Three Buddy Problem

An 'extremely sophisticated' iPhone hack; Google flags major AMD microcode bug

Feb 15, 2025

Discover the astonishing hack that bypasses iPhone's USB Restricted Mode, unveiling complexities in smartphone security. Learn about a severe AMD microcode vulnerability that poses risks to cloud providers. The discussion dives into the challenges of defending against escalating cyber threats, including atrocious phishing campaigns by Russian actors. With a lighthearted twist, explore the importance of fitness in tech and celebrate the unsung heroes keeping us safe in cybersecurity. Tune in for a mix of critical insights and amusing anecdotes!

01:25:12

Creator website

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The recently discovered CVE-2025-24200 vulnerability in Apple's USB restricted mode emphasizes the critical need for robust security features against sophisticated attacks.

Microsoft's Patch Tuesday highlights frustrations among cybersecurity professionals due to insufficient communication regarding patches for critical vulnerabilities and their implications.

Increased complexity in managing authentication systems showcases the urgent necessity for simplified processes to combat the evolving tactics used by attackers.

Deep dives

Apple's Urgent Security Patch

Apple has released an important patch addressing a vulnerability in iPhones and iPads that could be exploited by attackers with physical access to the devices. This vulnerability, identified as CVE 2025-24200, relates to the disabling of USB-restricted mode, which is a security feature that limits access to a locked device. The flaw has been notably linked to instances of sophisticated attacks against targeted individuals, emphasizing the critical nature of the patch. Insights from Cybersecurity experts suggest that such vulnerabilities could potentially allow direct access to sensitive data if exploited.

Intro

3min

Navigating iPhone Security Vulnerabilities

21min

Critique of Cybersecurity Evaluation and Threat Adaptation

22min

Navigating Cybersecurity Challenges

14min

AMD Vulnerability Uncovered

8min

Exploiting Authentication: Russian Threats in Focus

10min

Fitness and Conferences in Tech

5min

Appreciating Unsung Heroes in Cybersecurity Agencies

2min

Three Buddy Problem - Episode 34: We dig into the latest exploited Apple iPhone zero-day (USB Restricted Mode bypass), an AMD microcode flaw so serious it’s not being fully disclosed, a barrage of Patch Tuesday updates, the helpless nature of trying to defend corporate networks, Russian threat actor movements, and fresh intel from Rapid7, Volexity, and Microsoft.

Cast: Juan Andres Guerrero-Saade, Costin Raiu and Ryan Naraine.

Links:

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Three Buddy Problem

An 'extremely sophisticated' iPhone hack; Google flags major AMD microcode bug

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Apple's Urgent Security Patch

The Implications of USB Restricted Mode

Concerns Over Microsoft Patch Tuesday

Coping with Zero-Day Vulnerabilities

The Complexity of Cybersecurity Threats

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

Three Buddy Problem

An 'extremely sophisticated' iPhone hack; Google flags major AMD microcode bug

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Apple's Urgent Security Patch

The Implications of USB Restricted Mode

Concerns Over Microsoft Patch Tuesday

Coping with Zero-Day Vulnerabilities

The Complexity of Cybersecurity Threats

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights