Daily cybersecurity news for practitioners. Vulnerabilities, defenses, threats, network security insight, research and more to make you sound smarter as you get to the office in the morning. New each weekday.
…
continue reading
Content provided by Risky.biz and Patrick Gray. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Risky.biz and Patrick Gray or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ppacc.player.fm/legal.
Similar to Risky Business
Technical interviews about software topics.
…
continue reading
Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
Welcome to the Security Weekly Podcast Network, your all-in-one source for the latest in cybersecurity! This feed features a diverse lineup of shows, including Application Security Weekly, Business Security Weekly, Paul's Security Weekly, Enterprise Security Weekly, and Security Weekly News. Whether you're a cybersecurity professional, business leader, or tech enthusiast, we cover all angles of the cybersecurity landscape. Tune in for in-depth panel discussions, expert guest interviews, and ...
…
continue reading
On The Bike Shed, hosts Joël Quenneville and Stephanie Minn discuss development experiences and challenges at thoughtbot with Ruby, Rails, JavaScript, and whatever else is drawing their attention, admiration, or ire this week.
…
continue reading
The daily cybersecurity news and analysis industry leaders depend on. Published each weekday, the program also includes interviews with a wide spectrum of experts from industry, academia, and research organizations all over the world.
…
continue reading
This is the audio podcast version of Troy Hunt's weekly update video published here: https://www.troyhunt.com/tag/weekly-update/
…
continue reading
Windows Weekly is about more than Windows. Veteran Microsoft insiders Paul Thurrott and Richard Campbell join Leo for a deep dive into the most valuable company in the world. From consumer to enterprise, AI to Xbox, Windows Weekly is the only Microsoft podcast you'll ever need. Records live every Wednesday at 2:00pm Eastern / 11:00am Pacific / 18:00 UTC.
…
continue reading
Tech News Briefing is your guide to what people in tech are talking about. Every weekday, we’ll bring you breaking tech news and scoops from the pros at the Wall Street Journal, insight into new innovations and policy debates, tips from our personal tech team, and exclusive interviews with movers and shakers in the industry.
…
continue reading
America is divided, and it always has been. We're going back to the moment when that split turned into war. This is Uncivil: Gimlet Media's new history podcast, hosted by journalists Jack Hitt and Chenjerai Kumanyika. We ransack the official version of the Civil War, and take on the history you grew up with. We bring you untold stories about covert operations, corruption, resistance, mutiny, counterfeiting, antebellum drones, and so much more. And we connect these forgotten struggles to the ...
…
continue reading
Player FM - Podcast App
Go offline with the Player FM app!
Go offline with the Player FM app!
))
Risky Business #784 -- GitHub supply chain attack steals secrets from 23k projects
Manage episode 472136568 series 1386146
Content provided by Risky.biz and Patrick Gray. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Risky.biz and Patrick Gray or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ppacc.player.fm/legal.
On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news:
- Github Actions supply chain attack loots keys and secrets from 23k projects
- Why a VC fund now owns a minority stake in Risky Business Media (!?!?)
- China doxes Taiwanese military hackers
- Microsoft thinks .lnk file whitespace trick isn’t worth patching but APTs sure love it
- CISA delivers government efficiency by re-hiring fired staff… to put them on paid leave
- …and Google acquires Wiz for $32bn
This week’s show is sponsored by Zero Networks, and they have sent along a happy customer to talk about their experience. Aaron Steinke is Head of Infrastructure at La Trobe Financial, an asset management firm in Australia. Aaron talks through bringing modern zero-trust goodness to the reality of a technology environment that’s been around 40 years.
This episode is also available on Youtube.
Show notes
- Risky Bulletin: GitHub supply chain attack prints everyone's secrets in build logs - Risky Business Media
- China says Taiwan's military is behind PoisonIvy APT
- China identifies Taiwanese hackers allegedly behind cyberattacks and espionage | The Record from Recorded Future News
- Crypto exchange OKX shuts down tool used by North Korean hackers to launder stolen funds | The Record from Recorded Future News
- Lazarus Group deceives developers with 6 new malicious npm packages | CyberScoop
- Poisoned Windows shortcuts found to be a favorite of Chinese, Russian, N. Korean state hackers | The Record from Recorded Future News
- 'Mora_001' ransomware gang exploiting Fortinet bug spotlighted by CISA in January | The Record from Recorded Future News
- Black Basta uses brute-forcing tool to attack edge devices | Cybersecurity Dive
- Alleged Russian LockBit developer extradited from Israel, appears in New Jersey court | The Record from Recorded Future News
- CISA works to contact probationary employees for reinstatement after court order - Nextgov/FCW
- ‘People Are Scared’: Inside CISA as It Reels From Trump’s Purge | WIRED
- The Wiretap: CISA Staff Are Cautiously Optimistic About Trump’s Pick For Director
- White House instructs agencies to avoid firing cybersecurity staff, email says | Reuters
- Signal no longer cooperating with Ukraine on Russian cyberthreats, official says | The Record from Recorded Future News
- Telegram CEO Pavel Durov allowed to leave France amid investigation
- Appellate court upholds sentence for former Uber cyber executive Joe Sullivan | The Record from Recorded Future News
- Google buys cloud security provider Wiz for $32 billion | The Record from Recorded Future News
- Pat Gray, Founder of Risky Business, Joins Decibel as Founder Advisor - Decibel
569 episodes
Share
Manage episode 472136568 series 1386146
Content provided by Risky.biz and Patrick Gray. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Risky.biz and Patrick Gray or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ppacc.player.fm/legal.
On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news:
- Github Actions supply chain attack loots keys and secrets from 23k projects
- Why a VC fund now owns a minority stake in Risky Business Media (!?!?)
- China doxes Taiwanese military hackers
- Microsoft thinks .lnk file whitespace trick isn’t worth patching but APTs sure love it
- CISA delivers government efficiency by re-hiring fired staff… to put them on paid leave
- …and Google acquires Wiz for $32bn
This week’s show is sponsored by Zero Networks, and they have sent along a happy customer to talk about their experience. Aaron Steinke is Head of Infrastructure at La Trobe Financial, an asset management firm in Australia. Aaron talks through bringing modern zero-trust goodness to the reality of a technology environment that’s been around 40 years.
This episode is also available on Youtube.
Show notes
- Risky Bulletin: GitHub supply chain attack prints everyone's secrets in build logs - Risky Business Media
- China says Taiwan's military is behind PoisonIvy APT
- China identifies Taiwanese hackers allegedly behind cyberattacks and espionage | The Record from Recorded Future News
- Crypto exchange OKX shuts down tool used by North Korean hackers to launder stolen funds | The Record from Recorded Future News
- Lazarus Group deceives developers with 6 new malicious npm packages | CyberScoop
- Poisoned Windows shortcuts found to be a favorite of Chinese, Russian, N. Korean state hackers | The Record from Recorded Future News
- 'Mora_001' ransomware gang exploiting Fortinet bug spotlighted by CISA in January | The Record from Recorded Future News
- Black Basta uses brute-forcing tool to attack edge devices | Cybersecurity Dive
- Alleged Russian LockBit developer extradited from Israel, appears in New Jersey court | The Record from Recorded Future News
- CISA works to contact probationary employees for reinstatement after court order - Nextgov/FCW
- ‘People Are Scared’: Inside CISA as It Reels From Trump’s Purge | WIRED
- The Wiretap: CISA Staff Are Cautiously Optimistic About Trump’s Pick For Director
- White House instructs agencies to avoid firing cybersecurity staff, email says | Reuters
- Signal no longer cooperating with Ukraine on Russian cyberthreats, official says | The Record from Recorded Future News
- Telegram CEO Pavel Durov allowed to leave France amid investigation
- Appellate court upholds sentence for former Uber cyber executive Joe Sullivan | The Record from Recorded Future News
- Google buys cloud security provider Wiz for $32 billion | The Record from Recorded Future News
- Pat Gray, Founder of Risky Business, Joins Decibel as Founder Advisor - Decibel
569 episodes
All episodes
×
Welcome to Player FM!
Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.
Similar to Risky Business
Daily cybersecurity news for practitioners. Vulnerabilities, defenses, threats, network security insight, research and more to make you sound smarter as you get to the office in the morning. New each weekday.
…
continue reading
Technical interviews about software topics.
…
continue reading
Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
Welcome to the Security Weekly Podcast Network, your all-in-one source for the latest in cybersecurity! This feed features a diverse lineup of shows, including Application Security Weekly, Business Security Weekly, Paul's Security Weekly, Enterprise Security Weekly, and Security Weekly News. Whether you're a cybersecurity professional, business leader, or tech enthusiast, we cover all angles of the cybersecurity landscape. Tune in for in-depth panel discussions, expert guest interviews, and ...
…
continue reading
On The Bike Shed, hosts Joël Quenneville and Stephanie Minn discuss development experiences and challenges at thoughtbot with Ruby, Rails, JavaScript, and whatever else is drawing their attention, admiration, or ire this week.
…
continue reading
The daily cybersecurity news and analysis industry leaders depend on. Published each weekday, the program also includes interviews with a wide spectrum of experts from industry, academia, and research organizations all over the world.
…
continue reading
This is the audio podcast version of Troy Hunt's weekly update video published here: https://www.troyhunt.com/tag/weekly-update/
…
continue reading
Windows Weekly is about more than Windows. Veteran Microsoft insiders Paul Thurrott and Richard Campbell join Leo for a deep dive into the most valuable company in the world. From consumer to enterprise, AI to Xbox, Windows Weekly is the only Microsoft podcast you'll ever need. Records live every Wednesday at 2:00pm Eastern / 11:00am Pacific / 18:00 UTC.
…
continue reading
Tech News Briefing is your guide to what people in tech are talking about. Every weekday, we’ll bring you breaking tech news and scoops from the pros at the Wall Street Journal, insight into new innovations and policy debates, tips from our personal tech team, and exclusive interviews with movers and shakers in the industry.
…
continue reading
America is divided, and it always has been. We're going back to the moment when that split turned into war. This is Uncivil: Gimlet Media's new history podcast, hosted by journalists Jack Hitt and Chenjerai Kumanyika. We ransack the official version of the Civil War, and take on the history you grew up with. We bring you untold stories about covert operations, corruption, resistance, mutiny, counterfeiting, antebellum drones, and so much more. And we connect these forgotten struggles to the ...
…
continue reading
Player FM - Podcast App
Go offline with the Player FM app!
Go offline with the Player FM app!
