linux malware framework designed for cloud environments is dissected, pointing to evolving threats that leverage customer mistakes. The episode concludes with a call to address these problems through better people, processes, and cultural practices.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:48 Staples' Privacy Lapse: A Recurring Issue
03:03 Microsoft Co-pilot Vulnerability: Reprompt Attack
05:22 ServiceNow's AI Vulnerability: Authentication Gaps
07:02 Advanced Linux Malware: A Cloud-First Threat
08:46 Conclusion and Key Takeaways
09:37 Closing Remarks and Sponsor Acknowledgment

Cybersecurity Today: Credit Card Skimming, Valley Rat Malware, WhatsApp Exploit & AI Defenses

In this episode of Cybersecurity Today, hosted by Jim Love, we explore several critical cybersecurity threats and advancements. We cover a massive credit card skimming campaign active since early 2022, a severe bug in HPE OneView, the stealthy Valley Rat malware, and a potential zero-click exploit in WhatsApp. Additionally, we delve into AI-driven advancements in cybersecurity defense being developed at US National Laboratories. Stay informed and vigilant with the latest insights in cybersecurity.

00:00 Introduction and Sponsor Message
00:48 Credit Card Skimming Campaign Uncovered
02:49 Critical Vulnerability in HPE OneView
04:16 Valley Rat Malware Threat
06:22 Suspected Zero-Day Vulnerability in WhatsApp
08:29 AI-Powered Cyber Defenses in US National Labs
10:08 Conclusion and Sponsor Message

In this episode of Cybersecurity Today, host David Shipley covers the FBI's warning about North Korean state-sponsored QR code phishing campaigns targeting U.S. organizations. Additionally, he discusses Europol's arrest of 34 individuals in Spain tied to the infamous Black Acts crime syndicate and the uncertainty surrounding CISA's pre-ransomware notification initiative after the departure of its lead developer. Stay informed with the latest in cybersecurity news and learn how to protect yourself and your organization from emerging threats.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:20 FBI Warns of QR Code Phishing
04:44 Europol's Major Crackdown on Black Acts
07:11 Uncertainty Over Ransomware Alerts Program
09:41 US Withdraws from Cybersecurity Organizations
10:25 Conclusion and Final Thoughts

In this episode of Cybersecurity Today, brought to you by Meter, we review key events and stories from the past few weeks. Join host Jim along with experts Tammy Harper from Flair, Laura Payne from White Tuque, and David Shipley from Beauceron Security as they discuss major cybersecurity events that unfolded over the holidays, including the MongoDB vulnerability 'Mongo Bleed', the compromises at Rainbow Six Siege, and the ethical implications of hacktivism. The panel also explores the complexities of AI in cybersecurity, the vulnerability of critical infrastructure, and the dichotomy between ethical hacking and cybercrime in the industry. As always, we emphasize the intersection of cybersecurity with people, processes, and our daily lives.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:20 Panel Introduction and Holiday Recap
02:26 MongoDB Vulnerability: Mongo Bleed
05:15 AI and Responsible Disclosure
16:20 Gaming Security: Rainbow Six Siege Hack
20:13 Video Games and Malware Risks
24:54 Fake Video Propaganda and Infrastructure Attacks
25:48 The Dilemma of Cybersecurity Censorship
26:34 Deepfakes and Cognitive Warfare
27:37 Cyber Operations and Infrastructure Vulnerability
34:42 The Role of Private Companies in Cyber Conflicts
36:19 Internal Threats in Cybersecurity
43:20 Hacktivism: Ethics and Boundaries
49:03 Conclusion and Final Thoughts

Cybersecurity Today: Sideloaded App Issues, Fake Blue Screen Attacks, and Rising Ransomware Threats

In this episode of Cybersecurity Today, host Jim Love discusses HSBC blocking sideloaded apps with its banking app, new social engineering attacks using fake Windows blue screens to install malware, and the discovery of long-standing compromised Chrome extensions. Additionally, a new report reveals a significant rise in ransomware victims in 2025 despite major takedowns of ransomware groups. Special thanks to Meter for their support.

00:00 Introduction and Sponsor Message
00:21 HSBC Blocks Sideloaded Apps
02:44 Fake Blue Screen of Death Malware
04:49 Compromised Chrome Extensions
06:33 Ransomware Trends in 2025
08:33 Conclusion and Sponsor Message

In this episode of Cybersecurity Today, host Jim Love discusses the latest in cybersecurity threats including the rapidly growing Kim Wolf botnet affecting millions of devices, the rising threats to file-sharing environments, and the intersection of cybercrime with physical supply chains. He also covers an audacious hacktivist takedown of white supremacist websites. Tune in to learn about the evolving landscape of cybersecurity and practical measures you can take to protect your systems. Thank you to our sponsor Meter for supporting this podcast.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:21 Kim Wolf Botnet: A Growing Threat
04:07 Mitigation Strategies for Kim Wolf
05:22 Corporate Data Breaches: Zestix and ShareFile
07:48 Cyber-Enabled Cargo Theft: The Lobster Heist
09:44 Hacktivism: Root Takes Down White Supremacist Sites
11:46 Conclusion and Contact Information

In this episode of 'Cybersecurity Today', host David Shipley discusses significant cyber events and their implications. The podcast explores hints by President Donald Trump regarding the use of cyber tactics in a U.S. operation that resulted in a power outage in Venezuela. The episode also delves into the April 2025 data breach at Nova Scotia Power, detailing the company's efforts to keep incident specifics confidential and the extensive recovery measures taken. Lastly, it updates listeners on the Trust Wallet compromise linked to the Sha-Hulud supply chain attack, elucidating how the breach occurred and its aftermath. The episode underscores the growing cyber threat landscape and the critical need for enhanced cybersecurity measures.

00:00 Introduction and Sponsor Message
00:46 US Cyber Operations in Venezuela
03:13 Implications for Cybersecurity Professionals
04:37 Nova Scotia Power Breach Details
08:52 Trust Wallet Hack Update
10:46 Conclusion and Final Thoughts

In this episode, host Jim Love discusses the importance of cybersecurity awareness and training, featuring insights from Michael Joyce of the Human-Centric Cybersecurity Partnership at the University of Montreal and David Shipley of Beauceron Security. They explore the impact of cybersecurity awareness programs, the decay of sustained vigilance post-training, and the nuances between phishing reporting and clicking behaviors. The conversation also critiques recent research claims that question the efficacy of phishing training, emphasizing the need for continuous, empirically supported approaches in cybersecurity education. The episode highlights the value of balanced, layered defenses involving both technical solutions and informed user behavior.

00:00 Introduction and Podcast Announcement
00:14 Sponsorship Acknowledgment
00:35 The Nature of Cybersecurity Awareness
01:09 Introduction to the Research Show
01:21 Guest Introductions
02:15 Human-Centric Cybersecurity Partnership
03:46 The Importance of Canadian Research
04:40 Cybersecurity and Culture
05:27 The Role of Research in Cybersecurity
07:12 David's Research and Collaboration with Michael
08:46 The Value of Independent Research
13:33 Cybersecurity Awareness Month Impact
17:23 Phishing Simulation and Reporting
23:49 Awareness Decay and Vigilance
30:55 The Importance of Reporting and Feedback Loops
40:00 Optimal Frequency for Cybersecurity Training
40:27 Critiques and Misconceptions in Phishing Training
42:00 Empirical Data and Training Effectiveness
43:19 Insights from Phishing Simulations
47:14 Understanding Why People Click
52:43 Challenges in Cybersecurity Research
01:04:06 The Importance of Layered Defenses
01:17:17 Concluding Thoughts on Cybersecurity Training

In this episode, the host shares a pre-recorded favorite interview with David Decary-Hetu, a criminologist at the University of Montreal. They discuss the dark web, its technology, and its role in cybercrime. Decary-Hetu explains how the dark web operates, its users, and the dynamics between researchers and law enforcement in tackling cyber threats. Key topics include the economics of illicit markets, the cat-and-mouse game between law enforcement and criminals, the role of cryptocurrencies, and the evolution of cyber threats. The episode offers insights into the social aspects of cybercrime and the measures being taken to combat it.

00:00 Introduction and Sponsor Message
00:52 Understanding the Dark Web
02:16 Interview with David Decary-Hetu
05:10 The Basics of the Dark Web
06:27 Technology Behind the Dark Web
14:49 Law Enforcement Challenges
21:50 Trust and Transactions on the Dark Web
23:45 Recruitment and Structure of Cybercriminals
26:42 Cultural Dynamics in Hacking Communities
27:32 Researching the Impact of Technology on Crime
29:01 Challenges in Policing the Dark Web
30:12 The Role of Social Engineering in Cybercrime
31:18 Law Enforcement Strategies and Conditional Deterrence
32:09 The Evolution of Cybercrime and Cryptocurrency
41:24 Legal and Ethical Considerations in Cybercrime
43:47 Advice for Policymakers and Corporations
48:44 Educational Resources and Conferences
50:57 Conclusion and Final Thoughts

This special Valentine's Day episode of Cybersecurity Today examines romance scams (often called pig butchering) and how fraudsters exploit trust, vulnerability, and loneliness. 

Host Jim Love speaks with McAfee Head of Threat Research Abhishek Karnik  about new findings showing the scale and demographics of these scams, including widespread encounters with fake or AI-generated profiles, frequent financial solicitations, and that men are also heavily impacted. 

Cybersecurity Today  would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.  You can find them at Meter.com/cst

The episode features survivor Beth Highland's detailed account of being manipulated via Tinder through long-term messaging, an AI video call, forged documents, and a crypto payout scheme that led her to send about $26,000 via Bitcoin ATMs before her financial advisor—trained in romance fraud—helped her recognize the scam and stop further losses, including a demanded $50,000 "activation fee." Beth discusses emotional aftereffects, stigma, reporting, red flags, and her book, "Diary of a Romance Scam: 

When Swiping Right Goes Wrong," along with her advocacy work. The conversation broadens to the role of AI in making scams more realistic (deepfakes, voice/video, document generation), the importance of privacy and not overposting, involving trusted family/advisors, institutional training and intervention points along the fraud "kill chain," and using technology and education to detect and reduce scams.

LINKS 
Beth Hyland's Book - Diary of a Romance Scam: When Swiping Right Goes Wrong
https://www.amazon.com/Diary-Romance-Scam-Swiping-Right/dp/1662962843

00:00 Sponsor: Meter's all-in-one networking stack
00:18 Valentine's Day on the dark side: heartbreak meets cybercrime
02:15 Romance scams ("pig butchering") are everywhere—who gets targeted
04:15 McAfee research: fake profiles, AI, and the real victim demographics
07:07 How scammers hook you: profiling, psychology, and long-game manipulation
09:01 Beth's story begins: post-divorce, isolation, and trying Tinder
10:36 The perfect match: mirroring, fast intimacy, and early red flags
14:32 AI video call + the push-pull breakup: emotional control tactics
17:09 The money trap: Qatar story, bank access, and Bitcoin ATM payments
23:34 The $50K "activation fee" and the wake-up call from a financial advisor
26:25 Cutting him off—and getting pulled back in by guilt and gaslighting
30:18 How to help victims: listening, tools, and where to get support
33:17 Turning pain into purpose: Beth's book and grieving a romance scam
34:47 Turning Pain Into Purpose: Supporting Romance-Scam Survivors
35:56 Stop Blaming Victims: Changing the Language Around Scams
38:38 "It Can Happen to Anybody": Why Smart People Get Hooked
40:58 Social Engineering 101: How Scams Exploit Different Emotions
42:14 Why McAfee Is Focusing on Consumer Scams (and the AI Factor)
45:43 AI Deepfakes & Low-Cost Tools: The New Scam Industrialization
49:19 Oversharing, Spearphishing & Replay Attacks: How Victims Get Retargeted
53:24 Practical Red Flags: Meeting in Person, Isolation Tactics, Family Checks
57:08 Training the "Kill Chain": Banks, Cashiers, Advisors & Early Intervention
01:00:33 Tech Fighting Tech: Detection, Identity Protection & Digital Assistants
01:02:57 What's Next: Agentic AI, Bigger Attack Surfaces & Trust-and-Safety by Design
01:08:03 Wrap-Up: Start the Conversation, Resources, and Final Thanks

Cybersecurity Today: MongoDB Vulnerability 'Mongo Bleed' Exploited, Rainbow Six Siege Hacked, Trust Wallet Compromise, and GrubHub Crypto Scams

In this episode of Cybersecurity Today, David Shipley covers significant cybersecurity incidents that occurred over the holiday period. The major topics include the 'Mongo Bleed' vulnerability in MongoDB that was disclosed and then publicly exploited on Christmas Day, leading to potential data leaks. Ubisoft's Rainbow Six Siege faced a breach enabling attackers to manipulate in-game functions and distribute billions worth of in-game currency for free. Trust Wallet's browser extension was compromised, resulting in a loss of approximately $7 million in cryptocurrencies. Finally, a phishing scam using a legitimate GrubHub subdomain to promise fake Bitcoin rewards was also discussed. Immediate actions and preventive updates were highlighted for all these incidents.

00:00 Introduction and Sponsor Message
00:48 Mongo Bleed Vulnerability Exploit
04:10 Rainbow Six Siege Breach
08:13 Trust Wallet Extension Hack
10:30 GrubHub Bitcoin Scam
12:02 Conclusion and Sign-Off

This is an interview with former hacker Brian Black. Brian is now on the right side of the battle and bringing his skills to to the fight against hackers. He finds the weaknesses in corporate security so that it can be patched. 

This was one of my favourite interviews this year. Listening to what Brian has learned and understanding how we can use that knowledge and experience kept me on the edge of my seat. 

Once more I want to thank Meter for making this possible.  Visit them at meter.com/cst

Jim takes a break for some R&R during the holidays and shares his favorite podcast episodes from the year. He acknowledges that some listeners might have heard these episodes already, while others may find them new. The podcast's production is supported by Meter, a company providing integrated networking solutions. Additionally, support from listeners through the Buy Me a Coffee program has helped sustain the shows and expand their content offerings. Jim thanks Meter and the listeners, wishing everyone a Merry Christmas and a Happy New Year.

00:00 Introduction and Holiday Plans
00:33 Sponsor Acknowledgment
01:08 Support and Growth
01:55 Final Thoughts and Episode Introduction

Over the holidays we are rerunning some of our favourite episodes. This one first aired this summer and was one of my first conversations with the fascinating head of Operation Shamrock. 

We'll be back with regular programming on January 5th. 

