Register for upcoming webcasts & summits - https://poweredbybhis.com Chapters 00:00 - PreShow Banter™ — A Complex Business 06:40 - BHIS - Talkin’ Bout [infosec] News 2025-04-07 07:34 - Story # 1: Oracle quietly admits data breach, days after lawsuit accused it of cover-up 12:47 - Story # 2: Twitter (X) Hit by 2.8 Billion Profile Data Leak in Alleged Insider Job 21:13 - Story # 3: Phishing platform ‘Lucid’ behind wave of iOS, Android SMS attacks 28:14 - Story # 4: GitHub expands security tool...
Apr 09, 2025•49 min•Ep. 1
00:00 - PreShow Banter™ — The Bed Slinger 08:34 - The Oracle of Lies! - BHIS - Talkin’ Bout [infosec] News 2025-03-31 10:43 - Story # 1: Oracle attempt to hide serious cybersecurity incident from customers in Oracle SaaS service 20:00 - Story # 2: A Sneaky Phish Just Grabbed my Mailchimp Mailing List 26:17 - Story # 3: Windows 11 is closing a loophole that let you skip making a Microsoft account 29:51 - Story # 4: The Trump Administration Accidentally Texted Me Its War Plans 32:51 - Story # 4b: ...
Apr 03, 2025•1 hr 3 min•Ep. 1
00:00 - PreShow Banter™ — We’re Not Ready For the Finger Thing 01:40 - Trading in Jock Straps for Jock Hacks – BHIS - Talkin’ Bout [infosec] News 2025-03-24 03:24 - Story # 1: GitHub Action hack likely led to another in cascading supply chain attack 07:53 - Story # 2: Wiz to Join Google Cloud: Making Magic Together 14:47 - Story # 3: Oracle denies breach after hacker claims theft of 6 million data records 19:52 - Story # 4: Critical flaw in Next.js lets hackers bypass authorization 25:47 - Story...
Mar 26, 2025•59 min•Ep. 1
00:00 - PreShow Banter™ — Fun Jank Decks 05:25 - BHIS - Talkin’ Bout [infosec] News 2025-03-17 - Malicious browser plugins will destroy us ALL!!!!! 06:35 - Story # 1: Polymorphic Extensions: The Sneaky Extension That Can Impersonate Any Browser Extension 14:37 - Story # 1b: Chrome Web Store is a mess 31:14 - Story # 2: Lazarus Strikes npm Again with New Wave of Malicious Packages 36:17 - Story # 3: China’s Volt Typhoon Hackers Dwelled in US Electric Grid for 300 Days 44:44 - Story # 4: Saudi Ara...
Mar 19, 2025•1 hr 1 min•Ep. 1
00:00 - PreShow Banter™ — Agent A.I. 07:35 - BHIS - Talkin’ Bout [infosec] News 2025-03-10 10:47 - Story # 1: 12 Chinese hackers charged with US Treasury breach — and much, much more 15:25 - Story # 2: Signal President Meredith Whittaker calls out agentic AI as having ‘profound’ security and privacy issues 25:33 - Story # 3: X/Twitter is down for a third time today 27:33 - Story # 4: Developer sabotaged ex-employer with kill switch activated when he was let go 33:37 - Story # 5: Undocumented com...
Mar 12, 2025•1 hr 4 min•Ep. 1
00:00 - PreShow Banter™ — Not Talking About Anything 04:29 - BHIS - Talkin’ Bout [infosec] News 2025-03-03 05:42 - Story # 1: FBI Warns iPhone, Android Users—We Want ‘Lawful Access’ To All Your Encrypted Data 24:28 - Story # 2: Disney engineer downloaded ‘helpful’ AI tool that ended up completely destroying his life 34:28 - Story # 3: Have I Been Pwned adds 284M accounts stolen by infostealer malware 43:22 - Story # 4: Dragos’s 8th Annual OT Cybersecurity Year in Review Is Now Available 45:53 - ...
