Three Buddy Problem cover image

Three Buddy Problem

Hijacking .gov backdoors, Ivanti 0days and a Samsung 0-click vuln

Jan 10, 2025
The podcast dives into the troubling rise of Ivanti zero-day vulnerabilities, highlighting their constant exploitation. China's unusual reactions to cyber attribution are explored, alongside Japan's concerns over hacking incidents. The hosts discuss a shocking zero-click vulnerability found in Samsung devices, and the intense cyber warfare between Ukrainian hackers and Russian ISPs. They also touch on the implications of advanced technologies like quantum computing and the resilience of the cybersecurity community in facing these challenges.
01:48:21

Podcast summary created with Snipd AI

Quick takeaways

  • Ivanti's ongoing zero-day vulnerabilities highlight a troubling pattern of security failures and the need for improved practices in cybersecurity.
  • The sophistication of Chinese threat actors exploiting multiple network devices underscores the urgency for organizations to reassess their defensive strategies.

Deep dives

Repetitive Security Concerns

The discussion reflects on the recurring theme of cybersecurity vulnerabilities, notably with Ivanti's Connect Secure product facing a new exploitation scenario. News emerges about Ivanti patching two vulnerabilities, but only one is currently being exploited, raising concerns about the ongoing pattern of security failures within network devices. The speakers highlight the futility in repeatedly experiencing similar breaches without substantial improvements, leading to a sense of déjà vu regarding security incidents. This frustration is compounded by the realization that these issues seem to persist in the face of technological advancements.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
App store bannerPlay store banner