Defensive Security Podcast

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Please consider supporting the DefSec podcast here.

Links to this week’s stories:

• https://www.darkreading.com/cloud-security/csa-cisos-prepare-post-mythos-exploit-storm
• https://www.csoonline.com/article/4159292/insurance-carriers-quietly-back-away-from-covering-ai-outputs.html
• https://www.livescience.com/technology/artificial-intelligence/hackers-used-ai-to-steal-hundreds-of-millions-of-mexican-government-and-private-citizen-records-in-one-of-the-largest-cybersecurity-breaches-ever
• https://www.bleepingcomputer.com/news/security/payouts-king-ransomware-uses-qemu-vms-to-bypass-endpoint-security/
• https://cybermagazine.com/news/how-cybercriminals-breached-gta-maker-rockstar

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Please consider supporting the DefSec podcast here.

Links to this week’s stories:

• https://www.darkreading.com/threat-intelligence/axios-attack-complex-social-engineering-industrialized
• https://www.bleepingcomputer.com/news/security/new-venom-phishing-attacks-steal-senior-executives-microsoft-logins/
• https://www.bleepingcomputer.com/news/security/google-new-unc6783-hackers-steal-corporate-zendesk-support-tickets/
• https://www.darkreading.com/vulnerabilities-threats/bluehammer-windows-exploit-microsoft-bug-disclosure-issues
• https://www.businessinsider.com/mercor-lawsuits-data-breach-2026-4

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Please consider supporting the DefSec podcast here.

Links to stories:

• https://www.computerweekly.com/news/366640648/Emergency-Microsoft-Oracle-patches-point-to-wider-cyber-issues
• https://www.theregister.com/2026/03/27/security_boffins_harvest_bumper_crop/
• https://thehackernews.com/2026/03/the-hidden-cost-of-cybersecurity.html?m=1
• https://www.theregister.com/2026/03/24/trivy_compromise_litellm/
• https://thehackernews.com/2026/03/axios-supply-chain-attack-pushes-cross.html?m=1

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Please consider supporting the DefSec podcast here.

Here are the links we discuss this week:

• https://www.darkreading.com/identity-access-management-security/more-attackers-logging-in-not-breaking-in
• https://www.bleepingcomputer.com/news/security/stryker-attack-wiped-tens-of-thousands-of-devices-no-malware-needed/
• https://www.csoonline.com/article/4147833/cisa-urges-it-to-harden-endpoint-management-systems-after-cyberattack-by-pro-iranian-group.html
• https://arstechnica.com/security/2026/03/widely-used-trivy-scanner-compromised-in-ongoing-supply-chain-attack/
• https://techcrunch.com/2026/03/21/delve-accused-of-misleading-customers-with-fake-compliance/

Podcast: Play in new window | Download | Embed

Subscribe: RSS

This time it’s not a rerun!

]Please consider supporting the DefSec podcast here.

Here are the links we discuss this week:

• https://www.bleepingcomputer.com/news/security/ransomware-payment-rate-drops-to-record-low-as-attacks-surge/
• https://www.securityweek.com/recent-cisco-catalyst-sd-wan-vulnerability-now-widely-exploited/
• https://www.darkreading.com/cyberattacks-data-breaches/nation-state-actor-ai-malware-assembly-line
• https://www.cybersecuritydive.com/news/ransomware-identity-ai-cloudflare/813319/
• https://thehackernews.com/2026/03/anthropic-finds-22-firefox.html?m=1

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Please consider supporting the DefSec podcast here.

Here are the links we discuss this week:

https://www.bleepingcomputer.com/news/security/amazon-ai-assisted-hacker-breached-600-fortigate-firewalls-in-5-weeks/

https://www.theregister.com/2026/02/16/open_source_registries_fund_security/

https://www.bleepingcomputer.com/news/security/infostealer-malware-found-stealing-openclaw-secrets-for-first-time/

https://www.securityweek.com/api-threats-grow-in-scale-as-ai-expands-the-blast-radius/

https://www.theregister.com/2026/02/19/rmm_rat_trustconnect/

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Please consider supporting the DefSec podcast here.

Links to this week’s stories:

https://www.theregister.com/2026/02/02/notepad_hijacking_lotus_blossom/

https://www.bleepingcomputer.com/news/security/fake-job-recruiters-hide-malware-in-developer-coding-challenges/

https://www.bleepingcomputer.com/news/security/amos-infostealer-targets-macos-through-a-popular-ai-app/

https://www.theregister.com/2026/02/10/ai_agents_messaging_apps_data_leak/

https://www.theregister.com/2026/02/11/payroll_pirates_business_social_engineering/

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Please consider supporting the DefSec podcast here.

Links to the stories we cover in this episode:

• https://www.theregister.com/2026/01/29/faster_patching_please_cry_infoseccers/
• https://thehackernews.com/2026/01/mandiant-finds-shinyhunters-using.html?m=1
• https://www.bleepingcomputer.com/news/security/marquis-blames-ransomware-breach-on-sonicwall-cloud-backup-hack/
• https://thehackernews.com/2026/01/researchers-find-175000-publicly.html?m=1
• https://www.darkreading.com/application-security/openclaw-ai-runs-wild-business-environments

Podcast: Play in new window | Download | Embed

Subscribe: RSS

 

Please consider supporting the DefSec podcast here.

Links to the stories we cover in this episode:

https://www.bleepingcomputer.com/news/security/hackers-exploit-security-testing-apps-to-breach-fortune-500-firms/

https://www.securityweek.com/analysis-of-6-billion-passwords-shows-stagnant-user-behavior/

https://www.theregister.com/2026/01/20/group_ib_ai_cycercrime_subscriptions/

https://www.bleepingcomputer.com/news/security/voidlink-cloud-malware-shows-clear-signs-of-being-ai-generated/

https://arstechnica.com/security/2026/01/mandiant-releases-rainbow-table-that-cracks-weak-admin-password-in-12-hours/

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Want to be the first to hear our episodes each week?  Become a Patreon donor here.

Links to the stories in this episode:

• https://www.theregister.com/2026/01/09/pyongyangs_cyberspies_are_turning_qr/
• https://www.scworld.com/perspective/five-ways-to-conduct-a-more-secure-hiring-process
• https://cybersecuritynews.com/vmware-esxi-exploited-toolkit/
• https://www.darkreading.com/cyber-risk/ciso-succession-crisis-highlights-turnover-amplifies-security-risks