Mar 05, 2025•59 min•Ep. 1
00:00 - PreShow Banter™ — Get Political 05:27 - BHIS - Talkin’ Bout [infosec] News 2025-02-25 06:07 - Story # 1: Trump 2.0 Brings Cuts to Cyber, Consumer Protections 37:57 - Story # 2: OpenAI Uncovers Evidence of A.I.-Powered Chinese Surveillance Tool 49:48 - Story # 3: Apple pulls data protection tool after UK government security row 55:00 - Story # 4: Judge dismisses Chris Hadnagy lawsuit against DEF CON (00:00) - PreShow Banter™ — Get Political (05:26) - BHIS - Talkin' Bout [infosec] News 202...
Feb 26, 2025•1 hr 3 min•Ep. 1
00:00 - PreShow Banter™ — Prove That You’re Wearing Pants 05:50 - BHIS - Talkin’ Bout [infosec] News 2025-05-17 06:46 - Story # 1: Fortinet discloses second firewall auth bypass patched in January 07:12 - Story # 1b: Fortinet CEO boasts it was voted the “most trusted” cybersecurity firm. Don’t die laughing 08:45 - Story # 1c: Forbes Most Trusted Companies in America 2025 List 16:25 - Story # 2: SAML Bypass Authentication on GitHub Enterprise Servers to Login as Other User Account 18:37 - Story #...
Feb 19, 2025•1 hr 6 min•Ep. 1
00:00 - PreShow Banter™ — Walking Through Denver 02:23 - BHIS - Talkin’ Bout [infosec] News 2025-02-10 04:35 - Story # 1: Ransomware payments declined in 2024 despite massive. well-known hacks 05:02 - Story # 1b: 35% Year-over-Year Decrease in Ransomware Payments, Less than Half of Recorded Incidents Resulted in Victim Payments 14:19 - Story # 2: Critical Cisco ISE bug can let attackers run commands as root 16:43 - Story # 3: The Untold Story of a Crypto Crimefighter’s Descent Into Nigerian Pris...
Feb 13, 2025•1 hr 3 min•Ep. 1
00:00 - PreShow Banter™ — Community Swear Bucket 01:40 - BHIS - Talkin’ Bout [infosec] News 2025-02-05 03:27 - Story # 1: DeepSeek R1 Exposed: Security Flaws in China’s AI Model 11:25 - Story # 2: Backdoor found in two healthcare patient monitors, linked to IP in China 15:21 - Story # 3: Facebook flags Linux topics as ‘cybersecurity threats’ — posts and users being blocked 20:56 - Story # 4: Here’s how Musk’s access to Treasury system may impact Social Security, other government payments 31:29 -...
Feb 12, 2025•45 min•Ep. 1
00:00 - PreShow Banter™ — Fake Australian 04:17 - BHIS - Talkin’ Bout [infosec] News 2025-01-27 04:34 - Story # 1: DeepSeek sparks AI stock selloff; Nvidia posts record market-cap loss 30:50 - Story # 2: Tech giants are putting $500bn into ‘Stargate’ to build up AI in US 42:23 - Story # 3: DeepSeek Faces Large-scale Cyberattack, Halts New User Registrations 43:34 - Story # 4: DHS cyber review board cleaned out in Trump move to eliminate ‘misuse of resources’ 47:38 - Story # 5: UnitedHealth estim...
Jan 29, 2025•1 hr 3 min•Ep. 1
00:00 - PreShow Banter™ — Highest Rated Chalk 04:14 - BHIS - Talkin’ Bout [infosec] News 2025-01-20 08:53 - Story # 1: Data From 15,000 Fortinet Firewalls Leaked by Hackers 14:25 - Story # 2: China’s Salt Typhoon spies spotted on US govt networks before telcos, CISA boss says 16:29 - Story # 3: TikTok reportedly plans ‘immediate’ Sunday shutdown in the US if it’s banned 25:47 - Story # 4: FBI forces Chinese malware to delete itself from thousands of US computers 35:06 - WWHF Denver 36:03 - BSide...
Jan 22, 2025•1 hr 5 min•Ep. 1
00:00:00 - PreShow Banter™ — An RGB State of Mind 00:07:20 - BHIS - Talkin’ Bout [infosec] News 2025-01-13 00:10:24 - Story # 1: A Day in the Life of a Prolific Voice Phishing Crew 00:18:39 - Story # 2: Dental group lied through teeth about data breach, fined $350,000 00:25:49 - Story # 3: Hacker claims breach of US location tracking company Gravy Analytics 00:27:48 - Story # 4: License Plate Readers Are Leaking Real-Time Video Feeds and Vehicle Data 00:33:19 - Story # 5: US Cyber Trust Mark lau...
Jan 15, 2025•1 hr 8 min•Ep. 1
00:00:00 - PreShow Banter™ — Coffee With Wade Wells 00:05:41 - BHIS - Talkin’ Bout [infosec] News 2025-01-06 00:06:45 - Story # 1: BeyondTrust says hackers breached Remote Support SaaS instances 00:13:18 - Things Continued to be ignored in 2025 00:24:39 - Story # 2: Classified fighter jet specs leaked on War Thunder – again 00:28:26 - Story # 3: New Proposed HIPAA Security Rule Changes 00:34:33 - Story # 4: The Breachies 2024: The Worst, Weirdest, Most Impactful Data Breaches of the Year 00:35:4...
Jan 09, 2025•1 hr 5 min•Ep. 1
00:00 - PreShow Banter™ — ChickenSec News Part 3 12:23 - BHIS - Talkin’ Bout [infosec] News 2024-12-16 14:48 - Story # 1: $50 Million Radiant Capital Heist Blamed on North Korean Hackers 20:30 - Story # 2: Trump administration wants to go on cyber offensive against China 32:53 - Story # 3: Krispy Kreme cyberattack impacts online orders and operations 43:02 - Story # 4: Arctic Wolf and BlackBerry Announce Acquisition Agreement for Cylance 52:02 - Story # 5: Europol announces takedown of major DDo...
Dec 18, 2024•1 hr 11 min•Ep. 1
00:00 - PreShow Banter™ — A Better Mike 04:46 - BHIS - Talkin’ Bout [infosec] News 2024-12-09 05:43 - Story # 1: FBI Warns iPhone And Android Users—Stop Sending Texts 23:36 - Story # 2: US agency proposes new rule blocking data brokers from selling Americans’ sensitive personal data 42:55 - Story # 3: Vodka maker Stoli files for bankruptcy in US after ransomware attack 46:48 - Story # 4: British hospitals hit by cyberattacks still battling to get systems back online (00:00) - PreShow Banter™ — A...
Dec 11, 2024•1 hr 5 min•Ep. 1
00:00:00 - PreShow Banter™ — C Squad 00:11:03 - BHIS - Talkin’ Bout [infosec] News 2024-12-02 00:15:43 - Story # 1: Gaming Engines: An Undetected Playground for Malware Loaders - Check Point Research 00:30:41 - Story # 2: FTC finds that smart-device makers fail to make clear how long their products will be supported 00:44:47 - Story # 3: US senators propose law to require bare minimum security standards 00:46:35 - Story # 4: Starbucks baristas can’t view their schedules after ransomware attack o...
Dec 04, 2024•1 hr 12 min•Ep. 1
00:00:00 - PreShow Banter™ — Discordgate 00:09:24 - BHIS - Talkin’ Bout [infosec] News 2024-11-25 00:10:46 - Story # 1: DOJ says Google must sell Chrome to crack open its search monopoly 00:12:08 - Story # 1b: DOJ’s staggering proposal would hurt consumers and America’s global technological leadership 00:19:16 - Story # 2: The Nearest Neighbor Attack: How A Russian APT Weaponized Nearby Wi-Fi Networks for Covert Access 00:24:37 - Story # 3: Palo Alto Networks tackles firewall-busting zero-days w...
Nov 27, 2024•1 hr 6 min•Ep. 1
00:00 - PreShow Banter™ — Yacht Doc 07:40 - BHIS - Talkin’ Bout [infosec] News 2024-11-18 08:49 - Story # 1: Mystery Palo Alto Networks hijack-my-firewall zero-day now officially under exploit 16:02 - Story # 2: CISA Director Jen Easterly to depart agency on January 20 19:26 - Story # 3: Fake North Korean IT Worker Linked to BeaverTail Video Conference App Phishing Attack 28:44 - Story # 4: T-Mobile hacked in massive Chinese breach of telecom networks, WSJ reports 30:55 - Story # 4b: T-Mobile co...
Nov 21, 2024•1 hr 1 min•Ep. 1
00:00 - PreShow Banter™ — The Old and The New 02:27 - BHIS - Talkin’ Bout [infosec] News 2024-11-11 03:44 - Story # 1: Mattel pulls thousands of ‘Wicked’ dolls off shelves after printing adult website on packaging 08:03 - Story # 2: Office apps crash on Windows 11 24H2 PCs with CrowdStrike antivirus 11:41 - Story # 3: Mislabeled patch sends Windows Server 2022 admins on unwanted upgrade to 2025 16:49 - Story # 4: Suspected Snowflake Hacker Arrested in Canada 18:26 - Story # 5: Interpol Cybercrim...
Nov 15, 2024•1 hr•Ep. 1
00:00:00 - PreShow Banter™ — The Grey Times 00:04:33 - BHIS - Talkin’ Bout [infosec] News 2024-11-04 00:05:54 - Story # 1: Midnight Blizzard conducts large-scale spear-phishing campaign using RDP files 00:16:45 - Story # 2: Follow Up - 5 Things To Know On Delta’s Lawsuit Against CrowdStrike 00:17:43 - Story # 2b: CrowdStrike Sues Delta: 5 Key Takeaways 00:22:04 - Story # 3: Russian charged by U.S. for creating RedLine infostealer malware 00:22:59 - Story # 3b: How a series of opsec failures led ...
Nov 06, 2024•1 hr 7 min•Ep. 1
00:00:00 - PreShow Banter™ — Sarsaparilla 00:05:50 - BHIS - Talkin’ Bout [infosec] News 2024-10-28 00:06:46 - Story # 1: AWS, Azure auth keys found in Android and iOS apps used by millions 00:15:02 - Story # 2: Burning Zero Days: FortiJump FortiManager vulnerability used by nation state in espionage via MSPs 00:29:03 - Story # 3: Delta officially launches lawyers at $500M CrowdStrike problem 00:40:60 - Story # 4: New Rules for US National Security Agencies Balance AI’s Promise With Need to Prote...
Oct 30, 2024•1 hr 7 min•Ep. 1
00:00:00 - PreShow Banter™ — Log Con 00:11:41 - BHIS - Talkin’ Bout [infosec] News 2024-10-21 00:12:51 - Story # 1: Internet Archive exposed again – this time through Zendesk 00:14:57 - Story # 1b: Hackers steal information from 31 million Internet Archive users 00:20:42 - Story # 2: Sophos buys Secureworks for $859 mln to beef up cybersecurity portfolio 00:24:21 - Story # 3: USDoD hacker behind National Public Data breach arrested in Brazil 00:27:12 - Story # 4: Debunking Hype: China Hasn’t Bro...
Oct 25, 2024•1 hr 14 min•Ep. 1
00:00:00 - PreShow Banter™ — Cast of Special Characters 00:06:37 - BHIS - Talkin’ Bout [infosec] News 2024-09-30 00:08:06 - Story # 1: CUPS flaws enable Linux remote code execution, but there’s a catch 00:23:40 - Story # 2: US Capitol Hit by Massive Dark Web Cyber Attack - Newsweek 00:27:40 - Story # 2b: ‘I’m a black NAZI!’: NC GOP nominee for governor made dozens of disturbing comments on porn forum 00:35:57 - Story # 3: NIST proposes barring some of the most nonsensical password rules 00:47:01...
Oct 02, 2024•1 hr 13 min•Ep. 1
00:00 - PreShow Banter™ — Plane Talk 05:50 - BHIS - Talkin’ Bout [infosec] News 2024-09-23 06:16 - A SANS Difference Maker Award Finalist 09:47 - Story # 1: Pagers attack brings to life long-feared supply chain threat 24:08 - Story # 2: Recaptcha Phish - John Hammond 25:49 - Story # 2b: Clever ‘GitHub Scanner’ campaign abusing repos to push malware 30:05 - Story # 3: Lazarus Group Targets Developers in Fresh VMConnect Campaign 35:22 - Story # 4: LinkedIn Addresses User Data Collection for AI Tra...
Sep 26, 2024•1 hr 1 min•Ep. 1
00:00 - PreShow Banter™ — Pour Over News 06:01 - BHIS - Talkin’ Bout [infosec] News 2024-09-16 07:14 - Story # 1: Fortinet confirms data breach after hacker claims to steal 440GB of files 15:37 - Story # 2: Snowflake slams ‘more MFA’ button again – months after Ticketmaster, Santander breaches 21:30 - Story # 3: Omnipresent AI cameras will ensure good behavior, says Larry Ellison 28:11 - Story # 4: Mastercard bolsters threat intelligence capabilities with $2.65 billion deal for Recorded Future 3...
Sep 18, 2024•1 hr•Ep. 1
00:00 - Introduction 01:22 - The Scenario 02:50 - First Steps 03:48 - Endpoint Analysis Roll 04:22 - Logon Scripts Were installed 05:09 - I.R. Team Introductions 07:17 - Second Step 10:32 - Network Threat Hunting Roll 11:36 - Third Step 15:12 - Anyway Here’s Firewall Roll 15:43 - Fourth Step 18:26 - SIEM Roll 19:41 - Fifth Step 20:47 - UEBA Roll 21:19 - Senario Recap 22:20 - Senario Plausibility? 25:51 - Wrap-up Takeaways (00:00) - Introduction (01:21) - The Scenario (02:50) - First Steps (03:47...
Sep 16, 2024•31 min•Ep. 1
00:00 - PreShow Banter™ — Revenge of the Nerds / More Chicken Related Crimes 05:19 - N.Y. Official Charged With Taking Money, Travel and Poultry to Aid China 09:23 - BHIS - Talkin’ Bout [infosec] News 2024-09-09 09:50 - Story # 1: YubiKeys are vulnerable to cloning attacks thanks to newly discovered side channel 20:35 - Story # 2: Therapy Sessions Exposed by Mental Health Care Firm’s Unsecured Database 25:24 - Story # 3: California legislature passes sweeping AI safety bill 38:02 - Story # 4: Br...
Sep 11, 2024•1 hr 2 min•Ep. 1
00:00 - PreShow Banter™ — Move to Signal 03:47 - BHIS - Talkin’ Bout [infosec] News 2024-08-26 04:37 - Story # 1: Pavel Durov’s Arrest Leaves Telegram Hanging in the Balance 11:03 - Story # 1b: Moxie on X.com 23:17 - Story # 2: Unveiling “sedexp”: A Stealthy Linux Malware Exploiting udev Rules 29:39 - Story # 3: Seattle airport ‘possible cyberattack’ snarls travel yet again 32:42 - Story # 4: Iran named as source of Trump campaign phish, leaks 38:53 - Story # 5: Man who hacked Hawaii state regis...
Aug 29, 2024•53 min•Ep. 1
00:00:00 - PreShow Banter™ — Nine Years for Chicken Wings 00:08:19 - BHIS - Talkin’ Bout [infosec] News 2024-08-19 00:09:03 - Story # 1: NationalPublicData.com Hack Exposes a Nation’s Data 00:18:17 - Story # 1b: National Public Data Published Its Own Passwords 00:25:01 - Story # 2: RansomHub Group Deploys New EDR-Killing Tool in Latest Cyber Attacks 00:26:52 - Story # 3: T-Mobile fined $60 million for failing to stop data breaches 00:34:03 - Story # 4: Massive Cyber Attack On AWS Targets 230 Mil...
Aug 21, 2024•1 hr 5 min•Ep. 1
![Talkin' Bout [Infosec] News - podcast cover](https://assets.metacast.app/images/podcast/artwork/FMW0NX7U)
