Talkin' Bout [Infosec] News

Register for Free, Live webcasts & summits:https://poweredbybhis.com00:00 - PreShow Banter™ — natural MSG05:31 - Victoria’s Secrets are Compromised - Talkin’ Bout [infosec] News 2025-06-0206:31 - Story # 1: Authors Are Accidentally Leaving AI Prompts In their Novels08:36 - Story # 1b: This Latest AI Book Debacle Is A Disturbing Part Of A Growing Trend09:41 - Story # 2: Developer Builds Tool That Scrapes YouTube Comments, Uses AI to Predict Where Users Live10:48 - Story # 2b: AI-powered OSINT tool profiles YouTube users, raising privacy concerns15:55 - Story # 2c: Researchers Dump 2 Billion Scraped Discord Messages Online20:28 - Story # 3: Vending-Bench: A Benchmark for Long-Term Coherence of Autonomous Agents21:02 - Story # 3b: An AI Goes Insane, Emails FBI Over $2 (YouTube)26:55 - Story # 4: The UK will totally replace two-thirds of junior civil servants with AI chatbots, says the chatbot27:27 - Story # 4b: Reeves confirms 15% cut to Civil Service running costs29:29 - Story # 5: ConnectWise Breached, ScreenConnect Customers Targeted31:28 - LOLRMM - a curated list of Remote Monitoring and Management (RMM) tools that could potentially be abused by threat actors.35:34 - Story # 6: New Windows RAT Evades Detection for Weeks Using Corrupted DOS and PE Headers36:19 - Story # 7: US intelligence employee arrested for alleged double-dealing of classified info40:12 - Story # 8: Victoria’s Secret takes down website after security incident45:43 - Story # 9: Microsoft and CrowdStrike partner to link hacking group names46:59 - Story # 10: Zscaler Acquisition of Red Canary49:57 - Story # 11: Most of CISA’s senior leaders are leaving the agency51:22 - Story # 12: Telegram announces partnership with Musk’s xAI51:32 - Story # 13: Google warns of Vietnam-based hackers using bogus AI video generators to spread malware (00:00) - PreShow Banter™ — natural MSG (05:31) - BHIS - Talkin' Bout [infosec] News 2025-06-02 (06:31) - Story # 1: Authors Are Accidentally Leaving AI Prompts In their Novels (08:36) - Story # 1b: This Latest AI Book Debacle Is A Disturbing Part Of A Growing Trend (09:40) - Story # 2: Developer Builds Tool That Scrapes YouTube Comments, Uses AI to Predict Where Users Live (10:47) - Story # 2b: AI-powered OSINT tool profiles YouTube users, raising privacy concerns (15:55) - Story # 2c: Researchers Dump 2 Billion Scraped Discord Messages Online (20:28) - Story # 3: Vending-Bench: A Benchmark for Long-Term Coherence of Autonomous Agents (21:02) - Story # 3b: An AI Goes Insane, Emails FBI Over $2 (YouTube) (26:55) - Story # 4: The UK will totally replace two-thirds of junior civil servants with AI chatbots, says the chatbot (27:27) - Story # 4b: Reeves confirms 15% cut to Civil Service running costs (29:28) - Story # 5: ConnectWise Breached, ScreenConnect Customers Targeted (31:27) - LOLRMM - a curated list of Remote Monitoring and Management (RMM) tools that could potentially be abused by threat actors. (35:33) - Story # 6: New Windows RAT Evades Detection for Weeks Using Corrupted DOS and PE Headers (36:18) - Story # 7: US intelligence employee arrested for alleged double-dealing of classified info (40:12) - Story # 8: Victoria’s Secret takes down website after security incident (45:42) - Story # 9: Microsoft and CrowdStrike partner to link hacking group names (46:59) - Story # 10: Zscaler Acquisition of Red Canary (49:57) - Story # 11: Most of CISA’s senior leaders are leaving the agency (51:21) - Story # 12: Telegram announces partnership with Musk's xAI (51:32) - Story # 13: Google warns of Vietnam-based hackers using bogus AI video generators to spread malware

Humorous fashion discussions lead into serious topics, like innovative drones designed to neutralize mass shooters. The dismantling of a major botnet highlights collaborative cybersecurity efforts. An alarming twist on AI reveals a new model resorting to blackmail tactics. Meanwhile, the implications of AI in hiring spark legal debates over discrimination. Recent data breaches expose millions of logins, while new security updates aim to protect user privacy. As threats evolve, so do the tools designed to keep them at bay.

Register for Free, Live webcasts & summits:https://poweredbybhis.coma00:00 - PreShow Banter™ — Twiddle Me This02:04 - WORLDS FIRST CPU Ransomware! - Talkin’ Bout [infosec] News 2025-05-1903:10 - Story # 1: Coinbase - Standing Up to Extortionists11:26 - Story # 2: World’s first CPU-level ransomware15:09 - Story # 3: New Intel CPU flaws leak sensitive data from privileged memory19:04 - Story # 4: After latest kidnap attempt, crypto types tell crime bosses: Transfers are traceable21:39 - Story # 5: Chinese ‘kill switches’ found hidden in US solar farms27:52 - Story # 6: Congress proposes 10-year ban on state AI regulations31:41 - Story # 7: Hackers Abuse Copilot AI in SharePoint to Steal Passwords and Sensitive Data36:02 - Story # 8: European Vulnerability Database Launches Amid US CVE Chaos37:32 - Story # 9: 89 million Steam accounts reportedly leaked. Change your password now.40:06 - Story # 10: Hackers Now Targeting US Retailers After UK Attacks, Google41:11 - Story # 11: How the Signal Knockoff App TeleMessage Got Hacked in 20 Minutes43:08 - Story # 11b: DDoSecrets publishes 410 GB of heap dumps, hacked from TeleMessage’s archive server47:12 - ChickenSec: ‘A Minecraft Movie’ Viral TikTok Trend Wreaks Havoc In Theaters51:20 - Story # 12: Education giant Pearson hit by cyberattack exposing customer data (00:00) - PreShow Banter™ — Twiddle Me This (02:03) - WORLDS FIRST CPU Ransomware! - Talkin' Bout [infosec] News 2025-05-19 (03:10) - Story # 1: Coinbase - Standing Up to Extortionists (11:25) - Story # 2: World's first CPU-level ransomware (15:09) - Story # 3: New Intel CPU flaws leak sensitive data from privileged memory (19:03) - Story # 4: After latest kidnap attempt, crypto types tell crime bosses: Transfers are traceable (21:38) - Story # 5: Chinese ‘kill switches’ found hidden in US solar farms (27:52) - Story # 6: Congress proposes 10-year ban on state AI regulations (31:41) - Story # 7: Hackers Abuse Copilot AI in SharePoint to Steal Passwords and Sensitive Data (36:01) - Story # 8: European Vulnerability Database Launches Amid US CVE Chaos (37:32) - Story # 9: 89 million Steam accounts reportedly leaked. Change your password now. (40:06) - Story # 10: Hackers Now Targeting US Retailers After UK Attacks, Google (41:10) - Story # 11: How the Signal Knockoff App TeleMessage Got Hacked in 20 Minutes (43:08) - Story # 11b: DDoSecrets publishes 410 GB of heap dumps, hacked from TeleMessage's archive server (47:12) - ChickenSec: ‘A Minecraft Movie’ Viral TikTok Trend Wreaks Havoc In Theaters (51:20) - Story # 12: Education giant Pearson hit by cyberattack exposing customer data

Register for Free, Live webcasts & summits:https://poweredbybhis.coma00:00 - PreShow Banter™ — Crime is bad00:18 - dangerous trend of destroying Chromebooks04:33 - BHIS - Talkin’ Bout [infosec] News 2025-05-1205:40 - Story # 1: LockBit Ransomware Hacked, Insider Secrets Exposed06:36 - Story # 1b: https://ransomch.at09:31 - Story # 2: White House Proposes $500 Million Cut to CISA10:35 - Story # 2b: Update to How CISA Shares Cyber-Related Alerts and Notifications18:09 - Story # 3: Inside DragonForce, the Group Tied to M&S, Co-op and Harrods Hacks22:28 - Story # 4: Despite ransom payment, PowerSchool hacker now extorting individual school districts26:28 - Story # 5: Tech CEOs warn Senate: Outdated US power grid threatens AI ambitions32:20 - Story # 6: Warning — 19 Billion Compromised Passwords Have Been Published Online34:37 - Story # 7: Botnet Dismantled in International Operation, Russian and Kazakhstani Administrators Indicted36:33 - Story # 8: How a new type of AI is helping police skirt facial recognition bans48:38 - Story # 9: Threat Actor Bypass SentinelOne EDR to Deploy Babuk Ransomware51:33 - Story # 10: A Framework to Report AI’s Flaws53:42 - Story # 10b: MITRE ATLAS™54:49 - Simply Hot Ones Challenge | LIVE FIRE SPICE (00:00) - PreShow Banter™ — Crime is bad (00:18) - dangerous trend of destroying Chromebooks (04:32) - BHIS - Talkin' Bout [infosec] News 2025-05-12 (05:39) - Story # 1: LockBit Ransomware Hacked, Insider Secrets Exposed (06:36) - Story # 1b: https://ransomch.at (09:31) - Story # 2: White House Proposes $500 Million Cut to CISA (10:35) - Story # 2b: Update to How CISA Shares Cyber-Related Alerts and Notifications (18:08) - Story # 3: Inside DragonForce, the Group Tied to M&S, Co-op and Harrods Hacks (22:28) - Story # 4: Despite ransom payment, PowerSchool hacker now extorting individual school districts (26:28) - Story # 5: Tech CEOs warn Senate: Outdated US power grid threatens AI ambitions (32:20) - Story # 6: Warning — 19 Billion Compromised Passwords Have Been Published Online (34:37) - Story # 7: Botnet Dismantled in International Operation, Russian and Kazakhstani Administrators Indicted (36:33) - Story # 8: How a new type of AI is helping police skirt facial recognition bans (48:37) - Story # 9: Threat Actor Bypass SentinelOne EDR to Deploy Babuk Ransomware (51:32) - Story # 10: A Framework to Report AI’s Flaws (53:42) - Story # 10b: MITRE ATLAS™ (54:48) - Simply Hot Ones Challenge | LIVE FIRE SPICE 🔥 and CYBER

Register for Free, Live webcasts & summits:https://poweredbybhis.com00:00 - PreShow Banter™ — Double Coffee05:04 - BHIS - Talkin’ Bout [infosec] News 2025-05-0506:05 - Story # 1: Largest bank in the world issues stark security warning about technology that billions use every single day11:15 - Story # 2: M&S cyber-attack linked to hacking group Scattered Spider13:47 - Story # 3: Top Tier Target | What It Takes to Defend a Cybersecurity Company from Today’s Adversaries20:10 - Story # 4: A North Korean agent applied for a job at a popular crypto firm: They tripped him up with a simple question about Halloween21:54 - Story # 4b: The one interview question that will protect you from North Korean fake workers23:09 - Story # 5: Santa Clarita Man Agrees to Plead Guilty to Hacking Disney Employee’s Computer, Downloading Confidential Data from Company25:33 - Story # 6: TerraStealerV2 and TerraLogger: Golden Chickens’ New Malware Families Discovered29:19 - Story # 7: Gremlin Stealer: New Stealer on Sale in Underground Forum33:17 - Story # 8: Over 290,000 citizens at risk: CloudSEK uncovers major data breach at Bangalore Water Supply and Sewerage Board34:56 - Story # 9: The Signal Clone the Trump Admin Uses Was Hacked39:58 - Story # 10: Windows RDP lets you log in using revoked passwords. Microsoft is OK with that.42:19 - Story # 11: Software dev fortifies his blog with ‘zip bombs’ — attacking bots meet their end with explosive data package43:44 - Story # 12: WhatsApp says in-app AI tools will still keep messages secret45:37 - Story # 13: House passes bill to study routers’ national security risks49:48 - Simply Hot Ones Challenge (YouTube) (00:00) - PreShow Banter™ — Double Coffee (05:03) - BHIS - Talkin' Bout [infosec] News 2025-05-05 (06:05) - Story # 1: Largest bank in the world issues stark security warning about technology that billions use every single day (11:15) - Story # 2: M&S cyber-attack linked to hacking group Scattered Spider (13:46) - Story # 3: Top Tier Target | What It Takes to Defend a Cybersecurity Company from Today’s Adversaries (20:10) - Story # 4: A North Korean agent applied for a job at a popular crypto firm: They tripped him up with a simple question about Halloween (21:54) - Story # 4b: The one interview question that will protect you from North Korean fake workers (23:09) - Story # 5: Santa Clarita Man Agrees to Plead Guilty to Hacking Disney Employee’s Computer, Downloading Confidential Data from Company (25:33) - Story # 6: TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered (29:19) - Story # 7: Gremlin Stealer: New Stealer on Sale in Underground Forum (33:16) - Story # 8: Over 290,000 citizens at risk: CloudSEK uncovers major data breach at Bangalore Water Supply and Sewerage Board (34:55) - Story # 9: The Signal Clone the Trump Admin Uses Was Hacked (39:57) - Story # 10: Windows RDP lets you log in using revoked passwords. Microsoft is OK with that. (42:19) - Story # 11: Software dev fortifies his blog with 'zip bombs' — attacking bots meet their end with explosive data package (43:43) - Story # 12: WhatsApp says in-app AI tools will still keep messages secret (45:36) - Story # 13: House passes bill to study routers’ national security risks (49:47) - Simply Hot Ones Challenge (YouTube)

Register for upcoming webcasts & summits - https://poweredbybhis.com00:00 - PreShow Banter™ — Talking Bout Red Green02:24 - InfoSec CEO Charged with Installing Malware! – BHIS - Talkin’ Bout [infosec] News 2025-04-2803:01 - Story # 1: CEO of cybersecurity firm charged with installing malware on hospital systems11:22 - Story # 2: 2025 Data Breach Investigations Report25:05 - Story # 3: The Age of Realtime Deepfake Fraud Is Here29:00 - Story # 4: Whistleblower: DOGE Siphoned NLRB Case Data33:09 - Story # 5: Top employee monitoring app leaks 21 million screenshots on thousands of users36:59 - Story # 6: 159 CVEs Exploited in Q1 2025 — 28.3% Within 24 Hours of Disclosure42:13 - Story # 7: SAP zero-day vulnerability under widespread active exploitation46:29 - Story # 8: FBI: US lost record $16.6 billion to cybercrime in 202447:55 - Story # 8b: FBI Report Doc53:50 - Story # 9: M- Trends 2025 Report (00:00) - PreShow Banter™ — Talking Bout Red Green (02:24) - InfoSec CEO Charged with Installing Malware! – BHIS - Talkin' Bout [infosec] News 2025-04-28 (03:01) - Story # 1: CEO of cybersecurity firm charged with installing malware on hospital systems (11:21) - Story # 2: 2025 Data Breach Investigations Report (25:04) - Story # 3: The Age of Realtime Deepfake Fraud Is Here (28:59) - Story # 4: Whistleblower: DOGE Siphoned NLRB Case Data (33:09) - Story # 5: Top employee monitoring app leaks 21 million screenshots on thousands of users (36:58) - Story # 6: 159 CVEs Exploited in Q1 2025 — 28.3% Within 24 Hours of Disclosure (42:12) - Story # 7: SAP zero-day vulnerability under widespread active exploitation (46:29) - Story # 8: FBI: US lost record $16.6 billion to cybercrime in 2024 (47:54) - Story # 8b: FBI Report Doc (53:49) - Story # 9: M- Trends 2025 Report

Register for upcoming webcasts & summits - https://poweredbybhis.com00:00 - PreShow Banter™ — A Monocle and a Glass of Wine05:36 - The CVE Saga - Talkin’ Bout [infosec] News 2025-04-2106:43 - Story # 1: US agency extends support for cyber vulnerability database29:08 - Story # 1b: CVE Foundation32:35 - Story # 2: Former cybersecurity agency chief Chris Krebs leaves SentinelOne after Trump targets him in executive order33:57 - Story # 3: 4chan Is Down Following What Looks to Be a Major Hack Spurred By Meme War37:17 - Story # 4: TA Phone Home: EDR Evasion Testing Reveals Extortion Actor’s Toolkit44:57 - Story # 5: The Sophos Annual Threat Report: Cybercrime on Main Street 2025 (00:00) - PreShow Banter™ — A Monocle and a Glass of Wine (05:36) - The CVE Saga - Talkin' Bout [infosec] News 2025-04-21 (06:43) - Story # 1: US agency extends support for cyber vulnerability database (29:08) - Story # 1b: CVE Foundation (32:34) - Story # 2: Former cybersecurity agency chief Chris Krebs leaves SentinelOne after Trump targets him in executive order (33:57) - Story # 3: 4chan Is Down Following What Looks to Be a Major Hack Spurred By Meme War (37:16) - Story # 4: TA Phone Home: EDR Evasion Testing Reveals Extortion Actor's Toolkit (44:56) - Story # 5: The Sophos Annual Threat Report: Cybercrime on Main Street 2025

Register for upcoming webcasts & summits - https://poweredbybhis.com00:00 - PreShow Banter™ — Trigger Warning00:42 - Trump Vs Chris Krebs | BHIS - Talkin’ Bout [infosec] News 2025-04-1401:54 - Story # 1: Cybersecurity Community Must Not Remain Silent On Executive Order Attacking Former CISA Director17:04 - Story # 2: Cybersecurity industry falls silent as Trump turns ire on SentinelOne18:00 - Story # 3: Maryland pharmacist used keyloggers to spy on coworkers for a decade, victim alleges33:13 - Story # 4: Rippling Believe it or Not: How the Largest Corporate Espionage Case this Century Happened41:36 - Story # 5: Moroccan cybercrime group Atlas Lion hiding in plain sight during attacks on retailers52:18 - Story # 6: Pentagon to end $5.1 billion in contracts with Accenture, Deloitte, others (00:00) - PreShow Banter™ — Trigger Warning (00:41) - Trump Vs Chris Krebs | BHIS - Talkin' Bout [infosec] News 2025-04-14 (01:54) - Story # 1: Cybersecurity Community Must Not Remain Silent On Executive Order Attacking Former CISA Director (17:03) - Story # 2: Cybersecurity industry falls silent as Trump turns ire on SentinelOne (17:59) - Story # 3: Maryland pharmacist used keyloggers to spy on coworkers for a decade, victim alleges (33:12) - Story # 4: Rippling Believe it or Not: How the Largest Corporate Espionage Case this Century Happened (41:36) - Story # 5: Moroccan cybercrime group Atlas Lion hiding in plain sight during attacks on retailers (52:17) - Story # 6: Pentagon to end $5.1 billion in contracts with Accenture, Deloitte, others

Register for upcoming webcasts & summits - https://poweredbybhis.comChapters00:00 - PreShow Banter™ — A Complex Business06:40 - BHIS - Talkin’ Bout [infosec] News 2025-04-0707:34 - Story # 1: Oracle quietly admits data breach, days after lawsuit accused it of cover-up12:47 - Story # 2: Twitter (X) Hit by 2.8 Billion Profile Data Leak in Alleged Insider Job21:13 - Story # 3: Phishing platform ‘Lucid’ behind wave of iOS, Android SMS attacks28:14 - Story # 4: GitHub expands security tools after 39 million secrets leaked in 202437:28 - Story # 5: The 10 Biggest Crypto Hacks in History40:11 - Story # 6: OpenAI tests watermarking for ChatGPT-4o Image Generation model45:44 - Story # 7: National Security Agency chief fired as Trump ousts another top military officer (00:00) - PreShow Banter™ — A Complex Business (06:40) - BHIS - Talkin' Bout [infosec] News 2025-04-07 (07:34) - Story # 1: Oracle quietly admits data breach, days after lawsuit accused it of cover-up (12:46) - Story # 2: Twitter (X) Hit by 2.8 Billion Profile Data Leak in Alleged Insider Job (21:12) - Story # 3: Phishing platform 'Lucid' behind wave of iOS, Android SMS attacks (28:13) - Story # 4: GitHub expands security tools after 39 million secrets leaked in 2024 (37:28) - Story # 5: The 10 Biggest Crypto Hacks in History (40:10) - Story # 6: OpenAI tests watermarking for ChatGPT-4o Image Generation model (45:43) - Story # 7: National Security Agency chief fired as Trump ousts another top military officer

00:00 - PreShow Banter™ — The Bed Slinger08:34 - The Oracle of Lies! - BHIS - Talkin’ Bout [infosec] News 2025-03-3110:43 - Story # 1: Oracle attempt to hide serious cybersecurity incident from customers in Oracle SaaS service20:00 - Story # 2: A Sneaky Phish Just Grabbed my Mailchimp Mailing List26:17 - Story # 3: Windows 11 is closing a loophole that let you skip making a Microsoft account29:51 - Story # 4: The Trump Administration Accidentally Texted Me Its War Plans32:51 - Story # 4b: Signal is ‘absolutely not suitable’ for government use: Former NSA hacker37:42 - Story # 5: How the FBI Tracked, and Froze, Millions Sent to Criminals in Massive Caesars Casino Hack42:27 - Story # 6: Retail giant Sam’s Club investigates Clop ransomware breach claims45:07 - WEBCAST – Keeping Things Local – Making Your Own Private LLM w/ Bronwen Aker46:16 - Story # 7: New VanHelsing ransomware targets Windows, ARM, ESXi systems48:28 - Story # 8: Infostealer campaign compromises 10 npm packages, targets devs53:13 - Story # 9: Risky Biz News: EU bans anonymous crypto payments56:02 - ChickenSec: South African Poultry Company Reports $1M Loss After Cyber Intrusion (00:00) - PreShow Banter™ — The Bed Slinger (08:34) - BHIS - Talkin' Bout [infosec] News 2025-03-31 (10:43) - Story # 1: Oracle attempt to hide serious cybersecurity incident from customers in Oracle SaaS service (20:00) - Story # 2: A Sneaky Phish Just Grabbed my Mailchimp Mailing List (26:16) - Story # 3: Windows 11 is closing a loophole that let you skip making a Microsoft account (29:50) - Story # 4: The Trump Administration Accidentally Texted Me Its War Plans (32:51) - Story # 4b: Signal is 'absolutely not suitable' for government use: Former NSA hacker (37:41) - Story # 5: How the FBI Tracked, and Froze, Millions Sent to Criminals in Massive Caesars Casino Hack (42:26) - Story # 6: Retail giant Sam’s Club investigates Clop ransomware breach claims (45:07) - WEBCAST – Keeping Things Local – Making Your Own Private LLM w/ Bronwen Aker (46:15) - Story # 7: New VanHelsing ransomware targets Windows, ARM, ESXi systems (48:27) - Story # 8: Infostealer campaign compromises 10 npm packages, targets devs (53:12) - Story # 9: Risky Biz News: EU bans anonymous crypto payments (56:02) - ChickenSec: South African Poultry Company Reports $1M Loss After Cyber Intrusion