Tom Uren and Patrick Gray discuss how North Korean IT worker scam is shifting towards Europe and employing tactics that make it more dangerous. They also discuss why Signalgate was a massive security failure. We learnt this week that US cabinet members were in multiple Signal groups discussing different topics. Phone hacking is not uncommon, an adversary states will be able to take advantage of the intelligence in these conversations. This episode is also available on Youtube. Show notes

A North Korean IT worker scheme pivots to Europe after a US crackdown, 24,000 IPs are looking for Palo Alto Networks VPNs, Gmail rolls out end-to-end encrypted emails for enterprise users, and hackers steal over $100 million via Coinbase phishing. Show notes

Delve into the intriguing misconceptions of U.S. cybersecurity, likening its capabilities to self-proclaimed martial arts skills. Discover how think tanks gauge the cyber power of agencies like the NSA, especially post-Snowden. The podcast highlights the evolution of talent in cryptography, nurturing innovation within elite organizations. It also compares different nations' approaches to cyber operations, illustrating the distinct paths taken by the U.S., China, and Russia. Finally, explore the remarkable journey of a key cybersecurity player from humble beginnings to dominance.

Dive into the alarming world of cybersecurity as Oracle's Health Tech division faces a devastating hack, with extortion hitting its customers hard. Discover the shocking revelation of the Italian government using Paragon for surveillance on NGOs. Then, learn about how a WordPress feature is being exploited to silently unleash malicious plugins. Finally, hear about the Dutch authorities taking drastic measures after a cyber incident shuts down critical systems.

In this Risky Bulletin sponsor interview Ed Currie from Kroll Cyber talks to Tom Uren about the recent hack of the Gravy Analytics geolocation data provider. He explains the hack and how geolocation data can be used by malicious actors. Show notes Kroll's report on the risks of geolocation hacks

France runs a phishing test on two and a half million students, Google fixes a Chrome zero-day abused for espionage, China publishes new facial recognition rules, and the DragonForce ransomware group hacks two rivals. Show notes

Tom Uren and Patrick Gray discuss how the Signalgate messages betray an alarming lack of security nous at the highest levels of the US natsec leadership. It’s head-scratchingly bad. They also discuss the possibility the Trump Administration will reconstitute the CSRB. The Board wasn’t perfect, but in our view it is better to get it started again rather than waiting for reviews to determine its perfect form. This episode is also available on Youtube. Show notes

Ukraine’s state railway hit by a cyberattack, a ransomware attack reduces Malaysia’s largest airport to writing flight details on a whiteboard, buggy exploits put DrayTek routers in a reboot loop, and the NIST CVE backlog grows bigger despite efforts to address it. Show notes

Dive into the intriguing world of 0-day vulnerabilities, where hackers find exploits before manufacturers do. Discover the fine line between academic enthusiasm and real-world urgency in cybersecurity. The discussion reveals how individual hackers and state agencies approach these risks differently. Learn about the surprising impact of exploits like Eternal Blue and triangulation, affecting even high-profile targets. Moreover, explore the ethics of using these powerful tools within the complex web of international relations!

The US removes Tornado Cash sanctions, the White House shifts cyber responsibility to state and local governments, a Michigan football coach is indicted for hacking, and Google sues a Maps scam syndicate. Show notes