Three Buddy Problem

A half-dozen Microsoft zero-days, Juniper router backdoors, advanced bootkit hunting


Listen Later

Three Buddy Problem - Episode 38: On the show this week, we look at a hefty batch of Microsoft zero-days exploited in the wild, iOS 18.3.2 fixing an exploited WebKit bug, a mysterious Unpatched.ai being credited with Microsoft Access RCE flaws, and OpenAI lobbying for the US to ban China's DeepSeek.

Plus, discussion on a Binarly technical paper with new approach to finding UEFI bootkits, Mandiant flagging custom backdoors on Juniper routers, and MEV 'sandwich attacks' front-running cryptocurrency transactions.

Cast: Juan Andres Guerrero-Saade, Costin Raiu and Ryan Naraine.

Links:

  • Transcript (unedited, AI-generated)
  • Microsoft Flags Six Active Zero-Days, Patches 57 Flaws
  • Unpatched.ai discoveries
  • Apple Ships iOS 18.3.2 to Fix Already-Exploited WebKit Flaw
  • Apple iOS 18.3.2 and iPadOS 18.3.2 documentation
  • Citizen Lab: Predator in the wires
  • FreeType Zero-Day Being Exploited in the Wild
  • CVE-2020-15999: FreeType Heap Buffer Overflow
  • Mandiant : Ghost in the Juniper router
  • Jun OS out-of-cycle security bulletin (CVE-2025-21590)
  • Juniper Malware Removal Tool
  • Binarly: UEFI Bootkit Hunting -- In-Depth Search for Unique Code Behavior
  • Crypto Trader Loses $215,000 in MEV Sandwich Attack on Uniswap
  • The Secretive World Of MEV, Where Bots Front-Run Crypto Investors For Big Profits
  • Reuters journalist Raphael Satter loses overseas citizenship
  • Yanis Varoufakis: Trump’s tariff chaos explained
  • Technofeudalism: What Killed Capitalism (Yanis Varoufakis)
  • ...more
    View all episodesView all episodes
    Download on the App Store

    Three Buddy ProblemBy Security Conversations

    • 4.9
    • 4.9
    • 4.9
    • 4.9
    • 4.9

    4.9

    61 ratings


    More shows like Three Buddy Problem

    View all
    Hacked by Hacked

    Hacked

    188 Listeners

    Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

    Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

    369 Listeners

    Risky Business by Risky Business Media

    Risky Business

    376 Listeners

    SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

    SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

    648 Listeners

    CyberWire Daily by N2K Networks

    CyberWire Daily

    1,030 Listeners

    Smashing Security by Graham Cluley

    Smashing Security

    316 Listeners

    Click Here by Recorded Future News

    Click Here

    421 Listeners

    Darknet Diaries by Jack Rhysider

    Darknet Diaries

    8,059 Listeners

    Cybersecurity Today by Jim Love

    Cybersecurity Today

    178 Listeners

    Hacking Humans by N2K Networks

    Hacking Humans

    313 Listeners

    CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

    CISO Series Podcast

    192 Listeners

    Defense in Depth by CISO Series

    Defense in Depth

    73 Listeners

    Cybersecurity Headlines by CISO Series

    Cybersecurity Headlines

    136 Listeners

    Risky Bulletin by Risky Business Media

    Risky Bulletin

    45 Listeners

    The 404 Media Podcast by 404 Media

    The 404 Media Podcast

    392 Listeners