Risky Business

Risky Business #781 -- How Bybit oopsied $1.4bn

Feb 26, 2025

This week, a staggering $1.4 billion was stolen from the Bybit cryptocurrency exchange, sparking a deep dive into the security flaws that allowed it to happen. North Korea's sophisticated hacking methods are discussed, alongside the dangers inherent in routine cryptocurrency transfers. The podcast also tackles encryption debates, government surveillance, and the challenges companies like Meta face with account management and automation. There’s a look at advanced techniques used by hackers targeting Cisco devices and vulnerabilities within Windows security solutions.

01:02:40

Creator website

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The Bybit hack, involving a $1.4 billion theft, illustrates how sophisticated phishing attacks can exploit human error in cybersecurity protocols.

Apple's withdrawal of advanced data protection in the UK highlights the ongoing conflict between user privacy and government access to encrypted data.

Lina Lau's analysis of cybersecurity narratives emphasizes differences in reporting styles between Eastern and Western perspectives on cyber incidents.

Deep dives

Bybit Hack: A Historic Crypto Theft

The podcast discusses the Bybit hack, which marked the largest cryptocurrency theft in history, amounting to $1.4 billion. The attackers, suspected to be North Koreans, employed sophisticated techniques including malware to compromise the computers of Bybit staff who managed the multi-signature cold wallet system. This multi-signature setup relied on several team members to authorize transfers, but the attackers engineered a fake user interface that tricked employees into inadvertently handing over control of the cold wallet. This incident raises concerns about the effectiveness of existing security measures and how complacency in handling sensitive transactions can lead to catastrophic breaches.

Intro

4min

Securing Cryptocurrency: Lessons from North Korean Hacks

8min

Cryptocurrency Security and Privacy Challenges

21min

Challenges in Meta's Account Management and the Rise of Fraudulent Services

2min

Hacking Techniques and Cybersecurity Insights

14min

Exploring Vulnerabilities in Windows Security and Allow Listing Solutions

6min

Navigating Windows Defender and Emerging Threats

8min

On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news:

North Korea pulls off a 1.5 billion dollar crypto heist
Apple pulls Advanced Data Protection from the UK
Black Basta ransomware gang’s internal chats leak
Russians snoop on Signal with QR codes
And Myanmar ships thousands of freed scam compound workers to Thailand

Regular guest Lina Lau joins to discuss her work reading Chinese incident response reports on WeChat, and how that has people thinking that … she outed the NSA?

This week’s episode is sponsored by Airlock Digital, and allow-listing tragics Daniel Schell and David Cottingham are along with an amusing tale of using Windows’ own allow-listing software to block EDR from loading.

This episode is also available on Youtube.

Show notes

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Risky Business

Risky Business #781 -- How Bybit oopsied $1.4bn

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Bybit Hack: A Historic Crypto Theft

Apple's Advanced Data Protection Withdrawal

Lena Lau's Insightful Analysis on NSA TTPs

Malware and Hardware Wallet Complications

The Evolving Landscape of Cryptocurrency Crime

Show notes

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

Risky Business

Risky Business #781 -- How Bybit oopsied $1.4bn

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Bybit Hack: A Historic Crypto Theft

Apple's Advanced Data Protection Withdrawal

Lena Lau's Insightful Analysis on NSA TTPs

Malware and Hardware Wallet Complications

The Evolving Landscape of Cryptocurrency Crime

Show notes

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights