Talkin' About [Infosec] News, Powered by Black Hills Information Security
Download and listen to our weekly infosec podcast where we discuss the latest attacks, breaches, and how they happened and why. We’re a team of penetration testers (ethical hackers) and friends that love how new technology can be broken and made to do things it was never intended to do.
Lawmakers Want to Ban VPNs - 2025-12-01
Register for FREE Infosec Webcasts, Anti-casts & Summits –
https://poweredbybhis.com
00:00 - PreShow Banter™ — The Problem With Extensions
03:10 - Lawmakers want to Ban VPNs – BHIS - Talkin’ Bout [infosec] News 2025-12-01
03:47 - Story # 1: Stop Putting Your Passwords Into Random Websites (Yes, Seriously, You Are The Problem)
12:05 - Story # 2: Lawmakers Want to Ban VPNs—And They Have No Idea What They’re Doing
21:19 - Story # 3: Critical 7 Zip Vulnerability With Public Exploit Requires Manual Update
25:49 - Story # 4: ‘Slop Evader’ Lets You Surf the Web Like It’s 2022
<...Shai-Hulud malware leaks secrets on GitHub – 2025-17-24
???? Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com
00:00 - PreShow Banter™ — Stressed about lithium batteries
04:59 - Shai-Hulud malware leaks secrets on GitHub – BHIS - Talkin’ Bout [infosec] News 2025-17-24
05:57 - Story # 1: Shai-Hulud malware infects 500 npm packages, leaks secrets on GitHub
11:19 - Story # 2: CrowdStrike catches insider feeding information to hackers
15:50 - Story # 3: Fidelity sues Broadcom over access to key software to avoid outages
22:17 - Story # 4: NetApp sues former CTO for alleged data breach
26:49 - Story # 5: CrowdStrike Research: Security Flaws in DeepSeek-G...
A.I. Transcription Startup Was Just A Guy Taking Notes- 2025-11-17
Register for FREE Infosec Webcasts, Anti-casts & Summits –
https://poweredbybhis.com
00:00:00 - PreShow Banter™ — The Way the Community Rumbles
00:08:21 - A.I. Transcription Startup Was Just A Guy Taking Notes - BHIS - Talkin’ Bout [infosec] News 2025-11-17
00:09:01 - Story # 1: New data shows companies are rehiring former employees as AI falls short of expectations
00:18:06 - Eric & Whitney’s “Podcast” [webcast] on training your own LLM
00:22:12 - Story # 2: Founder Admits His “AI Transcription” Startup Was Just Him Joining People’s Meetings and Taking Notes by Hand
00:26:20...
Louvre’s Video Security Password Was ‘Louvre’ 2025-11-10
Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com
Chapters
00:00 - PreShow Banter™ — Humans are Done
03:04 - Louvre’s video security password was ‘Louvre’ – BHIS - Talkin’ Bout [infosec] News 2025-11-10
05:11 - Story # 1: I Tried the Robot That’s Coming to Live With You. It’s Still Part Human.
15:14 - Story # 2: How to trade your $214,000 cybersecurity job for a jail cell
25:14 - Story # 3: The Louvre’s video security password was reportedly ‘Louvre’
29:04 - Story # 4: Dangerous runC flaws could allow hackers to esc...
Ransomware Victims Stop Paying Hackers – 2025-11-03
Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com
00:00 - PreShow Banter™ — Musical Views of the Universe
04:05 - – BHIS - Talkin’ Bout [infosec] News 2025-11-03
04:39 - Story # 1: Ransomware profits drop as victims stop paying hackers
06:22 - Chart since 2019
16:06 - Story # 2: More than a million people every week show suicidal intent when chatting with ChatGPT, OpenAI estimates
33:02 - Story # 3: 10M people watched a YouTuber shim a lock; the lock company sued him. Bad idea.
41:18 - Story # 4: ‘Dangerous’ YouTube videos struck down for bypassing...
The AI Browser Wars - 2025-10-27
Register for FREE Infosec Webcasts, Anti-casts & Summits –
https://poweredbybhis.com
The BHIS crew breaks down the latest cybersecurity stories making waves — from data breaches and malware campaigns to privacy issues, exploit trends, and tech policy shake-ups. Join our panel of security pros for expert analysis, sharp humor, and practical insights you can actually use. Whether it’s social engineering, AI-powered attacks, or bizarre security headlines, we dig into what matters most for defenders and curious minds alike. Stay informed, entertained, and one step ahead in the ever-changing world of infosec.
<...
Online Book Store Takes Down Half the Internet - BHIS - Talkin' Bout [infosec] News 2025-10-20
Register for FREE Infosec Webcasts, Anti-casts & Summits –
https://poweredbybhis.com
00:00:00 - PreShow Banter™ — AWS Snow Day Party
00:11:31 - Online Book Store Takes Down Half of the Internet - BHIS - Talkin’ Bout [infosec] News 2025-10-20
00:12:12 - Story # 1: F5 says hackers stole undisclosed BIG-IP flaws, source code
00:35:11 - Story # 2: Newsom signs age verification law, siding with tech giants over Hollywood
00:48:39 - Story # 3: Researchers find a startlingly cheap way to steal your secrets from space
00:55:04 - Story # 4: Jeff Bezos Has a Plan to Curb AI’s...
Hackers claim Discord breach exposed data of 5.5 million users - 2025-10-13
Register for FREE Infosec Webcasts, Anti-casts & Summits –
https://poweredbybhis.com
00:00 - PreShow Banter™ — A Real Podcast
03:15 - Hackers claim Discord breach exposed data of 5.5 million users – BHIS - Talkin' Bout [infosec] News 2025-10-13
05:44 - Story # 1: CamoLeak: Critical GitHub Copilot Vulnerability Leaks Private Source Code
24:27 - Story # 2: Hackers claim Discord breach exposed data of 5.5 million users
36:52 - Story # 3: Velociraptor leveraged in ransomware attacks
46:47 - Story # 4: Huntress Threat Advisory: Widespread SonicWall SSLVPN Compromise
54:48 - CTF Challenge
2 Million Cisco Devices Targeted by Exploited 0-Day – 2025-09-29
Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com
00:00 - PreShow Banter™ — A little radiation never hurt anybody.
03:07 - BHIS - Talkin’ Bout [infosec] News 2025-09-29
03:29 - Story # 1: As many as 2 million Cisco devices affected by actively exploited 0-day
19:07 - Story # 2: Viral call-recording app Neon goes dark after exposing users’ phone numbers, call recordings, and transcripts | TechCrunch
24:25 - Story # 3: AI Darwin Awards Show AI’s Biggest Problem Is Human
29:32 - Story # 4: Nikon revokes all C2PA image authenticity certificates after major vulnerability exposed
<...Dirk-Jan Mollema Walks Us Through the Entra ID Cross-Tenant Vulnerability Discovery– 2025-09-22
Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com
00:00 - PreShow Banter™ — Unnatural European Fridges
03:34 - The Entra ID Cross-Tenant Vulnerability Discovery – BHIS - Talkin’ Bout [infosec] News 2025-09-22
04:14 - Story # 1: One Token to rule them all - obtaining Global Admin in every Entra ID tenant via Actor tokens
21:32 - Story # 2: Shai-Hulud: Self-Replicating Worm Compromises 500+ NPM Packages
40:50 - OSSPREY – NPM Package @Ctrl/Tinycolor Compromised: Shai Hulud Malware Targets Secrets and Persistence
51:41 - Story # 3: Verified Steam game steals streamer’s cancer treatment donations
57:16 - S...
Kerberoasting Goes to Washington – 2025-09-15
???? Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com
00:00 - PreShow Banter™ — Enter Dark John
03:15 - Kerberoasting Goes to Washington – BHIS - Talkin’ Bout [infosec] News 2025-09-15
03:49 - Story # 1: Senator blasts Microsoft for making default Windows vulnerable to “Kerberoasting”
12:46 - Story # 2: How an Attacker’s Blunder Gave Us a Rare Look Inside Their Day-to-Day Operations
32:42 - Story # 3: Some JLR suppliers ‘face bankruptcy’ due to hack crisis
41:30 - Story # 4: AI-Powered Villager Pen Testing Tool Hits 11,000 PyPI Downloads Amid Abuse Concerns
46:07 - Story # 5: All your...
Anthropic 1.5 Billion © Settlement - 2025-09-08
Register for FREE Infosec Webcasts, Anti-casts & Summits –
https://poweredbybhis.com
00:00 - PreShow Banter™ — If I Were French
04:35 - Anthropic 1.5 Billion © Settlement - BHIS - Talkin’ Bout [infosec] News 2025-09-08
05:48 - Hackers Threaten to Submit Artists’ Data to AI Models If Art Site Doesn’t Pay Up
08:40 - Anthropic Agrees to Pay Authors at Least $1.5 Billion in AI Copyright Settlement
23:58 - This Company Turns Dashcams into ‘Virtual CCTV Cameras.’ Then Hackers Got In
33:38 - Ice obtains access to Israeli-made spyware that can hack phones and en...
Chinese agent tried to recruit Stanford Student - 2025-09-02
Register for FREE Infosec Webcasts, Anti-casts & Summits –
https://poweredbybhis.com
00:00 - PreShow Banter™ — It’s 8ft skeleton season.
02:18 - BHIS - Talkin’ Bout [infosec] News 2025-09-02
03:07 - Story # 1: Salesloft breached to steal OAuth tokens for Salesforce data-theft attacks
07:35 - Story # 2: DSLRoot, Proxies, and the Threat of ‘Legal Botnets’
13:46 - Story # 3: Attackers Abuse Velociraptor Forensic Tool to Deploy Visual Studio Code for C2 Tunneling
17:44 - Story # 4: Ransomware crooks knock Swedish municipalities offline for measly sum of $168K
19:39 - Story # 5: As...
The Impending AI Bubble 2025-08-25
Register for FREE Infosec Webcasts, Anti-casts & Summits –
https://poweredbybhis.com
00:00 - PreShow Banter™ — Canadian Chicken
02:01 - The AI Bubble BHIS - Talkin’ Bout [infosec] News 2025-08-25
02:23 - Story # 1: Congressman proposes bringing back letters of marque for cyber privateers
09:27 - Story # 2: SIM-Swapper, Scattered Spider Hacker Gets 10 Years
12:43 - Story # 3: Developer jailed for taking down employer’s network with kill switch malware
16:33 - Story # 4: Agentic Browser Security: Indirect Prompt Injection in Perplexity Comet
20:42 - The Utopia Chronicles
23:20 - Story # 5: “Unstoppable P...
Cyberattack Bricks Speed Cameras – 2025-08-18
Register for FREE Infosec Webcasts, Anti-casts & Summits –
https://poweredbybhis.com
00:00 - PreShow Banter™ — The gif that keeps on giffing
01:46 - Cyberattack Bricks Speed Cameras – BHIS - Talkin’ Bout [infosec] News 2025-08-18
02:39 - Story # 1: Perplexity made a sky-high $34.5 billion bid for Google Chrome — a bold and unusual move in the midst of antitrust scrutiny
07:16 - Story # 2: Exclusive: US embeds trackers in AI chip shipments to catch diversions to China, sources say
10:22 - Story # 3: How we found TeaOnHer spilling users’ driver’s licenses in less than 10 minutes<...
DEF CON RECAP – 2025-08-11
Register for FREE Infosec Webcasts, Anti-casts & Summits –
https://poweredbybhis.com
00:00 - PreShow Banter™ — Wading Through Woods
06:06 - DEF CON RECAP - Talkin’ Bout [infosec] News 2025-08-11
09:16 - Story # 1: It’s time to acknowledge HTTP/1.1 is insecure
12:36 - Story # 2: Research reveals possible privacy gaps in Apple Intelligence’s data handling
17:51 - Story # 3: Federal court filing system hit in sweeping hack
21:09 - Story # 4: Cisco discloses data breach impacting Cisco.com user accounts
32:17 - Story # 5: Google says its AI-based bug hunter found 20 security vuln...
Perplexity Stealth Crawlers Evade No-Crawl Directives - 2025-08-04
Register for FREE Infosec Webcasts, Anti-casts & Summits –
https://poweredbybhis.com
00:00:00 - PreShow Banter™ — Stop Asking Wade if he’s in Vegas
00:02:16 - Perplexity Uses Stealth Crawlers to Evade No-Crawl Directives – 2025-08-04
00:11:25 - Story # 1: Insurance won’t cover $5M in City of Hamilton claims for cyberattack, citing lack of log-in security
00:18:40 - Story # 2: States Enact Safe Harbor Laws that Provide Affirmative Defenses in Data Breach Litigation
00:26:45 - Story # 3: Hackers Destroy Aeroflot’s IT Infrastructure, Causing Over 42 Flight Cancellations
00:34:18 - Story # 4: Attackers exploit link-wrapping s...
UK Bans Ransomware Payments - 2025-07-28
Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com
00:00 - PreShow Banter™ — National Chicken Wing Day
04:16 - BHIS - Talkin’ Bout [infosec] News 2025-07-28
05:30 - Story # 1: Bad vibes: How an AI agent coded its way to disaster
08:40 - Story # 1b: Replit goes rogue, deletes entire database.
15:44 - Story # 2: A major AI training data set contains millions of examples of personal data
26:05 - Story # 3: Women Dating Safety App ‘Tea’ Breached, Users’ IDs Posted to 4chan
33:19 - Story # 4:A Startup is Sel...
Microsoft's OverSharePoint 0-Day Exploit – 2025-07-21
Register for FREE Infosec Webcasts, Anti-casts & Summits –
https://poweredbybhis.com
00:00 - PreShow Banter™ — PaintBallers
03:55 - BHIS - Talkin’ Bout [infosec] News 2025-07-21
04:21 - Story # 1: Microsoft 0-day Mass Exploitation
09:39 - Story # 2: Replit AI went rogue, deleted a company’s entire database, then hid it and lied about it
13:15 - Story # 3: ‘All US forces must now assume their networks are compromised’ after Salt Typhoon breach
18:08 - Story # 4: After FBI Warning, Alaska Airlines Grounded; Salt Typhoon Suspected
20:45 - Story # 5: FBI Cybersecurity Breach Led to Murders...
McDonald’s Over 64 Million Exposed Job Applicants - 2025-07-14
Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com
00:00 - PreShow Banter™ — Traditional Finger
00:21 - BHIS - Talkin’ Bout [infosec] News 2025-07-14
01:29 - Story # 1: ‘123456’ password exposed chats for 64 million McDonald’s job chatbot applications
22:12 - Story # 2: Employee gets $920 for credentials used in $140 million bank heist
33:50 - Story # 3: Microsoft laying off about 9,000 employees in latest round of cuts
37:21 - Story # 5: Scammy YouTube Ads
46:31 - Story # 6: New ServiceNow flaw lets attackers enumerate restricted data
North Korean Remote Workers are at it Again! – BHIS - Talkin' Bout [infosec] News 2025-07-07
Register for FREE Infosec Webcasts, Anti-casts & Summits –
https://poweredbybhis.com
00:00 - PreShow Banter™ — Pre Stream Appropriate
03:39 - N. Korean Remote Workers are at it Again! – BHIS - Talkin’ Bout [infosec] News 2025-07-07
05:41 - Story # 1: Fortune 500 Cyber Spending Pays Off: Large Enterprise Risk Falls 33% Despite Rising Threats
20:01 - Story # 2: Jasper Sleet: North Korean remote IT workers’ evolving tactics to infiltrate organizations
25:49 - Story # 2b: Engineer caught juggling multiple startup jobs is a cautionary tale of ‘extreme’ hustle culture, experts say
34:47 - Story # 3: Taking SHELLTER...
Year of the [European Union] Linux Desktop Finally Arrives? | BHIS - Talkin' Bout [infosec] News 2025-06-30
Register for FREE Infosec Webcasts, Anti-casts & Summits –
https://poweredbybhis.com
Chapters:
00:00 - PreShow Banter™ — Names on Cups
01:39 - Year of the [European Union] Linux Desktop Finally Arrives? | BHIS - Talkin’ Bout [infosec] News 2025-06-30
03:34 - Story # 1: You should probably delete any sensitive screenshots you have in your phone right now.
10:55 - Story # 2: Ongoing Campaign Abuses Microsoft 365’s Direct Send to Deliver Phishing Emails
14:07 - Story # 3: The year of the European Union Linux desktop may finally arrive
24:46 - Story # 4...
Iran Shuts Down It's Own Internet - 2025-06-23
Register for Free, Live webcasts & summits:
https://poweredbybhis.com
00:00 - PreShow Banter™ — Explaining the Muppets
03:09 - Iran Shuts Down It's Own Internet- BHIS - Talkin’ Bout [infosec] News 2025-06-23
04:52 - Story # 1: Iran’s government says it shut down internet to protect against cyberattacks
20:20 - Story # 2: Iranian bank linked to revolutionary guard hit by ‘cyber attack’
22:11 - Story # 3: Hackers switch to targeting U.S. insurance companies
23:32 - Story # 3b: Statement: Erie Insurance Information Security Incident (June 23)
33:33 - Story # 4: N...
Denmark is Done with Teams! - 2025-06-16
Register for Free, Live webcasts & summits:
https://poweredbybhis.com
00:00 - PreShow Banter™ — Government Linux
04:16 - Denmark is Done with Teams! - Talkin’ Bout [infosec] News 2025-06-16
05:02 - Story # 1: ‘We’re done with Teams’: German state hits uninstall on Microsoft
17:34 - Story # 1b: Denmark Wants to Dump Microsoft Software for Linux, LibreOffice
18:14 - Story # 2: Zero-click AI data leak flaw uncovered in Microsoft 365 Copilot
25:50 - Story # 3: Fog ransomware attacks use employee monitoring tool to break into business networks
30:25 - Story # 4: Expired Discord Invi...
Chatbot Tells Addict to Take Drugs - 2025-06-09
Register for Free, Live webcasts & summits:
https://poweredbybhis.com
00:00 - PreShow Banter™ — Time to Bake
05:12 - Chatbot Tells Addict to Take Drugs - Talkin’ Bout [infosec] News 2025-05-06
06:08 - Story # 1: Meta and Yandex are de-anonymizing Android users’ web browsing identifiers
12:55 - Story # 2: Therapy Chatbot Tells Recovering Addict to Have a Little Meth as a Treat
16:11 - Story # 3: The Cost of a Call: From Voice Phishing to Data Extortion
26:56 - Story # 4: Questions Swirl Around ConnectWise Flaw Used in Attacks
27:40 - Story...
Victoria’s Secrets are Compromised - 2025-06-02
Register for Free, Live webcasts & summits:
https://poweredbybhis.com
00:00 - PreShow Banter™ — natural MSG
05:31 - Victoria’s Secrets are Compromised - Talkin’ Bout [infosec] News 2025-06-02
06:31 - Story # 1: Authors Are Accidentally Leaving AI Prompts In their Novels
08:36 - Story # 1b: This Latest AI Book Debacle Is A Disturbing Part Of A Growing Trend
09:41 - Story # 2: Developer Builds Tool That Scrapes YouTube Comments, Uses AI to Predict Where Users Live
10:48 - Story # 2b: AI-powered OSINT tool profiles YouTube users, raising privacy concerns
15...
Blackmailing A.I. - 2025-05-27
Register for Free, Live webcasts & summits:
https://poweredbybhis.com
00:00 - PreShow Banter™ — I just want Jorts!
05:42 - Blackmailing A.I. - Talkin’ Bout [infosec] News 2025-05-27
07:01 - Story # 1: Experimental drones developed to neutralize mass shooters, disable weapons
11:29 - Story # 2: How a global malware operation was taken down from a federal court in Georgia
13:50 - Story # 3: Judge allows Workday AI bias lawsuit to proceed as collective action
15:23 - Marker 17
19:25 - Story # 4: Anthropic’s new AI model turns to blackmail when engineer...
WORLDS FIRST CPU Ransomware! - 2025-05-19
Register for Free, Live webcasts & summits:
https://poweredbybhis.coma
00:00 - PreShow Banter™ — Twiddle Me This
02:04 - WORLDS FIRST CPU Ransomware! - Talkin’ Bout [infosec] News 2025-05-19
03:10 - Story # 1: Coinbase - Standing Up to Extortionists
11:26 - Story # 2: World’s first CPU-level ransomware
15:09 - Story # 3: New Intel CPU flaws leak sensitive data from privileged memory
19:04 - Story # 4: After latest kidnap attempt, crypto types tell crime bosses: Transfers are traceable
21:39 - Story # 5: Chinese ‘kill switches’ found hidden in US solar farms
27:52 - St...
Inside DragonForce 2025-05-12
Register for Free, Live webcasts & summits:
https://poweredbybhis.coma
00:00 - PreShow Banter™ — Crime is bad
00:18 - dangerous trend of destroying Chromebooks
04:33 - BHIS - Talkin’ Bout [infosec] News 2025-05-12
05:40 - Story # 1: LockBit Ransomware Hacked, Insider Secrets Exposed
06:36 - Story # 1b: https://ransomch.at
09:31 - Story # 2: White House Proposes $500 Million Cut to CISA
10:35 - Story # 2b: Update to How CISA Shares Cyber-Related Alerts and Notifications
18:09 - Story # 3: Inside DragonForce, the Group Tied to M&S, Co-op and Harrods Hacks<...
Scatterd Spider Weaves Another Attack- 2025-05-05
Register for Free, Live webcasts & summits:
https://poweredbybhis.com
00:00 - PreShow Banter™ — Double Coffee
05:04 - BHIS - Talkin’ Bout [infosec] News 2025-05-05
06:05 - Story # 1: Largest bank in the world issues stark security warning about technology that billions use every single day
11:15 - Story # 2: M&S cyber-attack linked to hacking group Scattered Spider
13:47 - Story # 3: Top Tier Target | What It Takes to Defend a Cybersecurity Company from Today’s Adversaries
20:10 - Story # 4: A North Korean agent applied for a job at a popular...
InfoSec CEO Charged with Installing Malware! – 2025-04-28
Register for upcoming webcasts & summits -
https://poweredbybhis.com
00:00 - PreShow Banter™ — Talking Bout Red Green
02:24 - InfoSec CEO Charged with Installing Malware! – BHIS - Talkin’ Bout [infosec] News 2025-04-28
03:01 - Story # 1: CEO of cybersecurity firm charged with installing malware on hospital systems
11:22 - Story # 2: 2025 Data Breach Investigations Report
25:05 - Story # 3: The Age of Realtime Deepfake Fraud Is Here
29:00 - Story # 4: Whistleblower: DOGE Siphoned NLRB Case Data
33:09 - Story # 5: Top employee monitoring app leaks 21 million screenshots on thousands of users
...The CVE Saga - Talkin’ Bout [infosec] News 2025-04-21
Register for upcoming webcasts & summits -
https://poweredbybhis.com
00:00 - PreShow Banter™ — A Monocle and a Glass of Wine
05:36 - The CVE Saga - Talkin’ Bout [infosec] News 2025-04-21
06:43 - Story # 1: US agency extends support for cyber vulnerability database
29:08 - Story # 1b: CVE Foundation
32:35 - Story # 2: Former cybersecurity agency chief Chris Krebs leaves SentinelOne after Trump targets him in executive order
33:57 - Story # 3: 4chan Is Down Following What Looks to Be a Major Hack Spurred By Meme War
37:17 - Story...
Largest Corporate Espionage Case this Century - 2025-04-14
Register for upcoming webcasts & summits -
https://poweredbybhis.com
00:00 - PreShow Banter™ — Trigger Warning
00:42 - Trump Vs Chris Krebs | BHIS - Talkin’ Bout [infosec] News 2025-04-14
01:54 - Story # 1: Cybersecurity Community Must Not Remain Silent On Executive Order Attacking Former CISA Director
17:04 - Story # 2: Cybersecurity industry falls silent as Trump turns ire on SentinelOne
18:00 - Story # 3: Maryland pharmacist used keyloggers to spy on coworkers for a decade, victim alleges
33:13 - Story # 4: Rippling Believe it or Not: How the Largest Corporate Espionage Case this Ce...
Desperate Times Makes for More Cyber Crimes -2025-04-07
Register for upcoming webcasts & summits -
https://poweredbybhis.com
Chapters
00:00 - PreShow Banter™ — A Complex Business
06:40 - BHIS - Talkin’ Bout [infosec] News 2025-04-07
07:34 - Story # 1: Oracle quietly admits data breach, days after lawsuit accused it of cover-up
12:47 - Story # 2: Twitter (X) Hit by 2.8 Billion Profile Data Leak in Alleged Insider Job
21:13 - Story # 3: Phishing platform ‘Lucid’ behind wave of iOS, Android SMS attacks
28:14 - Story # 4: GitHub expands security tools after 39 million secrets leaked in 2024
37:28 - Story # 5: The 10 Bigg...
The Oracle of Lies! – 2025-03-31
00:00 - PreShow Banter™ — The Bed Slinger
08:34 - The Oracle of Lies! - BHIS - Talkin’ Bout [infosec] News 2025-03-31
10:43 - Story # 1: Oracle attempt to hide serious cybersecurity incident from customers in Oracle SaaS service
20:00 - Story # 2: A Sneaky Phish Just Grabbed my Mailchimp Mailing List
26:17 - Story # 3: Windows 11 is closing a loophole that let you skip making a Microsoft account
29:51 - Story # 4: The Trump Administration Accidentally Texted Me Its War Plans
32:51 - Story # 4b: Signal is ‘absolutely not suitable’ for government use: Former NSA hacker
37:42...
Trading in Jock Straps for Jock Hacks – 2025-03-24
00:00 - PreShow Banter™ — We’re Not Ready For the Finger Thing
01:40 - Trading in Jock Straps for Jock Hacks – BHIS - Talkin’ Bout [infosec] News 2025-03-24
03:24 - Story # 1: GitHub Action hack likely led to another in cascading supply chain attack
07:53 - Story # 2: Wiz to Join Google Cloud: Making Magic Together
14:47 - Story # 3: Oracle denies breach after hacker claims theft of 6 million data records
19:52 - Story # 4: Critical flaw in Next.js lets hackers bypass authorization
25:47 - Story # 5: Cloudflare builds an AI to lead AI scraper bots into a horrible...
News 2025-03-17 - Malicious Browser Plugins will Destroy us ALL!!!!!
00:00 - PreShow Banter™ — Fun Jank Decks
05:25 - BHIS - Talkin’ Bout [infosec] News 2025-03-17 - Malicious browser plugins will destroy us ALL!!!!!
06:35 - Story # 1: Polymorphic Extensions: The Sneaky Extension That Can Impersonate Any Browser Extension
14:37 - Story # 1b: Chrome Web Store is a mess
31:14 - Story # 2: Lazarus Strikes npm Again with New Wave of Malicious Packages
36:17 - Story # 3: China’s Volt Typhoon Hackers Dwelled in US Electric Grid for 300 Days
44:44 - Story # 4: Saudi Arabia Buys Pokémon Go, and Probably All of Your Location Data
49:31...
2025-03-10 — Agent A.I.
00:00 - PreShow Banter™ — Agent A.I.
07:35 - BHIS - Talkin’ Bout [infosec] News 2025-03-10
10:47 - Story # 1: 12 Chinese hackers charged with US Treasury breach — and much, much more
15:25 - Story # 2: Signal President Meredith Whittaker calls out agentic AI as having ‘profound’ security and privacy issues
25:33 - Story # 3: X/Twitter is down for a third time today
27:33 - Story # 4: Developer sabotaged ex-employer with kill switch activated when he was let go
33:37 - Story # 5: Undocumented commands found in Bluetooth chip used by a billion devices
45:37 - Story # 6: Cybercrime’s...
2025-03-03 - Not Talking About Anything
00:00 - PreShow Banter™ — Not Talking About Anything
04:29 - BHIS - Talkin’ Bout [infosec] News 2025-03-03
05:42 - Story # 1: FBI Warns iPhone, Android Users—We Want ‘Lawful Access’ To All Your Encrypted Data
24:28 - Story # 2: Disney engineer downloaded ‘helpful’ AI tool that ended up completely destroying his life
34:28 - Story # 3: Have I Been Pwned adds 284M accounts stolen by infostealer malware
43:22 - Story # 4: Dragos’s 8th Annual OT Cybersecurity Year in Review Is Now Available
45:53 - Story # 5: Trump administration retreats in fight against Russian cyber threats
55:19 - Story # 5b: Excl...
2025-05-24 - Get Political (With Jake Williams)
00:00 - PreShow Banter™ — Get Political
05:27 - BHIS - Talkin’ Bout [infosec] News 2025-02-25
06:07 - Story # 1: Trump 2.0 Brings Cuts to Cyber, Consumer Protections
37:57 - Story # 2: OpenAI Uncovers Evidence of A.I.-Powered Chinese Surveillance Tool
49:48 - Story # 3: Apple pulls data protection tool after UK government security row
55:00 - Story # 4: Judge dismisses Chris Hadnagy lawsuit against DEF CON
