Podcasts about Lazarus Group

Durante casi dos décadas, Corea del Norte ha desarrollado una sofisticada red de ciberoperaciones que, según gobiernos occidentales y expertos en seguridad, le permite obtener recursos para financiar su programa nuclear y de misiles. Detrás de estas actividades estarían grupos como Lazarus Group, Andariel y Bluenoroff, vinculados a algunas de las operaciones de piratería informática más ambiciosas de los últimos años. Desde ataques contra bancos hasta el robo de criptomonedas por valor de cientos de millones de dólares, estos grupos han convertido el ciberespacio en una herramienta estratégica para el régimen de Kim Jong-un. ¿Cómo opera esta red global de hackers y qué papel juega en la financiación de los programas militares de Pyongyang? En esta edición analizamos las claves de una de las estructuras de ciberespionaje más sofisticadas del mundo.

Ismael Valenzuela, Arctic Wolf's VP of Labs, Threat Research and Intelligence, discusses their work on "BlueNoroff Uses ClickFix, Fileless PowerShell, and AI-Generated Fake Zoom Meetings to Target Web3 Sector." Arctic Wolf researchers uncovered a sophisticated campaign by North Korean threat group Lazarus Group subgroup BlueNoroff that targets cryptocurrency and Web3 executives through fake Zoom and Microsoft Teams meetings, using typo-squatted links, ClickFix-style attacks, and AI-generated deepfakes to steal credentials and cryptocurrency-related data. The attackers built a self-reinforcing operation that captures victims' webcam footage and Telegram sessions, then repurposes those assets alongside AI-generated images to create increasingly convincing fake meeting participants for future attacks. Researchers identified more than 100 victims across 20 countries, with the campaign primarily targeting CEOs, founders, investors, and senior leaders in the cryptocurrency, blockchain, and financial sectors as part of a long-running effort to steal digital assets and gain access to high-value networks. The research and executive brief can be found here: BlueNoroff Uses ClickFix, Fileless PowerShell, and AI-Generated Fake Zoom Meetings to Target Web3 Sector Learn more about your ad choices. Visit megaphone.fm/adchoices

Ismael Valenzuela, Arctic Wolf's VP of Labs, Threat Research and Intelligence, discusses their work on "BlueNoroff Uses ClickFix, Fileless PowerShell, and AI-Generated Fake Zoom Meetings to Target Web3 Sector." Arctic Wolf researchers uncovered a sophisticated campaign by North Korean threat group Lazarus Group subgroup BlueNoroff that targets cryptocurrency and Web3 executives through fake Zoom and Microsoft Teams meetings, using typo-squatted links, ClickFix-style attacks, and AI-generated deepfakes to steal credentials and cryptocurrency-related data. The attackers built a self-reinforcing operation that captures victims' webcam footage and Telegram sessions, then repurposes those assets alongside AI-generated images to create increasingly convincing fake meeting participants for future attacks. Researchers identified more than 100 victims across 20 countries, with the campaign primarily targeting CEOs, founders, investors, and senior leaders in the cryptocurrency, blockchain, and financial sectors as part of a long-running effort to steal digital assets and gain access to high-value networks. The research and executive brief can be found here: BlueNoroff Uses ClickFix, Fileless PowerShell, and AI-Generated Fake Zoom Meetings to Target Web3 Sector Learn more about your ad choices. Visit megaphone.fm/adchoices

Progress Software urges customers to patch a critical MOVEit authentication bypass. Washington worries about limited access to advanced AI tools. Paid influencers promote pro-American AI. CISA warns Copy Fail is under active exploitation. The Canvas educational platform suffers a data breach. The Lazarus Group uses ClickFix to target high-value enterprise users. U.S. and Chinese authorities raid scam centers in Dubai. Monday Business Brief. On Afternoon Cyber Tea with Ann Johnson: Tony Sager, Senior VP & Chief Evangelist, Center for Internet Security, joins Ann to discuss the accelerating pace of technology, AI, and global software dependencies. May the Fourth be with your firewall.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. Afternoon Cyber Tea On this segment of Afternoon Cyber Tea with Ann Johnson: Tony Sager, Senior VP & Chief Evangelist, Center for Internet Security, joins Ann to discuss how the accelerating pace of technology, AI, and global software dependencies are reshaping the cybersecurity landscape. To hear the full conversation, check out the episode and subscribe where you get your favorite podcasts to listen to past episodes. The show is going on hiatus. Stay tuned for the next chapter soon. Selected Reading ⁠Progress warns of critical MOVEit Automation auth bypass flaw⁠ (Bleeping Computer) ⁠What Was Discussed at Google's White House Meeting About A.I. ⁠(The New York Times) ⁠US Military Reaches Deals With 7 Tech Companies to Use Their AI on Classified Systems ⁠(SecurityWeek) ⁠A Dark-Money Campaign Is Paying Influencers to Frame Chinese AI as a Threat⁠ (WIRED) ⁠CISA says ‘Copy Fail' flaw now exploited to root Linux systems⁠ (Bleeping Computer) ⁠Edtech Firm Instructure Discloses Data Breach Amid Hacker Leak Threats⁠ (SecurityWeek) ⁠Lazarus Targets macOS Users With New “Mach-O Man” Malware Kit⁠ (GB Hackers) ⁠US, China partner on scam center takedown in Dubai⁠ (The Record) ⁠Cloudsmith raises $72 million in Series C funding.⁠ (N2K Pro Business Briefing) Microsoft for Startups (N2K Networks) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

In this conversation, Sanjay Katkar, Founder, Quick Heal Technologies, India's only listed cybersecurity firm, breaks down 30 years of fighting hackers, the real mechanics of ransomware, and why your Gmail password may already be for sale on the dark web. Sanjay Katkar started debugging viruses on floppy disks as a college student in Pune in 1990, eventually building Quick Heal Technologies into India's only publicly listed cybersecurity company with over 25,000 channel partners, a ₹350 crore revenue run rate, and an enterprise security brand, Seqrite, that competes directly with CrowdStrike and SentinelOne in the Indian mid-market. In this episode with host Akshay Datt on Founder Thesis, Sanjay reveals the counterintuitive truth that being a small business does not make you safe - it often makes you the easiest backdoor into a much larger organisation, a tactic called supply chain attacks that is reshaping India cybersecurity risk for every SMB. He explains how the AIIMS ransomware attack involved months of silent reconnaissance before a single file was locked, how North Korea's Lazarus Group stole ₹89 crore from Cosmos Bank using coordinated ATM withdrawals across multiple countries, and why ransomware gangs actively protect their own brand reputation to ensure victims keep paying. With India's DPDP Act now law and AI enabling 10,000 personalised phishing emails per second, this episode arrives at the most consequential moment in India's digital security history.

People think of Aave and Morpho as competitors. But Morpho only lost $1 million when North Korea drained $300M from a DeFi protocol. The architecture explains why. ======================================================== Thank you to our sponsors! Coinbase One 20% off first year of annual plan + $50 Bitcoin bonus. Offer valid until May 31. coinbase.com/unchained Citrea Bitcoin changed how money works. Satya changes how Bitcoin scales. citrea.xyz/unchained Ether.fi 15% cash back on food and ride apps, 3% on everything else. ether.fi/unchained ======================================================== After North Korea's Lazarus Group drained nearly $300 million from Kelp DAO's bridge, the contagion spread fast, leaving close to $200 million in bad debt on Aave. Morpho, one of the largest lending protocols in DeFi, ended up with about $1 million in exposure.  Paul Frambot, co-founder and CEO of Morpho, explains why the protocol's modular, isolated architecture produced a different outcome, and what it reveals about how DeFi lending is supposed to work.  He also addresses the ongoing debate over whether DeFi lenders are fairly compensated for risk, the institutional reaction to the hack and what it means for the sector's timeline, the moral complexity of Arbitrum's decision to freeze stolen funds, and why formal verification may be DeFi's last line of defense in an age of increasingly powerful AI. Host: ⁠⁠⁠⁠⁠⁠Laura Shin⁠⁠⁠⁠⁠⁠, Host / Unchained Guests: ⁠Paul Frambot, Co-founder and CEO of Morpho Labs Learn more about your ad choices. Visit megaphone.fm/adchoices

