In this episode, Mark and Diana discuss the latest cybersecurity developments — from the state-backed Airstalk malware campaign exploiting VMware AirWatch APIs to Claroty’s critical authentication bypass fix. They also explore OpenAI’s new AI model “Aardvark”, designed to automatically detect and patch code vulnerabilities, and Microsoft Edge’s new scareware sensor aimed at blocking tech-support scams. Plus, they cover ongoing Cisco “BadCandy” infections, the U.S. decision to reject the UN cybercrime treaty, MOVEit and Linux kernel vulnerabilities, and CISA’s updated Exchange Server guidance — wrapping up with insights on what these trends mean for enterprise security in 2025.