Best Iot Vulnerabilities Podcasts (2025)

1
SN 1025: Secure Conversation Records Retention - FBI Says to Toss Your Old Router 2:45:03

14h ago2:45:03

2:45:03

The state of Virginia passes an age-restriction law that has no chance. New Zealand also tries something similar, citing Australia's lead. A nasty Python package for Discord survived 3 years and 11K downloads. The FBI says it's a good idea to discard end-of-life consumer routers. What's in WhatsApp? Finding out was neither easy nor certain. The UK'…

1
Securing the Foundation: Cyber Strategy in the Age of Smart Infrastructure 31:12

1d ago31:12

31:12

Cybersecurity is redefined as a discipline for the curious and adaptable, with a focus on continuous learning, imagination, and embracing change. On location at the RSA Conference, host Phillip Wylie and Anand Singh discusses the evolving challenges of IoT and OT security, the rapid integration of AI, and how organizations must address overlooked e…

1
HN780: The Whys and Hows of Automated Network Testing 1:03:53

5d ago1:03:53

1:03:53

On today’s Heavy Networking we talk with Dan Wade about testing the network, inspired by Dan’s talk at AutoCon 2: “Step 0: Test the Network.” We discuss why testing is a good idea, and then explore four types of network testing, including unit tests and integration tests. We dig into Yang, RESTCONF, NETCONF and gNMI... Read more »…

1
The implications of phone theft 18:00

6d ago18:00

18:00

In this episode, Felix and Alex discuss the alarming rise of phone thefts in London, sharing personal anecdotes and insights into the implications of losing a device. They explore security measures, user behaviors, and the broader impact of identity theft in today's digital age. The conversation emphasizes the importance of enhancing phone security…

1
SN 1024: Don't Blame Signal - The Real Story Behind the TM SGNL Breach 2:46:22

8d ago2:46:22

2:46:22

Microsoft to officially abandon passwords and support their deletion. Meta's RayBan smart glasses weaken their privacy terms. 30% of Microsoft code is now being written by AI. Google says prying Chrome from it will damage its security. Nearly 1,000 six-year-old eCommerce backdoors spring to life. eM Client moves to version 10.3 A bunch of terrific …

1
HN779: Do We Really Need the Modern Networking Stack? 55:15

12d ago55:15

55:15

On today’s Heavy Networking, a roundtable panel considers whether a modern network needs to be built around underlays and overlays. This isn’t just Ethan yelling at clouds. This is a legitimate question pondering the real-world value of an overlay/underlay approach. Is overlay everywhere overkill, or is that the architecture we need to deliver a sa…

1
SN 1023: Preventing Windows Sandbox Abuse - Microsoft Says "Don't Delete This Folder" 2:44:49

15d ago2:44:49

2:44:49

Why did a mysterious empty "inetpub" directory appear after April's Patch Tuesday? And what new Windows Update crashing hack did this also create? North Korea is now creating fake US companies to lure would-be employees. The "Inception" attack subverts all GPT conversational AIs. New information about data loss in unpowered SSD mass storage. Lots o…

1
HN778: Understanding Model Context Protocol (MCP) with Selector (Sponsored) 50:47

19d ago50:47

50:47

Model Context Protocol (MCP) is a very new protocol that provides a standard way to link AI models to a variety of data sources and tools. As the industry heads toward agentic AI–in which an AI agent interacts with disparate applications, data sources, and other agents to achieve a task–MCP provides the protocol glue. On... Read more »…

1
SN 1022: The Windows Sandbox - Short-life Certs, Ransomware Payout Stats 2:53:22

22d ago2:53:22

2:53:22

Enabling Firefox's Tab Grouping. Recalled Recall Re-Rolls out. The crucial CVE program nearly died. It's been given new life. China confesses to hacking the US (blames our stance on Taiwan). CISA says what Oracle still refuses to. Brute force attacks on the (rapid) rise. An AI/ML Python package rates a 9.8 (again!) The CA/Browser forum passed short…

1
HN777: Overlay All the Things? 52:01

26d ago52:01

52:01

Today’s Heavy Networking is all about overlay technologies, their history, development, and current state, both from engineer and vendor perspectives. We discuss why the industry turns to overlays to solve problems, and look at overlay and segmentation approaches including VXLAN, SRv6, and EVPN. We also drill into the idea that EVPN could become th…

1
Autonomous ships, cyber security and the workboat code 19:06

28d ago19:06

19:06

In this conversation, Felix and Oli discuss the development of a hydrogen-powered uncrewed surface vessel (USV) and the associated cybersecurity challenges. They explore the importance of integrating cybersecurity measures from the outset, navigating regulatory frameworks like Workboat Code 3, and the ongoing challenges of ensuring compliance and s…

1
SN 1021: Device Bound Session Credentials - Hotpatching in Win 11, Apple vs. UK 3:14:37

29d ago3:14:37

3:14:37

Android to get "Lockdown Mode". What's in the new editions of Chrome and Firefox? Why did Apple silently re-enable automatic updates? My new iPhone 16, Chinese tariffs and electronics. Dynamic "hotpatching" coming to Win11 Enterprise & Edu. Why is it so difficult for Oracle to fess up? Another multi-year breach inside US Treasury. An Apple -vs- the…

1
Identity, AI, and the Unseen Threats in Healthcare Cybersecurity – with vCISO Jason Taule 34:51

30d ago34:51

34:51

Healthcare IoT systems are increasingly targeted by cyber threats, necessitating a shift in strategy from isolated, organization-specific responses to a collaborative, ecosystem-wide approach. James McCarthy sits down with vCISO and 30-year information assurance and cybersecurity veteran Jason Taule. Taule brings important insights into the challen…

1
HN776: Security Platforms: Balancing Efficacy, Ops, and Emerging Threats (Sponsored) 49:33

1M ago49:33

49:33

Network security has evolved from stateful perimeter firewalls with maybe some IDS/IPS to a complex stack delivered as numerous unique tools, which often don’t talk to one another and may need to be operated by specialists. In this environment it’s hard to unify a security policy, troubleshoot problems, manage and operate tools, and respond effecti…

1
Cybersecurity Recruiter/Founder talks Entrepreneurship, Startups, and the state of the Job Market. 38:20

1M ago38:20

38:20

Josh Keeley is a Co-Founder of Trident Search, a cybersecurity recruiting agency specializing in early state cybersecurity startups. He talks about his journey as an entrepreneur, cybersecurity startups, and the current state of the job market.By RealTime Cyber

1
SN 1020: Multi-Perspective Issuance Corroboration - IoT Done Right, France Phishes, Gmails E2EE 3:08:26

1M ago3:08:26

3:08:26

Canon printer driver vulnerabilities enable Windows kernel exploitation. Astonishing cyber-security awareness from a household appliance manufacturer. France tries to hook 2.5 million school children with a Phishing test. Wordpress added an abuse prone feature in 2022. Guess what happened? Oracle? Is there something you'd like to tell us? Utah's go…

1
HN775: How To Train Your Very Own AI-Enabled Slackbot 1:03:59

1M ago1:03:59

1:03:59

On today’s Heavy Networking, we’ll discuss building a Slackbot wired to an AI and trained on your own organization’s knowledge. The potential use cases for network operations are fascinating, and today’s guest, Kyler Middleton is here to explain the finer details on how to do it and point us to free resources created so that... Read more »…

1
HN59 - Microsoft AI Discovers 20 Zero-Day Vulnerabilities in Bootloaders! 19:22

1M ago19:22

19:22

# Title * HN59 - Microsoft AI Discovers 20 Zero-Day Vulnerabilities in Bootloaders! ## Description 🔍 Microsoft’s AI Uncovers 20 Zero-Day Threats | CoffeeLoader Malware Gets Smarter In this episode of Exploit Brokers, Cipherceval dives into how Microsoft Security Copilot, powered by AI, discovered over 20 previously unknown vulnerabilities in popula…

1
SN 1019: EU OS - Troy Hunt Phished, Ransomware List, InControl 3:05:04

1M ago3:05:04

3:05:04

Kuala Lumpur International Airport says no to a ransom attack, switches to whiteboard. A tired and jet-lagged Troy Hunt got Phished then listed himself on his own site. Cloudflare completely pulls the plug on port 80 (HTTP) API access. Malware is switching to obscure languages to avoid detection. FORTH, anyone? Password reuse doesn't appear to be d…

1
HN774: Who Put These OT Risks In My IT Ops? Fortinet Has Answers (Sponsored) 46:53

2M ago46:53

46:53

IT and infosec professionals are used to operating and protecting mission-critical infrastructure; servers, databases, load balancers, and so on. But what about valves that control the flow of gas or oil in a refinery? Temperature and vibration sensors that monitor industrial manufacturing processes? If you’re thinking “That’s not my problem” think…

1
SN 1018: The Quantum Threat - ESP32 Backdoor Update, RCS E2EE 2:52:59

2M ago2:52:59

2:52:59

The dangers of doing things you don't understand. Espressif responds to the claims of an ESP32 backdoor. A widely leveraged mistake Microsoft stubbornly refuses to correct. A disturbingly simple remote takeover of Apache Tomcat servers. A 10/10 vulnerability affecting some ASUS, ASRock and HPE motherboards. Google snapped up another cloud security …

1
The Wild West of IoT: Hacking and Securing Devices with Matt Brown 34:30

2M ago34:30

34:30

Matt Brown, Hardware Security Researcher, Bug Bounty Hunter, and Founder of Brown Fine Security, leaves nothing to the imagination in this conversation with host Eric Johansen on the world of embedded devices and cybersecurity. Matt shares his journey from childhood tinkering to professional vulnerability research, offering insights into the comple…

1
HN773: Optimizing Ethernet for AI – An Update On the Ultra Ethernet Consortium 1:22:39

2M ago1:22:39

1:22:39

The Ultra Ethernet Consortium (UEC) is an industry body that aims to optimize Ethernet for AI and HPC use cases. On today’s Heavy Networking we get an overview of the UEC and an update on its efforts. We’re joined by J Metz and Rip Sohan, both heavily involved with the UEC. We discuss the consortium’s... Read more »…

1
SN 1017: Is YOUR System Vulnerable to RowHammer? - Telegram's Crypto, Twitter Outage, FBI Warning 2:53:50

2M ago2:53:50

2:53:50

An analysis of Telegram Messenger's crypto. A beautiful statement of the goal of modern crypto design. Who was behind Twitter's recent outage trouble? An embedded Firefox root certificate expired. Who was surprised? AI-generated Github repos, voice cloning, Patch Tuesday and an Apple 0-day. The FBI warns of another novel attack vector that's seeing…

1
HN772: Measuring Users’ Digital Experience with Catchpoint Internet Performance Monitoring (Sponsored) 48:22

2M ago48:22

48:22

Digital Experience Monitoring (DEM) is all about understanding a user’s application experience, and pinpointing problems if the experience is bad. Under the DEM umbrella, you’ll find Internet Performance Monitoring, or IPM. That’s our topic in today’s episode with sponsor Catchpoint. With more and more applications hosted in the cloud and more empl…

1
SN 1016: The Bluetooth Backdoor - North Korean Texans, Apple Pushes Back 2:56:45

2M ago2:56:45

2:56:45

Utah passes age verification requirement for app stores. The inside story on fake North Korean employees. Is that a Texas accent? An update on the ongoing Bybit cryptoheist saga. The industry may be making some changes in the wake of the Bybit attack. Apple pushes back legally against the UK's secret order. Did someone crack Passkeys? The UK launch…

1
HN771: Is The CCIE Still Worth It In 2025? 55:52

2M ago55:52

55:52

The CCIE remains the gold standard for networking certifications. But these days there are lots of other avenues for developing your skills and advancing your networking career, including network automation, cloud networking, and yes, even AI. So is the CCIE still worth it? We chew on this topic with Eman Conde. Eman has been known... Read more »…

1
HN58 - Havoc in the Cloud: The Shocking Click Fix Exploit Revealed 24:22

2M ago24:22

24:22

Welcome to Exploit Brokers with your host Cipherceval! In this deep dive, we uncover a sophisticated cyber assault where hackers exploited Microsoft SharePoint to launch the Havoc C2 via a stealthy click fix attack. Learn how a single click can trigger malicious PowerShell commands, turning everyday corporate tools into gateways for cybercrime. In …

1
HN770: Deploying A Global Network in Minutes With Megaport (Sponsored) 35:53

3M ago35:53

35:53

In our conversation today with CTO Cameron Daniel of Megaport, we discuss their global WAN architecture, PoPs, use cases, the Megaport Cloud Router, and more. Megaport is our sponsor today. It’s accurate to describe Megaport as providing Network-as-a-Service. Megaport’s automated connectivity solutions enable rapid provisioning of circuits, contras…

1
HN57 - Unmasking SpyLoan: The Android Malware Preying on Loan Seekers 20:32

3M ago20:32

20:32

In this episode of Exploit Brokers, we dive into the dark world of cybercrime, exploring two alarming topics: a malicious Android loan app masquerading as a financial tool and Xerox printer vulnerabilities that could be leaking your credentials. Learn how loan sharks have moved from traditional methods to sophisticated digital predation, exploiting…

1
CISO Hot Takes: GRC, AI & Vendor Relations in Healthcare 48:51

3M ago48:51

48:51

Dan Holland, Deputy CISO of Tampa General Hospital, joins us for a deep dive into a wide range of topics—from GRC and AI to vendor risk management and the unique cybersecurity challenges posed by hurricanes in Florida. We also explore his journey from cybersecurity entrepreneur to his current role at Tampa General.…

1
The Symbiosis of Tech and Nature: Securing Agriculture with Bill Lucas 42:53

3M ago42:53

42:53

In this episode, host Eric Johansen welcomes Bill Lucas, Senior Director of Cybersecurity at Mastronardi Produce, to explore the evolving security challenges in agricultural IoT. With over sixteen years of experience across the automotive, healthcare, and tech industries, Bill brings a deep understanding of enterprise risk management, endpoint secu…

1
HN769: CI/CD Pipelines and Network Automation 57:40

3M ago57:40

57:40

Continuous Integration / Continuous Deployment (CI/CD) is a framework that developers use to help them manage and integrate frequent code changes. As network automation evolves, should network engineers adopt CI/CD? Guest Tony Bourke joins us to talk about CI/CD pipelines: what they are, how they’re used, and how they can support network automation…

1
HN768: Ctrl+Alt+Delivered App Routing Reinvented with Palo Alto Networks SD-WAN (Sponsored) 44:53

3M ago44:53

44:53

Connecting your branch to your wide area network used to be simple enough. Call your carrier, get a circuit ordered, wait a long time, then turn it up. A little routing, and there you were. Cloud blew that model apart. Now when we connect branches to our corporate networks, we have to consider not only... Read more »…

1
HN56 - Massive Bug Puts Outlook Users at Risk | Kimsuky gets RDPWrapper 27:03

3M ago27:03

27:03

In today’s episode of Exploit Brokers, we dive deep into two major security threats making waves across the digital world. A critical Remote Code Execution (RCE) vulnerability in Microsoft Outlook is putting millions of users at risk, with hackers exploiting it through spear phishing emails and malicious links. Not only that, but we’re also uncover…

1
HN767: Effective Networking on the Cheap 1:09:58

3M ago1:09:58

1:09:58

Unless you’re building out AI infrastructure at a hyperscaler, you probably don’t have unlimited dollars. On today’s Heavy Networking we talk with guest Frank Seesink about how to build and operate networks effectively when money’s tight. We look at free and open source tools, talk about the trade-offs that come with free software, and how... Read …

1
HN55 - Double Zipping Danger: The 7-Zip Exploit That Could Hack Your PC 27:18

3M ago27:18

27:18

Welcome back to Exploit Brokers! In today’s video, we dive deep into a critical 7‑Zip vulnerability that’s being exploited by Russian cybercriminals to bypass Windows’ security protections. If you’ve used 7‑Zip at all, you need to know how this flaw can let hackers sneak past the Mark-of-the-Web (MOTW) and deploy dangerous malware like Smoke Loader…

1
HN 766: Ensuring QoE for Agentic AI With Broadcom VeloRAIN (Sponsored) 55:06

3M ago55:06

55:06

On today’s show, we’re discussing the complexities of network design for AI computing at the edge. We’re not talking about AIOps, although that might come up in this conversation. Instead, we’re focusing on how to effectively cope with the network traffic patterns happening on your network as a result of AI computing workloads. Our subject... Read …

1
HN54 - Cybersecurity Experts Reveal LAZARUS GROUP's Hidden Secrets 29:54

3M ago29:54

29:54

Lazarus Group’s Secret Admin Layer EXPOSED – Major Cybersecurity Discovery! 🔥💻 Security researchers have uncovered a hidden admin layer used by North Korea’s Lazarus Group to manage their Command and Control (C2) servers. This sophisticated network of VPNs and proxies allows them to execute cyberattacks worldwide—mainly targeting cryptocurrency dev…

1
IoT Lessons We Learned in 2024 10:11

4M ago10:11

10:11

What did 2024 teach us about securing the IoT and OT landscape? In this special 2024 lookback episode, Alex Nehmy, Asia Pacific CTO at Phosphorus, revisits impactful moments from industry experts and IoT Security Podcast guests, including Jason Taule, Patrick Gillespie, Sean Tufts, Michael Lester, Joel Goins, Khris Woodring, Mike Holcomb, and John …

Podcasts Worth a Listen

Iot Vulnerabilities Podcasts

Podcasts Worth a Listen

Quick Reference Guide