An overview of cybersecurity Agentic AI vulnerabilities, focussing on prompt injection

Episode covers Apple s iMessage zero click exploit patch that exposed Secure Enclave keys, Google OAuth consent flow abuse for stealthy malware delivery, Microsoft s zero click AI hack fix, Interpol s massive info stealer takedown, and Telegram s new anti scam defenses.

Cisco s Q1 phishing surge and critical IOS SD WAN patches, LockBit s dark web breach exposing 60k Bitcoin wallets, and Telegram s new anti scam malware security controls.

Covers Cisco s critical IOS XE and ASA patches, Talos AI threat research, the LockBit RaaS database leak exposing 60k BTC addresses and insider tools, and Telegram s malware scams and new defenses.

An overview of cybersecurity SBOM, focussing on introduction to sbom

Researchers at Oligo uncovered 23 flaws in Apple s AirPlay allowing unauthenticated code pushes to third party devices. While iOS 18.4 devices are patched, billions of accessories remain exposed. The episode also dives into Apple s mercenary spyware alerts, Telegram s new anti phishing suite, and the DragonForce ransomware breach at the UK Co op.

A technical deep dive into Apple s mercenary spyware alerts and the 23 AirBorne AirPlay flaws risking zero click code execution, Telegram s new anti phishing filters and crypto upgrades, and the Co op s showdown with DragonForce ransomware.

Oligo discovered 23 zero click, wormable remote code exec flaws in Apple s AirPlay protocol SDK. While iOS, macOS and first party devices are patched, millions of third party units remain vulnerable update firmware or disable AirPlay until fixes arrive.

Podcast covers Apple s Pegasus alerts, critical AirPlay AirBorne zero click RCE, Telegram anti spam and phishing defenses, TikTok s 530M GDPR fine, and the Co op s data breach plus key mitigation steps.

An overview of cybersecurity Shift Left, focussing on shift left security overview

This episode covers the FBI s 10M Salt Typhoon hunt and a record breaking 16.6B in internet crime losses Google s MiraclePtr zero day defenses, Android auto reboot, and News plugin CSRF Telegram s encryption upgrades and urgent Ubuntu kernel and package patches.

An overview of cybersecurity attack graphs, focussing on attack graphs overview

An overview of cybersecurity DNS over HTTPS DoH , focussing on introduction to doh

An overview of cybersecurity LLM vulnerabilities, focussing on prompt injection

A flawed access control in KiloEx s cross chain price oracle let attackers drain 7M across BNB Chain, Base and Taiko, forcing emergency patches and a 750K bounty to retrieve stolen funds.

Dive into Android 16 s auto restart safeguard, sophisticated Google OAuth phishing, 4chan s record breach, KiloEx s 7M cross chain oracle exploit & full recovery, and MITRE s CVE funding lifeline.

An overview of cybersecurity threat research automation, focussing on cybersecurity automation

Explore key security challenges facing tech giants like Apple, Google, Microsoft, Telegram, and WhatsApp. Delve into vulnerabilities in iOS, Android, and Windows, and learn about critical security updates, privacy issues, and regulatory tensions. Understand the role of AI in enhancing cybersecurity measures and the importance of staying vigilant against evolving threats.

An overview of cybersecurity lateral movement attacks, focussing on lateral movement attacks

Today's podcast explores cybersecurity strategies from Google, Microsoft, Oracle, Ivanti, and Ubuntu. Google addresses North Korean infiltration and enhances Chrome with new security patches. Microsoft tackles phishing threats with AI and passwordless solutions. Oracle faces scrutiny over data breaches. Ivanti patches critical VPN vulnerabilities. Ubuntu releases crucial security updates for Linux systems.

An overview of cybersecurity heap based overflow vulnerability, focussing on heap based overflow vulnerability

The episode delves into critical zero day vulnerabilities affecting Google's Chrome browser, with a focus on Russian organizations and journalists. It discusses Google's quick patching efforts and acquisition of Wiz to enhance security measures.

An overview of cybersecurity Steganographic malware, focussing on steganographic malware

Dissecting Coinbase s 70K user KYC data leak and 400M response, the FBI s latest phishing, botnet BADBOX 2.0 and ransomware Play warnings, Google s emergency Chrome zero day patches and email safeguards, Microsoft s threat tracking patches, and Telegram malware privacy issues.

Explore critical vulnerabilities impacting Apple OS, including iOS, macOS, iPadOS, and others. Learn about risks in AirDrop and Web Content Handler, phishing scams targeting Mac users, and Apple's response with security patches and encryption efforts.

An overview of cybersecurity adversarial input, focussing on adversarial input

Exploration of Apple's response to zero day vulnerabilities, focusing on urgent updates for Safari, WebKit, and broader product security enhancements. The podcast delves into the integration of end to end encryption for RCS messages, challenges with malware targeting bank data, and other cybersecurity threats, including critiques on Apple's notification clarity and protection measures.

An overview of cybersecurity hypervolumetric DDoS attacks, focussing on hypervolumetric DDoS attacks

Bybit, a major crypto trading platform, suffered a historic 1.4 billion theft by North Korean hackers exploiting platform vulnerabilities. The incident underscores the need for robust cybersecurity in centralized exchanges.

