Cybersecurity News, Topics, Tech, and More. Join Mike Kramer on his Cybersecurity podcast, sharing knowledge and experience from his extensive 20+ year career in cybersecurity to help others stay up to date on breaches plus learn, improve, and advance their careers in cybersecurity and make the world a safer place. Topics include: Attacks, SIEM, Splunk, Cybersecurity Certifications like CISSP, concepts, tips, hardware, software, and news. DM him @kramernow on IG and other platforms to submit topics.
Last refreshed: ⓘ
Follow this podcast in the Metacast mobile app to refresh it and see new episodes.
Don't just listen to podcasts. Learn from them with transcripts, summaries, and chapters for every episode. Skim, search, and bookmark insights. Learn more
Microsoft just patched 120 vulnerabilities across Windows and Office, while at the same time attackers are quietly poisoning the software supply chain to steal developer credentials at scale. A ransomware gang just disrupted Foxconn factories and claims to have stolen terabytes of sensitive data. And researchers are now confirming something many feared—AI is actively being used to discover zero-days and automate real-world cyberattacks. ★ Support this podcast on Patreon ★...
Today’s threat landscape is a perfect storm of destructive malware, mass credential theft, and attackers abusing the very tools defenders trust most. We’ve got a new data wiper hammering critical infrastructure in Venezuela, over 1,300 SharePoint servers still exposed to an actively exploited zero-day, and attackers turning Microsoft Defender itself into part of the attack chain. And if that wasn’t enough, fake crypto wallet apps slipped into Apple’s App Store while AI-assisted exploitation camp...
Rockstar Games, Booking.com, and McGraw-Hill are all in today’s breach headlines, while a new warning says the quantum threat to encryption is no longer something organizations can afford to ignore. We’re also covering Microsoft zero-days, a dangerous Adobe PDF exploit, and over 100 malicious Chrome extensions stealing accounts straight from users’ browsers. ★ Support this podcast on Patreon ★
This week’s biggest cyber stories all point to the same hard truth: attackers are scaling faster than defenders, using automation, stolen tokens, and software supply chains to hit everything from Next.js apps and npm packages to routers, PLCs, and AI tools. And in several of these cases, they didn’t even need malware to cause serious damage. ★ Support this podcast on Patreon ★
This week’s cyber stories are a reminder that attackers are no longer just stealing data—they’re hijacking the tools we trust most, from Microsoft Intune and Azure alerts to GitHub Actions and iPhones. We’ve got a massive medical-device breach, a major software supply-chain compromise, active ransomware zero-days, and phishing campaigns that bypass even encrypted messaging protections. ★ Support this podcast on Patreon ★
This week in cyber, attackers turned Steam games into crypto-stealing malware, criminals used fake VPN downloads and live chat support to steal credentials in real time, and AI agents are suddenly becoming one of the biggest new enterprise security headaches. On top of that, critical flaws in Wing FTP, Veeam, and Linux AppArmor are reminding defenders that patching and identity protection still decide who wins. ★ Support this podcast on Patreon ★...
A wiper attack tied to Iranian-linked hacktivists reportedly crippled Stryker on a global scale, while ShinyHunters is now linked to both a massive Telus Digital breach and Salesforce Experience Cloud data theft campaigns. And if that wasn’t enough, defenders are also dealing with AI-generated malware, hidden prompt injection attacks against AI agents, and ransomware crews hitting healthcare hard across multiple regions. Also - the BRAND NEW MACBOOK PRO M5 PRO in person!! ★ Support this podcast ...
The episode delves into the latest cybersecurity landscape, highlighting how nation-state actors are using AI to mass-produce malware and the widespread impact of critical vulnerabilities in Cisco and VMware systems. It also covers the takedown of a major cybercrime forum and explores new attack vectors, from vehicle tire sensors to quantum decryption threats. The discussion concludes with an expert analysis of consistent threat patterns, including identity-centric attacks, the industrialization of cybercrime, and the abuse of legitimate infrastructure.
This episode explores the convergence of modern cyber threats, including nation-state activity, widespread ransomware, AI platform risks, and supply chain governance. It details specific incidents like hospital system shutdowns and zero-day exploits, alongside discussions of AI agent hijacking and geopolitical cyber warnings. The episode concludes with actionable lessons for defenders, emphasizing the critical importance of understanding and securing control plane architectures in an interconnected risk surface.
Most organizations do not fail at security because they lack technology. They fail because they mistake tool replacement for transformation. TODAY we're going to talk about Why Most Security Transformations Fail — And How to Avoid It At the executive level, security transformation sits at the intersection of revenue protection, regulatory exposure, operational resilience, and brand trust. CIOs and CISOs are under increasing pressure from boards to demonstrate not just activity, but outcomes. Mea...
Today’s Threatopia briefing spans supply chain compromise in npm and Android firmware, MFA-bypassing phishing kits, DNS-delivered PowerShell malware, AI assistants abused as covert command channels, and an actively exploited Dell zero-day tied to a suspected Chinese espionage group. We’re also looking at 600,000 leaked retail customer records, critical VoIP and Windows privilege escalation flaws, record-high ICS vulnerabilities, and a global cybercrime crackdown that led to 651 arrests. The comm...
This episode cuts across the most important trends security leaders are facing right now: zero-days hitting edge devices and mobile management platforms, nation-state campaigns targeting defense supply chains, AI being weaponized for both reconnaissance and manipulation, and a resurgence of old-school tactics like brute-forced Linux servers and browser extension abuse. From BYOVD attacks bypassing Windows defenses, to Ivanti zero-day exploitation across European governments, to AI-driven phishin...
This week on Threatopia, we’re seeing cyber risk expand in every direction at once—critical infrastructure under attack, enterprise software riddled with zero-days, ransomware groups getting more creative, and AI adoption creating entirely new blind spots. We’ll cover urgent Microsoft and Fortinet patches, espionage activity targeting telecom providers in Singapore, large-scale cloud server hijacking, and a massive DDoS campaign disrupting Europe. We’ll also look at how attackers are increasingl...
Welcome to Threatopia. Today’s briefing highlights a rapidly changing threat landscape where artificial intelligence platforms are becoming new attack surfaces, ransomware groups are organizing like criminal cartels, and nation-state espionage campaigns continue to target governments and critical infrastructure. We’re covering major security risks in the OpenClaw AI assistant, a sophisticated bring-your-own-vulnerable-driver attack that disabled endpoint defenses, massive data exposure on the AI...
Welcome to Threatopia. Today’s episode shows just how fast the attack surface is expanding—AI accelerating cloud breaches, state-sponsored supply chain attacks hijacking trusted software, phishing campaigns stealing Dropbox credentials with nothing more than clean PDFs, and organized extortion groups crossing the line into real-world harassment and swatting. We’re also covering active exploitation of critical flaws in SolarWinds Web Help Desk and React Native development tools, massive reconnais...
In today’s Threatopia briefing, we break down the most important cyber threats shaping the current risk landscape — including OpenClaw AI agent security risks, critical vulnerabilities in the n8n automation platform, a Fortinet SSO exploit under active use, and the conviction of a former Google engineer for leaking AI secrets to Chinese tech firms. We also examine how attackers are abusing trusted identities, exposed services, and automation tools to bypass defenses, steal data, and move lateral...
This week on Threatopia: Nike data breach, Office zero-day exploitation, MacOS malware targeting developers, and critical Clawdbot AI agent vulnerabilities — explained for CISOs, practitioners, and cybersecurity beginners. ★ Support this podcast on Patreon ★
NEW FORMAT! This week, attackers targeted everything from enterprise SSO and VMware infrastructure to EV chargers, energy firms, ransomware victims, and even Olympic operations. LogMeIn backdoor phishing campaign, Windows 11 update causing boot failure, Under Armour breach, Real Estate Wordpress vulnerability, Okta, MSFT, and Google targeted phishing attacks, and more! ★ Support this podcast on Patreon ★
This week’s biggest cybersecurity threats include AI-powered phishing, North Korean hacking campaigns, Cisco and Fortinet zero-days, cloud breaches, botnets infecting millions including that sus Android streaming device you bought, and critical vulnerabilities across major platforms including 20+ found in new cars! We break down what happened, how the attacks work, and what actually matters for defenders. ★ Support this podcast on Patreon ★...
The U.S. Supreme Court was hacked, Fortinet appliances are under active takeover, and a Cisco zero-day gave attackers root access for weeks. Plus: hackers exposed, ransomware raids, and ChatGPT ads reshape the AI landscape. ★ Support this podcast on Patreon ★
Bluetooth flaws enable silent eavesdropping, ChatGPT Translate, account takeovers surge 389%, and the Black Basta ransomware leader is finally identified. We also cover spyware vendor-controlled C2, malicious Chrome extensions hijacking business accounts, and Microsoft’s takedown of a $40M cybercrime platform in this week’s top cybersecurity headlines. ★ Support this podcast on Patreon ★
Today’s cyber headlines are brutal: Microsoft zero-day is already being exploited ServiceNow AI flaw could’ve handed attackers the keys to major enterprises Huge BreachForums leak just exposed over 300,000 cybercriminal identities Stealthy web skimmer draining payment data and a Remcos RAT campaign hiding malware in plain text Trust in the tools we use every day is being weaponized SUPPORT LOCAL BOOKSTORES via my bookshop.org link https://bookshop.org/shop/kramernow HELP SUPPORT THIS CHANNEL USI...
SUPPORT LOCAL BOOKSTORES via my bookshop.org link https://bookshop.org/shop/kramernow HELP SUPPORT THIS CHANNEL USING AFFILIATE LINKS HERE I may make a small commission if you use my links They are all products I use and love. Patreon - Join the Exclusive Club (coming soon) https://www.patreon.com/kramernow Kramer's Cybersecurity Blog https://www.kramernow.com/ Cybersecurious Podcast https://podcasts.apple.com/us/podcast/cybersecurious/id1638562238 #cybersecurity #cybernews #cybersecuritynews TO...
SUPPORT LOCAL BOOKSTORES via my bookshop.org link https://bookshop.org/shop/kramernow HELP SUPPORT THIS CHANNEL USING AFFILIATE LINKS HERE I may make a small commission if you use my links They are all products I use and love. Patreon - Join the Exclusive Club (coming soon) https://www.patreon.com/kramernow Kramer's Cybersecurity Blog https://www.kramernow.com/ Cybersecurious Podcast https://podcasts.apple.com/us/podcast/cybersecurious/id1638562238 #cybersecurity #cybernews #cybersecuritynews TO...
SUPPORT LOCAL BOOKSTORES via my bookshop.org link https://bookshop.org/shop/kramernow HELP SUPPORT THIS CHANNEL USING AFFILIATE LINKS HERE I may make a small commission if you use my links They are all products I use and love. Patreon - Join the Exclusive Club (coming soon) https://www.patreon.com/kramernow Kramer's Cybersecurity Blog https://www.kramernow.com/ Cybersecurious Podcast https://podcasts.apple.com/us/podcast/cybersecurious/id1638562238 #cybersecurity #cybernews #cybersecuritynews TO...
SUPPORT LOCAL BOOKSTORES via my bookshop.org link https://bookshop.org/shop/kramernow HELP SUPPORT THIS CHANNEL USING AFFILIATE LINKS HERE I may make a small commission if you use my links They are all products I use and love. Patreon - Join the Exclusive Club (coming soon) https://www.patreon.com/kramernow Kramer's Cybersecurity Blog https://www.kramernow.com/ Cybersecurious Podcast https://podcasts.apple.com/us/podcast/cybersecurious/id1638562238 #cybersecurity #cybernews #cybersecuritynews TO...
SUPPORT LOCAL BOOKSTORES via my bookshop.org link https://bookshop.org/shop/kramernow HELP SUPPORT THIS CHANNEL USING AFFILIATE LINKS HERE I may make a small commission if you use my links They are all products I use and love. Patreon - Join the Exclusive Club (coming soon) https://www.patreon.com/kramernow Kramer's Cybersecurity Blog https://www.kramernow.com/ Cybersecurious Podcast https://podcasts.apple.com/us/podcast/cybersecurious/id1638562238 #cybersecurity #cybernews #cybersecuritynews TO...
SUPPORT LOCAL BOOKSTORES via my bookshop.org link https://bookshop.org/shop/kramernow HELP SUPPORT THIS CHANNEL USING AFFILIATE LINKS HERE I may make a small commission if you use my links They are all products I use and love. Patreon - Join the Exclusive Club (coming soon) https://www.patreon.com/kramernow Kramer's Cybersecurity Blog https://www.kramernow.com/ Cybersecurious Podcast https://podcasts.apple.com/us/podcast/cybersecurious/id1638562238 #cybersecurity #cybernews #cybersecuritynews TO...
