Malware

Episode 88: Firmware, Fraud, and Federal Fumbles

This week we talk about [0:36] how PowerSchool’s deleted data came back to haunt North Carolina schools, then [6:09] a massive IoT botnet that turned everyday devices into cybercriminal accomplices, then [11:13] a sneaky backdoor hidden in Magento extensions for over six years, and finally [15:50] how a government-endorsed Signal clone led to a national security headache.

Read More

Episode 85: Fake Chrome, Dangling Domains & Volt Typhoon Shenanigans

From fake Chrome download pages spreading SpyNote malware to stealthy attacks on Fortinet devices and dangling DNS exploits, cyber criminals are getting creative. Meanwhile, Volt Typhoon shows China’s long game in infiltrating U.S. infrastructure. This episode dives into the hidden threats lurking behind legitimate facades.

Read More

Episode 83: From Trojan Takedowns to Browser Breakdowns

This week we talk about [00:36] a new banking/crypto trojan stealing credentials and taking over phones, then [11:21] a new dropper malware that uses a bunch of techniques to avoid detection, then [18:18] how hackers stealing malchimp sessions and using it for phishing and finally [23:12] FireFox and Chrome have a serious vulnerability currently being exploited.

Read More

Episode 66: July 31 2023

We talk about a new exploit that abuses a computer search component that hopes to trick your users into clicking malware, Then a new malware with an older tactic, using ads for popular technology software to get you to download and install it, Then we talk about a new report that explains why the education sector is a high value hacker target and we round off the week talking about how a hacker forum, known to selling breach data, is having its data sold after a breach.

Read More

Episode 63: July 10 2023

On this week’s show we talk about [00:36] Android security update patches 3 exploits that are being actively used, [08:05] A new technique that allows the successful tricking of voice authentication, [15:20] JumpCloud security incident that causes…

Read More

Episode 56: May 15 2023

This week I talk about [00:36] how the car location data of 2 million customers was exposed for ten years, [06:54] the fact that millions of mobile phones come pre-infected with malware, [12:25] A phishing Campaign that distributes SmokeLoader via Fake Invoice, and [16:00] How crooks are using malicious QR codes to steal money

Read More

Episode 51: March 27 2023

Instagram scam uses fake SHEIN gift cards as lure, Linus Tech Tips Hacked, Another one bites the dust, Fake IRS tax email delivers Emotet malware

Read More

Episode 50: March 20 2023

Google Pixel flaw allowed recovery of redacted, cropped images., Actively Exploited Microsoft Outlook Vulnerability Imperils Microsoft 365 Apps, Emotet malware now distributed in Microsoft OneNote files to evade defenses, Hackers Use AI-Generated YouTube Videos to Spread Info-stealers

Read More

Episode 47: February 27 2023

Ransomware Ransom at the right price, Fake Amazon Prime email abuses LinkedIn’s URL shortener, Wiper malware goes global, ChatGPT

Read More

Episode 43: Jamuary 30 2023

Old Vulnerabilities used to attack VMware, Nevada Ransomware Group, Data breach at Vice Media involved SSNs and Financial Info, New LockBit color

Read More