Security Weekly Podcast Network (Audio) AI-Obfuscating Malware, China Influence Ops, and Meta’s Fraud Fortune and Jason Wood - SWN #527
21 snips
Nov 7, 2025 Join Jason Wood, an experienced cybersecurity practitioner, as he dives into the dark waters of AI-obfuscating malware and the growing threat landscape. He discusses the alarming trend of fake AI tools distributing mature malware and explores how China-linked intrusion tactics are compromising U.S. organizations. Wood also sheds light on Meta’s staggering ad revenue linked to fraudulent content and the societal risks posed by deepfake technology like Sora 2, which is blurring the lines of reality in alarming ways.
AI Snips
Chapters
Transcript
Episode notes
Cloud Backups Are Tier-Zero Targets
- SonicWall confirmed state-sponsored actors accessed cloud-hosted firewall backups, exposing topology and secrets.
- Treat configuration backups as tier-zero assets because they reveal network maps, VPNs, and embedded service accounts.
Supply-Chain Time-Delay Sabotage
- Attackers weaponized NuGet packages with time-delayed sabotage that mimics flaky apps or plant faults.
- Long-lived dependencies in ICS give supply-chain sabotage teeth years after deployment.
Hyper-V As A Stealth Persistence Layer
- Operators used Hyper-V to hide a tiny Alpine Linux VM on Windows hosts and run tools inside the guest for persistence and evasion.
- Guest traffic inherits host trust and VHDX artifacts can survive common cleanup steps, so responders must search Hyper-V paths.