Global Cybercrime Crackdowns and Rising Threats

This episode of 'Cybersecurity Today' hosted by David Shipley covers significant cybersecurity news. Nigerian police arrested three suspects linked to a Microsoft 365 phishing platform known as Raccoon O365. U.S. prosecutors charged 54 individuals in an ATM malware scheme tied to a Venezuelan criminal organization. Two incident responders pleaded guilty to conducting ransomware attacks while employed to help victims of such attacks. Denmark officially blamed Russia for a cyber attack on a water utility, exacerbating geopolitical tensions. Each segment highlights the intricate and international nature of modern cybercrime and the ongoing challenges in cybersecurity.

00:00 Introduction and Sponsor Message
00:20 Nigerian Police Arrest Phishing Suspects
03:28 US ATM Malware Scheme Uncovered
05:46 Insider Ransomware Attackers Plead Guilty
08:21 Denmark Blames Russia for Cyber Attack
11:08 Conclusion and Holiday Wishes
12:20 Sponsor Message and Closing

Cybersecurity Today brings you a special year-end episode, featuring noteworthy guests Tammy Harper from Flare, Laura Payne from White Tuque, David Shipley from Beauceron Security, and John Pinard, co-host of Project Synapse. This episode delves into the pivotal cybersecurity stories of 2025, including a detailed discussion on MFA phishing attacks, the effectiveness of cybersecurity training, and the troubling trends in ransomware payments. Also covered are the evolving roles of AI in both defending and perpetrating cyber crimes. The guests share their insights, hopes, and concerns for the industry's future, emphasizing the importance of awareness, empathy, and community. Tune in as they reflect on the past year's challenges and successes, and look forward to more resilient and innovative cybersecurity practices in 2026.

00:00 Introduction and Sponsor Message
00:20 Meet the Panelists
01:30 Reflecting on the Year: Achievements and Goals
02:08 Naughty and Nice: Cybersecurity Challenges
03:44 The Rise of Fake Torrents and Piracy
07:07 Ransomware and Data Extortion Trends
18:00 The Importance of Multi-Factor Authentication (MFA)
26:15 The Persistent Threat of Email Phishing
27:24 AI Vulnerabilities and Security Concerns
28:18 The Role of AI in Social Engineering
29:07 The Impact of AI on Cybersecurity
31:15 The Future of AI and Security Measures
34:40 The Human Element in Cybersecurity
39:49 Hopes and Predictions for the Future
45:33 Final Thoughts and Reflections

Cybersecurity Today: Cisco Zero Day Exploited & Maritime Cyber Attack Unfolds

In this episode of Cybersecurity Today, host David Shipley discusses a series of critical cybersecurity incidents, including the exploitation of a zero-day flaw in Cisco email security infrastructure by a China-linked group, a Hollywood-style attack on an Italian ferry involving remote access malware, and a new data theft spree by the ClOP ransomware gang targeting file-sharing servers. Shipley also highlights the broader implications of cybersecurity on physical safety and national security. This episode is brought to you by Meter, a complete networking stack provider for enterprises.

00:00 Introduction and Sponsor Message
00:20 Massive Patch List and Zero-Day Flaw in Cisco
03:41 Latvian Arrested in Italian Ferry Cyberattack
06:31 ClOP Ransomware Gang's New Target
08:54 Conclusion and Upcoming Episodes

In this episode of Cybersecurity Today, host Jim Love discusses a range of pressing cybersecurity threats. The show covers the escalating React2Shell vulnerability, which has led to widespread automated exploitation campaigns involving crypto miners and back doors. Additionally, Jim reports on the Black Force phishing kit, which bypasses multifactor authentication and is gaining traction among cybercriminals. Microsoft OAuth consent attacks are also highlighted, with users being tricked into granting access to their accounts. Finally, the episode touches on PornHub's data breach involving the Shiny Hunters cybercrime group and the importance of patching vulnerabilities and being cautious during the holiday season.

00:00 Introduction and Sponsor Message
00:22 React2Shell Vulnerability Deep Dive
03:46 Black Force Phishing Toolkit
05:44 Microsoft OAuth Consent Phishing
07:29 PornHub Data Breach by Shiny Hunters
10:21 Holiday Cybersecurity Tips and Final Thoughts

In this episode of Cybersecurity Today, host David Shipley discusses significant developments in the cybersecurity landscape. Apple releases security updates to address two actively exploited WebKit vulnerabilities. Scammers manipulate AI-powered search tools to recommend fake support numbers, reflecting a growing security risk. Bitdefender uncovers malware hidden in torrent subtitles for the movie 'One Battle After Another.' Lastly, an AI named Artemis outperforms human penetration testers in a Stanford hacking experiment, highlighting the evolving role of AI in cybersecurity. Also included are insights on the implications of these events for future cybersecurity challenges.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:52 Apple's Urgent Security Updates
03:24 AI-Powered Scams: A Growing Threat
06:59 Malware Hidden in Torrents
10:03 AI Outperforms Human Pen Testers
13:25 Conclusion and Contact Information

In this episode of Cybersecurity Today, host Jim Love discusses the shocking discovery of over 80,000 leaked credentials and secrets in online code formatting tools with Jake Knott, a principal security researcher from Watchtower. They delve into the vulnerabilities exposed by these tools, the inadvertent leaking of sensitive information, and how attackers can easily exploit these weaknesses. The conversation covers the types of secrets found, the responses from various organizations, and best practices to prevent such exposures. Tune in to understand the critical importance of protecting your credentials and the steps you can take to avoid falling victim to these types of security breaches.

00:00 Introduction and Sponsor Message
00:22 Accidental Data Leaks: A Growing Concern
00:55 Supply Chain Vulnerabilities
01:47 Shocking Discovery: 80,000+ Secrets Exposed
06:29 Interview with Jake Knott from Watchtower
08:19 The Risks of Using Online Tools
28:23 Best Practices and Mitigation Strategies
35:05 Conclusion and Final Thoughts

This special Valentine's Day episode of Cybersecurity Today examines romance scams (often called pig butchering) and how fraudsters exploit trust, vulnerability, and loneliness. 

Host Jim Love speaks with McAfee Head of Threat Research Abhishek Karnik  about new findings showing the scale and demographics of these scams, including widespread encounters with fake or AI-generated profiles, frequent financial solicitations, and that men are also heavily impacted. 

Cybersecurity Today  would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.  You can find them at Meter.com/cst

The episode features survivor Beth Highland's detailed account of being manipulated via Tinder through long-term messaging, an AI video call, forged documents, and a crypto payout scheme that led her to send about $26,000 via Bitcoin ATMs before her financial advisor—trained in romance fraud—helped her recognize the scam and stop further losses, including a demanded $50,000 "activation fee." Beth discusses emotional aftereffects, stigma, reporting, red flags, and her book, "Diary of a Romance Scam: 

When Swiping Right Goes Wrong," along with her advocacy work. The conversation broadens to the role of AI in making scams more realistic (deepfakes, voice/video, document generation), the importance of privacy and not overposting, involving trusted family/advisors, institutional training and intervention points along the fraud "kill chain," and using technology and education to detect and reduce scams.

LINKS 
Beth Hyland's Book - Diary of a Romance Scam: When Swiping Right Goes Wrong
https://www.amazon.com/Diary-Romance-Scam-Swiping-Right/dp/1662962843

00:00 Sponsor: Meter's all-in-one networking stack
00:18 Valentine's Day on the dark side: heartbreak meets cybercrime
02:15 Romance scams ("pig butchering") are everywhere—who gets targeted
04:15 McAfee research: fake profiles, AI, and the real victim demographics
07:07 How scammers hook you: profiling, psychology, and long-game manipulation
09:01 Beth's story begins: post-divorce, isolation, and trying Tinder
10:36 The perfect match: mirroring, fast intimacy, and early red flags
14:32 AI video call + the push-pull breakup: emotional control tactics
17:09 The money trap: Qatar story, bank access, and Bitcoin ATM payments
23:34 The $50K "activation fee" and the wake-up call from a financial advisor
26:25 Cutting him off—and getting pulled back in by guilt and gaslighting
30:18 How to help victims: listening, tools, and where to get support
33:17 Turning pain into purpose: Beth's book and grieving a romance scam
34:47 Turning Pain Into Purpose: Supporting Romance-Scam Survivors
35:56 Stop Blaming Victims: Changing the Language Around Scams
38:38 "It Can Happen to Anybody": Why Smart People Get Hooked
40:58 Social Engineering 101: How Scams Exploit Different Emotions
42:14 Why McAfee Is Focusing on Consumer Scams (and the AI Factor)
45:43 AI Deepfakes & Low-Cost Tools: The New Scam Industrialization
49:19 Oversharing, Spearphishing & Replay Attacks: How Victims Get Retargeted
53:24 Practical Red Flags: Meeting in Person, Isolation Tactics, Family Checks
57:08 Training the "Kill Chain": Banks, Cashiers, Advisors & Early Intervention
01:00:33 Tech Fighting Tech: Detection, Identity Protection & Digital Assistants
01:02:57 What's Next: Agentic AI, Bigger Attack Surfaces & Trust-and-Safety by Design
01:08:03 Wrap-Up: Start the Conversation, Resources, and Final Thanks

Cybersecurity Today: Spider-Man Phishing Kit, Gogs Zero-Day Exploits, and Recent Patches

In this episode, host Jim Love discusses recent cybersecurity issues including the Spider-Man phishing kit targeting European banks and cryptocurrency users, a zero-day vulnerability in the self-hosted Git service Gogs, and various security updates. The Spider-Man kit creates highly convincing phishing pages, while the Gogs vulnerability allows remote code execution by exploiting symbolic links. Additionally, updates are covered for a Windows PowerShell zero-day and a zero-click flaw in Google's Gemini Enterprise. The show emphasizes the importance of vigilance and timely patching to mitigate these threats.

00:00 Introduction and Technical Issues
00:20 Sponsor Message: Meter Networking Solutions
00:43 Spider-Man Phishing Kit Targets European Banks
03:13 Gogs Zero-Day Vulnerability Exploited
05:57 Windows PowerShell Zero-Day Patched
08:05 Google Patches Gemini Zero-Click Flaw
10:42 Conclusion and Weekend Show Teaser

Cybersecurity Today: Google Chrome's AI Safety Plan, React2Shell Fixes, & New Ransomware Tactics

In this episode of Cybersecurity Today, host Jim Love discusses Google's new security blueprint for AI-powered Chrome agents, highlighting measures against indirect prompt injections and model errors. Learn about Next JS's new tool for addressing the critical React2Shell vulnerability and the emerging threat from Storm 0249 using EDR tools for ransomware. The episode also covers new data showing manufacturers remain top ransomware targets. Sponsored by Meter.

00:00 Introduction and Sponsor Message
00:22 Google's New Security Plan for Chrome Agents
03:41 Next JS Scanner for React2Shell Vulnerability
05:41 Storm 0249: Malware Hidden in EDR Tools
07:45 Ransomware Targets Manufacturing Sector
09:34 Conclusion and Final Notes

Explosive React Vulnerability and AI Tool Flaws Uncovered: Major Implications for Cybersecurity

In this episode of Cybersecurity Today, host David Shipley discusses a new significant React vulnerability, React2Shell, that has caused widespread confusion and debate in the security community. This major flaw, affecting a widely used web framework, poses significant risks like remote code execution and malware deployment across numerous organizations. The episode also highlights flaws in AI coding tools discovered by researcher Ari Marzouk, which could compromise integrated development environments (IDEs) and software supply chains. Additionally, a ransomware breach at Marquis Software Solutions, impacting over 70 US banks and credit unions, is examined. Emphasis is placed on the critical need for robust security culture and proactive measures in the face of evolving threats.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:43 React Flaw Drama: A Deep Dive
04:58 AI Coding Tools: New Vulnerabilities
08:04 Ransomware Breach in Financial Sector
10:27 Conclusion and Call to Action

Cybersecurity Today: The Rise of Living Off the Land Strategies & More

In this episode of Cybersecurity Today's Month in Review, host Jim Love is joined by Laura Payne from White Tuque and David Shipley from Beauceron Security. They discuss several pressing cybersecurity issues, including the growing threat of 'living off the land' strategies where attackers use legitimate software to stay undetected, the risks associated with public Wi-Fi and QR codes, and the recent breaches involving Oracle's E-Business Suite and SonicWall's management devices. The panel also reflects on the often conflicting cybersecurity advice circulating today and emphasizes the importance of nuanced communication in security practices. Plus, find out who wins the 'Stinky' award for cybersecurity blunders and what you can do to stay safe. Special thanks to Meter for supporting this podcast. Tune in for a deep dive into these crucial cybersecurity topics and more.

00:00 Introduction and Sponsor Message
00:19 Welcome and Guest Introductions
00:50 Unique Coffee Partnership
02:27 Living Off the Land: Cybersecurity Tactics
04:33 Social Engineering and AI Threats
13:51 The Role of Social Media in Cyber Fraud
20:05 Microsoft's New Teams Feature: A Security Risk?
26:39 Oracle Vulnerability and Enterprise Security
27:26 Patching Core Systems: Challenges and Necessities
28:12 Clop Ransomware: A Persistent Threat
29:09 University Data Breaches: The Case of U Penn
30:18 Security Culture and Leadership Accountability
33:49 Debunking Security Myths: Juice Jacking and QR Codes
39:15 Public WiFi and VPNs: Proceed with Caution
41:18 The Importance of Effective Cybersecurity Communication
48:33 SonicWall Security Concerns and the Stinkies Awards
51:13 Wrapping Up: Reflections and Future Episodes

In this episode of 'Cybersecurity Today,' host Jim Love discusses several significant cybersecurity issues. Highlights include a maximum severity vulnerability in React Server Components dubbed React2Shell (CVE-2025-55182), a recently patched Windows shortcut flaw by Microsoft, and new attacks using the Evilginx phishing platform in schools. Additionally, the show explores a long-running campaign by 'Shady Panda,' which used browser extensions to harvest data, and an unexpected failure by Google's AI tool that led to the deletion of a developer's hard drive. The episode also thanks Meter for their continued support.

00:00 Introduction and Sponsor Message
00:48 React Vulnerability: React2Shell
03:13 Microsoft's Long-Standing Shortcut Flaw
04:50 Evilginx: Bypassing MFA in Education
06:59 Shady Panda's Malicious Extensions
09:13 Google's AI Mishap: Developer's Hard Drive Wiped
11:01 Conclusion and Final Thoughts

This episode of Cybersecurity Today, hosted by Jim Love, delves into various cybersecurity threats and latest news. Topics include 'living off the land' attacks using Microsoft's native utilities, spoofing Calendly invites for phishing Google and Meta credentials, a significant breach at the University of Pennsylvania linked to Oracle E-Business Suite vulnerabilities, and findings on AI jailbreaks tied to syntactic patterns by researchers from MIT, Northeastern University, and Meta. The episode emphasizes the ongoing challenges and evolving strategies in cybersecurity.

00:00 Introduction and Sponsor Message
00:43 Living Off the Land Attacks Explained
03:41 Fake Calendly Invites and Phishing Campaigns
05:47 Oracle Breach and Its Implications
07:55 AI Jailbreaks and Syntax Hacking
11:27 Conclusion and Final Thoughts

In this episode of Cybersecurity Today, host David Shipley discusses a range of pressing cybersecurity issues. Topics include the surge in QR code parking scams, with recent cases in Monaco, Ottawa, and across Europe; an Australian man sentenced for evil twin WiFi attacks targeting travelers; the shutdown of the Code Red emergency notification system due to ransomware; and critical vulnerabilities in Microsoft Teams' guest access feature. Shipley also examines the newly launched hacklore.org website aiming to debunk cybersecurity myths, while critiquing its dismissal of real-world threats. Stay informed on how criminals exploit simple deception, human assumptions, and technology lapses to perpetrate fraud and data breaches.

00:00 Introduction and Sponsor Message
00:21 Hack Lore vs. Real Cyber Threats
03:45 QR Code Parking Scams
07:24 Evil Twin WiFi Attacks
09:43 Ransomware Attack on Code Red
11:44 Microsoft Teams Security Flaw
15:09 Conclusion and Final Thoughts

The Intersection of Espionage Techniques and Cybersecurity Threats

This episode explores the parallels between espionage and cybersecurity, particularly focusing on social engineering tactics used in both domains. Hosted by Jim Love, the podcast features insights from Neil Bisson, a retired intelligence officer from CSIS, and David Shipley, CEO of Beauceron Security. They discuss the vulnerabilities in human behavior that can be exploited, the similarity between human intelligence operations and phishing attacks, and how AI is transforming the landscape of social engineering. Practical advice on recognizing and mitigating these threats is also provided. The episode underscores the importance of empathy, skepticism, and continuous education in defending against sophisticated cyber threats.

00:00 Introduction and Sponsor Message
00:25 Linking Espionage and Cybersecurity
01:06 The Role of Social Engineering in Cyber Attacks
02:25 Guest Introductions: Neil Bisson and David Shipley
03:24 Recruitment Tactics in Intelligence
05:56 Phishing vs. Intelligence Recruitment
07:48 AI's Role in Modern Social Engineering
10:45 Building Trust and Rapport in Intelligence
16:19 Ethical Considerations in Intelligence Work
20:01 Future of Cybersecurity and Social Engineering
24:31 The Art of Subtle Manipulation
26:01 Clandestine Tactics and Voluntary Information
26:24 Incremental Trust Building
26:46 Psychological Manipulation and Cult Recruitment
27:34 Human Connection and Vulnerability
28:53 AI and Social Engineering
30:25 The Threat of AI in Recruitment
33:20 Emotional Manipulation in Espionage
36:19 Defending Against Manipulation
38:12 Empathy and Information as Defense
45:49 Final Thoughts and Audience Engagement

In this episode, the host addresses a previous mistake in naming a company involved in a breach, correcting SitusAMC for Ascensus, and extends apologies. Key topics include US banks assessing a breach fallout from financial tech vendor SitusAMC, ransomware group CioP targeting Broadcom through Oracle's vulnerabilities, a new malware campaign hiding in Blender 3D models named SteelC, supply chain attacks in the JavaScript ecosystem through NPM packages with Shai-Hulud malware, and a phishing scam using lookalike domains to deceive Microsoft account holders. Listeners are reminded to manually type URLs to avoid phishing scams, and are informed about the Thanksgiving weekend schedule change.

00:00 Introduction and Apology
01:26 Cybersecurity Headlines
02:13 US Banks Data Theft Incident
03:44 Broadcom and Oracle ERP Breach
05:29 Blender Malware Campaign
07:45 Shai-Hulud NPM Package Attack
09:41 Phishing Campaign Targeting Microsoft Accounts
11:39 Final Thoughts and Thanksgiving Wishes

In today's episode of Cybersecurity Today, hosted by Jim Love, several major cybersecurity incidents are discussed. US banks are assessing the impact of a security breach at SitusAMC, where the ALFV ransomware group claimed to have stolen three terabytes of data. CIOP has targeted Broadcom through Oracle's E-Business Suite vulnerabilities. A new malware campaign hides inside Blender 3D models, exploiting the auto-run feature to deploy Steel C malware. The JavaScript ecosystem faces a supply chain attack from the Shai-Hulud malware compromising 500 NPM packages. Additionally, a phishing campaign leveraging visual deception with look-alike domains is targeting Microsoft account holders. The show is brought to you by Meter, which provides integrated networking solutions.

00:00 Introduction and Sponsor Message
00:21 US Banks Data Theft Incident
02:24 Broadcom and Oracle ERP Breach
04:09 Blender Files Supply Chain Attack
06:24 NPM Packages Compromised
08:21 Phishing Campaign Targeting Microsoft Accounts
10:19 Conclusion and Sponsor Message

In this episode of Cybersecurity Today with host Jim Love, we discuss six critical exploited Microsoft vulnerabilities, new phishing tactics using your own servers, and a zero-click vulnerability in Claude's code desktop extensions. We also explore trends in modern romance scams highlighting the younger, tech-savvy adult targets. Tune in for expert insights and practical tips to stay secure. Special thanks to Meter for their support.

