Risky Business News

Follow Risky Business News
Share on
Copy link to clipboard

Regular cybersecurity news updates from the Risky Business team...

risky.biz


    • Jun 2, 2025 LATEST EPISODE
    • weekdays NEW EPISODES
    • 13m AVG DURATION
    • 690 EPISODES


    Search for episodes from Risky Business News with a specific topic:

    Latest episodes from Risky Business News

    Between Two Nerds: NSA's thinking on information warfare

    Play Episode Listen Later Jun 2, 2025 31:08


    In this edition of Between Two Nerds Tom Uren and The Grugq look at NSA's take on information warfare, all the way back from 1997. This episode is also available on Youtube. Show notes Cryptolog, The Journal of Technical Health, from NSA in 1997

    Risky Bulletin: Law enforcement takes down AVCheck

    Play Episode Listen Later Jun 2, 2025 6:16


    Law enforcement agencies take down A-V-Check, four US Senators urge for the reinstatement of the Cyber Safety Review Board, Germany identifies the leader of the TrickBot gang, and an AI-vibe-coding platform leaks user data and API keys. Show notes

    Sponsored: HD Moore on why vuln scanners are awful and broken

    Play Episode Listen Later Jun 1, 2025 15:21


    In this sponsored interview, Risky Business Media's brand new interviewer Casey Ellis chats with runZero founder and CEO HD Moore about why vuln scanning tech is awful and broken. He also talks about how they're trying to do something better by glueing their own discovery product to the nuclei open source vulnerability scanner. Show notes

    Risky Bulletin: Windows Update will patch third party apps

    Play Episode Listen Later May 30, 2025 6:05


    Windows Update will deliver third party app updates, a public database exposed Russia's nuclear secrets, US banks ask the SEC to rescind cyber breach disclosure rule, and ConnectWise discloses an APT breach. Show notes

    Srsly Risky Biz: Russia's cybercriminals and spies are officially in cahoots

    Play Episode Listen Later May 29, 2025 16:27


    Tom Uren and Patrick Gray talk about Russian DanaBot malware developers making a tailored variant of their malware specifically for espionage. This fills in some of the blanks on the exact relationship between Russian criminals and the country's intelligence services. They also discuss a US Director of National Intelligence initiative to centralise the purchase of commercially acquired information. Although this information can be used maliciously, having a one-stop-shop should make it easier to check that it is being used responsibly. This episode is also available on Youtube. Show notes

    Risky Bulletin: Dutch intelligence discovers a new Russian APT

    Play Episode Listen Later May 28, 2025 5:27


    Dutch intelligence discovers a new Russian APT, a ransomware attack hits the maker of MATLAB, 20 arrested in Nigeria over hacking exam results, and an Iranian pleads guilty for the Robbinhood ransomware attacks. Show notes

    Between Two Nerds: Cyber's hard problems

    Play Episode Listen Later May 26, 2025 26:19


    In this edition of Between Two Nerds Tom Uren and The Grugq talk about cyber's ‘hard problems' and why they are intractable. This episode is also available on Youtube. Show notes Cyber Hard Problems, from the National Academies of Sciences

    Risky Bulletin: Major CISA leadership exodus underway

    Play Episode Listen Later May 26, 2025 4:51


    A major exodus of leadership is underway at CISA, the US government will audit NIST over its vulnerability backlog; an ancient and mysterious APT has been linked to Spain's government, and the SVG image format is great for phishing. Show notes

    Sponsored: Sublime Security on the spam/email bomb problem

    Play Episode Listen Later May 25, 2025 22:55


    In this Risky Business News sponsor interview, Catalin Cimpanu talks with Bobby Filar, Head of Machine Learning at Sublime Security. Bobby takes us through the rising problem of spam bombing, or email bombing, a technique threat actors are increasingly using for initial access into corporate environments. Show notes Bobby Filar Sophos MDR tracks two ransomware campaigns using “email bombing,” Microsoft Teams “vishing” Ongoing Social Engineering Campaign Linked to Black Basta Ransomware Operators Storm-1811 exploits RMM tools to drop Black Basta ransomware Massive Email Bombs Target .Gov Addresses A familiar playbook with a twist: 3AM ransomware actors dropped virtual machine with vishing and Quick Assist

    Risky Bulletin: DanaBot and Lumma Stealer taken down

    Play Episode Listen Later May 23, 2025 7:33


    Law enforcement takes down the DanaBot and Lumma Stealer malware operations, the US government wants a centralized data broker platform, Turkey dismantles a Chinese IMSI catcher spy ring, and Russia hacked border cameras to track Ukrainian military aid. Show notes

    Srsly Risky Biz: Telegram is cooperating with authorities, for now

    Play Episode Listen Later May 22, 2025 20:27


    Tom Uren and Patrick Gray talk about how Telegram took down the two largest ever criminal marketplaces recently. They used Telegram for all their communications and had collectively sold over USD$30 billion in illicit products. The pair discuss why Telegram is now cooperating with authorities after historically being reluctant and whether this assistance will continue. They also discuss how Meta is awash with scam advertisements and how Chinese mobile app encryption is suspiciously awful. This episode is also available on Youtube. Show notes

    Risky Bulletin: TeleMessage data published by DDoSecrets

    Play Episode Listen Later May 21, 2025 6:41


    DDoSecrets archives 400GB of stolen TeleMessage data, the FBI closes its FISA watchdog office, Predatorgate lawsuit delayed due to interpreter shortage, and a wave of DDoS attacks disrupt Russian government portals. Show notes

    Between Two Nerds: Why hackers and spies don't mix

    Play Episode Listen Later May 19, 2025 28:35


    In this edition of Between Two Nerds Tom Uren and The Grugq examine what makes it hard for even competent hackers to contribute to state-backed espionage agencies. This episode is also available on Youtube. Show notes The I-Soon cyber espionage contractor data leak

    Risky Bulletin: Japan passes active cyber defense law

    Play Episode Listen Later May 19, 2025 6:20


    Japan passes a new active cyber defense law, printer software gets shipped with malware, a UK telco leaks user data and geolocation via its 4G network, and Volkswagen patches major bugs in its mobile app. Show notes

    Sponsored: Securing identity is like building a house while blindfolded

    Play Episode Listen Later May 18, 2025 15:50


    In this Risky Bulletin sponsor interview Justin Kohler, Chief Product Officer at SpecterOps talks to Tom Uren about the impossible challenge of managing identity directory services securely. Organisations try to implement the principle of least privilege but have no idea if they have done a good job. Justin talks about approaches SpecterOps is developing to address this problem. Show notes

    Risky Bulletin: Coinbase reveals insider breach, extortion attempt

    Play Episode Listen Later May 16, 2025 7:41


    Coinbase was extorted by hackers who bribed employees for user data, America's largest steel producer halts production after a cyberattack, Scattered Spider shifts to targeting US retailers, and the US abandons plans to protect Americans from data brokers. Show notes

    Srsly Risky Biz: Special guests Rob Joyce and Andy Boyd on offensive cyber

    Play Episode Listen Later May 15, 2025 43:03


    In this special edition of the Seriously Risky Business podcast Patrick Gray speaks with former NSA Cybersecurity Director Rob Joyce and former director of the CIA's Center for Cyber Intelligence Andy Boyd. The talk about what offensive cyber could look like under Trump 2.0, and the shake-up the intelligence community is going through under various White House initiatives. This episode is also available on Youtube. Show notes

    Risky Bulletin: EU launches its own vulnerability database

    Play Episode Listen Later May 14, 2025 6:49


    The EU launches its own vulnerability database, a Turkish APT deploys a zero-day in Iraq, North Korea tasks an APT to Ukraine, and Spain will probe cyber's role in last month's energy grid collapse. Show notes

    Between Two Nerds: Should US spies steal Chinese commercial secrets?