An overview of cybersecurity Man in the Middle Attack MITM , focussing on Man in the Middle Attack

Exploring the evolving cybersecurity landscape with Apple's data protection controversies, critical vulnerabilities in the Find My network, Microsoft's fight against AI driven cyber threats, Bybit's response to a massive crypto heist, and the need for prompt updates against Linux kernel vulnerabilities.

An overview of cybersecurity MITRE ATT&CK, focussing on MITRE ATT&CK Framework

This podcast episode delves into pressing cybersecurity issues, including Apple's mandate to disable iCloud encryption in the UK, Microsoft's battle with malware targeting Xcode, and Google's push for AI driven defenses. The episode also explores emerging threats against Palo Alto Networks and hacking incidents affecting cryptocurrency exchange Bybit. These discussions highlight regulatory tensions, advances in security technology, and the importance of vigilance and timely updates in today's digital landscape.

An overview of cybersecurity Deep Packet Inspection, focussing on deep packet inspection

An overview of cybersecurity Security Orchestration, Automation, and Response SOAR , focussing on SOAR fundamentals

Explore how tech giants are addressing cybersecurity. Apple's urgent patches against zero day flaws, Google's AI driven defenses, Intel's vulnerability fixes, Microsoft's efforts against Russian cyber threats, and challenges in Musk's DOGE initiative underscore the need for vigilance in digital security.

An overview of cybersecurity Adaptive attacks, focussing on adaptive attacks

Explore Apple's response to security threats urgent updates for critical vulnerabilities, risks from the 'SparkCat' campaign and North Korean hackers, privacy debates with the UK government, and innovations like Advanced Data Protection and PCC.

An overview of cybersecurity cybercrime forums, focussing on cybercrime forums

The episode discusses multiple security vulnerabilities and zero day exploits affecting Apple devices, focusing on recent updates for iPhone, iPad, and Mac systems to mitigate threats like side channel attacks on A and M series chips. It highlights Apple's updates for iOS and macOS Ventura to improve data protection and addresses speculative execution threats such as 'Son of Spectre.' The podcast emphasizes the importance of user updates to safeguard against these evolving cyber threats.

An overview of cybersecurity OSINT, focussing on Introduction to OSINT

In this podcast episode, we explore the recent cybersecurity developments from industry giants like Cloudflare and Google. Cloudflare has successfully mitigated the largest recorded DDoS attack and addressed critical vulnerabilities in its services, demonstrating an increase in the frequency and severity of DDoS attacks. Concurrently, Google is countering a malware campaign targeting Mac users through its ad network and addressing security loopholes in Android and Chrome. Additionally, Google is improving security features and handling ethical dilemmas regarding the use of its technology. Other tech leaders like IBM, Microsoft, and Oracle are also addressing various challenges from privilege escalation to phishing threats, emphasizing the importance of staying updated with the latest security patches.

An overview of cybersecurity API security, focussing on API security

This episode explores how major tech players like Apple, Google, Microsoft, Fortinet, and Wavlink are addressing cybersecurity vulnerabilities. It covers Apple's security advancements, Google's efforts against phishing, Microsoft's critical updates, Fortinet's zero day patches, and Wavlink's router flaws, highlighting the importance of timely patching and user vigilance in protecting against threats.

An overview of cybersecurity PCI DSS 4.0 compliance, focussing on PCI DSS 4.0 Overview

This episode delves into the ViciousTrap backdoor compromise of over 9,000 ASUS routers, the latest Debian security advisories including kernel and app patches, and emerging threats and defenses in the Telegram ecosystem.

Ivanti has issued a critical update following a zero day exploit that risks remote code execution on its Connect Secure VPN. This vulnerability, linked to a China associated group, demands immediate patch application and security measures. CISA's involvement underscores its severity as companies are advised on urgent updates.

This podcast episode explores critical cybersecurity updates from major players like CISA and Ivanti. CISA highlights its initiatives, including expansion of its Known Exploited Vulnerabilities Catalog and sector specific IT goals to protect infrastructure. Ivanti addresses serious vulnerabilities in its products amidst ongoing remote code execution threats, urging immediate patches. Microsoft focuses on cybersecurity advances, AI developments, and new techniques to protect systems. Telegram enhances user privacy but faces security challenges from 'FireScam' malware. Ubuntu releases crucial updates across its ecosystem to maintain robust defenses. These updates reflect the evolving landscape of digital security and underscore the urgency of staying informed and protected.

CISA highlights vulnerabilities in Oracle WebLogic Server and Mitel MiCollab, requiring immediate action. Ivanti, Microsoft, and other major tech companies address emerging cyber threats, emphasizing the need for robust cybersecurity measures. Microsoft enhances AI security, while Telegram faces scrutiny over encryption practices. Ubuntu updates target critical Linux kernel vulnerabilities.

This episode explores Ivanti's critical vulnerabilities that have been exploited by sophisticated threat actors. Discussed are the stack based buffer overflow issues in Connect Secure, Policy Secure, and ZTA Gateway products, with further security advisories and patch updates by Ivanti and CISA. The conversation also highlights Microsoft's lawsuit against hackers exploiting AI services, Ubuntu's diverse security updates for multiple vulnerabilities, and Telegram's privacy enhancements amid rising threats. Emphasis is laid on comprehensive cybersecurity frameworks and the necessity of robust cyber hygiene.