Hashtag Trending would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/htt

00:00 Introduction and Sponsor Message
00:45 Microsoft Vulnerabilities: A Growing Concern
02:38 Phishing Attacks Using Your Own Servers
04:16 Zero-Click Vulnerability in Claude AI
06:25 Romance Scams: Not Just Targeting the Elderly
09:14 Conclusion and Weekend Edition Teaser

In this episode, host David Shipley discusses some of the most pressing issues in cybersecurity today. Checkout.com refuses to pay a ransom to cyber extortion group Shiny Hunters and instead donates to cybersecurity research. The U.S. SEC ends its long-standing case against SolarWinds and their CISO Tim Brown, highlighting ongoing debates about cybersecurity accountability. Additionally, the FCC reverses cybersecurity mandates originally set after the Salt Typhoon hacks, drawing criticism and raising questions about national security preparedness. The episode emphasizes the critical role of policy and regulation in affecting cybersecurity outcomes and encourages the tech community to participate actively in shaping better laws and frameworks.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:51 Checkout.com Refuses Ransom and Supports Cyber Research
04:10 SEC Ends Case Against SolarWinds and CISO
08:36 FCC Reverses Cybersecurity Mandates
12:22 The Importance of Policy in Cybersecurity
14:42 Conclusion and Call to Action

In this episode of Cybersecurity Today, host Jim Love welcomes retired intelligence officer Neil Bisson and regular guest David Shipley for an in-depth discussion on current cybersecurity threats facing both Canada and the US. They explore the roles of major state actors like China, Russia, Iran, and North Korea in cyber espionage and sabotage, alongside the motivations driving such activities. The conversation delves into the challenges faced by corporations and critical infrastructure, the importance of understanding motivations behind cyber attacks, and the need for greater cooperation between the private sector and intelligence agencies. The episode also highlights the crucial steps individuals and organizations should take to protect themselves in this rapidly evolving cyber landscape.

00:00 Introduction and Sponsor Message
00:40 Meet Neil Bisson: A Retired Intelligence Officer
02:43 The Evolution of Intelligence Collection
04:29 The Role of Big Data in Modern Espionage
06:30 Corporate Espionage and Technological Advancements
11:45 National Security Threats and Private Sector Vulnerabilities
16:42 Global Players in Cybersecurity Threats
21:44 The Overlooked Cyber Capabilities of India
23:58 State-Sponsored Cybercrime: A Symbiotic Relationship
24:50 Critical Infrastructure Vulnerabilities
25:32 Cyber Attacks and International Relations
27:54 The Role of Intelligence Agencies
33:58 The Huawei Controversy
37:18 Balancing National Security and Economic Interests
41:55 The Future of Cybersecurity
45:39 Conclusion and Final Thoughts

In this episode of Cybersecurity Today, host Jim Love discusses several major cybersecurity events. CloudFlare faced significant outages affecting major platforms like Amazon and YouTube, along with continued issues for Microsoft 365 users. NordVPN warned of a surge in fake shopping websites as Black Friday approaches, with phishing attempts climbing 36% between August and October. An AI transcription tool caused a privacy breach at an Ontario hospital, leading to a privacy probe. Finally, Salesforce is investigating a data theft wave linked to Gainsight, illustrating the risks of OAuth token misuse. The episode is supported by Meter, a network infrastructure provider.

00:00 Introduction and Sponsor Message
00:44 CloudFlare Outages and Their Impact
02:34 Surge in Fake Shopping Websites
04:56 AI Privacy Breach at Ontario Hospital
08:41 Salesforce Data Theft Investigation
11:26 Conclusion and Sponsor Message

In this episode of 'Cybersecurity Today,' host Jim Love covers multiple pressing topics: CloudFlare's major outage affecting services like OpenAI and Discord, Microsoft's new AI feature in Windows 11 and its potential malware risks, a new red team tool that exploits cloud-based EDR systems, and a new tactic using calendar invites as a stealth attack vector. Additionally, a critical SAP vulnerability scoring a perfect 10 on the CVSS scale is discussed alongside a peculiar event where Anthropic's AI mistakenly tried to report a cybercrime to the FBI. The episode wraps up with a mention of the book 'Alyssa, A Tale of Quantum Kisses' and a thank you to Meter for sponsoring the podcast. Tune in for essential cybersecurity insights.

00:00 Introduction and Sponsor Message
00:22 CloudFlare Outage Causes Major Disruptions
02:55 Microsoft's New AI Features and Malware Risks
05:22 Silent but Deadly: New Red Team Tool
07:39 Calendar Invites as a Stealth Attack Vector
10:04 Critical SAP Vulnerability
12:11 Anthropic's AI and the FBI Incident
14:06 Conclusion and Final Thoughts