Join us as we dive into the ever-changing world of digital security, bringing you the latest updates, trends, and expert insights to help you stay one step ahead of cyber threats. So, relax and let our knowledgeable host guide you through the fascinating realm of cybersecurity and technology in a calm, informative, and entertaining way.

Recent Episodes

To watch all of our episodes please checkout our YouTube channel!

Episode #65

In this episode, Cody and Katie dive into this week's most critical cybersecurity incidents and trends. We first explore how a new Russian-linked cyber-espionage group, Curly COMrades, is deploying MucorAgent backdoor malware to target government and energy sectors in Moldova and Georgia. We then highlight the alarming discovery by Modat that over a million internet-connected healthcare devices are misconfigured, leading to the leakage of sensitive medical images and patient information online. Additionally, we discuss major data breaches impacting Columbia University, where 460 GB of sensitive data was stolen from nearly 870,000 individuals, and Connex Credit Union, which suffered a cyberattack that compromised sensitive data for about 172,000 customers, including names, account numbers, debit card information, and Social Security numbers. We also examine the lawsuit against Microsoft for unfairly ending Windows 10 support in October 2025, raising concerns about e-waste and forcing users to upgrade to Windows 11 on incompatible hardware, and the critical vulnerabilities found by Bitdefender in over 100 Dahua CCTV camera models that allow unauthenticated remote attackers to take full control. Finally, we cover that thousands of Microsoft Exchange servers in hybrid deployments remain unpatched against a high-severity "improper authentication bug" that could allow privilege escalation, and the US Judiciary system's confirmation of sophisticated cyberattacks targeting its case management system and sensitive files, leading to efforts to strengthen its IT infrastructure.

Episode #64

In this episode, Cody and Katie dive into this week's most critical cybersecurity incidents and trends. We first explore how Google urgently patched major Qualcomm security flaws actively exploited in Android phones, urging users to update their devices immediately, alongside a separate campaign infecting over 11,000 Android devices with the PlayPraetor remote access trojan (RAT) distributed via Meta Ads and fake Google Play pages to steal banking credentials. We then pivot to multiple threats impacting Microsoft, including hackers abusing Proofpoint’s and Intermedia’s "link wrapping" services to bypass email protections and steal Microsoft 365 credentials and ransomware gangs, specifically 4L4MD4R, exploiting the critical ToolShell vulnerability (CVE-2025-53770) in unpatched Microsoft SharePoint Server instances. Additionally, we discuss a high-severity "improper authentication" bug (CVE-2025-53786) in hybrid Exchange deployments that allows administrative access escalation from on-premise to Exchange Online. We also highlight a surge in malicious logins to SonicWall SSL VPN instances, potentially due to a zero-day vulnerability or compromised credentials, leading to Akira ransomware infections, and the striking statistic that nearly 90% of internet users in Iran are now relying on VPNs to bypass widespread internet disruptions and censorship despite legal bans. Finally, we cover the broader trend of the US becoming the ransomware capital of the world, experiencing a 146% year-on-year increase in attacks, with threat actors increasingly prioritizing data exfiltration over encryption.

Episode #63

In this episode, Cody and Katie dive into this week's most critical cybersecurity incidents and trends. We first explore a dangerous vulnerability in the Post SMTP WordPress plugin that put over 160,000 sites at risk by allowing low-privileged users to take over websites. We then pivot to the evolving tactics of the sophisticated Scattered Spider group, who are employing advanced social engineering and new malware like RattyRAT and DragonForce ransomware, primarily targeting VMware ESXi servers. We also highlight how a critical vulnerability (CVE-2025-31324) in SAP NetWeaver is being exploited by various threat actors, including Chinese state-sponsored groups, to deploy Linux malware, alongside a security flaw in Google's new Gemini CLI tool that could have allowed threat actors to exfiltrate sensitive information or run malicious code on developers' devices. Additionally, we cover significant real-world impacts, including Minnesota mobilizing its National Guard after a "deliberate, coordinated digital attack" on St. Paul's computer networks and NASCAR confirming a data breach where the Medusa ransomware group stole personal information. Finally, we highlight a positive development in the fight against cybercrime: the successful international law enforcement operation, Operation Checkmate, which disrupted the notorious BlackSuit ransomware group by seizing their dark web extortion and leak sites.

Episode #62

In this episode, Cody and Katie dive into this week's most critical cybersecurity incidents and trends. We first explore the Marks & Spencer cyberattack, a calculated, multi-stage operation by Scattered Spider that exploited a third-party supplier's vulnerability through phishing and social engineering, causing hundreds of millions in losses and operational disruption. We then pivot to the ongoing legal battle where Clorox is suing Cognizant for gross negligence after a 2023 ransomware attack stemmed from a Cognizant employee allegedly "giving away" credentials through social engineering, leading to significant financial damages. We also highlight the UK NCSC's urgent warning about Russian state-sponsored APT28 (Fancy Bear) actively targeting Microsoft 365 accounts of Western organizations, especially those aiding Ukraine, by stealing login credentials and OAuth tokens using Authentic Antics malware. Additionally, we touch on the mysterious Alaska Airlines IT outage with speculation pointing to the Scattered Spider ransomware group, underscoring the pervasive nature of these threats. Finally, we discuss how the Paddy Power and Betfair data breach, though not exposing passwords, compromised personal data for 800,000 users, significantly increasing their risk of AI-amplified targeted phishing attacks.

Page updated

Google Sites

Report abuse