    Play Episode Listen Later May 12, 2025 32:25


    In this edition of Between Two Nerds Tom Uren and The Grugq examine whether the US should steal intellectual property from Chinese companies. This episode is also available on Youtube. Show notes Stewart Baker's Lawfare article Bunny Huang's 'Essential Guide to Electronics in Shenzhen' BTN44 on the rights and wrongs of intellectual property theft Corelight sponsor interview with James Pope

    Risky Bulletin: Kaleidoscope ad fraud network infects 2.5m devices a month

    Play Episode Listen Later May 11, 2025 5:50


    The Kaleidoscope ad fraud network infects 2.5 million devices a month, Germany seizes the eXch crypto-mixing service, the US takes down the Anyproxy botnet, and Chrome will use on-device AI to detect tech support scams. Show notes

    Sponsored: What really goes down on Blackhat wifi networks

    Play Episode Listen Later May 11, 2025 15:35


    In this Risky Bulletin sponsor interview James Pope, Director of Technical Enablement, talks to Tom Uren about his experience running networks and security centres at Black Hat conferences around the world. Pope talks about the challenges of running a SOC at a hacker conference, how conference networks around the world have a different character and talks about all the weird and wonderful security snafus he has found. Show notes

    Risky Bulletin: France says Russia's influence operations are achieving results

    Play Episode Listen Later May 9, 2025 6:03


    France says Russia's influence operations are achieving results, Crowdstrike lays off 5% of its staff, a hacker dumps LockBit's ransomware database, and a ransomware attack slows production at a major US medical device maker. Show notes

    Srsly Risky Biz: US Cyber Command to be unleashed

    Play Episode Listen Later May 8, 2025 21:24


    Tom Uren and Patrick Gray talk about how the US is planning to take the gloves off in cyberspace and conduct much more aggressive offensive cyber operations. US responses to cyber espionage have not been very aggressive to date, but Tom is not convinced that cyber punches are required, so much as blows that really hurt. The pair also discuss TeleMessage, the Signal clone the Trump cabinet has been using. The app managed to sidestep certification and assessment processes and ended up being used by various agencies in the US government. And the White House. It's a mystery how this happened. This episode is also available on Youtube. Show notes

    Risky Bulletin: NSO ordered to pay Meta $167 million in WhatsApp lawsuit

    Play Episode Listen Later May 7, 2025 5:37


    NSO Group ordered to pay Meta $167 million dollars, the White House tells N-S-A to cut 8% of its civilian staff, the US sanctions a Myanmar militia group leader for cyber scams, and one of the Nomad Bridge hackers gets arrested in Israel. Show notes

    Between Two Nerds: How tools evolve

    Play Episode Listen Later May 5, 2025 27:44


    In this edition of Between Two Nerds Tom Uren and The Grugq talk about an in-depth report on a Ukrainian hacking control panel. The panel shows how the Ukrainian group thinks about hacking operations and the pair discuss why the report exists and what it achieves. This episode is also available on Youtube. Show notes Bulldog backdoor web panel analysis

    Risky Bulletin: Trump admin's Signal clone gets hacked, messages exposed

    Play Episode Listen Later May 5, 2025 7:52


    The Trump admin's Signal clone gets hacked, a six-year-old backdoor comes to life to hijack online stores, a Phishing kingpin identified as a 24-year-old Chinese man, and Ireland fines TikTok for transferring EU user data to China. Show notes

    Sponsored: Why security is a data search problem

    Play Episode Listen Later May 4, 2025 13:12


    In this Risky Bulletin sponsor interview Mike Wiaceck, CEO and founder of Stairwell, explains why he believes security is really a data storage and retrieval problem. He demonstrates how that pays off with in the analysis of new malware. Show notes

    Risky Bulletin: New Microsoft accounts will be passwordless by default

    Play Episode Listen Later May 2, 2025 5:44


    New Microsoft accounts will be passwordless by default, a Chinese APT is hijacking software updates, the US dominates EU cybersecurity market, and Commvault discloses a breach. Show notes

    Srsly Risky Biz: Security vendors are constantly attacked

    Play Episode Listen Later May 1, 2025 20:47


    Tom Uren and Patrick Gray talk about a SentinelOne report about how it is constantly targeted by both cybercriminal and state-backed hackers. Security firms are high-value targets, so constant attacks on them are the new normal. They also discuss an article that calls Signal “a kind of dark matter of American politics and media”. Many policy discussions occur on the app, and this explains the Trump administration's extensive use of the app. This episode is also available on Youtube. Show notes

    Risky Bulletin: French government grows spine, calls out Russian hacks

    Play Episode Listen Later Apr 30, 2025 8:49


    The French government calls out Russian hacks for the first time, Marks & Spencer sends staff home after a ransomware attack, China accuses America of hacking a major cryptography provider, and AirBorne vulnerabilities impact Apple's AirPlay. Show notes

    Between Two Nerds: Releasing the hounds on scam compounds

    Play Episode Listen Later Apr 28, 2025 31:23


    In this edition of Between Two Nerds Tom Uren and The Grugq discuss the Southeast Asian criminal syndicates that run online scam compounds. Should organisations like US Cyber Command or the UK's National Cyber Force target these gangs with disruption operations? This episode is also available on Youtube. Show notes UN Office of Drugs and Crime on Southeast Asian transnational cyber scammers

    Risky Bulletin: Top AI models all fall to new prompt injection technique

    Play Episode Listen Later Apr 28, 2025 5:25


    A new prompt injection attack is effective against all the big AI models, Poland says Facebook is failing to remove malicious ads, Africa's largest telco discloses a security breach, and hackers breach Malaysian brokerage accounts. Show notes

    Dropzone AI on AI's impact and role for SOC teams

    Play Episode Listen Later Apr 27, 2025 18:43


    In this Risky Business News sponsor interview, Catalin Cimpanu talks with Edward Wu, founder and CEO of Dropzone AI. Edward talks about the impact AI in modern-day SOC teams and how its role slowly becomes a force multiplier and productivity boost rather than workforce replacement. Show notes

    Risky Bulletin: Cybercriminals stole more than $16 billion last year

    Play Episode Listen Later Apr 24, 2025 6:21


    Cybercriminals stole more than $16 billion last year, Iran tries to hack an EU official, the Lazarus Groups pulls off a successful watering hole and zero-day attack, and WhatsApp adds new chat privacy features. Show notes

    Srsly Risky Biz: When pig butcherers fly

    Play Episode Listen Later Apr 24, 2025 16:14


    Tom Uren and Adam Boileau talk about how scam compound criminal syndicates are responding to strong government action by moving operations overseas. It's good they are being affected, but they are shifting into new countries that don't have the ability to counter industrial-scale transnational organised crime. They also discuss CISA's Secure by Design initiative and that key people behind the program have left the organisation. Given prospective job cuts at CISA it is hard to see the initiative getting a lot of love, but international cyber security authorities should pick up the slack. This episode is also available on Youtube. Show notes Cyberfraud in the Mekong reaches inflection point, UNODC reveals

    Risky Bulletin: Russian military personnel targeted with Android spyware

    Play Episode Listen Later Apr 23, 2025 6:09


    Russian military personnel targeted with Android spyware, Trump defends Hegseth after second Signalgate scandal, CISA's Secure by Design leaders depart the agency, and forced-labour cyber scam compounds expand globally. Show notes

    Between Two Nerds: The fate of nations

    Play Episode Listen Later Apr 21, 2025 30:37


    In this edition of Between Two Nerds Tom Uren and The Grugq discuss whether cyber operations can be ‘strategic', that is, can they affect the fate of nations. This episode is also available on Youtube. Show notes

    Risky Bulletin: Crypto-thieves abuse Zoom's remote control feature

    Play Episode Listen Later Apr 21, 2025 7:44


    Zoom has a remote control feature so of course crypto thieves are abusing it, hackers make $700 million in unauthorised stock trades, a Chinese APT leaks its exploits and Euro MPs traveling to Hungary are offered anti-spying pouches for their phones. Show notes

    Sponsored: Two big shifts that will change security

    Play Episode Listen Later Apr 20, 2025 16:10


    In this Risky Bulletin sponsor interview Shane Harding, CEO of Devicie, talks to Tom Uren about trends in the enterprise software and security market that he thinks will have huge impacts. Software is becoming smarter and aims to solve problems rather than simply provide capabilities and Microsoft has embarked on a big push into the SME security market. Show notes

    Risky Bulletin: Chris Krebs resigns, vows to fight

    Play Episode Listen Later Apr 18, 2025 6:21


    Chris Krebs resigns from SentinelOne and vows to fight, the Thai army and police doxed pro-democracy dissidents, CISA extends MITRE's CVE contract, and Apple patches two iOS zero-days. Show notes

    Srsly Risky Biz: Trump vs Krebs and the sound of silence

    Play Episode Listen Later Apr 17, 2025 15:11


    Tom Uren and Patrick Gray discuss Trump's order singling out Chris Krebs, former head of CISA, that requires investigations into Krebs and also punishes his employer. It is a move deliberately designed to chill dissent and they look at what the cyber security industry will likely do in response, which is probably not much. The pair also discuss what is being interpreted as an admission that Chinese senior leadership is behind the Volt Typhoon hacking of US critical infrastructure. This episode is also available on Youtube. Show notes

    Risky Bulletin: MITRE says funding risk could disrupt CVE database

    Play Episode Listen Later Apr 16, 2025 5:05


    MITRE corporation says funding cuts will impact the CVE database, China accuses NSA employees of an Asian Winter Games hack, a ransomware attack disrupts dialysis clinics, the CA/Browser Forum will limit TLS certificate lifetime to 47 days, and 4chan gets hacked. Show notes

    Between Two Nerds: Global critical infrastructure

    Play Episode Listen Later Apr 15, 2025 24:24


    In this edition of Between Two Nerds Tom Uren and The Grugq look at the idea of global critical infrastructure. One common example is submarine cables, which are globally important but are vulnerable because they are hard to defend. But what about services from tech giants? Are they global critical infrastructure? This episode is also available on Youtube. Show notes

    Risky Bulletin: China privately admits to hacking US

    Play Episode Listen Later Apr 14, 2025 5:45


    China privately admits to hacking American critical infrastructure, the US Treasury was compromised by password spraying, America will sign a global spyware agreement after all, and a Chinese APT is abusing the Windows Sandbox to hide its malware. Show notes

    Sponsored: The foundations for modern defensible architecture

    Play Episode Listen Later Apr 13, 2025 13:45


    In this Risky Bulletin sponsor interview David Cottingham and Peter Baussman, Airlock Digital's CEO and CTO, talk to Tom Uren about a new Australian Cyber Security Centre guidance about building defensible networks. The pair cover what they like about the document and where it could be improved. Show notes Foundations for modern defensible architecture

    Risky Bulletin: Trump orders investigation into former CISA director Chris Krebs

    Play Episode Listen Later Apr 11, 2025 6:04


    Trump orders investigation into former CISA director Chris Krebs, the US DOJ disbands its crypto crime team, NSO hires a new lobby team, and researchers raise the alarm on something called “slopsquatting”. Show notes

    Srsly Risky Biz: MAGA's NSA purge will get messy

    Play Episode Listen Later Apr 10, 2025 21:05


    Tom Uren and Patrick Gray discuss Trump's recent firing of General Timothy Haugh, the head of NSA and Cyber Command. Tom dives into the implications and thinks why this is not good news for the agencies. They also discuss Europe losing faith in the US intelligence commitments that underpin transatlantic data flows. That would be bad news for US tech companies. This episode is also available on Youtube. Show notes

    Risky Bulletin: Hackers leak data from major bulletproof hosting provider

    Play Episode Listen Later Apr 9, 2025 7:11


    Hackers leak data from a major Russian bulletproof hosting provider, Australia deregisters 95 companies linked to cyber scams, the US Treasury gets hacked again, and Meta expands “teen accounts” to Facebook and Facebook Messenger. Show notes

    Between Two Nerds: Feast or famine?

    Play Episode Listen Later Apr 7, 2025 27:16


    In this edition of Between Two Nerds Tom Uren and The Grugq look at the idea of ‘false scarcities' in cyber security. Are bugs and talent rare? Or is our thinking blinkered? This episode is also available on Youtube. Show notes

    Risky Bulletin: Trump fires CyberCom and NSA head

    Play Episode Listen Later Apr 7, 2025 6:24


    Trump fires NSA and CyberCom leadership, CISA looks likely to be halved in size, hackers hit Australian pension funds, and NIST gives up on old CVEs in its backlog. Show notes

    Risky Bulletin: Android looks set to get its own Lockdown Mode

    Play Episode Listen Later Apr 4, 2025 5:49


    Android looks set to get its own Lockdown Mode, China overhauls cybersecurity and privacy laws, a crypto platform gets hacked for $70 million dollars, and Greece's intel agency is set to hire more hackers. Show notes

    Claim Risky Business News

    In order to claim this podcast we'll send an email to with a verification link. Simply click the link and you will be able to edit tags, request a refresh, and other features to take control of your podcast page!

    Claim Cancel