People think of Aave and Morpho as competitors. But Morpho only lost $1 million when North Korea drained $300M from a DeFi protocol. The architecture explains why. ======================================================== Thank you to our sponsors! Coinbase One 20% off first year of annual plan + $50 Bitcoin bonus. Offer valid until May 31. coinbase.com/unchained Citrea Bitcoin changed how money works. Satya changes how Bitcoin scales. citrea.xyz/unchained Ether.fi 15% cash back on food and ride apps, 3% on everything else. ether.fi/unchained ======================================================== After North Korea's Lazarus Group drained nearly $300 million from Kelp DAO's bridge, the contagion spread fast, leaving close to $200 million in bad debt on Aave. Morpho, one of the largest lending protocols in DeFi, ended up with about $1 million in exposure.  Paul Frambot, co-founder and CEO of Morpho, explains why the protocol's modular, isolated architecture produced a different outcome, and what it reveals about how DeFi lending is supposed to work.  He also addresses the ongoing debate over whether DeFi lenders are fairly compensated for risk, the institutional reaction to the hack and what it means for the sector's timeline, the moral complexity of Arbitrum's decision to freeze stolen funds, and why formal verification may be DeFi's last line of defense in an age of increasingly powerful AI. Host: ⁠⁠⁠⁠⁠⁠Laura Shin⁠⁠⁠⁠⁠⁠, Host / Unchained Guests: ⁠Paul Frambot, Co-founder and CEO of Morpho Labs Learn more about your ad choices. Visit megaphone.fm/adchoices

Conflict in the Middle East disrupts the circuit board supply chain. The Supreme Court considers arguments on geofence searches. A new report highlights Chinese digital transnational repression. The NCSC protects HDMI and DisplayPort links. Tennessee bans cryptocurrency ATMs. Researchers expose a financially motivated subgroup of North Korea's Lazarus Group. Medtronic confirms a ShinyHunters data breach. Tim Starks, from CyberScoop discusses telecom vulnerabilities. A helpful AI deletes everything.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest We welcome back Tim Starks, Senior Reporter for CyberScoop, discussing telecom vulnerabilities. Selected Reading Iran war disrupts the circuit board supply chain, raises costs for tech firms (Reuters) Iranian hackers expose personal details of thousands of US Marines in Middle East (Metro) Supreme Court signals location data searches should require a warrant (The Record) Tall Tales: How Chinese Actors Use Impersonation and Stolen Narratives to Perpetuate Digital Transnational Repression (The Citizen Lab) NCSC launches SilentGlass, a plug-in device to secure HDMI and DisplayPort links (Security Affairs) Tennessee becomes second state to ban cryptocurrency ATMs over scam concerns (The Record) BlueNoroff Uses ClickFix, Fileless PowerShell, and AI-Generated Fake Zoom Meetings to Target Web3 Sector (Arctic Wolf) Medtronic Hack Confirmed After ShinyHunters Threatens Data Leak (SecurityWeek) Claude-powered AI coding agent deletes entire company database in 9 seconds — backups zapped, after Cursor tool powered by Anthropic's Claude goes rogue (Tom's Hardware) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

The $290 million Kelp DAO hack, attributed to North Korea's Lazarus Group, has DeFi TVL down $13 billion in 48 hours. Do DeFi's foundational assumptions need to change? --- Heads up! If you haven't yet, be sure to subscribe to Bits + Bips, since the show will migrate there in a few weeks. Follow us on Apple Podcasts, YouTube, Spotify, X, Unchained and wherever you get your podcasts. ---- DeFi TVL fell from $99.5 to $86.3 billion in 48 hours after the $290 million Kelp DAO exploit — the latest nine-figure attack attributed to North Korea's Lazarus Group, this time via a compromised Layer Zero bridge.  Meanwhile, a new class of yield-bearing instrument is staking a claim on capital fleeing private credit: Apyx's APY USD, backed by Strategy's STRC preferred stock, launched on Kraken this week with a 12% yield target and $180 million in supply after just seven weeks. Is STRC-backed yield a legitimate financial primitive, or a Bitcoin derivative with extra steps?  And as DeFi absorbs yet another devastating security failure, is the industry's core assumption — that incoming transactions should be treated as legitimate — finally due for an overhaul? Austin Campbell, Ram Ahluwalia, and Chris Perkins dig in with Parker White of Apyx and Michael Bentley of Euler. Hosts: ⁠⁠⁠⁠⁠⁠Austin Campbell⁠⁠⁠⁠⁠⁠, Host of Bits + Bips, Zero Knowledge Consulting ⁠⁠⁠⁠⁠⁠Ram Ahluwalia⁠⁠⁠⁠⁠⁠, Co-Host, CEO of Lumida ⁠⁠⁠⁠⁠⁠Chris Perkins⁠⁠⁠⁠⁠⁠, Co-Host, CEO of 250 Digital Asset Management Hosts: ⁠⁠⁠⁠⁠⁠Parker White — @TheOtherParker_ — Founding Contributor, Apyx. ⁠⁠⁠⁠⁠⁠Michael Bentley — @euler_mab — Former CEO, Euler Labs Learn more about your ad choices. Visit megaphone.fm/adchoices

Bitcoin surges past $78K on Trump's indefinite Iran ceasefire extension and massive institutional demand, with Strategy's $2.54 billion BTC buy and nearly $1 billion in weekly ETF inflows providing strong tailwinds. Russia passes its crypto bill in first reading for foreign trade use, while New York sues Coinbase and Gemini over prediction markets. North Korea's Lazarus Group has stolen over $500 million in April with new malware attacks, and Arbitrum froze $71 million from the Kelp DAO exploit. Ethereum logs its busiest quarter ever, and the industry ramps up $200 million in midterm spending—markets show renewed energy but remain sensitive to geopolitical and security developments. Hosted on Acast. See acast.com/privacy for more information.

The $290 million Kelp DAO hack, attributed to North Korea's Lazarus Group, has DeFi TVL down $13 billion in 48 hours. Do DeFi's foundational assumptions need to change? --- Heads up! If you haven't yet, be sure to subscribe to Bits + Bips, since the show will migrate there in a few weeks. Follow us on Apple Podcasts, YouTube, Spotify, X, Unchained and wherever you get your podcasts. ---- DeFi TVL fell from $99.5 to $86.3 billion in 48 hours after the $290 million Kelp DAO exploit — the latest nine-figure attack attributed to North Korea's Lazarus Group, this time via a compromised Layer Zero bridge.  Meanwhile, a new class of yield-bearing instrument is staking a claim on capital fleeing private credit: Apyx's APY USD, backed by Strategy's STRC preferred stock, launched on Kraken this week with a 12% yield target and $180 million in supply after just seven weeks. Is STRC-backed yield a legitimate financial primitive, or a Bitcoin derivative with extra steps?  And as DeFi absorbs yet another devastating security failure, is the industry's core assumption — that incoming transactions should be treated as legitimate — finally due for an overhaul? Austin Campbell, Ram Ahluwalia, and Chris Perkins dig in with Parker White of Apyx and Michael Bentley of Euler. Hosts: ⁠⁠⁠⁠⁠⁠Austin Campbell⁠⁠⁠⁠⁠⁠, Host of Bits + Bips, Zero Knowledge Consulting ⁠⁠⁠⁠⁠⁠Ram Ahluwalia⁠⁠⁠⁠⁠⁠, Co-Host, CEO of Lumida ⁠⁠⁠⁠⁠⁠Chris Perkins⁠⁠⁠⁠⁠⁠, Co-Host, CEO of 250 Digital Asset Management Hosts: ⁠⁠⁠⁠⁠⁠Parker White — @TheOtherParker_ — Founding Contributor, Apyx. ⁠⁠⁠⁠⁠⁠Michael Bentley — @euler_mab — Former CEO, Euler Labs Learn more about your ad choices. Visit megaphone.fm/adchoices

The latest Lazarus Group-led DeFi exploit set off a $13 billion exodus from DeFi platforms, and we cover the spiciest talk on Bitcoin and quantum computing at OPNEXT. Get your tickets to OPNEXT 2026 before prices increase! Join us on April 16 in NYC for technical discussions, investor talks, and intimate conversation with the brightest minds in Bitcoin. Welcome back to The Blockspace Podcast! Today, Jay Patel, the CEO of Lygos Finance, and Aydin Kilic, CEO of HIVE Digital, join us to respectively discuss risk in crypto credit markets and Hive's latest $100M senior note. For news, we break down the $293 million Kelp DAO hack by the Lazarus Group and the $13 billion ripple effect this had on other DeFi platforms like Aave. Plus, we give a recap of one of the most salient talks at Blockspace's OPNEXT conference and break down NYDIG's incipient deal to purchase an aluminum smelting site from Alcoa that has been dormant since 2014. Subscribe to the newsletter! https://newsletter.blockspacemedia.com Notes: • $13.8 billion unwound from DeFi in 48 hours. • Kelp DAO exploit led to $293 million loss. • Aave protocol facing $195 million in bad debt. • Bitcoin rallied back above the $75,000 level. • NYDIG eyes Alcoa smelting site for BTC mining Timestamps 00:00 Start 03:26 DeFi is NOT ok 13:58 Jay Patel, Lygos Finance 34:31 Aydin Kilic, HIVE 58:46 OPNEXT recap 1:11:33 NYDIG to buy defunct aluminium smelter 1:14:09 Strategy buying more BTC

The KelpDAO hack has had massive ramifications across the entire DeFi ecosystem, affecting many protocols with essentially a run on the bank as they try to get their liquidity out. 0:00 Intro0:45 KelpDAO Hack Fallout1:45 Aave Bank Run3:05 LayerZero Explained4:35 DVN Security Flaw6:05 Broader Protocol Risk7:45 Cardano Bridge Difference9:10 DeFi Looping Risk12:58 Wrap UpWhat you'll learn:• The KelpDAO hack has had massive ramifications across the entire DeFi ecosystem, affecting so many protocols with essentially what's a run…• I'm going to go through the details here of what actually happened and why all these protocols seem to be falling over and all this TVL, th…• If it's your first time here, hit that thumbs up, like, subscribe, notification bell.• I talk all things crypto in this space here, and I'll try to keep you guys up to date with everything.• And this is the probably not the biggest hack this year, but it's had the biggest ramifications.• KelpDAO was hacked, had 293.7 stolen in an attack by an entity believed to be the Lazarus Group that's linked to North Korea.References:• x.com — https://x.com/astroboysoup/status/2043332063026393325• x.com — https://x.com/Oraclecharli3/status/2043495472938053744• x.com — https://x.com/NuvolaDigital/status/1842233465489489933• x.com — https://x.com/NuvolaDigital/status/2043361539294634493• Charli3 Docs - Technical Guide of Oracle Integration — https://docs.charli3.io/partner-chains

Today's blockchain and crypto news Bitcoin is up slightly at $75,335 Eth is up slightly at $2,310 XRP is up slightly at $1.41 Strategy buys another 34,164 BTC LayerZero said North Korea's Lazarus Group behind attacks. Cobo launches Cobo agentic wallet. California federal judge rules JENNER token not a security Learn more about your ad choices. Visit megaphone.fm/adchoices

Kelp DAO's $292 million exploit wipes $13 billion from DeFi. A $292 million exploit of Kelp DAO's cross-chain bridge has wiped $13 billion from DeFi in two days, with Aave alone losing $8.45 billion in deposits. LayerZero attributes the attack to North Korea's Lazarus Group and blames Kelp's single-verifier setup. CoinDesk's Jennifer Sanasie hosts "CoinDesk Daily." - This episode was hosted by Jennifer Sanasie. “CoinDesk Daily” is produced by Jennifer Sanasie and edited by Victor Chen.

Ransomware sanctions are something most companies never think about — until they're staring down a ransom demand from a group the US government has already put on a sanctions list. In this episode, Dr. Mike Saylor walks us through a real incident involving a construction company, hundreds of millions in active contracts, and the Lazarus Group — a North Korean state-sponsored threat actor. Before that company could pay a single dollar in ransom, they had to figure out whether doing so would trigger federal penalties that dwarfed the ransom itself. We're talking fines of 10x to 100x the payment amount, and in some jurisdictions, jail time.This is one of those episodes where the story alone is worth your time. Mike was in the room for this incident, negotiating directly with the Lazarus Group over a weekend — and yes, it turns out North Korean cybercriminals have a surprisingly functional help desk. But beyond the story, there's real actionable information here about OFAC (the Office of Foreign Asset Control), how the US Treasury tracks Bitcoin wallets to identify sanctioned actors, and what you actually need to do the moment ransomware hits your organization.We also get into why paying a ransom paints a target on your back — 70% of companies that pay get hit again within six months — and why immutable backups are the only thing that truly keeps you out of this situation.Chapters:0:00 Intro1:31 Meet the Guests: Curtis, Prasanna, and Dr. Mike Saylor4:10 Case Study: A Construction Company and the Lazarus Group6:34 Are These Bad Guys Sanctioned? Introducing OFAC8:05 Why Ransomware Funds Terrorism, Drug Trafficking, and Worse11:00 Sanctions Penalties: Fines That Can Put You Out of Business12:24 Colonial Pipeline and Exceptions for Critical Infrastructure13:26 How the Government Tracks Bitcoin Wallets16:27 Global Sanctions: UK and Australia Have Their Own Rules18:31 Pay Once, Pay Again: The 70% Re-Attack Rate20:43 Proof of Life: Don't Pay Without It23:38 What To Do When You Get Hit: The Right Order of Operations25:17 Immutable Backups: The Only Real Answer27:07 How the Construction Company's Backups Got Wiped33:07 Build Your Team Before the Bad Day: FBI InfraGard and More

KelpDAO suffers a $290 million exploit on its LayerZero bridge. Aave freezes ETH and LST markets amid the exploit. Fluid launches the aWETH redemption protocol. And LayerZero attributes the hack to a RPC-poisoning attack by the Lazarus Group. Read more: https://ethdaily.io/929 Sponsor: Lido Earn lets you deploy stablecoins into curated DeFi strategies for optimised yield. Two vaults, daily rewards, automatic compounding, and first-loss protection. Get started on stake.lido.fi/earn. Notice - April 20, 2026: EarnETH has direct exposure to rsETH. Disclaimer: Content is for informational purposes only, not endorsement or investment advice. The accuracy of information is not guaranteed.

Fraud is not new. But the scale, speed, and sophistication have changed.In this episode of Couchonomics with Arjun, Arjun is joined by Navin Gupta, CEO of Crystal Intelligence, and Nick Smart, Chief Intelligence Officer at Crystal Intelligence, to unpack the evolving world of crypto-related fraud, institutional risk, and the uncomfortable truth about financial crime in a 24/7 digital economy.From the Lazarus Group and the Bybit hack to scam compounds operating at industrial scale, this conversation moves beyond headlines and into how crypto crime actually works, why velocity of money matters, and whether regulation is finally catching up.They explore the intersection of traditional finance and digital assets, stablecoins, tokenization, AI-driven fraud, and the systemic risks emerging as crypto integrates deeper into the global financial system.

AOBPrime SHIPPING!FTF with ZachSamourai Domain PSALauren on with Danny from WBDQ still vibingNEWSKentucky HB 380 requires HWW manufacturers to reset users' seeds upon request https://x.com/bitcoinpolicy/status/2034702487995768878GrapeheneOS refuses to comply with new age verification laws for OS https://www.tomshardware.com/software/operating-systems/grapheneos-refuses-to-comply-with-age-verification-lawsGoogle reverses Android developer verification requirement amidst user backlash - https://www.scworld.com/brief/google-reverses-android-developer-verification-requirement-amidst-user-backlashDOJ Seeks October Retrial for Tornado Cash Developer Roman Storm — https://www.coindesk.com/business/2026/03/10/u-s-requests-october-retrial-for-tornado-cash-developer-roman-stormBitrefill Hacked by North Korea's Lazarus Group — 18,500 Purchase Records Exposed — https://bitcoinmagazine.com/news/bitrefill-cyberattack-points-north-koreaPokemon Go's 30 Billion Images Now Training Delivery Robots — Mass Surveillance Data Harvesting Revealed — https://www.therage.co/pokemon-go-users-trained-killer-robots/UPDATES/RELEASESAm I Exposed? https://am-i.exposed/ by Arkad and CoSelf hosted chain analysis toolAlready on startOSStealth Fork already emergedhttps://x.com/MgkMshrmBrkfst/status/2033771448255566082?s=20Last Signal App https://lastsignal.app/Self hosted dead man switchSparrow Wallet 2.4.2 — March 10, 2026Introduces support for v3 transactions in the editor, implements TOFU certificate pinning for TLS connections, and adds BIP-322 signing via QR and file methods. Numerous dependency upgrades plus bug fixes for PSBTv2 transaction issues, potential database corruption, and dark theme display problems.https://github.com/sparrowwallet/sparrow/releases/tag/2.4.2Aqua v0.4.1 — March 13, 2026Patch addressing multiple bugs and performance improvements. Re-adds region selector to the marketplace, introduces Arabic and Chinese language support, and adds new iOS icon designs. Fixes wallet setup errors when scanning certain QR codes.https://github.com/AquaWallet/aqua-wallet/releases/tag/v0.4.1Boltz USDT Swaps - March 18, 2026Announces USDT Swaps - connecting Bitcoin to the world's most used stablecoin. Swap between Lightning and USDT on all major networks, without custody, accounts, or KYC! Envoy 2.2.12 — March 13, 2026Major update centred on Passport Prime device support. Includes multi-device pairing capability, Bluetooth reliability improvements, and fixes for dozens of bugs across BLE pairing, QuantumLink stability, and the Passport Prime onboarding flow.https://github.com/Foundation-Devices/envoy/releases/tag/2.2.12BTCPay v2.3.6 — March 15, 2026Stable release introducing wallet label filtering, API enhancements for payment method inclusion, invoice modal improvements, security upgrades for API key permissions, and plugin permission policy creation.https://github.com/btcpayserver/btcpayserver/releases/tag/v2.3.6Bisq v2.1.10 — March 17, 2026Implements new trade rules for payment references, adds trade history and QR code pairing support for the Bisq Connect mobile app, introduces TLS support for clearnet connections.https://github.com/bisq-network/bisq2/releases/tag/v2.1.10Phoenix Android v2.7.5 — March 17, 2026Introduces a diagnostics button and adds the spend-channel-address recovery tool to iOS. Android app now supports Indonesian language.https://github.com/ACINQ/phoenix/releases/tag/android-v2.7.5Nunchuk 2.2.8 — March 18, 2026Introduces support for sending to Silent Payment addresses and adds an option to view seed phrases for software keys after a two-hour security delay, along with various bug fixes.https://github.com/nunchuk-io/nunchuk-android/releases/tag/2.2.8Peach Bitcoin 0.69.0 — March 18, 2026Introduces unlimited premium functionality for offers, decimal premium values, improved dark mode colour contrast, and fixes for Revolut/Wise/M-Pesa payment information transmission.https://github.com/Peach2Peach/peach-app/releases/tag/v0.69.0-337Mostro v0.17.0 — March 19, 2026Three releases in the window (v0.16.4, v0.16.5, v0.17.0). Major refactoring work: migration to AppContext-based dependency injection, removal of legacy global state patterns, elimination of password-based database encryption infrastructure.https://github.com/MostroP2P/mostro/releases/tag/v0.17.0Cake Wallet v6.0.1–v6.0.3 — March 6–21, 2026Major redesign + Bitcoin Lightning support via Spark protocol. v6.0.1 (March 6) was the major release with the new UI and Lightning; v6.0.2 (March 17) added Linux distribution support; v6.0.3 (March 21) adds design improvements, performance enhancements, and bug fixes.https://github.com/cake-tech/cake_wallet/releases/tag/v6.0.3Pre-release / Alpha / BetaBitkey App Release 2026.2.1 — March 18, 2026App update with emergency APK download for users who have lost app access and an Emergency Exit Kit reference document for account recovery.https://github.com/proto-at-block/bitkey/releases/tag/2026.2.1Ibis Wallet v3.0 + v3.0.1-betaLiquid w/LN swaps, Boltz on backend, wallet locks, cancel txs with RBF, notificationsLNBits v1.5.2-rc3 — March 20, 2026Three release candidates (rc1 through rc3) published March 18–20, building toward v1.5.2 stable.https://github.com/lnbits/lnbits/releases/tag/v1.5.2-rc3Mempool v3.3.0-beta2 — March 20, 2026Beta release tag with minimal release notes.https://github.com/mempool/mempool/releases/tag/v3.3.0-beta2Start9 v0.4.0-alpha.21 — March 18, 2026UI refinements for port labelling, SSH corrections, WiFi fixes, and support for preferred external ports beyond port 443.https://github.com/Start9Labs/start-os/releases/tag/v0.4.0-alpha.21EducationThe Core Issue: Your Node Vs. The Digital Wilderness — https://bitcoinmagazine.com/print/the-core-issue-your-node-vs-the-digital-wildernessThe Core Issue: Outrunning Entropy, Why Bitcoin Can't Stand Still — https://bitcoinmagazine.com/print/the-core-issue-outrunning-entropy-why-bitcoin-cant-stand-stillThe Core Issue: Consensus Cleanup — https://bitcoinmagazine.com/print/the-core-issue-consensus-cleanupTO DONATE TO ROMAN'S DEFENSE FUND: https://freeromanstorm.com/donateHELP GET SAMOURAI A PARDONSIGN THE PETITION ----> https://www.change.org/p/stand-up-for-freedom-pardon-the-innocent-coders-jailed-for-building-privacy-tools DONATE TO THE FAMILIES ----> https://www.givesendgo.com/billandkeonneSUPPORT ON SOCIAL MEDIA ---> https://billandkeonne.org/VALUE FOR VALUEThanks for listening you Ungovernable Misfits, we appreciate your continued support and hope you enjoy the shows.You can support this episode using your time, talent or treasure.TIME:- create fountain clips for the show- create a meetup- help boost the signal on social mediaTALENT:- create ungovernable misfit inspired art, animation or music- design or implement some software that can make the podcast better- use whatever talents you have to make a contribution to the show!TREASURE:- BOOST IT OR STREAM SATS on the Podcasting 2.0 apps @ https://podcastapps.com- DONATE via Monero @ https://xmrchat.com/ugmf- BUY SOME STICKERS @ https://www.ungovernablemisfits.com/shop/FOUNDATIONhttps://foundation.xyz/ungovernableFoundation builds Bitcoin-centric tools that empower you to reclaim your digital sovereignty.As a sovereign computing company, Foundation is the antithesis of today's tech conglomerates. Returning to cypherpunk principles, they build open source technology that “can't be evil”.Thank you Foundation Devices for sponsoring the show!Use code: Ungovernable for $10 off of your purchaseCAKE WALLEThttps://cakewallet.comCake Wallet is an open-source, non-custodial wallet available on Android, iOS, macOS, and Linux.Features:- Built-in Exchange: Swap easily between Bitcoin and Monero.- User-Friendly: Simple interface for all users.Monero Users:- Batch Transactions: Send multiple payments at once.- Faster Syncing: Optimized syncing via specified restore heights- Proxy Support: Enhance privacy with proxy node options.Bitcoin Users:- Coin Control: Manage your transactions effectively.- Silent Payments: Static bitcoin addresses- Batch Transactions: Streamline your payment process.Thank you Cake Wallet for sponsoring the show!MYNYMBOXhttps://mynymbox.ioYour go-to for anonymous server hosting solutions, featuring: virtual private & dedicated servers, domain registration and DNS parking. We don't require any of your personal information, and you can purchase using Bitcoin, Lightning, Monero and many other cryptos.Explore benefits such as No KYC, complete privacy & security, and human support.(00:00:00) INTRO(00:00:57) THANK YOU FOUNDATION(00:01:38) THANK YOU CAKE WALLET(00:02:43) PRIME TIME(00:07:16) PSA: Avoid SamouraiWallet.com(00:12:16) Vibe Coding Corner(00:20:09) Kentucky HB 380 Would Break Self‑Custody(00:24:31) GrapheneOS Stands Firm(00:25:21)

Kraken shelves its IPO as market conditions shift. Francis Corvino joins to break down the Blockfills bankruptcy and the $145M in claims. Plus, the SEC's new token guidance, Circle's stock surge, and a sophisticated North Korean hack targeting Bitrefill and Jimmy Song. Get your tickets to OPNEXT 2026 before prices increase! Join us on April 16 in NYC for technical discussions, investor talks, and intimate conversation with the brightest minds in Bitcoin. Francis Corvino, of Lygos Finance joins us to talk about the Blockfills bankruptcy filing, their $145M in unsecured claims, and why the 2022 "hangover" is still claiming victims today. We also dive into Kraken's decision to delay its public offering, the SEC's long-awaited guidance on token offerings, and the meteoric rise of Circle's stock following Clarity Act talks. Finally, we warn you about the sophisticated Lazarus Group phishing campaign that hit Bitrefill and targeted seasoned developers. Subscribe to the newsletter! https://newsletter.blockspacemedia.com Notes: * Kraken delayed IPO due to market conditions. * Blockfills: $145M in unsecured claims reported. * Lazarus Group hack targeted Bitrefill via Telegram. Timestamps: 00:00 Start 03:33 Kraken IPO delay 12:06 Lygos Finance on Bitfills 26:09 SEC clarity on crypto assets 34:59 Vanity Fair hit piece 47:44 Ledn & the Bitcoin loan market 1:02:42 Cathedra on HPC & mining

Microsoft just dropped patches for SIX actively exploited zero-day vulnerabilities — and that's just the beginning. In this week's Hacking News, we break down the February 2026 Patch Tuesday emergency, North Korea's Lazarus Group poisoning npm and PyPI through fake job recruiters, nation-state hackers weaponizing Google's Gemini AI (including malware that writes its own payloads), a massive Dutch telecom breach affecting 6.2 million people, and a U.S. government contractor breach that ballooned from 4 million to potentially tens of millions affected. This is Exploit Brokers by Forgebound Research — cybersecurity news, threat intelligence, and insights. Whether you're a security analyst, developer, or just someone who wants to stay informed, this episode has something for you.

North Korean hackers with the Lazarus Group have stolen over $300 million with this Telegram phishing scam. Subscribe to the Blockspace newsletter! Welcome back to The Blockspace Podcast! Today, Taylor Monahan, a security lead at MetaMask, joins us to talk about a highly sophisticated $300M phishing attack linked to North Korea's Lazarus Group. Taylor shares how the Lazarus Group hijacks Telegram accounts to lure victims into fake Zoom meetings and download a Trojan horse malware program. We break down the hackers' strategy, how the malware works, which wallet types are most vulnerable to theft, and what users can do to protect themselves if they have fallen prey to the scam or not. Tune in to learn how to identify these red flags and implement better digital hygiene for your crypto assets. Check out this article for a deep dive into how the malware works; plus, follow Taylor for updates on X and keep track of Laars Group's history of hacks via her Github.  Subscribe to the newsletter! https://newsletter.blockspacemedia.com Notes: * Lazarus Group stole over $300M in the last year. * Attackers hijack Telegram accounts. * Scammers use fake Zoom links to deploy malware. * Malware often bypasses paid antivirus software. * Sandbox architecture on iOS offers more safety. * Software wallets and browser wallets are most vulnerable. * 2FA remains critical for sensitive account access. Timestamps: 00:00 Start 03:51 Telegram attack 11:30 2 Factor Authenticators 13:48 Losses 16:38 Calculating losses 19:08 North Korea 21:52 Malware 24:17 Malware detection 25:16 EDR 27:12 Wallets 34:21 Is verifying addresses enough? 39:28 Wallet malware design 44:11 What do they want? 54:16 Taylor stealing payloads 1:01:49 Steps to protect

References & Affiliates

Report sheds light on cyber activity targeting space-related organizations during the Gaza War. Russian threat actor targets US civil engineering firm. FBI says $262 million has been stolen in account takeover scams this year. HashJack attack tricks AI browser assistants. London councils disrupted by cyberattacks. Russia's Gamaredon and North Korea's Lazarus Group appear to be sharing infrastructure. Canon says subsidiary was breached by Oracle EBS flaw. Dave Bittner was joined by Cynthia Kaiser, SVP of the Ransomware Research Center at Halcyon, sharing a deep dive on Akira ransomware. And Campbell's Soup CISO placed on leave following lawsuit. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Dave Bittner was joined by Cynthia Kaiser, SVP of the Ransomware Research Center at Halcyon, sharing a deep dive on Akira ransomware. Learn more on Halcyon's threat actor profile of Akira, and how they fit into their latest Malicious Quartile Report. Selected Reading New Report Warns Space Sector Faces Rising Cyber Threats Amid Modern Conflicts (Orbital Today)  Russian RomCom Utilizing SocGholish to Deliver Mythic Agent to U.S. Companies Supporting Ukraine (Arctic Wolf) FBI says $262 million has been stolen in account takeover scams this year (IC3) HashJack – Novel Indirect Prompt Injection Against AI Browser Assistants (Cato Networks) Multiple London councils 'hit by cyber-attacks' (BBC) London Cyberattacks Confirmed — Security Experts Issue Multiple Warnings (Forbes) Russian and North Korean Hackers Forge Global Cyberattack Alliance (GB Hackers) Canon Allegedly Breached by Clop Ransomware via Oracle E-Business Suite 0-Day Hack (Cyber Security News)   A Campbell Soup VP is on leave after secret recording appears to show him mocking 'poor' customers, '3D-printed chicken' (Business Insider) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

What are some ways you can build the Kingdom through your business right at home? In this episode, Jeff and Jarrod discuss: Boldly and unashamedly preaching the gospel of Jesus Christ.Freedom through obedience.Business to support the ministry.Take care of things at home first.  Key Takeaways: Growth often needs to happen slowly and deliberately to support the leaders and the development of the community.Teach people to fish. Be willing to go on the journey with them at the necessary speed. Not everything needs to be done immediately. Change happens in God's time.Start with your business. There are needs at home, not just overseas.Things can get messy when you run a Kingdom business because you become aware of people's lives and challenges. Start there.  "What we know to be true is that sound business principles are the same around the world, and if a ministry is pushing back when you ask just simple questions about accountability, KPIs, and transparency, you need to ask more." —  Jarrod Brown About Jarrod Brown:Jarrod Brown is the founder and CEO of Mission Lazarus, a nonprofit organization using development initiatives to help individuals live abundant lives, now and forever. Mission Lazarus focuses on medical, educational, economic, and spiritual development initiatives in isolated and remote villages in Honduras and Haiti. Jarrod moved to Honduras in 2001, where he lived for nearly 13 years. Jarrod is also the founder and president of Lazarus Group, the holding company for numerous for-profit endeavors, including San Lazaro Coffee and Lazarus Artisan Goods, that are used as tools for sustainable discipling. Jarrod has degrees in International Business and Spanish. He is passionate about finding sustainable solutions in ministry and business to transform lives and the Kingdom. Today, Jarrod and his wife Gabi call Magnolia, Texas, home. They have three children, Aiden, Levi, and Soledad.  Connect with Jarrod Brown:Facebook: https://www.facebook.com/missionlazarus/Instagram: https://www.instagram.com/missionlazarus    Connect with Jeff Thomas: Website: https://www.arkosglobal.com/Podcast: https://www.generousbusinessowner.com/Book: https://www.arkosglobal.com/trading-upEmail: jeff.thomas@arkosglobal.comTwitter: https://twitter.com/ArkosGlobalAdvFacebook: https://www.facebook.com/arkosglobal/LinkedIn: https://www.linkedin.com/company/arkosglobaladvisorsInstagram: https://www.instagram.com/arkosglobaladvisors/YouTube: https://www.youtube.com/channel/UCLUYpPwkHH7JrP6PrbHeBxw

Welcome to this week's episode of the PEBCAK Podcast!  We've got four amazing stories this week so sit back, relax, and keep being awesome!  Be sure to stick around for our Dad Joke of the Week. (DJOW) Follow us on Instagram @pebcakpodcast   Please share this podcast with someone you know!  It helps us grow the podcast and we really appreciate it!   2016: The Dawn of Modern Ransomware The debut of Petya and Russian-affiliated groups like CryptoWall, TeslaCrypt, and Locky. Attacks were largely indiscriminate, targeting anyone from Fortune 500 companies to "Grandma's laptop." Early mitigation tactics, like installing Russian language packs to avoid infection, highlighted the state-tolerated nature of these groups.   2017: Ransomware Goes Mainstream A pivotal year with the WannaCry attack (attributed to North Korea's Lazarus Group) and NotPetya (Russian-backed), causing billions in damages to companies in multiple verticals. The SAMSAM attacks hit U.S. cities like Baltimore and Atlanta, marking Iran's brief foray into ransomware. Ransomware became a household name, sparking executive-level discussions in boardrooms.   2020: The Rise of Ransomware-as-a-Service Groups like Ryuk, REvil, and Conti refined ransomware into a business model, outsourcing tasks like initial access and money laundering. Double extortion emerged, with attackers stealing data and threatening to leak it, even if backups were restored. Some groups introduced “terms of service,” avoiding hospitals and schools to dodge law enforcement scrutiny.   2021: Critical Infrastructure in the Crosshairs High-profile attacks on Colonial Pipeline, JBS Foods, and Ireland's National Health Service disrupted daily life, from gas shortages to meat supply issues. These incidents underscored ransomware's real-world impact, elevating cybersecurity to a boardroom priority.   2022: Geopolitical Shifts and New Players Russian-backed groups like Conti and LockBit shifted focus to Ukraine amid the Russia-Ukraine conflict. The rise of Scattered Spider, a Western-based group excelling at social engineering and SIM swapping, marked a shift from Eastern state-tolerated actors.   2023: Trust Breaks Down The ALFV/BlackCat group's $22 million rug pull against affiliates signaled the decline of Russian-backed ransomware dominance. Scattered Spider solidified its reputation, targeting major hospitality and cleaning companies with sophisticated social engineering tactics.   2025: The Western Cybercrime Surge Scattered Spider and affiliates like DragonForce dominate, hitting retailers, insurance, aviation, and automotive sectors. The shift to Western-based actors, often young and operating in Five Eyes nations, makes them more vulnerable to law enforcement.   Trends and Takeaways The move from expensive zero-day exploits to cheaper n-day exploits and social engineering highlights attackers' adaptability. Double extortion and even “double dipping” (demanding additional ransoms months later) have become standard tactics. The accessibility of AI tools and open-source platforms like Venice AI has lowered the barrier for creating ransomware, even for non-programmers. Law enforcement's increasing success in arrests and Bitcoin recovery (e.g., DarkSide's downfall) offers hope for curbing cybercrime.       Dad Joke of the Week (DJOW)   Find the hosts on LinkedIn: Chris - https://www.linkedin.com/in/chlouie/ Ben - https://www.linkedin.com/in/benjamincorll/

Find Sai here: https://www.saihuda.com/ Read his bestselling book: https://www.amazon.com/Next-Level-Cybersecurity-Detect-Signals/dp/1943386412 Timestamps: (5:00) - Actual advice to make you more secure (9:00) - The PR issue of Cybersecurity -> Risk and Compliance (20:00) - What does CyberCatch do? (24:00) - Russian CyberGangs, The Lazarus Group (31:00) - A tale as old as time: Agent on Agent Violence // Security in the Age of AI (42:00) - MFA is your Biggest Security Weapon (48:00) - How do we Incentivize Hacking for “Good”?

$1.5 billion disappears in minutes. But what follows reveals North Korea's expanding reach — from elite hackers to soldiers on the battlefield.The audacious attack was on the ByBit crypto exchange in February 2025. Investigators say North Korean hackers the Lazarus Group are responsible – the biggest heist in the history of crypto. With our hosts Jean Lee and Geoff White, we uncover how they pulled it off.But as Pyongyang's cyber army is striking targets all over the world, North Korean soldiers have also been fighting on more traditional battlegrounds – siding with Russia in its war on Ukraine. We meet the South Korean correspondent who secured a world-exclusive interview with a North Korean POW. Does this all signify a turning point for North Korean leader Kim Jong-un, as his cyber operatives pull off increasingly daring heists and his military gain real-world combat experience fighting with the Russians against Ukraine? As Kim continues to ally with Vladimir Putin — a leader whose country possesses exactly the kind of nuclear expertise North Korea has long sought – is he more dangerous than ever? Meanwhile North Korea says it has nothing to do with the cybercrimes the Lazarus Group is accused of, saying the United States is making these allegations to try and tarnish its image.Our story is about more than money. It's about where it goes, what it buys, and who's fighting in the shadows.

A sweeping malware campaign by North Korea's Lazarus Group targets open source ecosystems. President Trump announces a new electronic health records system. A new report reveals deep ties between Chinese state-sponsored hackers and Chinese tech companies. Researchers describe a new prompt injection threat targeting LLMs via browser extensions. Palo Alto Networks' Unit 42 proposes a new Attribution Framework. Honeywell patches six vulnerabilities in its Experion Process Knowledge System. Researchers track the rapid evolution of a sophisticated Android banking trojan. Scattered Spider goes quiet following recent arrests. Our guests are Jermaine Roebuck and Ann Galchutt from CISA, discussing "Open-Source Eviction Strategies Tool for Cyber Incident Response." A Polish trainmaker sues hackers for fixing trains. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Today we are joined by Jermaine Roebuck, Associate Director for Threat Hunting at CISA and Ann Galchutt, Technical Lead at CISA, who will be discussing "Open-Source Eviction Strategies Tool for Cyber Incident Response." Selected Reading Sonatype uncovers global espionage campaign in open source ecosystems (Sonatype) Trump administration is launching a new private health tracking system with Big Tech's help (AP News) Report Links Chinese Companies to Tools Used by State-Sponsored Hackers (SecurityWeek) Top 5 GenAI Tools Vulnerable to Man-in-the-Prompt Attack, Billions Could Be Affected (LayerX) Introducing Unit 42's Attribution Framework (Unit42) Honeywell Experion PKS Flaws Allow Manipulation of Industrial Processes (SecurityWeek) Behind Random Words: DoubleTrouble Mobile Banking Trojan Revealed Cybercriminals ‘Spooked' After Scattered Spider Arrests (Infosecurity Magazine) Polish Train Maker Is Suing the Hackers Who Exposed Its Anti-Repair Tricks (iFixit) Audience Survey Complete our annual audience survey before August 31. Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Sean Williams gives us a peek beneath a global shadow economy that thrives as countries like North Korea and China operate like criminal enterprises.Jordan's must reads (including books from this episode): AcceleratEdFull show notes and resources can be found here: jordanharbinger.com/1154What We Discuss with Sean Williams:North Korea operates as a massive organized crime outfit, generating revenue through forced labor, human trafficking, drug production/trafficking, and cybercrime to fund the regime's survival.North Korean hackers (Lazarus Group) have become sophisticated cybercriminals, stealing $1.5 billion in cryptocurrency from ByBit exchange in February 2025.Chinese "flying money" (Fei Chen) operates as an ancient, untraceable money transfer system now widely used by drug cartels and for capital flight from China, possibly totaling $2 trillion annually.Chinese money laundering has had a visible impact on real estate markets in Vancouver, Toronto, Sydney, and Los Angeles, where properties purchased with laundered funds remain unfinished or abandoned.Despite public diplomatic cooperation between US and China on financial crimes, both countries have conflicting incentives — China benefits from US drug chaos while the US benefits from Chinese capital flight.And much more...And if you're still game to support us, please leave a review here — even one sentence helps! Sign up for Six-Minute Networking — our free networking and relationship development mini course — at jordanharbinger.com/course!Subscribe to our once-a-week Wee Bit Wiser newsletter today and start filling your Wednesdays with wisdom!Do you even Reddit, bro? Join us at r/JordanHarbinger!This Episode Is Brought To You By Our Fine Sponsors:Jordan's must reads (including books from this episode): AcceleratEdIQBAR: 20% off: text "Jordan" to 64,000BetterHelp: 10% off first month: betterhelp.com/jordanNordVPN: Exclusive deal: nordvpn.com/jordanharbingerShopify: 3 months @ $1/month (select plans): shopify.com/jordanHomes.com: Find your home: homes.comSee Privacy Policy at https://art19.com/privacy and California Privacy Notice at https://art19.com/privacy#do-not-sell-my-info.

A cyberattack targeting Oracle Health compromises patient data. The DOJ nabs over $8 million tied to romance scams. Trend Micro examines a China-linked APT group conducting cyber-espionage. A new Android banking trojan called Crocodilus has emerged. North Korea's Lazarus Group targets job seekers in the crypto industry. CISA IDs a new malware variant targeting Ivanti Connect Secure appliances. Maria Varmazis, host of N2K's T-Minus Space Daily show chats with Jake Braun, former White House Principal Deputy National Cyber Director and chairman of DEF CON Franklin. They discuss designating space as critical infrastructure. Nulling out your pizza payment.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Maria Varmazis, host of N2K's T-Minus Space Daily show sits down with Jake Braun, former White House Principal Deputy National Cyber Director and chairman of DEF CON Franklin, and they discuss designating space as critical infrastructure and sharing an overview of its attack surface. Selected Reading Oracle Health breach compromises patient data at US hospitals (Bleeping Computer) Oracle Warns Health Customers of Patient Data Breach (Bloomberg) Critical Condition: Legacy Medical Devices Remain Easy Targets for Ransomware (SecurityWeek) U.S. seized $8.2 million in crypto linked to 'Romance Baiting' scams (Bleeping Computer) DOJ Seizes USD 8.2M Tied to Pig Butchering Scheme (TRM Labs) Earth Alux Hackers Employ VARGIET Malware to Attack Organizations (Cyber Security News)  'Crocodilus' Android Banking Trojan Allows Device Takeover, Data Theft (SecurityWeek) ClickFake Interview – Lazarus Hackers Exploit Windows and macOS Users Fake Job Campaign (Cyber Security News)  CISA Analyzes Malware Used in Ivanti Zero-Day Attacks (SecurityWeek) How A Null Character Was Used to Bypass Payments (System Weakness on Medium)  Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

LG shuts down its NFT platform as the market continues to decline. Bakkt names a new co-CEO and partners with DTR. Paul Atkins' Senate hearing could steer SEC policy further pro-crypto. Australia announces a national crypto strategy, while North Korea's Lazarus Group now holds more Bitcoin than Tesla. Ripple critics still debate decentralization.RESOURCEShttps://www.theblock.co/post/347431/lg-to-shut-down-nft-platform-joining-wave-of-closures-in-the-sector?utm_source=telegram1&utm_medium=socialhttps://www.coindesk.com/markets/2025/03/21/bakkt-names-akshay-naheta-as-co-ceo-amid-stablecoin-payments-pushhttps://www.coindesk.com/policy/2025/03/20/sec-chair-nominee-paul-atkins-to-face-senate-panel-next-weekhttps://www.coindesk.com/policy/2025/03/21/australia-proposes-new-crypto-regulation-structure-plans-to-integrate-digital-asset-into-the-economyhttps://www.coindesk.com/markets/2025/03/21/north-korea-linked-lazarus-group-holds-more-bitcoin-than-elon-musk-s-teslahttps://www.coindesk.com/markets/2025/03/21/japan-s-biggest-corporate-bitcoin-holder-adds-eric-trump-as-advisorSecure your Business & Digital Life with Cyber Strategy Institute https://www.thegrowmeco.com/course/https://cyberstrategyinstitute.com/warden/ https://csi-store.samcart.com/products/wardenguard-personal-1device-annual/?coupon=DCN_Warden WHERE TO FIND DCNDailyCryptoNews.Net https://twitter.com/DCNDailyCrypto Trader Cobb X: @TraderCobbEditing Services https://www.contentbuck.com——————————————————————***NOT FINANCIAL, LEGAL, OR TAX ADVICE! JUST OPINION! I AM NOT AN EXPERT! I DO NOT GUARANTEE A PARTICULAR OUTCOME I HAVE NO INSIDE KNOWLEDGE! YOU NEED TO DO YOUR OWN RESEARCH AND MAKE YOUR OWN DECISIONS! THIS IS JUST EDUCATION & ENTERTAINMENT! ©Copyright 2024 Matthew Aaron Podcasts LLC Hosted on Acast. See acast.com/privacy for more information.

The White House names their nominee for CISA's top spot. Patch Tuesday updates. Apple issues emergency updates for a zero-day WebKit vulnerability. Researchers highlight advanced MFA-bypassing techniques. North Korea's Lazarus Group targets cryptocurrency wallets and browser data. Our guest today is Rocco D'Amico of Brass Valley discussing hidden risks in retired devices and reducing data breach threats. Making sense of the skills gap paradox.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Joining us today is Rocco D'Amico of Brass Valley discussing hidden risks in retired devices and reducing data breach threats. Selected Reading Trump nominates Sean Plankey as new CISA director (Tech Crunch) CISA worker says 100-strong red team fired after DOGE action (The Register) March 2025 Patch Tuesday: Microsoft Fixes 57 Vulnerabilities, 7 Zero-Days (Hackread) ICS Patch Tuesday: Advisories Published by CISA, Schneider Electric, Siemens (SecurityWeek) CISA Warns of Microsoft Windows Management Console (MMC) Vulnerability Exploited in Wild (Cyber Security News) Apple WebKit Zero-Day Vulnerability Actively Exploit in High Profile Cyber Attacks (Cyber Security News) Hackers Using Advanced MFA-Bypassing Techniques To Gain Access To User Account (Cyber Security News) North Korean Lazarus hackers infect hundreds via npm packages (Bleeping Computer) Welcome to the skills gap paradox (Computing) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

In this episode of The Cybersecurity Defenders Podcast, we discuss some cutting-edge intel coming out of LimaCharlie's community Slack channel.North Korea's state-backed Lazarus Group is believed to be responsible for the largest cryptocurrency heist ever recorded, stealing $1.5 billion from the Bybit exchange. The "BadPilot" hacking campaign has been linked to Russia's Sandworm threat group, a unit of the GRU known for cyber espionage and disruptive attacks. GreyNoise has observed active exploitation of CVE-2025-0108, a critical authentication bypass vulnerability in Palo Alto Networks' PAN-OS. Security researcher Paul Butler has demonstrated a novel technique for smuggling arbitrary data using emojis, leveraging the way modern text encoding and rendering systems handle Unicode characters.Kitty Stealer is a newly identified malware targeting macOS systems, designed to steal sensitive user data such as credentials, browser cookies, and cryptocurrency wallets.SEKOIA researchers have uncovered a previously unknown IoT botnet named PolarEdge, which has been operating covertly for an extended period.

Welcome to The Chopping Block – where crypto insiders Haseeb Qureshi, Tom Schmidt, Tarun Chitra, and Robert Leshner break down the biggest stories in crypto. This week: Recapping how Bybit lost $1.5B to North Korea's Lazarus Group—how did it happen, and why did they use THORChain to launder the money? Meanwhile, Ethereum is facing an identity crisis at ETH Denver, with the Foundation's bizarre “Silviculture Society” raising eyebrows across the ecosystem. And if that wasn't enough, memecoins are in freefall, with Hayden Adams admitting the game was rigged all along. It's a wild week—let's break it all down. Listen to the episode on Apple Podcasts, Spotify, Pods, Fountain, Podcast Addict, Pocket Casts, Amazon Music, or on your favorite podcast platform. Show highlights

Three Buddy Problem - Episode 36: Ryan and Juanito join the show from the RE//verse conference with discussion on Natalie Silvanovic's keynote on hunting for bugs in mobile messengers, the thrill of looking at exposed attack surfaces and the grueling “losses” bug hunters endure before a breakthrough. We also cover the latest on the $1.4 billion ByBit hack pinned on the Lazarus Group and the malicious JavaScript supply chain attack at the center of the cryptocurrency heist. Plus, the ethical gray zones of tethered exploits via Cellebrite, the whiplash of AI-driven threat intel, and the looming pivot in U.S. cyber policy signaling a stand-down on Russia-focused ops. Cast: Juan Andres Guerrero-Saade (https://twitter.com/juanandres_gs), Costin Raiu (https://twitter.com/craiu) and Ryan Naraine (https://twitter.com/ryanaraine).

Crypto derivatives exchange Bybit just became the latest victim of North Korea's elite hacking unit, the Lazarus Group. They didn't brute-force their way in. They didn't exploit some obscure vulnerability. Instead, they tricked a trusted developer, slipped in malicious code, and took off with a fortune. How did this happen? Why was $1.5 billion sitting in a single wallet? What mistakes did Bybit and Safe make? And, more importantly, what needs to change to stop this from happening again? This week, Mudit Gupta, chief information security officer at Polygon, joins Unchained to expose the security failures, the sophisticated tactics Lazarus used, and why crypto still hasn't learned its lesson. Show highlights: 2:11 Mudit's experience with North Korea's Lazarus 3:24 How Lazarus perpetrated the $1.5 billion hack 5:55 Why Lazarus relies on social engineering over technical exploits 7:34 Why Bybit was so specifically targeted by the hackers 10:02 What Bybit should have done to prevent the exploit 13:12 Why Mudit believes there was “no reason” to hold so much ETH in one single wallet 15:57 Who should be a signer in multisigs 17:46 How to prevent using a malicious website 19:13 Why Safe should have done things differently, according to Mudit 19:55 How Bybit and Safe handled crisis communication 24:20 Mudit's must-know security tips for protecting your crypto Visit our website for breaking news, analysis, op-eds, articles to learn about crypto, and much more: unchainedcrypto.com Thank you to our sponsors! Mantle Guest Mudit Gupta, Chief Information Security Officer at Polygon Links Recent coverage of Unchained on the Bybit hack: North Korean Hackers Are Winning. Is the Crypto Industry Ready to Stop Them? The Chopping Block: Crypto's Worst Week? Bybit Hack, Libra Scandal, & The Memecoin Reckoning Bits + Bips: Markets Are Down Bad. When Will Crypto Recover? Unchained: Bybit Flows Return to ‘Normal' After Biggest-Ever Crypto Hack Bybit Hack Forensics Report  "Safe{Wallet} Statement on Targeted Attack on Bybit " Learn more about your ad choices. Visit megaphone.fm/adchoices

Apple disables Advanced Data Protection for new UK users. Paying ransoms is not as cut and dried as we might imagine. Elon Musk's "X" social media blocks "Signal.me" links. Spain's soccer league blocks Cloudflare and causes a mess. Two new (and rare) vulnerabilities discovered in OpenSSH. The U.S. seems unable to evict Chinese attackers from its Telecom systems. What are those Chinese "Salt Typhoon" hackers doing to get in? The largest (by far) cryptocurrency heist in history occurred Friday. Ex-NSA head says the U.S. is falling behind on the cyber front lines. We have the winner (and a good one) replacement term for "backdoor". A look at a pathetic access control system that begs to be hacked (and will be). Show Notes - https://www.grc.com/sn/SN-1014-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security joindeleteme.com/twit promo code TWIT uscloud.com canary.tools/twit - use code: TWIT

The Department of Government Efficiency touts its $65 billion savings to taxpayers after only a month into President Donald Trump's second term. The president and Elon Musk are working to save the American people even more money by cutting the federal workforce further. Democrats are pushing back at DOGE's access to federal agencies, but Republicans say they are just keeping the president's campaign promises. Chairman of the Republican National Committee Michael Whatley joins the Rundown to share what DOGE is doing and what to expect leading up to 2026. Hackers pulled off the biggest crypto heist in history, stealing $1.5 billion in digital currency from the major cryptocurrency exchange, Bybit. Analysts believe they've connected the attack to the North Korean state-sponsored cybercriminal organization, The Lazarus Group. Bybit CEO Ben Zhou confirmed his company has fully restored the stolen cryptocurrency in their reserves through loans from other crypto firms. Former Chairman of the Commodities Future Trading Commission and author of CryptoDad, Chris Giancarlo, joins to explain how the crypto hack occurred. Plus, commentary from presidential historian and author of The Power and the Money, Tevi Troy. Photo Credit: AP Learn more about your ad choices. Visit podcastchoices.com/adchoices

Host Christine Lee breaks down the latest news in the crypto industry as crypto exchange Bybit declares "war" against the Lazarus Group.Hacked cryptocurrency exchange Bybit has declared a “war against Lazarus” and launched a new website tracking the group's wallet addresses, while Ethereum Foundation Executive Director Aya Miyaguchi announced that she will transition to her new role as president at the organization. CoinDesk's Christine Lee breaks down the latest news in the crypto industry on "CoinDesk Daily."-This episode was hosted by Christine Lee. “CoinDesk Daily” is produced by Christine Lee and edited by Victor Chen.See Privacy Policy at https://art19.com/privacy and California Privacy Notice at https://art19.com/privacy#do-not-sell-my-info.

Apple disables Advanced Data Protection for new UK users. Paying ransoms is not as cut and dried as we might imagine. Elon Musk's "X" social media blocks "Signal.me" links. Spain's soccer league blocks Cloudflare and causes a mess. Two new (and rare) vulnerabilities discovered in OpenSSH. The U.S. seems unable to evict Chinese attackers from its Telecom systems. What are those Chinese "Salt Typhoon" hackers doing to get in? The largest (by far) cryptocurrency heist in history occurred Friday. Ex-NSA head says the U.S. is falling behind on the cyber front lines. We have the winner (and a good one) replacement term for "backdoor". A look at a pathetic access control system that begs to be hacked (and will be). Show Notes - https://www.grc.com/sn/SN-1014-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security joindeleteme.com/twit promo code TWIT uscloud.com canary.tools/twit - use code: TWIT

Apple disables Advanced Data Protection for new UK users. Paying ransoms is not as cut and dried as we might imagine. Elon Musk's "X" social media blocks "Signal.me" links. Spain's soccer league blocks Cloudflare and causes a mess. Two new (and rare) vulnerabilities discovered in OpenSSH. The U.S. seems unable to evict Chinese attackers from its Telecom systems. What are those Chinese "Salt Typhoon" hackers doing to get in? The largest (by far) cryptocurrency heist in history occurred Friday. Ex-NSA head says the U.S. is falling behind on the cyber front lines. We have the winner (and a good one) replacement term for "backdoor". A look at a pathetic access control system that begs to be hacked (and will be). Show Notes - https://www.grc.com/sn/SN-1014-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security joindeleteme.com/twit promo code TWIT uscloud.com canary.tools/twit - use code: TWIT

Apple disables Advanced Data Protection for new UK users. Paying ransoms is not as cut and dried as we might imagine. Elon Musk's "X" social media blocks "Signal.me" links. Spain's soccer league blocks Cloudflare and causes a mess. Two new (and rare) vulnerabilities discovered in OpenSSH. The U.S. seems unable to evict Chinese attackers from its Telecom systems. What are those Chinese "Salt Typhoon" hackers doing to get in? The largest (by far) cryptocurrency heist in history occurred Friday. Ex-NSA head says the U.S. is falling behind on the cyber front lines. We have the winner (and a good one) replacement term for "backdoor". A look at a pathetic access control system that begs to be hacked (and will be). Show Notes - https://www.grc.com/sn/SN-1014-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security joindeleteme.com/twit promo code TWIT uscloud.com canary.tools/twit - use code: TWIT

Apple disables Advanced Data Protection for new UK users. Paying ransoms is not as cut and dried as we might imagine. Elon Musk's "X" social media blocks "Signal.me" links. Spain's soccer league blocks Cloudflare and causes a mess. Two new (and rare) vulnerabilities discovered in OpenSSH. The U.S. seems unable to evict Chinese attackers from its Telecom systems. What are those Chinese "Salt Typhoon" hackers doing to get in? The largest (by far) cryptocurrency heist in history occurred Friday. Ex-NSA head says the U.S. is falling behind on the cyber front lines. We have the winner (and a good one) replacement term for "backdoor". A look at a pathetic access control system that begs to be hacked (and will be). Show Notes - https://www.grc.com/sn/SN-1014-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security joindeleteme.com/twit promo code TWIT uscloud.com canary.tools/twit - use code: TWIT

Apple disables Advanced Data Protection for new UK users. Paying ransoms is not as cut and dried as we might imagine. Elon Musk's "X" social media blocks "Signal.me" links. Spain's soccer league blocks Cloudflare and causes a mess. Two new (and rare) vulnerabilities discovered in OpenSSH. The U.S. seems unable to evict Chinese attackers from its Telecom systems. What are those Chinese "Salt Typhoon" hackers doing to get in? The largest (by far) cryptocurrency heist in history occurred Friday. Ex-NSA head says the U.S. is falling behind on the cyber front lines. We have the winner (and a good one) replacement term for "backdoor". A look at a pathetic access control system that begs to be hacked (and will be). Show Notes - https://www.grc.com/sn/SN-1014-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security joindeleteme.com/twit promo code TWIT uscloud.com canary.tools/twit - use code: TWIT

North Korean hackers linked to Lazarus Group are laundering $1.46 billion stolen from Bybit, using anonymous exchanges and Bitcoin mixers. Meanwhile, OX.FUN faces insolvency accusations, Arbitrum DAO's investment plan sparks backlash, and Berachain surpasses $3.26 billion TVL. Crypto exchanges and protocols are under pressure amid growing hacks, fraud, and governance disputes.RESOURCEShttps://decrypt.co/307430/bybit-funds-on-the-move-could-be-headed-for-bitcoin-mixers-next-elliptichttps://www.theblock.co/post/342926/raydiums-token-drops-28-as-pump-fun-appears-to-test-amm-feature?utm_source=rss&utm_medium=rsshttps://cryptonews.com/news/su-zhu-backed-ox-fun-denies-insolvency-claims-amid-jefedao-dispute/?feed_id=12023&_unique_id=67bc47c5356d9 https://www.theblock.co/post/342869/arbitrum-dao-committee-proposal-to-invest-7500-eth-in-non-native-projects-sparks-criticism?utm_source=rss&utm_medium=rsshttps://www.scmp.com/business/banking-finance/article/3299671/crypto-derivatives-missing-piece-hong-kongs-virtual-asset-push-deribit-says?utm_source=rss_feedSecure your Business & Digital Life with Cyber Strategy Institute https://www.thegrowmeco.com/course/https://cyberstrategyinstitute.com/warden/ https://csi-store.samcart.com/products/wardenguard-personal-1device-annual/?coupon=DCN_Wardenhttps://csi-store.samcart.com/products/wardenvault-personal-managed-1device-annual?coupon=DCN_Warden WHERE TO FIND DCNhttps://substack.com/@dcndailycryptonewshttps://twitter.com/DCNDailyCrypto Trader Cobb X: @TraderCobb***NOT FINANCIAL, LEGAL, OR TAX ADVICE! JUST OPINION! I AM NOT AN EXPERT! I DO NOT GUARANTEE A PARTICULAR OUTCOME I HAVE NO INSIDE KNOWLEDGE! YOU NEED TO DO YOUR OWN RESEARCH AND MAKE YOUR OWN DECISIONS! THIS IS JUST EDUCATION & ENTERTAINMENT! ©Copyright 2024 Matthew Aaron Podcasts LLC Hosted on Acast. See acast.com/privacy for more information.

Welcome to The Chopping Block – where crypto insiders Haseeb Qureshi, Tom Schmidt, Tarun Chitra, and Robert Leshner break down the biggest stories in crypto. This week: Bybit's $1.5B hack, likely by North Korea's Lazarus Group, and the Libra scandal, where Hayden Davis exposes the memecoin playbook. Meanwhile, Dave Portnoy rugs Greed and Greed 2, Kanye's YZY token leaks, and the LA Vape Cabal collapses. But crypto markets hold strong, and the SEC just dropped its lawsuit against Coinbase. Is this the end of the memecoin era? We break it all down. Show highlights

Today's blockchain and cryptocurrency news  Bitcoin is down half a percent at $95,825 Eth is down slightly at $2,795 XRP, down half a percent at $2.55 SEC ends investigation into OpenSea mETH protocol recovers $43M from Lazarus Group hackers Ye teases memecoin—may or may not actually be involved. Learn more about your ad choices. Visit megaphone.fm/adchoices

President Biden issues a comprehensive  cybersecurity executive order. Updates on Silk Typhoon's US Treasury breach. A Chinese telecom hardware firm is under FBI investigation. A critical vulnerability has been found in the UEFI Secure Boot mechanism. California-based cannabis brand Stiiizy suffers a data breach. North Korea's Lazarus Group lures freelance developers. The FTC highlights major security failures at web hosting giant GoDaddy. Veeam patches a critical vulnerability in their Backup for Microsoft Azure product. Hackers leak sensitive data from over 15,000 Fortinet firewalls. Our guest today is Oren Koren, Veriti's Co-founder and CPO, sharing insights about the state of healthcare cybersecurity. Shiver me timbers! Meta's AI trains on a treasure chest of pirated books. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Our guest today is Oren Koren, Veriti's Co-founder and CPO, sharing insights about the state of healthcare cybersecurity. You can read more in their “The State of Healthcare Cybersecurity 2025” report.  Selected Reading Biden to sign executive order on AI and software security (Axios) Treasury Breach by Chinese Sponsored Hackers Focused on Sanctions, Report Says (Bloomberg) Exclusive: Chinese tech firm founded by Huawei veterans in the FBI's crosshairs (Reuters) New UEFI Secure Boot Bypass Vulnerability Exposes Systems to Malicious Bootkits (Cyber Security News) 380,000 Impacted by Data Breach at Cannabis Retailer Stiiizy (SecurityWeek) North Korean Hackers Targeting Freelance Software Developers (SecurityWeek) GoDaddy Accused of Serious Security Failings by FTC (Infosecurity Magazine) Veeam Azure Backup Solution Vulnerability Allows Attackers To Enumerate Network (Cyber Security News) Hacking group leaks Fortinet users' details on dark web (Computing) Meta Secretly Trained Its AI on a Notorious Piracy Database, Newly Unredacted Court Docs Reveal (WIRED) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices