Risky Business #786 -- Oracle is lying

On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news:

• Yes, Oracle Health and Oracle Cloud did get hacked
• The fallout from Signalgate continues
• North Korean IT workers pivot to Europe
• Honeypot data suggests a storm is brewing for Palo Alto VPNs
• Canadian Anon gets arrested for hacking Texas GOP

This week’s episode is sponsored by Trail of Bits. Tjaden Hess, a Principal Security Engineer at Trail of Bits who specialises in cryptography, joins the show this week to talk about what a responsible crypto-currency exchange cold wallet setup looks like, and … contrasts that with Bybit.

This episode is also available on Youtube.

Show notes

• Oracle Health breach compromises patient data at US hospitals
• FBI probes Oracle hack tied to healthcare extortion: Report - Becker's Hospital Review | Healthcare News & Analysis
• Oracle Still Denies Breach as Researchers Persist
• Hacker linked to Oracle Cloud intrusion threatens to sell stolen data | Cybersecurity Dive
• Publius on X: "🚨 SIGNAL SCANDAL: Katherine Maher, the leftist NPR CEO, is currently the Chair of the Board of Signal! WHAT ARE THE ODDS? https://t.co/jWNTeAt3Jz" / X
• Mike Waltz Is Losing Support Inside the White House - WSJ
• Waltz and staff used Gmail for government communications, officials say - The Washington Post
• Pete Hegseth, Mike Waltz, Tulsi Gabbard: Private Data and Passwords of Senior U.S. Security Officials Found Online - DER SPIEGEL
• Even More Venmo Accounts Tied to Trump Officials in Signal Group Chat Left Data Public | WIRED
• You Need to Use Signal's Nickname Feature
• SignalGate Is Driving the Most US Downloads of Signal Ever | WIRED
• Wickr - Wikipedia
• When Getting Phished Puts You in Mortal Danger – Krebs on Security
• DPRK IT Workers Expanding in Scope and Scale | Google Cloud Blog
• How the FBI Tracked, and Froze, Millions Sent to Criminals in Massive Caesars Casino Hack
• Defense contractor to pay $4.6 million over third-party provider’s security weakness | The Record from Recorded Future News
• Surge in Palo Alto Networks Scanner Activity Indicates Possible Upcoming Threats
• CISA warns new malware targeting Ivanti zero-day vulnerability | Cybersecurity Dive
• Canadian hacker arrested for allegedly stealing data from Texas Republican Party | The Record from Recorded Future News
• British intel intern pleads guilty to smuggling top secret data out of protected facility | The Record from Recorded Future News