Join us as we dive into the ever-changing world of digital security, bringing you the latest updates, trends, and expert insights to help you stay one step ahead of cyber threats. So, relax and let our knowledgeable host guide you through the fascinating realm of cybersecurity and technology in a calm, informative, and entertaining way.
Embedded Files
Recent Episodes
Episode #48
Episode #48
In this episode, Cody and Katie tackle the latest cybersecurity concerns highlighted this week. We begin by examining the disappearance of a cybersecurity professor from Indiana University following a review of unreported research funding from China and an FBI search of his homes. We then dive into the plans of Elon Musk’s DOGE group to stage a hackathon at the IRS with the aim of creating a "mega API" that could lead to easier access to sensitive taxpayer data, raising potential privacy concerns. Furthermore, we discuss the looming threat of the "quantum apocalypse," where the development of quantum computers could crack current encryption methods, putting a vast amount of digital information at risk. We also touch upon the ongoing FTC trial against Meta, where the argument is that its acquisitions of Instagram and WhatsApp suppressed competition and harmed consumers through issues like reduced privacy. Finally, we explore the uncertainty surrounding the funding for the CVE Program, a critical project for tracking software vulnerabilities, which faced a near contract expiration.
Episode #47
Episode #47
In this episode, Cody and Katie tackle the latest cybersecurity concerns highlighted this week. We dive into the discovery of AkiraBot, a new spam framework leveraging AI to bypass CAPTCHAs and successfully spam over 80,000 websites with dubious SEO advertisements. Furthermore, we discuss the detection of three malicious Python packages on the PyPI repository, collectively downloaded thousands of times, which were designed to steal data from bitcoin developers and WooCommerce stores. We then cover Oracle's quiet confirmation of a public cloud data breach, where a hacker stole a database containing roughly six million customer records, including sensitive information like security keys. Additionally, we analyze the PoisonSeed campaign, where hackers are hijacking business CRM and email accounts to steal mailing lists and then trick recipients into setting up compromised cryptocurrency wallets with attacker-provided seed phrases. Finally, we explore the Mirai botnet operators actively scanning for vulnerable DVRs to recruit them into their network, and the US Office of the Comptroller of the Currency (OCC)'s notification to US Congress about a major information security incident in February 2025.
Episode #46
Episode #46
In this episode, Cody and Katie tackle the latest cybersecurity concerns highlighted this week. We dive into the discovery that millions of solar power systems face security risks due to vulnerabilities in inverters and other components, potentially allowing hackers to manipulate energy production and steal data. We also examine a major dating app data breach where over 1.5 million private user images were exposed online because of unprotected servers belonging to developer M.A.D Mobile. Furthermore, we discuss how old Stripe APIs are being hijacked by attackers to process fraudulent payments on compromised e-commerce websites, emphasizing the risks associated with deprecated software. These incidents underscore the persistent and evolving threats across various digital ecosystems. We highlight the importance of security best practices and timely updates to mitigate these risks.
Episode #45
Episode #45
In this episode, Cody and Katie dive into the week's crucial cybersecurity developments. We start with Microsoft's introduction of AI-powered Security Copilot Agents designed to bolster defenses against escalating cyber threats. Then, we examine the concerning report of Chinese state-sponsored hackers, known as Weaver Ant, allegedly remaining undetected for years within a major Asian telecom provider's network, engaged in extensive data theft. We also cover the alarming resurgence of the Cl0p ransomware group, which is driving a significant surge in ransomware attacks worldwide. Furthermore, we explore how malicious actors targeted the cryptocurrency exchange Coinbase through a sophisticated supply chain attack on GitHub, highlighting vulnerabilities in software development tools. Finally, we address the growing threat of ransomware, including the emergence of VanHelsing and Medusa's ability to disable anti-malware tools, underscoring the evolving landscape of cyber extortion.
Page updated
Google Sites
Report abuse